JanWesdijk
-
Items
6 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Berichten die geplaatst zijn door JanWesdijk
-
-
SORRYYY Dit is verkeerd vergeten script erin te plakken!!
[ATTACH]31537[/ATTACH]
Dat is de goede!
-
Okee, bedankt.
In mijn processen staat: RTHDCPL.EXE Alles in hoofdletters, dit vind ik verdacht zegt dit jullie iets?
-
Okee, bedankt.
-
@ Jan,
op PCH!.Download
RSIT van de onderstaande locaties en sla deze op het bureaublad op. Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.
- RSIT 32 bit (RSIT.exe)
- RSIT 64 bit (RSITx64.exe)
Dubbelklik op RSIT.exe om de tool te starten.
- Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
- Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
- Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .
RSIT Logbestanden plaatsen
- Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
- Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
- Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Bekijk ook de instructievideo.
Oke dit staat er
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jan Wesdijk at 2014-04-23 21:00:56
Microsoft Windows XP Professional Service Pack 3
System drive C: has 113 GB (74%) free of 153 GB
Total RAM: 3583 MB (73% free)
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-14 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7f232128-6f42-4f37-8efe-2e6020b2d478}]
Spring Smart - C:\Program Files\Spring Smart\SpringSmartbho.dll [2013-11-07 249640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C9C42510-9B41-42c1-9DCD-7282A2D07C61}C]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-02-17 1657448]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-02-22 86016]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-02-22 14888960]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Hercules DJ Series TrayAgent"=C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [2013-05-10 2914640]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2013-10-04 20145368]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360]
"Steam"=C:\Program Files\Steam\Steam.exe [2014-01-07 1815464]
"Akamai NetSession Interface"=C:\Documents and Settings\Jan Wesdijk\Local Settings\Application Data\Akamai\netsession_win.exe [2014-03-06 4672920]
"MicroUpdate"=C:\Documents and Settings\Jan Wesdijk\Mijn documenten\MSDCSC\msdcsc.exe [2014-04-21 674304]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WindowsUpdate"=C:\Documents and Settings\Jan Wesdijk\Application Data\A82XcgxW\MGCvRNf.exe [2014-04-23 266752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-26 190976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"DisableRegistryTools"=1
"EnableLUA"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Java\jre7\bin\javaw.exe"="C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java Platform SE binary"
"C:\Program Files\Java\jre7\bin\java.exe"="C:\Program Files\Java\jre7\bin\java.exe:*:Disabled:Java Platform SE binary"
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
"C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe"="C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\NMService.exe"="C:\Nexon\Combat Arms EU\NMService.exe:*:Enabled:Nexon Messenger Core"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\WINDOWS\system32\java.exe"="C:\WINDOWS\system32\java.exe:*:Enabled:Java Platform SE binary"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\GamersFirst\APB Reloaded\Binaries\APB.exe"="C:\Program Files\GamersFirst\APB Reloaded\Binaries\APB.exe:*:Enabled:APB: APB.exe"
"C:\Program Files\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe"="C:\Program Files\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe:*:Enabled:APB: VivoxVoiceService.exe"
"C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe"="C:\Program Files\SpacialAudio\SAMBC\SAMBC.exe:*:Enabled:SAMBC"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"C:\Documents and Settings\All Users\Application Data\Battle.net\Agent\Agent.1544\Agent.exe"="C:\Documents and Settings\All Users\Application Data\Battle.net\Agent\Agent.1544\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Documents and Settings\All Users\Application Data\Battle.net\Agent\Agent.2045\Agent.exe"="C:\Documents and Settings\All Users\Application Data\Battle.net\Agent\Agent.2045\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Counter-Strike Source\hl2.exe"="C:\Program Files\Steam\SteamApps\common\Counter-Strike Source\hl2.exe:*:Enabled:Counter-Strike: Source"
"C:\Program Files\Steam\SteamApps\common\GarrysMod\hl2.exe"="C:\Program Files\Steam\SteamApps\common\GarrysMod\hl2.exe:*:Enabled:Garry's Mod"
"C:\Documents and Settings\Jan Wesdijk\Application Data\uTorrent\uTorrent.exe"="C:\Documents and Settings\Jan Wesdijk\Application Data\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe"="C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe:*:Enabled:Hercules® DJ Series Tray Bar"
"C:\Documents and Settings\Jan Wesdijk\Local Settings\Application Data\MediaGet2\\Onlinetv\engine\mg_engine.exe"="C:\Documents and Settings\Jan Wesdijk\Local Settings\Application Data\MediaGet2\\Onlinetv\engine\mg_engine.exe:*:Enabled:MediaGet"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\TeamViewer\Version8\TeamViewer.exe"="C:\Program Files\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastSvc.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastUI.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avcenter.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avconfig.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgcsrvx.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgidsagent.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgnt.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgrsx.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avguard.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgui.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgwdsvc.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avscan.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdagent.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ccuac.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ComboFix.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\egui.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\elogsvc.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hijackthis.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\instup.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\keyscrambler.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbam.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamgui.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbampt.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamscheduler.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamservice.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MpCmdRun.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSASCui.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MsMpEng.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msseces.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nhs.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Njeeves.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Nnf.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Nprosec.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvoy.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rstrui.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\scheduler.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spybotsd.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wireshark.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Zanda.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zlclient.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zlhh.exe]
"Debugger="C:\WINDOWS\system32\Microsoft.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"VIDC.FPS1"=frapsvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"vidc.tscc"=C:\WINDOWS\system32\tsccvid.dll
"vidc.tsc2"=C:\WINDOWS\system32\tsc2_codec32.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======List of files/folders created in the last 1 month======
2014-04-23 21:00:57 ----D---- C:\Program Files\trend micro
2014-04-23 21:00:56 ----D---- C:\rsit
2014-04-23 16:00:19 ----A---- C:\WINDOWS\system32\ie4uinitSrv.exe
2014-04-23 15:28:05 ----SHD---- C:\found.000
2014-04-22 20:44:52 ----D---- C:\Program Files\TeamViewer
2014-04-21 23:37:37 ----D---- C:\Program Files\PlurPush
2014-04-21 23:37:35 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\Systweak
2014-04-21 22:27:46 ----A---- C:\WINDOWS\system32\drivers\mconfig.sys
2014-04-21 22:09:45 ----D---- C:\Program Files\Microsoft
2014-04-21 22:07:21 ----A---- C:\Documents and Settings\Jan Wesdijk\Application Data\SPYARG HACK 1.5 64bits.exe
2014-04-21 22:05:26 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\dclogs
2014-04-21 21:04:56 ----RASH---- C:\WINDOWS\system32\Microsoft.com
2014-04-21 21:04:38 ----SHD---- C:\Program Files\Windows Manager
2014-04-21 21:04:26 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\A82XcgxW
2014-04-21 20:56:15 ----D---- C:\Documents and Settings\All Users\Application Data\Media Get LLC
2014-04-19 10:54:07 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-04-19 10:31:49 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\foobar2000
2014-04-19 10:31:43 ----D---- C:\Program Files\foobar2000
2014-04-19 10:15:22 ----D---- C:\WINDOWS\system32\appmgmt
2014-04-18 08:21:45 ----A---- C:\WINDOWS\system32\javaws.exe
2014-04-18 08:21:39 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-04-18 08:21:39 ----A---- C:\WINDOWS\system32\javaw.exe
2014-04-18 08:21:39 ----A---- C:\WINDOWS\system32\java.exe
2014-04-04 21:00:28 ----D---- C:\Program Files\Goat Simulator
2014-04-03 09:53:39 ----A---- C:\WINDOWS\ModemLog_Standaardmodem (1200 bps).txt
======List of files/folders modified in the last 1 month======
2014-04-23 21:00:57 ----RD---- C:\Program Files
2014-04-23 20:59:47 ----D---- C:\WINDOWS\Prefetch
2014-04-23 20:56:37 ----D---- C:\WINDOWS\system32\dllcache
2014-04-23 20:55:54 ----D---- C:\Program Files\Outlook Express
2014-04-23 20:55:53 ----D---- C:\Program Files\Movie Maker
2014-04-23 17:48:57 ----D---- C:\WINDOWS\Temp
2014-04-23 17:13:43 ----D---- C:\Documents and Settings
2014-04-23 16:13:08 ----D---- C:\WINDOWS\system32\drivers
2014-04-23 16:13:01 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-04-23 16:08:33 ----D---- C:\WINDOWS\system32\CatRoot2
2014-04-23 16:00:20 ----D---- C:\WINDOWS
2014-04-23 16:00:19 ----D---- C:\WINDOWS\system32
2014-04-23 15:44:54 ----D---- C:\WINDOWS\system32\config
2014-04-23 15:30:18 ----D---- C:\Program Files\Steam
2014-04-23 15:29:26 ----D---- C:\WINDOWS\system32\LogFiles
2014-04-22 21:22:30 ----N---- C:\WINDOWS\SchedLgU.Txt
2014-04-22 20:52:01 ----RSD---- C:\WINDOWS\Fonts
2014-04-22 20:08:31 ----SHD---- C:\WINDOWS\Installer
2014-04-22 20:08:04 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2014-04-22 20:07:46 ----D---- C:\Program Files\Common Files
2014-04-22 20:04:24 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\uTorrent
2014-04-22 20:03:57 ----D---- C:\WINDOWS\Logs
2014-04-22 20:03:57 ----D---- C:\WINDOWS\Debug
2014-04-22 18:38:37 ----D---- C:\Nexon
2014-04-22 16:43:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-22 16:38:17 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2014-04-22 16:21:10 ----SD---- C:\WINDOWS\Tasks
2014-04-22 16:21:09 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\Solvusoft
2014-04-19 10:54:36 ----D---- C:\WINDOWS\system32\RTCOM
2014-04-19 10:54:17 ----HD---- C:\WINDOWS\inf
2014-04-19 10:54:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-04-18 11:42:02 ----D---- C:\Documents and Settings\Jan Wesdijk\Application Data\.minecraft
2014-04-18 08:21:39 ----D---- C:\Program Files\Java
2014-04-04 21:02:01 ----D---- C:\WINDOWS\WinSxS
2014-04-03 16:51:36 ----D---- C:\WINDOWS\Registration
2014-04-03 11:49:38 ----D---- C:\WINDOWS\Network Diagnostic
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel RAID Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2009-01-10 327192]
R0 iastor78;iastor78; C:\WINDOWS\system32\drivers\iastor78.sys [2009-04-23 308248]
R0 NvcMFlt;NvcMFlt; C:\WINDOWS\system32\DRIVERS\nvcw32mf.sys [2013-09-16 49192]
R1 intelppm;Intel GV3-processorstuurprogramma; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448]
R1 NGS;Norman General Security Driver; \??\c:\program files\norman\ngs\bin\ngs.sys []
R1 NPROSEC;Norman Security driver; \??\C:\Program Files\Norman\Ngs\Bin\nprosec.sys []
R1 WmiAcpi;Microsoft Windows Beheerinterface voor ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 Ndiskio;Ndiskio; \??\C:\Program Files\Norman\Nse\Bin\NDISKIO.SYS []
R2 nregsec;Norman Registry Security driver; \??\C:\Program Files\Norman\Ngs\Bin\nregsec.sys []
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-11-26 187392]
R3 HDAudBus;Microsoft UAA-busstuurprogramma voor High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384]
R3 HidUsb;Microsoft HID Class-stuurprogramma; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2013-11-05 5589720]
R3 mouhid;Stuurprogramma voor muis-HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-09-06 12288]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-03-11 7670208]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-15 5888]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Blfp;Broadcom Advanced Server Program Driver; C:\WINDOWS\system32\DRIVERS\baspxp32.sys [2008-10-28 89600]
S3 Bulk;HDJBulk; C:\WINDOWS\System32\Drivers\HDJBulk.sys [2013-05-21 221104]
S3 CCDECODE;Closed Caption-decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 HDJAsioK;HDJAsioK; C:\WINDOWS\System32\Drivers\HDJAsioK.sys [2013-05-21 274480]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video-verbinding; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbccgp;Microsoft generiek hoofd-USB-stuurprogramma; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Stuurprogramma voor USB-massaopslag; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;USB-videoapparaat (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WinUSB;Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2009-07-13 34944]
S3 WSTCODEC;World Standard Teletext-codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-04-23 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-04-23 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 HerculesDJControlMP3;Hercules DJ Control MP3; C:\Program Files\Hercules\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE [2013-05-21 55296]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-04-14 182696]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-02-22 172100]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2013-07-28 76888]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2014-02-07 5093216]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-02 4972864]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-10 116648]
S2 Norman ZANDA;Norman ZANDA; C:\Program Files\Norman\Npm\Bin\Zanda.exe []
S3 aspnet_state;ASP.NET-statusservice; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-10 116648]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Scheduler;Norman Scheduler Service; C:\Program Files\Norman\Npm\Bin\scheduler.exe []
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-11-19 489256]
S3 WMPNetworkSvc;Windows Media Player Network Sharing-service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2014-04-21 975360]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
- - - Updated - - -
Op het moment doet me taakbeheer het weer. Norman enzo krijg ik nog steeds niet open en weet niet wat ik moet verwijderen in Processen.
- RSIT 32 bit (RSIT.exe)
-
Mijn computer is geïnfecteerd met een virus waardoor ik niet in mijn Taakbeheer, Norman map, Anti Malware Bytes map en allerlei dingen zoals virus scanners niet kan downloaden!!! Ik heb CCleaner en HiJackthis op me computer die het wel doen. Ik kreeg dit virus toen ik een bestand had gedownload zonder te weten dat me firewall en virusscanner uitstonden. Ik heb Firewall weer aangezet maar Norman Security Site wilt niet meer aan en het staat ook niet meer in me taakbalk. Ik kan het Norman mapje in program files niet meer in dus veel kan ik er niet aan doen. Sindsdien wordt het internet ook heel erg sloom, mijn Google Chrome deed heb ook niet maar ik heb net met CCleaner veel dingen verwijderd waardoor Google Chrome het weer deed. In mijn configuratiescherm staat ook geen Systeem en beveiliging meer. Samen met een vriend van me al gekeken via Teamviewer of we norman bestandjes konden plakken in mijn computer, lukte niet. MBAM wilt niet opstarten hij zegt dan dat hij MBAM gaat zoeken en als ik dan op bladeren klik kan ik er NIET in! Ik krijg dit bericht als ik Norman en Anti Malware Bytes en Taakbeheer opstart:
Anti Malware Bytes: C:\Program Files\Malwarebytes' Anti-Malware is niet toegankelijk. Toegang geweigerd.
Norman: C:\Program Files\Norman is niet toegankelijk. Toegang geweigerd.
Taakbeheer: Taakbeheer is uitgeschakeld door de systeembeheerder.
Dit vast ook zo met andere dingen waarvan ik het nog niet ontdekt heb.
Ik zou het erg waarderen als jullie me konden helpen.
Bedankt
Jan Wesdijk
op PCH!.
RSIT van de onderstaande locaties en sla deze op het bureaublad op. 
Soort van politievirus!? Help!
in Archief Windows XP
Geplaatst:
Hoi kape, ik zag in mijn Taakbeheer - Processen wat raars voorbij flitsen! Heeft dit er iets mee te maken? Er stond RTHDCPL.EXE en PEVS.EXE (Volgensmij ging beetje snel) allemaal met hoofdletters geschreven. Is dit iets?
Hier de log: [ATTACH]31539[/ATTACH]
Mvg
Jan
zoek-results3.txt