Laptop wordt wat traag-opgelost

Spyware is software die in het geheim op je computer wordt geplaatst en die persoonlijke gegevens doorstuurt, reclame toont, enz. Stel hier vragen, leer hoe je ervan af kan komen en hoe het te voorkomen.

Ferna
Lid geworden op: 15 aug 2004, 12:24
Locatie: Aan zee

11 mar 2018, 22:51

Hallo,

Mijn Toshiba laptop wordt wat traag, zowel bij de opstart als bij het werken hiermee.
Zou der iemand het onderstaand logje eens willen bekijken of daar geen ongerechtigheden instaan ??
Vast mijn hartelijke dank.
CCleaner en malwarebytes en adw zijn reeds de revue gepasseerd.


Vriendelijke groet,

Ferna 

Logfile of Trend Micro HijackThis v2.0.5Scan saved at 22:45:19, on 11/03/2018Platform: Windows 7 SP1 (WinNT 6.00.3505)MSIE: Unable to get Internet Explorer version!Boot mode: NormalRunning processes:C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exeC:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exeC:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXEC:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exeC:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exeC:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exeC:\Users\Noel\Downloads\HijackThis.exeC:\Windows\SysWOW64\DllHost.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symbaloo.com/home/mix/13ep26jgaiR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dllO2 - BHO: Norton Identity Safety - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine32\22.12.1.15\coIEPlg.dllO2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLLO3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine32\22.12.1.15\coIEPlg.dllO4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exeO4 - HKCU\..\Run: [Google Update] C:\Users\Noel\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exeO4 - HKCU\..\Run: [Gadwin PrintScreen] "C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe" /nosplashO4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXEO8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllO9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllO9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllO9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllO10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dllO10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dllO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphicsO16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... _32.CABO16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (Bitdefender QuickScan Control) - http://quickscan.bitdefender.com/qsax/qsax.cabO18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllO18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllO18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLO23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exeO23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeO23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeO23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exeO23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Digital Wave Ltd. - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exeO23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exeO23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exeO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exeO23 - Service: Acronis Managed Machine Service Mini (mmsminisrv) - Acronis International GmbH - C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exeO23 - Service: Acronis Mobiele back-upserver (mobile_backup_server) - Acronis International GmbH - C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exeO23 - Service: Acronis Mobiele back-up status server (mobile_backup_status_server) - Unknown owner - C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exeO23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exeO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Norton Security (NortonSecurity) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\22.12.1.15\NortonSecurity.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exeO23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exeO23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)--End of file - 10671 bytes
Er gaat meer boven mijn pet, dan er onder !

Laptop ACER ASPIRE A517-51-S58YI
MS Windows 10 64 Bit SP1 Intelcore i5-CPU @ 1.60 GHz, 8,0 GB RAM
Intel uhd Graphics 620
Firefox- Thunderbird- Norton 360

Sony
Lid geworden op: 19 feb 2005, 13:45
Locatie: Boom

12 mar 2018, 09:50

Ferna,
malwarebytes en adw zijn reeds de revue gepasseerd.
https://www.seniorennet.be/forum/viewtopic.php?t=197564
Gebruik FRST om te scannen en plaats de twee log bestanden hier
in twee berichten tav abbs.
Dat je eerst zelf die scans van Mbam en Adw hebt uitgevoerd maakt
het niet eenvoudiger voor de helpers.

Sony
I Afbeelding SeniorenNet

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

12 mar 2018, 09:57

CCleaner en malwarebytes en adw zijn reeds de revue gepasseerd.
Plaats de logjes van die programma's er ook bij.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Ferna
Lid geworden op: 15 aug 2004, 12:24
Locatie: Aan zee

12 mar 2018, 22:33

Hallo abbs,

Hierbij de gevraagde scan's, hopelijk kun je iets vinden wat de traagheid kan veroorzaken en dat ik als leek ( bijna 80 jaar) kan verhelpen. Voor mij is het allemaal chinees wat daar staat, dat zul je wel begrijpen :wink:

Hartelijk dank voor je zeer gewaardeerde hulp

Vriendelijke groet,

Ferna

****************************************************************************************************



Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 11.03.2018 01Gestart door Noel (Beheerder) op TOSHIBA (12-03-2018 22:13:16)Gestart vanaf C:\Users\Noel\DownloadsGeladen Profielen: Noel (Beschikbare Profielen: Noel & Gast)Platform: Windows 7 Home Premium Service Pack 1 (X64) Taal: Nederlands (Nederland)Internet Explorer Versie 9 (Standaardbrowser: Chrome)Boot Modus: NormalHandleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... ========== Processen (gefilterd) =================(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe() C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\22.12.1.15\nortonsecurity.exe(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe(Gadwin Systems, Inc) C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE(Microsoft Corporation) C:\Windows\splwow64.exe(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\22.12.1.15\nortonsecurity.exe(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe() C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe(Microsoft Corporation) C:\Windows\System32\dllhost.exe(Microsoft Corporation) C:\Windows\System32\dllhost.exe(Farbar) C:\Users\Noel\Downloads\FRST64 (1).exe==================== Register (gefilterd) ===========================(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [588360 2017-06-22] ()HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-02-14] (Acronis International GmbH)HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\...\Run: [Google Update] => C:\Users\Noel\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [601680 2017-11-13] (Google Inc.)HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\...\Run: [Gadwin PrintScreen] => C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [487424 2011-05-03] (Gadwin Systems, Inc)HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [241664 2010-11-21] (Microsoft Corporation)HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1421736 2017-03-28] (Garmin Ltd. or its subsidiaries)Startup: C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2011-04-27]ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (Geen bestand)Startup: C:\Users\Noel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk [2011-11-08]ShortcutTarget: OneNote 2010 Schermopname en Snel starten.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)BootExecute: autocheck autochk * sdnclean64.exeGroupPolicy: Restrictie - Chrome <==== AANDACHT==================== Internet (gefilterd) ====================(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)Tcpip\Parameters: [DhcpNameServer] 195.130.130.5 195.130.131.5Tcpip\..\Interfaces\{111AB459-9D93-4EDE-AE1A-04F142C9C704}: [DhcpNameServer] 195.130.130.5 195.130.131.5Tcpip\..\Interfaces\{A13B4840-F8A8-4EB4-A7AC-738C2A0275A8}: [DhcpNameServer] 195.130.130.5 195.130.131.5Internet Explorer:==================HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symbaloo.com/home/mix/13ep26jgaiSearchScopes: HKLM -> {126CA606-482A-4015-9492-5E5A15872C90} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... archScopes: HKLM-x32 -> {126CA606-482A-4015-9492-5E5A15872C90} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... archScopes: HKU\.DEFAULT -> {126CA606-482A-4015-9492-5E5A15872C90} URL = SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000 -> {126CA606-482A-4015-9492-5E5A15872C90} URL = SearchScopes: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000 -> {9BD36BB0-FC01-4DD6-B5F3-BAD718A004F0} URL = hxxps://www.google.com/search?q={searchTerms}BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Internet Security\Engine\22.12.1.15\coIEPlg.dll [2018-03-02] (Symantec Corporation)BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Internet Security\Engine32\22.12.1.15\coIEPlg.dll [2018-03-02] (Symantec Corporation)BHO-x32: Aanmeldhulp voor Microsoft-account -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\22.12.1.15\coIEPlg.dll [2018-03-02] (Symantec Corporation)Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine32\22.12.1.15\coIEPlg.dll [2018-03-02] (Symantec Corporation)Toolbar: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Geen bestandDPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cabHandler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-09-27] (Skype Technologies S.A.)FireFox:========FF DefaultProfile: pow4wfwz.default-1520459184886FF ProfilePath: C:\Users\Noel\AppData\Roaming\Mozilla\Firefox\Profiles\pow4wfwz.default-1520459184886 [2018-03-12]FF Homepage: Mozilla\Firefox\Profiles\pow4wfwz.default-1520459184886 -> hxxp://www.symbaloo.com/home/mix/13eP26JGAiFF Extension: (Google Translator for Firefox) - C:\Users\Noel\AppData\Roaming\Mozilla\Firefox\Profiles\pow4wfwz.default-1520459184886\Extensions\translator@zoli.bod.xpi [2018-03-07]FF Extension: (Adblock Plus) - C:\Users\Noel\AppData\Roaming\Mozilla\Firefox\Profiles\pow4wfwz.default-1520459184886\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-03-07]FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.beFF Extension: (Geen Naam) - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-05-24]FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll [2018-02-06] ()FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand]FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand]FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand]FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll [2018-02-06] ()FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2012-04-26] (Adobe Systems, Inc.)FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand]FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)FF Plugin HKU\S-1-5-21-3017281716-3315283871-3821877557-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Noel\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)FF Plugin HKU\S-1-5-21-3017281716-3315283871-3821877557-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Noel\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)FF Plugin HKU\S-1-5-21-3017281716-3315283871-3821877557-1000: vasco.com/VascoCardReaderPlugin -> C:\Users\Noel\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin.dll [2014-10-27] (VASCO Data Security)FF Plugin HKU\S-1-5-21-3017281716-3315283871-3821877557-1000: vasco.com/VascoCardReaderPlugin64 -> C:\Users\Noel\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin64.dll [2014-10-27] (VASCO Data Security)Chrome: =======CHR DefaultProfile: DefaultCHR HomePage: Default -> hxxp://www.librivox.nl/CHR StartupUrls: Default -> "hxxp://www.symbaloo.com/"CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908&prt=cr&chn=prevCHR DefaultSearchKeyword: Default -> NortonSafeCHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ffCHR Profile: C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default [2018-03-12]CHR Extension: (Documenten) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]CHR Extension: (Google Drive) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]CHR Extension: (IBM Security Rapport) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2018-02-18]CHR Extension: (AdGuard-advertentieblokkeerder) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2018-03-03]CHR Extension: (eID Chrome Extension) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2017-03-27]CHR Extension: (YouTube) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-16]CHR Extension: (Norton Security Toolbar) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2018-03-07]CHR Extension: (Adblock voor Youtube™) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2017-06-14]CHR Extension: (Spotify - Music for every moment) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2017-07-13]CHR Extension: (Google Search) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]CHR Extension: (Offline Documenten) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]CHR Extension: (Norton Identity Safe) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-07-02]CHR Extension: (TV Netherlands - Television Netherlands) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcfidfojebalmpcconceiiolchimckba [2014-08-22]CHR Extension: (Norton Safe) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2017-10-09]CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]CHR Extension: (Gmail) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-04]CHR Extension: (Chrome Media Router) - C:\Users\Noel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-07]CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Internet Security\Engine\22.12.1.15\Exts\Chrome.crx <niet gevonden>CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crxCHR HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crxCHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Internet Security\Engine\22.12.1.15\Exts\Chrome.crx <niet gevonden>CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crxCHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx==================== Services (gefilterd) ====================(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1278720 2017-06-22] ()R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6086232 2017-09-04] ()R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-15] (Digital Wave Ltd.)S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1099280 2017-03-28] (Garmin Ltd. or its subsidiaries)S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Bestand niet getekend]R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4795288 2017-02-13] (Acronis International GmbH)S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [2908352 2017-01-06] (Acronis International GmbH)S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1617520 2017-06-22] ()R2 NortonSecurity; C:\Program Files\Norton Internet Security\Engine\22.12.1.15\NortonSecurity.exe [328712 2018-03-03] (Symantec Corporation)R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7014728 2017-03-07] ()S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)===================== Drivers (gefilterd) ======================(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)S3 ACSSCR; C:\Windows\System32\DRIVERS\a38usb.sys [77832 2016-11-28] (Advanced Card Systems Ltd.)U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) <==== AANDACHT (geen ServiceDLL)R1 BHDrvx64; C:\Program Files\Norton Internet Security\NortonData\22.9.3.13\Definitions\BASHDefs\20180307.005\BHDrvx64.sys [1879632 2018-02-09] (Symantec Corporation)S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)R1 ccSet_NGC; C:\Windows\system32\drivers\NGCx64\160C010.00F\ccSetx64.sys [187544 2018-03-02] (Symantec Corporation)R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-01-04] (Symantec Corporation)R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [152656 2018-01-04] (Symantec Corporation)R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [378712 2017-09-04] (Acronis International GmbH)U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-21] (Microsoft Corporation)R1 IDSVia64; C:\Program Files\Norton Internet Security\NortonData\22.9.3.13\Definitions\IPSDefs\20180309.001\IDSvia64.sys [1056920 2017-10-14] (Symantec Corporation)R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2018-03-12] (Malwarebytes)R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [1514568 2013-05-02] (Realtek Semiconductor Corporation )R1 SRTSP; C:\Windows\System32\Drivers\NGCx64\160C010.00F\SRTSP64.SYS [817816 2018-03-02] (Symantec Corporation)R1 SRTSPX; C:\Windows\system32\drivers\NGCx64\160C010.00F\SRTSPX64.SYS [49304 2018-03-02] (Symantec Corporation)R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\160C010.00F\SYMEFASI64.SYS [1942168 2018-03-02] (Symantec Corporation)R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102552 2018-02-21] (Symantec Corporation)R1 SymIRON; C:\Windows\system32\drivers\NGCx64\160C010.00F\Ironx64.SYS [307864 2018-03-02] (Symantec Corporation)R1 SymNetS; C:\Windows\System32\Drivers\NGCx64\160C010.00F\SYMNETS.SYS [566936 2018-03-02] (Symantec Corporation)R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2017-09-04] (Acronis International GmbH)R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [213336 2017-09-04] (Acronis International GmbH)S3 tnd; C:\Windows\System32\DRIVERS\tnd.sys [690520 2017-09-04] (Acronis International GmbH)R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [324952 2017-09-04] (Acronis International GmbH)S3 NAVENG; \??\C:\Program Files\Norton Internet Security\NortonData\22.9.3.13\Definitions\SDSDefs\20170612.020\NAVENG.SYS [X]S3 NAVEX15; \??\C:\Program Files\Norton Internet Security\NortonData\22.9.3.13\Definitions\SDSDefs\20170612.020\NAVEX15.SYS [X]S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]==================== NetSvcs (gefilterd) ===================(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)==================== Een Maand Aangemaakt bestanden en mappen ========(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)2018-03-12 22:05 - 2018-03-12 22:05 - 000001420 _____ C:\Users\Noel\Desktop\Malwarebytes.txt2018-03-12 21:42 - 2018-03-12 21:42 - 000003345 _____ C:\Users\Noel\Desktop\AdwCleaner[S4].txt2018-03-12 21:39 - 2018-03-12 21:39 - 008222496 _____ (Malwarebytes) C:\Users\Noel\Downloads\adwcleaner_7.0.8.0 (3).exe2018-03-12 21:35 - 2018-03-12 21:35 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys2018-03-12 16:35 - 2018-03-12 16:35 - 000000000 ____D C:\Windows\System32\Tasks\Remediation2018-03-12 16:28 - 2018-03-12 17:20 - 000102392 _____ C:\Users\Noel\Downloads\Addition.txt2018-03-12 16:27 - 2018-03-12 22:13 - 000023064 _____ C:\Users\Noel\Downloads\FRST.txt2018-03-12 16:26 - 2018-03-12 16:27 - 000001491 _____ C:\Users\Noel\Desktop\FRST64 (1).lnk2018-03-12 16:26 - 2018-03-12 16:26 - 002402816 _____ (Farbar) C:\Users\Noel\Downloads\FRST64 (6).exe2018-03-12 16:25 - 2018-03-12 16:25 - 002402816 _____ (Farbar) C:\Users\Noel\Downloads\FRST64 (5).exe2018-03-12 16:25 - 2018-03-12 16:25 - 002402816 _____ (Farbar) C:\Users\Noel\Downloads\FRST64 (4).exe2018-03-12 16:23 - 2018-03-12 16:23 - 000034940 _____ C:\Users\Noel\Desktop\viewtopic.htm2018-03-12 16:20 - 2018-03-12 16:20 - 002402816 _____ (Farbar) C:\Users\Noel\Downloads\FRST64 (3).exe2018-03-12 16:19 - 2018-03-12 16:19 - 002402816 _____ (Farbar) C:\Users\Noel\Downloads\FRST64 (2).exe2018-03-12 16:18 - 2018-03-12 16:18 - 002402816 _____ (Farbar) C:\Users\Noel\Downloads\FRST64 (1).exe2018-03-12 16:17 - 2018-03-12 16:17 - 002402816 _____ (Farbar) C:\Users\Noel\Downloads\FRST64.exe2018-03-11 22:44 - 2018-03-11 22:44 - 000388608 _____ (Trend Micro Inc.) C:\Users\Noel\Downloads\HijackThis.exe2018-03-11 22:18 - 2018-03-11 22:18 - 008222496 _____ (Malwarebytes) C:\Users\Noel\Downloads\adwcleaner_7.0.8.0 (2).exe2018-03-11 22:07 - 2018-03-11 22:07 - 007202669 _____ C:\Users\Noel\Downloads\genegenheid.mp42018-03-10 22:32 - 2018-03-10 22:32 - 003981920 _____ C:\Users\Noel\Downloads\p-hotdogs.mp42018-03-09 22:51 - 2018-03-09 22:51 - 008222496 _____ (Malwarebytes) C:\Users\Noel\Downloads\adwcleaner_7.0.8.0 (1).exe2018-03-09 22:47 - 2018-03-09 22:47 - 008222496 _____ (Malwarebytes) C:\Users\Noel\Downloads\adwcleaner_7.0.8.0.exe2018-03-07 22:24 - 2018-03-07 22:24 - 000325610 _____ C:\Users\Noel\Downloads\Akkoordbrief medicatie (2).pdf2018-03-07 21:41 - 2018-03-07 21:41 - 000000000 ____D C:\Windows\System32\Tasks\Norton Internet Security2018-03-07 21:35 - 2018-03-07 21:35 - 000003224 _____ C:\Windows\System32\Tasks\Norton WSC Integration2018-03-07 21:35 - 2018-03-07 21:35 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security2018-03-04 22:33 - 2018-03-04 22:33 - 036010987 _____ C:\Users\Noel\Downloads\VID_20180114_153354525.mp42018-03-03 21:31 - 2018-03-05 22:27 - 000000000 ____D C:\Users\Noel\Desktop\SUSASVANGENT2018-03-02 16:14 - 2018-03-02 16:14 - 000041630 _____ C:\Users\Noel\Downloads\BE46979585883136_2018-02-12_00023_028303.pdf2018-03-02 16:11 - 2018-03-02 16:11 - 000061657 _____ C:\Users\Noel\Downloads\BE46979585883136_2018-01-09_00005_073200.pdf2018-03-02 16:08 - 2018-03-02 16:08 - 000047507 _____ C:\Users\Noel\Downloads\BE46979585883136_2018-02-15_00026_029523.pdf2018-03-02 16:02 - 2018-03-02 16:02 - 000004194 _____ C:\Users\Noel\Downloads\BE44-380032550645-CA-EUR-20180226-004-DE SMET DE DEYNE  NOEL EN-FERNANDA.pdf2018-03-02 15:58 - 2018-03-02 15:58 - 000003736 _____ C:\Windows\System32\Tasks\Norton Internet Security Error Processor2018-03-02 15:58 - 2018-03-02 15:58 - 000003026 _____ C:\Windows\System32\Tasks\Norton Internet Security Error Analyzer2018-02-26 10:34 - 2018-02-26 10:34 - 000020004 _____ C:\Users\Noel\Downloads\ING Statements - 0014673167 - 20180226-103417.zip2018-02-26 10:29 - 2018-02-26 10:30 - 000000349 _____ C:\Users\Noel\Desktop\Smartphone Traceren.url2018-02-24 10:27 - 2018-02-24 10:27 - 000105608 _____ C:\Users\Noel\Downloads\TUSSENKOMST HOSPITALIA.pdf2018-02-23 22:41 - 2018-02-23 22:41 - 011217568 _____ (Piriform Ltd) C:\Users\Noel\Downloads\ccsetup540.exe2018-02-22 21:37 - 2018-03-07 21:35 - 000002325 _____ C:\Users\Public\Desktop\Norton Security.lnk2018-02-21 22:12 - 2018-03-07 21:36 - 000000000 ____D C:\Windows\system32\Drivers\NGCx642018-02-20 22:16 - 2018-02-20 22:16 - 001453138 _____ C:\Users\Noel\Downloads\Prostaatcarcinoom.pdf2018-02-20 21:57 - 2018-02-20 21:57 - 006038016 _____ C:\Users\Noel\Downloads\p-kleurenpracht (1).ppt2018-02-20 21:55 - 2018-02-20 21:55 - 006038016 _____ C:\Users\Noel\Downloads\p-kleurenpracht.ppt2018-02-19 22:53 - 2018-02-19 22:53 - 002894830 _____ C:\Users\Noel\Downloads\p-vissen.mp42018-02-18 11:45 - 2018-02-18 11:45 - 000086130 _____ C:\Users\Noel\Downloads\110815.pdf2018-02-16 22:04 - 2018-02-16 22:04 - 004792832 _____ C:\Users\Noel\Downloads\De-jaren-vanaf-Bevrijding-tot-1950_07.2017  (2).ppt2018-02-15 22:38 - 2018-02-15 22:38 - 007999501 _____ C:\Users\Noel\Downloads\grieTygers (1).wmv2018-02-15 22:37 - 2018-02-15 22:37 - 007999501 _____ C:\Users\Noel\Downloads\grieTygers.wmv2018-02-15 22:36 - 2018-02-15 22:36 - 004792832 _____ C:\Users\Noel\Downloads\De-jaren-vanaf-Bevrijding-tot-1950_07.2017 .ppt2018-02-15 22:36 - 2018-02-15 22:36 - 004792832 _____ C:\Users\Noel\Downloads\De-jaren-vanaf-Bevrijding-tot-1950_07.2017  (1).ppt2018-02-15 22:14 - 2018-02-15 22:15 - 000000000 ____D C:\Users\Noel\Desktop\FOTO'S HEIST2018-02-13 22:03 - 2018-01-12 17:46 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi2018-02-13 22:03 - 2018-01-12 17:44 - 005581544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe2018-02-13 22:03 - 2018-01-12 17:44 - 001894120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys2018-02-13 22:03 - 2018-01-12 17:44 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi2018-02-13 22:03 - 2018-01-12 17:44 - 000377064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys2018-02-13 22:03 - 2018-01-12 17:44 - 000371432 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys2018-02-13 22:03 - 2018-01-12 17:44 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll2018-02-13 22:03 - 2018-01-12 17:44 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys2018-02-13 22:03 - 2018-01-12 17:40 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll2018-02-13 22:03 - 2018-01-12 17:40 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll2018-02-13 22:03 - 2018-01-12 17:40 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll2018-02-13 22:03 - 2018-01-12 17:40 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll2018-02-13 22:03 - 2018-01-12 17:33 - 001665384 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll2018-02-13 22:03 - 2018-01-12 17:29 - 004014312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe2018-02-13 22:03 - 2018-01-12 17:29 - 003959016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe2018-02-13 22:03 - 2018-01-12 17:27 - 004834816 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe2018-02-13 22:03 - 2018-01-12 17:27 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll2018-02-13 22:03 - 2018-01-12 17:26 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll2018-02-13 22:03 - 2018-01-12 17:26 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll2018-02-13 22:03 - 2018-01-12 17:16 - 003405824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe2018-02-13 22:03 - 2018-01-12 17:11 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe2018-02-13 22:03 - 2018-01-12 17:03 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys2018-02-13 22:03 - 2018-01-12 17:02 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys2018-02-13 22:03 - 2018-01-12 17:02 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys2018-02-13 22:03 - 2018-01-11 17:41 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll2018-02-13 22:03 - 2018-01-11 17:22 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll2018-02-13 22:03 - 2018-01-11 17:09 - 003224064 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2018-02-13 22:03 - 2018-01-05 17:31 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll2018-02-13 22:03 - 2018-01-05 17:11 - 000111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll2018-02-13 22:03 - 2017-12-05 18:36 - 001484288 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll2018-02-13 22:03 - 2017-12-05 18:36 - 000218112 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll2018-02-13 22:03 - 2017-12-05 18:08 - 001176576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll2018-02-13 22:03 - 2017-12-05 18:08 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll2018-02-13 22:03 - 2017-12-05 17:04 - 000404992 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe2018-02-13 22:02 - 2018-01-22 00:50 - 000136424 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe2018-02-13 22:02 - 2018-01-22 00:40 - 000654336 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll2018-02-13 22:02 - 2018-01-19 15:05 - 001994752 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe2018-02-13 22:02 - 2018-01-19 15:05 - 001569280 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll2018-02-13 22:02 - 2018-01-19 15:05 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll2018-02-13 22:02 - 2018-01-19 15:05 - 000604672 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll2018-02-13 22:02 - 2018-01-19 15:05 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll2018-02-13 22:02 - 2018-01-19 15:05 - 000378880 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll2018-02-13 22:02 - 2018-01-19 15:05 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll2018-02-13 22:02 - 2018-01-19 15:05 - 000236544 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll2018-02-13 22:02 - 2018-01-12 17:44 - 000287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS2018-02-13 22:02 - 2018-01-12 17:44 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys2018-02-13 22:02 - 2018-01-12 17:40 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 17:16 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys2018-02-13 22:02 - 2018-01-12 17:16 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys2018-02-13 22:02 - 2018-01-12 17:15 - 000032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys2018-02-13 22:02 - 2018-01-12 17:11 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys2018-02-13 22:02 - 2018-01-12 17:11 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe2018-02-13 22:02 - 2018-01-12 17:10 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe2018-02-13 22:02 - 2018-01-12 17:07 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe2018-02-13 22:02 - 2018-01-12 17:06 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe2018-02-13 22:02 - 2018-01-12 17:02 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe2018-02-13 22:02 - 2018-01-12 17:01 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe2018-02-13 22:02 - 2018-01-12 17:01 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe2018-02-13 22:02 - 2018-01-12 16:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll2018-02-13 22:02 - 2018-01-12 16:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe2018-02-13 22:02 - 2018-01-12 16:57 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll2018-02-13 22:02 - 2018-01-12 16:57 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe2018-02-13 22:02 - 2018-01-12 16:57 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe2018-02-13 22:02 - 2018-01-12 16:56 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 16:56 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 16:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll2018-02-13 22:02 - 2018-01-12 16:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll2018-02-13 22:02 - 2018-01-05 17:31 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll2018-02-13 22:02 - 2018-01-05 17:30 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll2018-02-13 22:02 - 2018-01-05 17:30 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll2018-02-13 22:02 - 2018-01-05 17:30 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll2018-02-13 22:02 - 2018-01-05 17:25 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll2018-02-13 22:02 - 2018-01-05 17:14 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll2018-02-13 22:02 - 2018-01-05 17:11 - 000071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll2018-02-13 22:02 - 2018-01-05 17:11 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll2018-02-13 22:02 - 2018-01-05 17:11 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll2018-02-13 22:02 - 2018-01-05 16:50 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll2018-02-13 22:02 - 2017-12-05 18:36 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll2018-02-13 22:02 - 2017-12-05 18:36 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll2018-02-13 22:02 - 2017-12-05 18:36 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll2018-02-13 22:02 - 2017-12-05 18:36 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll2018-02-13 22:02 - 2017-12-05 18:08 - 000179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll2018-02-13 22:02 - 2017-12-05 18:08 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll2018-02-13 22:02 - 2017-12-05 18:08 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll2018-02-11 22:24 - 2018-02-11 22:24 - 002655993 _____ C:\Users\Noel\Downloads\Handleiding smartphone MOTOROLA.pdf==================== Een Maand Gewijzigd bestanden en mappen ========(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)2018-03-12 22:13 - 2017-09-26 09:17 - 000000000 ____D C:\FRST2018-03-12 22:13 - 2017-03-02 22:23 - 000000000 ____D C:\Users\Noel\AppData\LocalLow\Mozilla2018-03-12 22:06 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf2018-03-12 21:43 - 2009-07-14 05:45 - 000025120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02018-03-12 21:43 - 2009-07-14 05:45 - 000025120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02018-03-12 21:41 - 2017-09-23 21:33 - 000000000 ____D C:\AdwCleaner2018-03-12 21:34 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT2018-03-10 10:28 - 2018-01-03 22:28 - 000000000 ___RD C:\Users\Noel\Desktop\FINANCIEEL 20182018-03-10 10:28 - 2017-09-08 20:55 - 000000000 ____D C:\Users\Noel\AppData\Local\AxCrypt2018-03-09 22:39 - 2017-09-06 16:53 - 000003168 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3017281716-3315283871-3821877557-10002018-03-09 22:38 - 2017-11-07 09:19 - 000002184 _____ C:\Users\Noel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk2018-03-09 22:38 - 2017-09-06 16:53 - 000000000 ___RD C:\Users\Noel\OneDrive2018-03-08 12:53 - 2017-08-31 10:01 - 000000000 ____D C:\Program Files\Mozilla Firefox2018-03-08 12:53 - 2014-01-08 22:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service2018-03-07 22:01 - 2016-07-25 21:38 - 000000000 ____D C:\Program Files\Common Files\AV2018-03-07 21:49 - 2015-06-07 09:39 - 000002211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk2018-03-03 21:57 - 2014-06-16 15:59 - 000000126 _____ C:\Users\Noel\Desktop\Patientenportaal AZ.url2018-03-01 21:38 - 2014-12-29 21:19 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task2018-02-25 21:52 - 2015-12-14 21:16 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk2018-02-24 10:32 - 2011-02-11 09:50 - 000746014 _____ C:\Windows\system32\perfh013.dat2018-02-24 10:32 - 2011-02-11 09:50 - 000153934 _____ C:\Windows\system32\perfc013.dat2018-02-24 10:32 - 2009-07-14 06:13 - 001670960 _____ C:\Windows\system32\PerfStringBackup.INI2018-02-23 22:41 - 2017-11-20 23:09 - 000000829 _____ C:\Users\Public\Desktop\CCleaner.lnk2018-02-23 22:41 - 2017-10-27 21:29 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update2018-02-22 22:00 - 2017-06-13 09:29 - 000000000 ____D C:\ProgramData\Norton2018-02-21 22:12 - 2017-06-13 09:31 - 000102552 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS2018-02-21 22:12 - 2017-06-13 09:31 - 000008471 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT2018-02-17 22:36 - 2017-10-15 21:24 - 000000000 ____D C:\Users\Noel\Desktop\WEBCAMS2018-02-13 22:15 - 2012-12-21 20:57 - 000343816 _____ C:\Windows\system32\FNTCACHE.DAT2018-02-13 22:12 - 2014-12-11 10:00 - 000000000 ____D C:\Windows\system32\appraiser2018-02-13 22:12 - 2013-07-11 10:14 - 000000000 ____D C:\Windows\system32\MRT2018-02-13 22:06 - 2017-10-11 21:03 - 130067560 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe2018-02-13 22:06 - 2011-11-02 13:39 - 130067560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe==================== Bestanden in de root van sommige mappen =======2013-07-24 20:08 - 2013-07-24 20:08 - 000000037 ___SH () C:\Users\Noel\AppData\Local\70149b02515b3bb20dd492.479834202013-11-01 11:56 - 2017-04-09 21:46 - 000007680 _____ () C:\Users\Noel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini2015-03-10 22:03 - 2015-11-15 14:01 - 000007602 _____ () C:\Users\Noel\AppData\Local\Resmon.ResmonCfg==================== Bamital & volsnap ======================(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)C:\Windows\system32\winlogon.exe => Bestand is getekendC:\Windows\system32\wininit.exe => Bestand is getekendC:\Windows\SysWOW64\wininit.exe => Bestand is getekendC:\Windows\explorer.exe => Bestand is getekendC:\Windows\SysWOW64\explorer.exe => Bestand is getekendC:\Windows\system32\svchost.exe => Bestand is getekendC:\Windows\SysWOW64\svchost.exe => Bestand is getekendC:\Windows\system32\services.exe => Bestand is getekendC:\Windows\system32\User32.dll => Bestand is getekendC:\Windows\SysWOW64\User32.dll => Bestand is getekendC:\Windows\system32\userinit.exe => Bestand is getekendC:\Windows\SysWOW64\userinit.exe => Bestand is getekendC:\Windows\system32\rpcss.dll => Bestand is getekendC:\Windows\system32\dnsapi.dll => Bestand is getekendC:\Windows\SysWOW64\dnsapi.dll => Bestand is getekendC:\Windows\system32\Drivers\volsnap.sys => Bestand is getekendLastRegBack: 2017-12-21 11:39==================== Eind van FRST.txt ============================


Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 11.03.2018 01Gestart door Noel (12-03-2018 22:14:19)Gestart vanaf C:\Users\Noel\DownloadsWindows 7 Home Premium Service Pack 1 (X64) (2011-11-02 08:36:56)Boot Modus: Normal============================================================================== Accounts: =============================Administrator (S-1-5-21-3017281716-3315283871-3821877557-500 - Administrator - Disabled)Gast (S-1-5-21-3017281716-3315283871-3821877557-501 - Limited - Disabled) => C:\Users\GastHomeGroupUser$ (S-1-5-21-3017281716-3315283871-3821877557-1002 - Limited - Enabled)Noel (S-1-5-21-3017281716-3315283871-3821877557-1000 - Administrator - Enabled) => C:\Users\Noel==================== Security Center ========================(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)AV: Norton Internet Security (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D}AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}AS: Norton Internet Security (Enabled - Up to date) {589C5C7B-A77A-1B8E-C99B-B02AE9B836F0}AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}FW: Norton Internet Security (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36}==================== Geïnstalleerde programma's ======================(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)Acronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}) (Version: 20.0.8058 - Acronis) HiddenAcronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}Visible) (Version: 20.0.8058 - Acronis)Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.233 - Adobe Systems Incorporated)Adobe Flash Player 28 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 28.0.0.161 - Adobe Systems Incorporated)Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)Adobe Flash Player 28 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.)ANT Drivers Installer x64 (HKLM\...\{7664AF65-7B0D-4171-9F0F-50455278B428}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) HiddenAuslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 6.0.2.0 - Auslogics Labs Pty Ltd)AutoSizer (HKLM-x32\...\AutoSizer) (Version:  - )AxCrypt 2.1.1536.0 (HKLM\...\{2BC37358-56F5-2602-9596-9E2CCCF9A52B}) (Version: 2.1.1536.0 - AxCrypt AB) HiddenAxCrypt 2.1.1536.0 (HKLM-x32\...\{9f4cc45a-3160-4a77-8926-379a9e188612}) (Version: 2.1.1536.0 - AxCrypt AB)Belgium e-ID middleware 4.1.20 (build 1779) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71779}) (Version: 4.1.1779 - Belgian Government)Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)CCleaner (HKLM\...\CCleaner) (Version: 5.40 - Piriform)D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) HiddenDIGIPASS Native Bridge 2.3.2 (HKLM-x32\...\{D9145E6A-FEDE-4922-8EB0-6154E4C528CB}) (Version: 2.3.2 - VASCO Data Security) HiddenDIGIPASS Native Bridge 2.3.2 (HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\...\{9417bcae-5ec1-4171-81d5-46bf5bf9b573}) (Version: 2.3.2 - VASCO Data Security)Elevated Installer (HKLM-x32\...\{1052502B-4C91-43F9-B160-AE39ED57C9F0}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) HiddenFotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) HiddenFotoSketcher 2.10 (HKLM-x32\...\{E7C6D565-2E48-4303-A114-AFE7B2E561AF}_is1) (Version:  - David THOIRON)Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.1.40.315 - Digital Wave Ltd)Gadwin PrintScreen (HKLM-x32\...\Gadwin PrintScreen) (Version: 4.6 - Gadwin Systems, Inc.)Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) HiddenGarmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)Garmin Express (HKLM-x32\...\{BCC7CA85-E57F-452D-BB44-15A1CE018BD0}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) HiddenGarmin Express (HKLM-x32\...\{bd8bd200-9a60-4969-b267-6b565f36e3da}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries)Garmin Express Tray (HKLM-x32\...\{DA9C865D-6762-4931-8588-0B13B7A0796B}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) HiddenGarmin POI Loader (HKLM-x32\...\{5CA74EDC-CFC3-4FA0-AED7-1415CA19F250}) (Version: 2.7.2 - Garmin Ltd or its subsidiaries)Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.146 - Google Inc.)Google Drive (HKLM-x32\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.)Google Earth Pro (HKLM\...\{D9EF644E-2FAE-493B-8180-5617CC774C4F}) (Version: 7.3.1.4507 - Google)Google Photos Backup (HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.)Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) HiddenGoogle Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) HiddenGoogle+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)IZArc 4.1.2 (HKLM-x32\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.1.2 - Ivan Zahariev)KeePass Password Safe 1.16 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.16 - Dominik Reichl)K-Lite Codec Pack 7.9.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.9.0 - )Malwarebytes versie 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)Microsoft .NET Framework 4.7 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.7.02053 - Microsoft Corporation)Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)Microsoft OneDrive (HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\...\OneDriveSetup.exe) (Version: 18.025.0204.0009 - Microsoft Corporation)Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)Microsoft-invoegtoepassing Opslaan als PDF of XPS voor 2007 Microsoft Office-programma
Er gaat meer boven mijn pet, dan er onder !

Laptop ACER ASPIRE A517-51-S58YI
MS Windows 10 64 Bit SP1 Intelcore i5-CPU @ 1.60 GHz, 8,0 GB RAM
Intel uhd Graphics 620
Firefox- Thunderbird- Norton 360

Sony
Lid geworden op: 19 feb 2005, 13:45
Locatie: Boom

13 mar 2018, 11:28

Ferna,

Sorry maar de logs zijn niet leesbaar.

abbs schreef op onderstaande link:
https://www.seniorennet.be/forum/viewtopic.php?t=201330
Zo zijn ze niet te lezen upload ze via "Filedropper"
  • Klik op:http://www.filedropper.com/.
  • Klik op die site op  
    Afbeelding
     
  • Verkenner opent > klik links boven op Bureaublad > dubbel klik rechts FRST.txt.
  • Kopieer nu de link die nu onder "Link To Share This File With Anyone" staat en plak die in je volgende antwoord.
Sony
I Afbeelding SeniorenNet

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

13 mar 2018, 11:29

Hallo,

De logjes zijn niet te lezen zo,

Upload de log bestanden (FRST & Addition) één voor één op via Wetransfer.
Handleiding Uploaden via WeTransfer <==klik hierop.

klik op "Ga naar Free" en klik "Ik ga akkoord" (indien nodig).
Klik op "Voeg bestanden toe" (1) verkenner opent ga naar de plaats waar FRST.txt staat en dubbel klik erop.

Afbeelding

Klik daarna op de drie stippen (2), zorg dat "Link" is aangevinkt (3).
Klik daarna op "Versturen" (4).

Afbeelding

Kopiëren en plak nu deze link (5) in je volgende antwoord.

Afbeelding

Doe nu het zelfde met het Addition.txt.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Ferna
Lid geworden op: 15 aug 2004, 12:24
Locatie: Aan zee

13 mar 2018, 21:56

Hierbij eerste link.

https://we.tl/XjnL2km8EA

Groeten,

Ferna
Er gaat meer boven mijn pet, dan er onder !

Laptop ACER ASPIRE A517-51-S58YI
MS Windows 10 64 Bit SP1 Intelcore i5-CPU @ 1.60 GHz, 8,0 GB RAM
Intel uhd Graphics 620
Firefox- Thunderbird- Norton 360

Ferna
Lid geworden op: 15 aug 2004, 12:24
Locatie: Aan zee

13 mar 2018, 21:58

Hierbij 2e link.

https://we.tl/Oim9dfQPn3


Hopende naar genoegen te hebben gehandeld, en in afwachting van uw reacties.

Vriendelijke groet,

Ferna
Er gaat meer boven mijn pet, dan er onder !

Laptop ACER ASPIRE A517-51-S58YI
MS Windows 10 64 Bit SP1 Intelcore i5-CPU @ 1.60 GHz, 8,0 GB RAM
Intel uhd Graphics 620
Firefox- Thunderbird- Norton 360

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

14 mar 2018, 11:41

Hallo,

Ik zie geen zware infectie maar we kunnen wel even schoon gaan maken.
Lees alles eerst goed door en voer het dan uit.

Stap 1.
We verwijderen Malwarebytes even want die heeft wel eens een conflict met Norton.
In dien nodig back-up uw licentiesleutel van Malswarebytes.
Voer nu de stappen uit uit deze Handleiding.

Stap 2.
De tool FRST staat in de map Downloads open deze map en sleep FRST naar je bureaublad!


Lees eerst de handleiding en voer daarna de fix uit Handleiding Fix

Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.

Klik Windows knop plus R tegelijk in. Afbeelding
"Uitvoeren" opent vul daar Notepad in en klik daarna op "OK", Kladblok opent.
Kopieer onderstaande code en plak dat in "Kladblok"

Code: Selecteer alles

start
CreateRestorePoint:
GroupPolicy: Restrictie - Chrome <==== AANDACHT
Toolbar: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Geen bestand
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) <==== AANDACHT (geen ServiceDLL)
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]
2018-03-11 22:44 - 2018-03-11 22:44 - 000388608 _____ (Trend Micro Inc.) C:\Users\Noel\Downloads\HijackThis.exe
CustomCLSID: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Noel\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Noel\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll => Geen bestand
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Geen bestand
ShortcutWithArgument: C:\Users\Noel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d7a253f58d8885b1\Adblock Plus.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=cfhdojbkjhnklbpkdaibdccddilifddb
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [252]
EmptyTemp:
Reboot:
end
Ga naar Bestand - Opslaan als.
Kies als locatie bureaublad.
Bij "Bestandsnaam" zet je:fixlist.txt
Bij "Opslaan als type" selecteer je: Alle bestanden.

Als het goed is staat er nu een text bestand op je bureaublad?

Start de Farbar Recovery Scan Tool.
Als het programma is geopend klik Yes (Ja) bij de disclaimer. (indien nodig)
Druk op de Fix knop.
Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
Upload de log bestanden die je heb gemaakt.


Vertel er ook bij hoe het hierna gaat?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Ferna
Lid geworden op: 15 aug 2004, 12:24
Locatie: Aan zee

14 mar 2018, 21:34

Heel hartelijke dank voor je deskundige hulp abbs.
I.v.m ernstige medische problemen, kan ik me momenteel niet zo concentreren op je richtlijnen.
Ik zal mij er komend weekend eens goed voor zetten, en je daarna informeren hoever ik geraakt ben.

Dank voor je begrip.

Vriendelijke groet,

Ferna

Ferna
Lid geworden op: 15 aug 2004, 12:24
Locatie: Aan zee

14 mar 2018, 22:23

Toch al iets kunnen doen:

Is er een alternatief voor malwarebytes, dat geen conflict geeft met Norton ??
Ik gebruik al jaren tot grote tevredenheid dit programma zo'n 1 x per week.

Vriendelijke groet,

Ferna


https://we.tl/4rFV0kj1ql

benq
Lid geworden op: 10 dec 2005, 19:23
Locatie: Antwerpen

15 mar 2018, 08:23

@Sony,
Ferna hare laptop start ook traag op,
misschien dat er teveel programma’s onnodig mee opstarten en die op de achtergrond blijven draaien,
dit zorgt ook voor vertraging.
Systeemconfiguratie – Opstarten
genoeg gewerkt nu genieten van mijn zeer groot ambtenaar pensioen :lol:

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

15 mar 2018, 12:03

Ferna schreef:Toch al iets kunnen doen:

Is er een alternatief voor malwarebytes, dat geen conflict geeft met Norton ??
Ik gebruik al jaren tot grote tevredenheid dit programma zo'n 1 x per week.
Als het 100% aan Malwarebytes ligt is er wel een oplossing voor (gebruik je de gratis versie?)

Voer de fix uit wanneer het je  uitkomt ik wacht rustig af.
Vertel er ook bij hoe het gaat als je de fix heb uitgevoerd. :)
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Ferna
Lid geworden op: 15 aug 2004, 12:24
Locatie: Aan zee

17 mar 2018, 10:19

Ik had het wel verwacht dat ik tegen problemen zou aanlopen, deze materie is "geen spek voor mijnen bek" zoals ze in België zeggen, dit gaat ver boven mijn pet.

Probleem;

FRST en fixlist.txt staan in één map, en toch krijg ik de melding "geen fixlist gevonden"  ze moeten in één map
staan en dat is dus toch zo.

Loop hier even vast.
Gaarne hulp.

Vriendelijke groet,

Ferna
stAfbeelding
Er gaat meer boven mijn pet, dan er onder !

Laptop ACER ASPIRE A517-51-S58YI
MS Windows 10 64 Bit SP1 Intelcore i5-CPU @ 1.60 GHz, 8,0 GB RAM
Intel uhd Graphics 620
Firefox- Thunderbird- Norton 360

Ferna
Lid geworden op: 15 aug 2004, 12:24
Locatie: Aan zee

17 mar 2018, 10:43

Toch gelukt geloof ik;

Zied nog niet onmiddellijk positieve resultaten, maar bekijk het nog even.
Ik laat nog wel iets van mij horen.

In ieder geval hartelijk dank voor je deskundige hulp.

Vriendelijke groet,

Ferna

*******************************************************************************************************

Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 14.03.2018Gestart door Noel (17-03-2018 10:35:58) Run:1Gestart vanaf C:\Users\Noel\Desktop\FRSTGeladen Profielen: Noel (Beschikbare Profielen: Noel & Gast)Boot Modus: Normal==============================================fixlist inhoud:*****************start CreateRestorePoint: GroupPolicy: Restrictie - Chrome <==== AANDACHT Toolbar: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Geen bestand U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) <==== AANDACHT (geen ServiceDLL) S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X] 2018-03-11 22:44 - 2018-03-11 22:44 - 000388608 _____ (Trend Micro Inc.) C:\Users\Noel\Downloads\HijackThis.exe CustomCLSID: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Noel\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => Geen bestand CustomCLSID: HKU\S-1-5-21-3017281716-3315283871-3821877557-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Noel\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll => Geen bestand ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Geen bestand ShortcutWithArgument: C:\Users\Noel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d7a253f58d8885b1\Adblock Plus.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=cfhdojbkjhnklbpkdaibdccddilifddb AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [252] EmptyTemp: Reboot: end *****************Herstelpunt is succesvol gemaakt.C:\Windows\system32\GroupPolicy\Machine => is succesvol verplaatstC:\Windows\system32\GroupPolicy\GPT.ini => is succesvol verplaatstC:\Windows\SysWOW64\GroupPolicy\GPT.ini => is succesvol verplaatst"HKU\S-1-5-21-3017281716-3315283871-3821877557-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => is succesvol verwijderdHKLM\Software\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => niet gevonden"HKLM\System\CurrentControlSet\Services\AppMgmt" => is succesvol verwijderdAppMgmt => dienst is succesvol verwijderd"HKLM\System\CurrentControlSet\Services\pccsmcfd" => is succesvol verwijderdpccsmcfd => dienst is succesvol verwijderdC:\Users\Noel\Downloads\HijackThis.exe => is succesvol verplaatstHKU\S-1-5-21-3017281716-3315283871-3821877557-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4} => niet gevondenHKU\S-1-5-21-3017281716-3315283871-3821877557-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5} => niet gevonden"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg" => is succesvol verwijderdHKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => niet gevondenC:\Users\Noel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d7a253f58d8885b1\Adblock Plus.lnk => snelkoppeling argument is succesvol verwijderdC:\ProgramData\TEMP => ":5C321E34" ADS is succesvol verwijderd=========== EmptyTemp: ==========BITS transfer queue => 8388608 BDOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11956191 BJava, Flash, Steam htmlcache => 564 BWindows/system/drivers => 26178 BEdge => 0 BChrome => 258105211 BFirefox => 16827975 BOpera => 217088 BTemp, IE cache, history, cookies, recent:Users => 0 BDefault => 0 BPublic => 0 BProgramData => 0 Bsystemprofile => 83486 Bsystemprofile32 => 66660 BLocalService => 0 BNetworkService => 0 BNoel => 38544416 BGast => 0 BRecycleBin => 22517 BEmptyTemp: => 318.8 MB tijdelijke gegevens verwijderd.================================Het systeem moest herstart worden.==== Eind van Fixlog 10:36:59 ====
Er gaat meer boven mijn pet, dan er onder !

Laptop ACER ASPIRE A517-51-S58YI
MS Windows 10 64 Bit SP1 Intelcore i5-CPU @ 1.60 GHz, 8,0 GB RAM
Intel uhd Graphics 620
Firefox- Thunderbird- Norton 360