start CreateRestorePoint: SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2783820017-1398722663-3402014084-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=100474&mntrId=b8f7c6d2000000000000c0cb382bb8a5 SearchScopes: HKU\S-1-5-21-2783820017-1398722663-3402014084-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={3CE46D66-F36D-4D3A-B08B-37313CA11B77}&mid=e72b0f87b60247cca7fb2e66226325d6-bf7b1d4d014210a6aead229d2d8f53d842d6faee&lang=en&ds=AVG&coid=avgtbavg&cmpid=0616tb&pr=fr&d=2015-10-31 19:55:58&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms} BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Geen bestand BHO-x32: Geen Naam -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Geen bestand Toolbar: HKU\S-1-5-21-2783820017-1398722663-3402014084-1000 -> Geen Naam - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Geen bestand Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL Geen bestand Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL Geen bestand Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - Geen bestand FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand] FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be => niet gevonden FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand] CHR DefaultSearchKeyword: Default -> mcafee CHR Extension: (AVG Secure Search) - C:\Users\carol\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2017-03-01] CHR Extension: (DealPly) - C:\Users\carol\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje [2014-10-13] CHR Extension: (AVG SafePrice) - C:\Users\carol\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2016-12-19] CHR HKU\S-1-5-21-2783820017-1398722663-3402014084-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files (x86)\DealPly\DealPly.crx [2011-08-14] CHR HKLM-x32\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files (x86)\DealPly\DealPly.crx [2011-08-14] 2017-04-07 17:35 - 2015-10-31 20:48 - 00000000 ____D C:\ProgramData\Avg 2017-04-07 17:35 - 2015-10-31 20:48 - 00000000 ____D C:\Program Files (x86)\AVG 2010-10-05 16:16 - 2010-10-05 16:16 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log 2010-08-02 13:54 - 2010-08-02 13:55 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2010-10-05 16:15 - 2010-10-05 16:15 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log 2010-08-02 13:50 - 2010-08-02 13:51 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2010-10-05 16:15 - 2010-10-05 16:15 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log 2010-10-05 16:15 - 2010-10-05 16:15 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log 2010-08-02 13:50 - 2010-08-02 13:50 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2010-08-02 13:51 - 2010-08-02 13:54 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log 2010-10-05 16:16 - 2010-10-05 16:16 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log Task: {F912390D-5B74-4BBA-8967-F49A6E44D724} - System32\Tasks\1015tbUpdateInfo => C:\ProgramData\Avg_Update_1015tb\1015tb_{5DED2F54-8D1F-485C-AD49-E27C01AF4F35}.exe [2015-11-09] () C:\ProgramData\Avg_Update_1015tb Task: C:\Windows\Tasks\1015tbUpdateInfo.job => C:\ProgramData\Avg_Update_1015tb\1015tb_{5DED2F54-8D1F-485C-AD49-E27C01AF4F35}.exe FirewallRules: [{30069A3F-969D-4D3C-A1BF-379BFCBFC979}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{9529C843-44F1-41F5-BFC5-BE28BE03FB72}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe C:\Program Files\Common Files\McAfee FirewallRules: [{7D9445CC-2A53-4ABC-A261-7A00CAB4EC00}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{59B8C933-58A3-4A19-AEAD-F38D59C5363F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{3858C1E4-FD58-4EBA-B3F2-7BA261C35DE0}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{CFCA8EFA-AD7E-4D1D-973C-E9BF28E6474A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{CC22F2BB-DD71-443E-B6C8-D3ED534FC724}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{36748BDA-6B82-4ABB-BED3-BBBC8A00919B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{DD6F2900-C5D8-4D7D-B8DC-343C5643BD63}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{1C1A863D-89D4-43DF-9CBC-A9F654BE2F8D}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe C:\Program Files (x86)\AVG EmptyTemp: end