start CreateRestorePoint: CustomCLSID: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-CB8071E7B56D}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Geen bestand ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand Task: {07DA5781-0A90-4DC3-96FF-6D1D97953EDC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {1FBEBE30-8BCA-4736-9B10-B35B0C285F2F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {256F0520-0F8E-41D0-98B2-FBF824DE56E7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {338F857B-7364-496D-BBF8-E4D71A35ADF0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Geen bestand <==== AANDACHT Task: {41D21D73-3978-491B-A550-596C1988ABB2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Geen bestand <==== AANDACHT Task: {44FF7859-3CF5-4F6C-AF03-66033FFD94F6} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {5E4F048F-6892-41B5-84C0-C118AF0F7B6A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {6299ABCD-906F-4EAF-A341-92AD8AB77920} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Geen bestand <==== AANDACHT Task: {905C8E74-C787-458B-B5F9-EEECBD721004} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {DC6DA2F1-7F60-4534-8D1F-9F0C153F8CF5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {E6E98E8C-717F-49C2-9FEE-2E3A5C45DFD3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {EEB68C39-F171-4B71-B8CD-E431D51F59C7} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {F3138436-92BA-4EC8-A22F-6DC3143A3153} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {F7D46BF7-76AA-4F10-9F82-61EC65B991EE} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2187336 2018-01-01] () C:\Program Files (x86)\AVG Web TuneUp HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== AANDACHT AppInit_DLLs: C:\Users\RandySp\AppData\Local\Linkey\IEEXTE~1\ietlb64.dll => Geen bestand C:\Users\RandySp\AppData\Local\Linkey HKU\S-1-5-21-3669440298-1739476700-4279047772-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={74E364B4-6EA7-437E-8EFB-770ED5C39CCA}&mid=2a3434df97a847cda1d4f123cc453b03-410a3ec7067767130d2365249ca7063547e63aab&lang=nl&ds=AVG&coid=avgtbavg&cmpid=1215av&pr=fr&d=2015-12-16 18:42:09&v=4.3.1.831&pid=wtu&sg=&sap=hp SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=135&itype=n&ver=14733&tm=599&src=ds&p={searchTerms} SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=135&itype=n&ver=14733&tm=599&src=ds&p={searchTerms} SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={74E364B4-6EA7-437E-8EFB-770ED5C39CCA}&mid=2a3434df97a847cda1d4f123cc453b03-410a3ec7067767130d2365249ca7063547e63aab&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0116tb&pr=fr&d=2015-12-16 18:42:09&v=4.3.5.160&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001 -> {1455B036-6059-4B8E-9009-8E1C9C3806D2} URL = SearchScopes: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={74E364B4-6EA7-437E-8EFB-770ED5C39CCA}&mid=2a3434df97a847cda1d4f123cc453b03-410a3ec7067767130d2365249ca7063547e63aab&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0116tb&pr=fr&d=2015-12-16 18:42:09&v=4.3.5.160&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=135&itype=n&ver=14733&tm=599&src=ds&p={searchTerms} Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - Geen bestand Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Geen bestand FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi => niet gevonden FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [Geen bestand] CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3315513&octid=EB_ORIGINAL_CTID&ISID=M70FD57DF-42AE-4EB5-8D69-F3605429836F&SearchSource=55&CUI=&UM=8&UP=SP04F97E98-A45F-477F-87BB-D8E8A7B3690A&SSPV= S2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1365064 2018-01-01] (AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search 2018-01-03 19:52 - 2018-01-03 19:52 - 083316440 _____ (Malwarebytes ) C:\Users\RandySp\Downloads\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374(1).exe 2017-12-22 20:46 - 2017-12-22 20:46 - 000000000 ____D C:\ProgramData\Avg_Update_1117tb_a51472 2018-01-01 17:39 - 2015-12-16 18:42 - 000000000 ____D C:\ProgramData\AVG Web TuneUp 2018-01-01 10:25 - 2015-12-16 18:42 - 000000000 ____D C:\Program Files (x86)\AVG Web TuneUp 2017-12-23 21:00 - 2015-12-16 18:42 - 000000000 ____D C:\Program Files\AVG Web TuneUp EmptyTemp: end