Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 31-07-2019 Gestart door Suzanne (Beheerder) op SUZANNE-HP (Hewlett-Packard G5220nl) (01-08-2019 09:07:10) Gestart vanaf C:\Users\Stan\Desktop Geladen Profielen: Suzanne & Yvonne & Stan & Film (Beschikbare Profielen: Suzanne & Yvonne & Stan & Film) Platform: Windows 7 Home Premium Service Pack 1 (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: IE) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (AVG Netherlands B.V. -> ) C:\Program Files (x86)\AVG Web TuneUp\vprot.exe (AVG Netherlands B.V. -> ) C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe (AVG Netherlands B.V. -> AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (Easybits AS -> Easybits) C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe (EasyBits Software AS -> EasyBits Software AS) [Bestand niet getekend] C:\Windows\SysWOW64\ezSharedSvcHost.exe (ESET, spol. s r.o. -> ESET spol. s r.o.) C:\Users\Stan\Downloads\esetonlinescanner_nld.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Hewlett-Packard Company -> ) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe (Hewlett-Packard Company) [Bestand niet getekend] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe (IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportHelper.exe (IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe (IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe (Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe (Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard Company -> Hewlett-Packard) HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [568888 2010-01-18] (Hewlett-Packard Company -> ) HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316848 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [HP Software Update] => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-02] (Symantec Corporation -> Symantec Corporation) HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2010-04-25] (EasyBits Software AS -> EasyBits Software AS) [Bestand niet getekend] HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.) [Bestand niet getekend] HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160 2011-03-07] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [Reader Application Helper] => C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [899400 2014-10-24] (Sony Corporation -> Sony Corporation) HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2195968 2018-05-16] (AVG Netherlands B.V. -> ) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Magic Desktop for HP notification] => C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1444880 2015-11-13] (Easybits AS -> Easybits) HKLM-x32\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [3029480 2018-05-09] (Sony Imaging Products & Solutions Inc. -> Sony Corporation) HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrictie <==== AANDACHT HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\...\Run: [HPAdvisorDock] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [1715768 2010-09-28] (Hewlett-Packard Company -> Hewlett-Packard) HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\...\MountPoints2: {a6a4ced6-803d-11e7-b137-d485640e299b} - G:\HiSuiteDownLoader.exe HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\...\MountPoints2: {e8b7b86f-3306-11e7-99d6-d485640e299b} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.) [Bestand niet getekend] HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\...\MountPoints2: F - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\...\MountPoints2: {4ff855f7-a1a7-11e9-a113-d485640e299b} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\...\Run: [HPAdvisorDock] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [1715768 2010-09-28] (Hewlett-Packard Company -> Hewlett-Packard) HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\...\Run: [MsnMsgr] => "C:\Program Files (x86)\MSN Messenger\MsnMsgr.Exe" /background HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\...\MountPoints2: F - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\...\MountPoints2: {a6a4ced6-803d-11e7-b137-d485640e299b} - G:\HiSuiteDownLoader.exe HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\...\MountPoints2: {e8b7b86f-3306-11e7-99d6-d485640e299b} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-3971713592-1351660432-2463975954-1005\...\Run: [HPAdvisorDock] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe [1715768 2010-09-28] (Hewlett-Packard Company -> Hewlett-Packard) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [176416 2012-01-18] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [307488 2012-01-18] (Logitech, Inc. -> Logitech Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.142\Installer\chrmstp.exe [2019-07-26] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {17D22FE6-5884-4E5F-BB17-094B1DB45D1B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [7255608 2011-09-09] (Hewlett-Packard Company -> Hewlett-Packard Company) Task: {19F631E6-210F-48AE-BE48-F59BACA50A64} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {1B601495-D015-4B9E-83CC-A1BF31DC1F53} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {3E0C88F9-18E4-42C9-87CB-A63851260D14} - System32\Tasks\ServicePlan => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-05-25] (Hewlett-Packard Company -> ) Task: {47D67645-6D46-4E96-A6BF-01B686B71BAC} - System32\Tasks\0215avUpdateInfo => C:\ProgramData\Avg_Update_0215av\0215av_AVG-Secure-Search-Update.exe [2794520 2015-02-17] (AVG Technologies -> ) Task: {4AD52771-7343-4B44-B788-63C77A66FD4C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [17976 2011-03-22] (Hewlett-Packard Company -> Hewlett-Packard Company) Task: {4EEF86A6-8B2B-4B5B-AACB-D1A8F464F0A9} - System32\Tasks\1015tbUpdateInfo => C:\ProgramData\Avg_Update_1015tb\1015tb_{4C5D4F1A-C315-49B3-A974-0D4C5813CDCF}.exe [2779024 2015-10-28] (AVG Technologies CZ, s.r.o. -> ) Task: {51F7BBA2-C9EE-420A-903E-AC7B8FD435E2} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2079152 2019-07-30] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) Task: {53BA0FCF-2340-400C-8039-53AE4C2954AF} - System32\Tasks\0814avUpdateInfo => C:\ProgramData\Avg_Update_0814av\0814av_AVG-Secure-Search-Update.exe [2775576 2014-08-12] (AVG Technologies -> ) Task: {602A815F-DDCA-41A1-98CF-DC69DC67D154} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe [739200 2011-12-15] (Hewlett-Packard Company -> Hewlett-Packard) Task: {680ED191-74FB-4D31-873D-CCDD26147F20} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [1234000 2013-01-17] (AVG Technologies -> ) Task: {68774ACC-1700-479D-ACC7-6AB0071050E3} - System32\Tasks\1215tbUpdateInfo => C:\ProgramData\Avg_Update_1215tb\1215tb_{AF2AC3D7-BAB9-4CCA-9A55-0FDD9CC357E9}.exe [2784656 2015-12-05] (AVG Technologies CZ, s.r.o. -> ) Task: {6A1890C6-21AF-4C6C-826D-75114ABA1340} - System32\Tasks\{A45FFB94-5D5E-49C3-95EB-418D644BE651} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=5.3.0.120.259&LastError=404 Task: {6C796D8E-E749-4C7D-8FCE-4A4AD703A8FE} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3987888 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) Task: {9558A09A-2EE7-406E-A164-CEE33FB3AAC7} - System32\Tasks\0915tbUpdateInfo => C:\ProgramData\Avg_Update_0915tb\0915tb_{BD9125AD-5EBE-45F0-B6A6-9D3203E3CF2E}.exe [2561936 2015-09-26] (AVG Technologies CZ, s.r.o. -> ) Task: {B1B78941-1F6C-480E-8F5D-AFE6D4A081FB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [12344 2012-12-17] (Hewlett-Packard Company -> Microsoft) Task: {BD05FA9D-AA2B-4EB1-97F9-CD5544811240} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-26] (Adobe Inc. -> Adobe) Task: {CDF2D874-C898-4A10-85B4-4D1D3764B6F6} - System32\Tasks\{52EA63AD-D6BE-4F7F-B0B1-87D82B62AC0E} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/5.3.0.120.259/nl/abandoninstall?source=lightinstaller&page=tsProblems&LastError=404&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;systemlevelpresent Task: {D517A06C-3E86-49FD-B554-C25F6D1460B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe [729656 2011-09-09] (Hewlett-Packard Company -> Hewlett-Packard Company) Task: {D8159B60-7AC9-4943-BE92-EE1BA3939C52} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-05] (Google Inc -> Google Inc.) Task: {DEDD4306-3A63-4269-BDB1-E420FB975D8E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561952 2009-10-22] (Apple Inc. -> Apple Inc.) Task: {E15433EE-40EA-4017-9E87-5F531DAEB3A9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-05] (Google Inc -> Google Inc.) Task: {E1E931EA-5742-4E1B-8DDB-E99CECF0012A} - System32\Tasks\{7F1D7B6F-74ED-48AE-89B8-DF53846AE8BD} => E:\daemon410-x86.exe Task: {E48F8820-FFDF-4D9F-A4A0-D648388454D0} - System32\Tasks\{7668BA8D-2D60-4344-BC67-8C7527BE9A47} => C:\Windows\system32\pcalua.exe -a E:\daemon410-x86.exe -d E:\ Task: {F0D17228-75F8-446F-BC73-5A1C61698AEC} - System32\Tasks\{ACB910FC-9C4C-4AAF-A012-9F467D229061} => E:\daemon410-x86.exe (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\Windows\Tasks\0215avUpdateInfo.job => C:\ProgramData\Avg_Update_0215av\0215av_AVG-Secure-Search-Update.exe Task: C:\Windows\Tasks\0814avUpdateInfo.job => C:\ProgramData\Avg_Update_0814av\0814av_AVG-Secure-Search-Update.exe Task: C:\Windows\Tasks\0915tbUpdateInfo.job => C:\ProgramData\Avg_Update_0915tb\0915tb_{BD9125AD-5EBE-45F0-B6A6-9D3203E3CF2E}.exe Task: C:\Windows\Tasks\1015tbUpdateInfo.job => C:\ProgramData\Avg_Update_1015tb\1015tb_{4C5D4F1A-C315-49B3-A974-0D4C5813CDCF}.exe Task: C:\Windows\Tasks\1215tbUpdateInfo.job => C:\ProgramData\Avg_Update_1215tb\1215tb_{AF2AC3D7-BAB9-4CCA-9A55-0FDD9CC357E9}.exe Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.) Tcpip\Parameters: [DhcpNameServer] 84.116.46.20 84.116.46.21 Tcpip\..\Interfaces\{A05CB437-0269-4A34-B57E-16990351E795}: [DhcpNameServer] 84.116.46.20 84.116.46.21 Internet Explorer: ================== HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0816tb2&pr=fr&d=2015-06-21 18:54:12&v=4.3.4.122&pid=wtu&sg=&sap=hp HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON/8 HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0615av&pr=fr&d=2015-06-21 18:54:12&v=4.1.0.411&pid=wtu&sg=&sap=hp HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON/8 HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0916tb&pr=fr&d=2015-06-21 18:54:12&v=4.3.5.160&pid=wtu&sg=&sap=hp HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON/8 HKU\S-1-5-21-3971713592-1351660432-2463975954-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON/8 HKU\S-1-5-21-3971713592-1351660432-2463975954-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON/8 URLSearchHook: HKU\S-1-5-21-3971713592-1351660432-2463975954-1000 - (Geen Naam) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - Geen bestand URLSearchHook: HKU\S-1-5-21-3971713592-1351660432-2463975954-1004 - (Geen Naam) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - Geen bestand SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {93FD0C0D-E16B-46B7-A19D-81EA52F4D7F1} URL = hxxp://nl.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM -> {A0130500-37B6-49D3-A06C-E38C60396013} URL = hxxp://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF SearchScopes: HKLM -> {F142EBCE-5313-4FD1-BEE1-AEEC03721019} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {93FD0C0D-E16B-46B7-A19D-81EA52F4D7F1} URL = hxxp://nl.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM-x32 -> {A0130500-37B6-49D3-A06C-E38C60396013} URL = hxxp://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF SearchScopes: HKLM-x32 -> {F142EBCE-5313-4FD1-BEE1-AEEC03721019} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0816tb2&pr=fr&d=2015-06-21 18:54:12&v=4.3.4.122&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1000 -> {19C54F47-2A80-4CDB-B3F9-4A67C13490CA} URL = hxxp://www.google.co.uk/search?hl=en&q={searchTerms}&meta= SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1000 -> {93FD0C0D-E16B-46B7-A19D-81EA52F4D7F1} URL = hxxp://nl.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0816tb2&pr=fr&d=2015-06-21 18:54:12&v=4.3.4.122&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1000 -> {A0130500-37B6-49D3-A06C-E38C60396013} URL = hxxp://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1000 -> {F142EBCE-5313-4FD1-BEE1-AEEC03721019} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1003 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=1216tb&pr=fr&d=2015-06-21 18:54:12&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1003 -> {757EE3D2-487B-4A12-A462-E4B67A0DD293} URL = hxxp://search.yahoo.com/search?fr=mcafee&p={SearchTerms} SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1003 -> {93FD0C0D-E16B-46B7-A19D-81EA52F4D7F1} URL = SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1003 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=1216tb&pr=fr&d=2015-06-21 18:54:12&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1004 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0916tb&pr=fr&d=2015-06-21 18:54:12&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1004 -> {62452944-07E6-4319-AB6F-0A9EEDAD5614} URL = hxxp://search.yahoo.com/search?fr=mcafee&p={SearchTerms} SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1004 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1004 -> {93FD0C0D-E16B-46B7-A19D-81EA52F4D7F1} URL = SearchScopes: HKU\S-1-5-21-3971713592-1351660432-2463975954-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={84213AA9-0C8A-495D-9CEE-F1FBD85E131A}&mid=8ebdc1dd44c047d0b85605cc22eac068-a00037c9d6146b9181394447c9a7b4b31038a055&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0916tb&pr=fr&d=2015-06-21 18:54:12&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms} BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL => Geen bestand BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120627205242.dll => Geen bestand BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-07-27] (Google Inc -> Google Inc.) BHO-x32: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\progra~1\mcafee\msk\mskapbho.dll => Geen bestand BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120627205242.dll => Geen bestand BHO-x32: Aanmeldhulp voor Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.) BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-05-16] (AVG Netherlands B.V. -> AVG) BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-07-27] (Google Inc -> Google Inc.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-07-27] (Google Inc -> Google Inc.) Toolbar: HKLM-x32 - MSN Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files (x86)\MSN Toolbar\01.01.2607.0\nl\msntb.dll [2005-02-07] (Microsoft Corporation MSN -> Microsoft Corporation) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2019-07-27] (Google Inc -> Google Inc.) Toolbar: HKU\S-1-5-21-3971713592-1351660432-2463975954-1000 -> Geen Naam - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Geen bestand Toolbar: HKU\S-1-5-21-3971713592-1351660432-2463975954-1003 -> Geen Naam - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Geen bestand Toolbar: HKU\S-1-5-21-3971713592-1351660432-2463975954-1003 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2019-07-27] (Google Inc -> Google Inc.) Toolbar: HKU\S-1-5-21-3971713592-1351660432-2463975954-1004 -> Geen Naam - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Geen bestand DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies) FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore => niet gevonden FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => niet gevonden FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2011-03-06] (Apple Inc. -> ) FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [Geen bestand] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @rim.com/npappworld -> C:\Program Files (x86)\Research In Motion Limited\BlackBerry App World Browser Plugin\npappworld.dll [2011-01-19] (Research In Motion -> ) FF Plugin-x32: @sony.com/ReaderDesktop -> C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll [2014-10-24] (Sony Corporation -> Sony Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-20] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-20] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> mysearch.avg.com CHR StartupUrls: Default -> "hxxp://www.google.com" CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms} CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1 CHR Profile: C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default [2019-08-01] CHR Extension: (Documenten) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-23] CHR Extension: (Google Drive) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-29] CHR Extension: (IBM Security Rapport) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2019-07-26] CHR Extension: (YouTube) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-29] CHR Extension: (AVG Secure Search) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2018-08-09] CHR Extension: (Google Search) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-29] CHR Extension: (Offline Documenten) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-19] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-09] CHR Extension: (Gmail) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-26] CHR Extension: (Chrome Media Router) - C:\Users\Stan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-26] CHR HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3971713592-1351660432-2463975954-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3971713592-1351660432-2463975954-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3971713592-1351660432-2463975954-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [415032 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6845400 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS -> EasyBits Software AS) [Bestand niet getekend] R2 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-05-19] (Hewlett-Packard Company) [Bestand niet getekend] R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation -> Symantec Corporation) R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [498152 2018-05-09] (Sony Imaging Products & Solutions Inc. -> Sony Corporation) R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [5274560 2019-04-15] (IBM -> IBM Corp.) S3 Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2014-04-25] (Sony Corporation) [Bestand niet getekend] R2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1371136 2018-05-16] (AVG Netherlands B.V. -> AVG Secure Search) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [811520 2018-05-16] (AVG Netherlands B.V. -> ) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 androidusb; C:\Windows\System32\Drivers\ssadadb.sys [36328 2011-05-13] (MCCI Internal Testing Software -> Google Inc) R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [37368 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [209304 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [263784 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [206624 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [61736 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42552 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [168944 2019-07-31] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [112568 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [88208 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1030832 2019-07-31] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [477336 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [225864 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [387952 2019-07-26] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [503000 2019-04-15] (IBM -> IBM Corp.) R1 RapportCerberus_1930415; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1930415.sys [1659544 2019-06-30] (IBM -> IBM Corp.) R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [727000 2019-04-15] (IBM -> IBM Corp.) R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [461768 2018-12-26] (IBM -> IBM Corp.) S3 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [610648 2019-04-15] (IBM -> IBM Corp.) R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [766616 2019-04-15] (IBM -> IBM Corp.) S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2011-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [51712 2011-02-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een maand (aangemaakt) ======== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-08-01 09:07 - 2019-08-01 09:09 - 000043388 _____ C:\Users\Stan\Desktop\FRST.txt 2019-08-01 09:05 - 2019-08-01 09:07 - 000000000 ____D C:\FRST 2019-08-01 09:03 - 2019-08-01 09:04 - 002096128 _____ (Farbar) C:\Users\Stan\Desktop\FRST64.exe 2019-07-31 15:37 - 2019-07-31 15:37 - 007987736 _____ (ESET spol. s r.o.) C:\Users\Stan\Downloads\esetonlinescanner_nld (2).exe 2019-07-31 15:37 - 2019-07-31 15:37 - 000001122 _____ C:\Users\Suzanne\Desktop\ESET Online Scanner.lnk 2019-07-31 15:36 - 2019-07-31 15:36 - 007987736 _____ (ESET spol. s r.o.) C:\Users\Stan\Downloads\esetonlinescanner_nld (1).exe 2019-07-31 15:36 - 2019-07-31 15:36 - 000000000 ____D C:\Users\Stan\AppData\Local\ESET 2019-07-31 15:35 - 2019-07-31 15:35 - 007987736 _____ (ESET spol. s r.o.) C:\Users\Stan\Downloads\esetonlinescanner_nld.exe 2019-07-30 22:49 - 2019-07-30 22:49 - 000034550 _____ C:\Users\Stan\Desktop\1. Sollicitatieformulier Valencia startdatum contract versie 1.2.xlsx 2019-07-30 22:40 - 2019-07-30 22:40 - 001054979 _____ C:\Users\Stan\Downloads\Uitnodiging_indiensttredingssessie_Cendris_Valencia.zip 2019-07-30 22:40 - 2019-07-30 22:40 - 000034672 _____ C:\Users\Stan\Downloads\1. Sollicitatieformulier Valencia startdatum contract versie 1.2.xlsx 2019-07-27 13:49 - 2019-07-27 13:49 - 000000002 _____ C:\runcheck.txt 2019-07-27 13:49 - 2019-07-27 13:49 - 000000000 ____D C:\zoek_backup 2019-07-27 13:48 - 2019-07-27 13:48 - 002038755 _____ C:\Users\Suzanne\Desktop\zoek.exe 2019-07-27 13:34 - 2019-07-27 13:34 - 001222144 _____ C:\Users\Suzanne\Downloads\RSITx64 (1).exe 2019-07-27 13:31 - 2019-07-27 13:34 - 000000000 ____D C:\Program Files\trend micro 2019-07-27 13:31 - 2019-07-27 13:32 - 000000000 ____D C:\rsit 2019-07-27 13:29 - 2019-07-27 13:30 - 001222144 _____ C:\Users\Suzanne\Downloads\RSITx64.exe 2019-07-26 23:38 - 2019-07-31 15:09 - 000168944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2019-07-26 23:38 - 2019-07-26 23:38 - 000363440 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2019-07-26 23:38 - 2019-07-26 23:38 - 000225864 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2019-07-08 15:56 - 2019-07-08 15:56 - 000000000 ____D C:\Users\Yvonne\AppData\Local\{C5B1B529-170D-42BA-995A-E5FF333FAAED} ==================== Een maand (gewijzigd) ======== (Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.) 2019-08-01 09:00 - 2009-07-14 06:45 - 000018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-08-01 09:00 - 2009-07-14 06:45 - 000018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-07-31 15:09 - 2017-03-19 19:27 - 001030832 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2019-07-31 15:04 - 2017-03-19 19:29 - 000004174 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update 2019-07-31 15:00 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-07-27 13:32 - 2010-09-28 11:01 - 000746216 _____ C:\Windows\system32\perfh013.dat 2019-07-27 13:32 - 2010-09-28 11:01 - 000153910 _____ C:\Windows\system32\perfc013.dat 2019-07-27 13:32 - 2009-07-14 07:13 - 001672576 _____ C:\Windows\system32\PerfStringBackup.INI 2019-07-27 13:32 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2019-07-27 12:50 - 2012-06-10 00:02 - 000000000 ____D C:\Program Files\Google 2019-07-27 12:50 - 2012-06-10 00:01 - 000000000 ____D C:\ProgramData\Google 2019-07-27 12:50 - 2012-06-10 00:01 - 000000000 ____D C:\Program Files (x86)\Google 2019-07-26 23:49 - 2012-07-25 19:53 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-07-26 23:49 - 2012-07-25 19:53 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-07-26 23:40 - 2017-03-19 19:27 - 000387952 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2019-07-26 23:38 - 2018-11-08 21:49 - 000042552 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys 2019-07-26 23:38 - 2017-03-19 19:27 - 000477336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2019-07-26 23:38 - 2017-03-19 19:27 - 000112568 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2019-07-26 23:38 - 2017-03-19 19:27 - 000088208 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2019-07-26 23:38 - 2012-07-28 17:51 - 000004422 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2019-07-26 23:38 - 2012-07-28 17:50 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2019-07-26 23:38 - 2012-07-28 17:50 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2019-07-26 23:38 - 2012-07-28 17:50 - 000000000 ____D C:\Windows\system32\Macromed 2019-07-26 23:38 - 2010-09-28 10:27 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2019-07-26 23:37 - 2019-01-28 17:25 - 000263784 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys 2019-07-26 23:37 - 2019-01-28 17:25 - 000206624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys 2019-07-26 23:37 - 2019-01-28 17:25 - 000061736 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys 2019-07-26 23:37 - 2019-01-28 17:25 - 000037368 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys 2019-07-26 23:37 - 2017-12-01 11:15 - 000209304 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2019-07-08 19:44 - 2011-11-19 14:10 - 000003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{56999980-6A12-40AF-90ED-BD7BB8F96303} 2019-07-08 19:40 - 2011-05-09 18:11 - 000000000 ____D C:\Users\Yvonne\Tracing ==================== SigCheck =============================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) LastRegBack: 2019-05-20 14:52 ==================== Einde van FRST.txt ============================