Start:: CreateRestorePoint: CloseProcesses: HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT Task: {0C24B438-A4FC-4D38-AAE1-6D8F625FE1A2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Geen bestand) Task: {11997A7F-B99F-41D0-9B96-2DB2416B7D49} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Geen bestand) Task: {217C8E80-D814-4FA6-AED6-39CFC624FD5C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Geen bestand) Task: {233F8F89-5B8F-4F72-9497-54D39FA74A5F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Geen bestand) Task: {4CEC39CC-5380-4D30-B7D1-554A0CB30738} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Geen bestand) Task: {71D87F88-065B-4CCC-BF5A-6F16A4EFBE39} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Geen bestand) Task: {7CD5A1A3-B7E2-4843-B755-EAF168749D9F} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Geen bestand) Task: {7F4A89D7-3008-469F-9DAE-47890B5816B1} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Geen bestand) Task: {922A8E81-275F-42EE-8D48-262687368315} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Geen bestand) Task: {9919FCF2-06DD-4119-AE47-38CFEB9707C3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (Geen bestand) Task: {994B437B-FFC1-4130-A73C-4F51D9A30EDA} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Geen bestand) Task: {A0A3E00E-B576-4326-B12F-EA064269F7DA} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Geen bestand) Task: {AFB782CC-F3F7-4ABA-9035-5450D47D61BD} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Geen bestand) Task: {B41CF096-AC91-4C95-93FF-FFBDB0115B02} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Geen bestand) Task: {C1C09738-B44E-492F-830D-E467C39C1C96} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Geen bestand) Task: {C91F9446-AEA2-4ECE-9469-D561198ED8A6} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Geen bestand) Task: {CFBCF70B-365D-4DA0-82A2-52AFFD893329} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Geen bestand) Task: {D2EA2292-1FCE-41A5-B575-63B61926A829} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Geen bestand) Task: {D6D19D3F-5BE8-4FE4-AF70-DDBCEE437B47} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Geen bestand) Task: {D6F31052-05F5-4955-B269-D187F626EB7A} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Geen bestand) Task: {E7E73A55-C9C2-4615-9D64-F0D4ACA32127} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Geen bestand) Task: {E9A53AD5-9D41-46C3-BCD9-5BAAECB3BF3D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Geen bestand) Task: {EFDBE1A2-3BFC-4EB9-B91A-DCB73E5018EA} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Geen bestand) U3 idsvc; geen ImagePath 2021-11-16 20:04 - 2018-05-19 17:47 - 000000000 ____D C:\Users\Richard\AppData\Local\AVG 2021-11-16 20:04 - 2015-10-24 08:02 - 000000000 ____D C:\Users\Richard\AppData\Roaming\AVG 2021-11-16 20:04 - 2015-10-24 08:00 - 000000000 ____D C:\ProgramData\Avg AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1188.1 - AVG Technologies) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand HKU\S-1-5-21-290964387-4162526659-560491130-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid=%7BBD61989A-A754-4CBF-B8A8-0DC4317DDA94%7D&mid=40faaaf28ddf47ccb383d16c2263183e-ae9253913e94ec8fb2222c10c16ef8393cea85e8&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-12-10%2000:13:16&v=4.1.8.599&pid=wtu&sg=&sap=hp SearchScopes: HKU\S-1-5-21-290964387-4162526659-560491130-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={BD61989A-A754-4CBF-B8A8-0DC4317DDA94}&mid=40faaaf28ddf47ccb383d16c2263183e-ae9253913e94ec8fb2222c10c16ef8393cea85e8&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-12-10 00:13:16&v=4.3.2.18&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-290964387-4162526659-560491130-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={BD61989A-A754-4CBF-B8A8-0DC4317DDA94}&mid=40faaaf28ddf47ccb383d16c2263183e-ae9253913e94ec8fb2222c10c16ef8393cea85e8&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-12-10 00:13:16&v=4.3.2.18&pid=wtu&sg=&sap=dsp&q={searchTerms} FirewallRules: [{783D6DC8-39A8-422B-8F9E-5BC4AAA33FFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => Geen bestand FirewallRules: [{140F1F3E-0F31-4949-AAD4-250ED3FBF0B9}] => (Allow) BiglyBT.exe => Geen bestand EmptyTemp: Reboot: End::