CreateRestorePoint: CloseProcesses: HKLM\...\Run: [] => [X] HKU\S-1-5-21-3673058761-2671674328-325965399-1001\...\Run: [] => [X] GroupPolicy: Restrictie ? <==== AANDACHT Policies: C:\ProgramData\NTUSER.pol: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT Task: {1CD0908B-C714-4828-9AB1-BAB80B5CBE09} - \69292938-2d26-4bd9-a091-99576ab8366a-5 -> Geen bestand <==== AANDACHT Task: {260C7C29-DEC5-4077-91F9-180DED97A5A2} - System32\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-1 => C:\Program Files (x86)\HD+V1.0\HD+V1.0-codedownloader.exe /kIIVLqHW /tKecMz=task /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /XbBmg=1.34.7.1 /KuMkLON=1406813495 /iZFOZn=http://stats.infodatacloud.com /vXUjcFcg=http://errors.infodatacloud.com /hLDwqp=http://js.infodatacloud.com /kHghnu=ch /wGoGYBjf='HD+V1.0' /UGqgUYxbb=http://js.clientdemocloud.com /GnZpg /XfnXBzOPm='{"asw":[0, 257, 0]}' /MvgmDMOkJ='http://update.infodatacloud.com/ie_code_agent_updates/{CAMP_ID}/update.json' /tKecMz='task' /EVlLdhJWr='' (Geen bestand) <==== AANDACHT Task: {2E06BDD1-19CA-4A2E-9DC8-7E5B18BCFE8C} - \69292938-2d26-4bd9-a091-99576ab8366a-4 -> Geen bestand <==== AANDACHT Task: {37BA08BF-85A6-44EC-AD63-32C3491791F1} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c (Geen bestand) Task: {50C99304-DC1A-4ECB-B1CC-628C8A700D3C} - \69292938-2d26-4bd9-a091-99576ab8366a-11 -> Geen bestand <==== AANDACHT Task: {544C0F38-8D6B-4A1E-98BB-EA42616F94C2} - System32\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-7 => C:\Program Files (x86)\HD+V1.0\HD+V1.0-nova.exe /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /XbBmg=1.34.7.1 /KuMkLON=1406813495 /iZFOZn=http://stats.infodatacloud.com /vXUjcFcg=http://errors.infodatacloud.com /hLDwqp=http://js.infodatacloud.com /kHghnu=ch /ZfYvHXLW /wGoGYBjf=HD+V1.0 /ZOooDl='nova' /UGqgUYxbb=http://js.clientdemocloud.com /XfnXBzOPm='{"asw":[0, 257, 0]}' /MvgmDMOkJ='http://update.infodatacloud.com/novarun/{CAMP_ID}/update.json' /tKecMz='task' /EVlLdhJWr='' (Geen bestand) <==== AANDACHT Task: {5C356362-FE7F-42DC-9907-8099D7FFA7FF} - System32\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-6 => C:\Program Files (x86)\HD+V1.0\HD+V1.0-novainstaller.exe /FqEjA /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /XbBmg=1.34.7.1 /KuMkLON=1406813495 /iZFOZn=http://stats.infodatacloud.com /vXUjcFcg=http://errors.infodatacloud.com /hLDwqp=http://js.infodatacloud.com /kHghnu=ch /ZfYvHXLW /wGoGYBjf=HD+V1.0 /ZOooDl='nova' /UGqgUYxbb=http://js.clientdemocloud.com /XfnXBzOPm='{"asw":[0, 257, 0]}' /tKecMz=task /MvgmDMOkJ='http://update.infodatacloud.com/novacode/{CAMP_ID}/update.json' /tKecMz='task' /EVlLdhJWr='' (Geen bestand) <==== AANDACHT Task: {88FEC7E8-64CF-4105-9F39-2E56AFDB6DBB} - System32\Tasks\fun4u_notification_service => C:\Program Files (x86)\fun4u\fun4u_notification_service.exe /url='http://cdn.selectbestopt.com/notf_sys/index.html' /crregname='fun4u' /appid='73143' /srcid='2913' /bic='eb470c325c0a470f9e1d9849d8fcef45' /verifier='f54ae3ae0b8af5e2e947cbf6b0444c73' /installerversion='1.50.3.10' /statsdomain='http://stats.buildomserv.com/data.gif?' /errorsdomain='http://stats.buildomserv.com/data.gif?' /monetizationdomain='http://logs.buildomserv.com/monetization.gif?' /installationtime='1429493764' /runfrom='task' /brwtype='notbg' /postponedhours='6' (Geen bestand) <==== AANDACHT Task: {B380BF43-C370-4D77-90B4-F967207D4F1C} - \69292938-2d26-4bd9-a091-99576ab8366a-5_user -> Geen bestand <==== AANDACHT Task: {B4455347-534D-4BCE-BFAF-1879A53094A8} - \69292938-2d26-4bd9-a091-99576ab8366a-3 -> Geen bestand <==== AANDACHT Task: {D8037B0E-0BDB-412E-9E8F-3E7F87FB4CFA} - System32\Tasks\fun4u_updating_service => C:\Program Files (x86)\fun4u\fun4u_updating_service.exe /campid=2913 /verid=1 /url=http://cdn.buildomserv.com/txt/@CAMPID@/@VER@/file.txt /appid=73143 /taskname=fun4u_updating_service /funurl=http://stats.buildomserv.com (Geen bestand) <==== AANDACHT Task: {DCBD8551-D6EB-4092-B562-50E66C8C5514} - System32\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-2 => C:\Program Files (x86)\HD+V1.0\69292938-2d26-4bd9-a091-99576ab8366a-2.exe /fFbNi /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /KuMkLON=1406813495 /iZFOZn=http://stats.infodatacloud.com /vXUjcFcg=http://errors.infodatacloud.com /XkkWOtAno=11111111-1111-1111-1111-110611091100 /kHghnu=ch /HHeaOMmw /GnZpg /MvgmDMOkJ='http://update.infodatacloud.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /tKecMz='task' /EVlLdhJWr='' (Geen bestand) <==== AANDACHT Task: {F39B2972-A60B-4D92-9376-DE4B10E4E92F} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler (Geen bestand) Task: {F4322AD8-B6C2-4724-A350-F2B0A39E879F} - \{AB3469D7-FF95-4A6B-97A9-A3C6D0B43B0D} -> Geen bestand <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-1.job => C:\Program Files (x86)\HD+V1.0\HD+V1.0-codedownloader.exeɊ/kIIVLqHW /tKecMz=task /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /XbBmg=1.34.7.1 /KuMkLON=1406813495 /iZFOZn=hxxp:/stats.infodatacloud.com /vXUjcFcg=hxxp:/errors.infodatacloud.com /hLDwqp=hxxp:/js.infodatacloud.com /kHghnu=ch /wGoGYBjf='HD+V1.0' /UGqgUYxbb=hxxp:/js.clientdemocloud.com /GnZpg /XfnXBzOPm='{asw:[0, 257, 0]}' /MvgmDMOkJ='hxxp:/update.infodatacloud.com/ie_code_agent_updates/{CAMP_ID}/update.jso <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-11.job => C:\Program Files (x86)\HD+V1.0\69292938-2d26-4bd9-a091-99576ab8366a-11.exe <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-2.job => C:\Program Files (x86)\HD+V1.0\69292938-2d26-4bd9-a091-99576ab8366a-2.exeǤ/fFbNi /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /KuMkLON=1406813495 /iZFOZn=hxxp:/stats.infodatacloud.com /vXUjcFcg=hxxp:/errors.infodatacloud.com /XkkWOtAno=11111111-1111-1111-1111-110611091100 /kHghnu=ch /HHeaOMmw /GnZpg /MvgmDMOkJ='hxxp:/update.infodatacloud.com/ie_enable_agent_updates/{CAMP_ID}/update.jso <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-3.job => C:\Program Files (x86)\HD+V1.0\69292938-2d26-4bd9-a091-99576ab8366a-3.exe <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-4.job => C:\Program Files (x86)\HD+V1.0\69292938-2d26-4bd9-a091-99576ab8366a-4.exeΏ/TfCOqXc /ncpnJnq='HD+V1.0' /ffwtJFsv C:\Program Files (x86)\HD+V1.0\69292938-2d26-4bd9-a091-99576ab8366a.xpi' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /XbBmg=1.34.7.1 /KuMkLON=1406813495 /iZFOZn=hxxp:/stats.infodatacloud.com /vXUjcFcg=hxxp:/errors.infodatacloud.com /rKXSOFGo=300 /ylkIKFjDi=0f606e47-2ee3-45cb-ad45-5585a3f1b12e@73359c31-a0c3-4085-b9a0-af433e9f9c18.com /yzMyF=0.95 /jncRILR=a0f606e472ee345cbad455585a3f1b12e73359c31a0c34085b9a0af433e9f9c18com60900 /myWfWc=hxxps:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/60900.rdf /jNPUShN='HD+V1.0' /XRYecd='Lights out for YouTube' /QzMBJtsAi='HDPlusPro' /kHghnu=ch /XfnXBzOPm='{asw:[0, 257, 0]}' /GnZpg /Yhlxtn /qFfXxGJV /MvgmDMOkJ='hxxp:/update.infodatacloud.com/ff_agent_updates/{CAMP_ID}/update.jso <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-5.job => C:\Program Files (x86)\HD+V1.0\69292938-2d26-4bd9-a091-99576ab8366a-5.exeȒ/SjaDPOq /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /KuMkLON=1406813495 /iZFOZn=hxxp:/stats.infodatacloud.com /vXUjcFcg=hxxp:/errors.infodatacloud.com /kDaYyJv=hxxp:/ipgeoapi.com/ /NanjpXLxM=hxxp:/update.infodatacloud.com /QCrsAC=2 /QTsANXJ=hxxp:/logs.infodatacloud.com /MvgmDMOkJ='hxxp:/update.infodatacloud.com/updater_agent_updates/{CAMP_ID}/update.jso <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-5_user.job => C:\Program Files (x86)\HD+V1.0\69292938-2d26-4bd9-a091-99576ab8366a-5.exeȜ/SjaDPOq /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /KuMkLON=1406813495 /iZFOZn=hxxp:/stats.infodatacloud.com /vXUjcFcg=hxxp:/errors.infodatacloud.com /kDaYyJv=hxxp:/ipgeoapi.com/ /NanjpXLxM=hxxp:/update.infodatacloud.com /QCrsAC=2 /QTsANXJ=hxxp:/logs.infodatacloud.com /MvgmDMOkJ='hxxp:/update.infodatacloud.com/updater_agent_updates/{CAMP_ID}/update.jso <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-6.job => C:\Program Files (x86)\HD+V1.0\HD+V1.0-novainstaller.exeɊ/FqEjA /ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /XbBmg=1.34.7.1 /KuMkLON=1406813495 /iZFOZn=hxxp:/stats.infodatacloud.com /vXUjcFcg=hxxp:/errors.infodatacloud.com /hLDwqp=hxxp:/js.infodatacloud.com /kHghnu=ch /ZfYvHXLW /wGoGYBjf=HD+V1.0 /ZOooDl='nova' /UGqgUYxbb=hxxp:/js.clientdemocloud.com /XfnXBzOPm='{asw:[0, 257, 0]}' /tKecMz=task /MvgmDMOkJ='hxxp:/update.infodatacloud.com/novacode/{CAMP_ID}/update.jso <==== AANDACHT Task: C:\Windows\Tasks\69292938-2d26-4bd9-a091-99576ab8366a-7.job => C:\Program Files (x86)\HD+V1.0\HD+V1.0-nova.exeȵ/ncpnJnq='HD+V1.0' /MEOxLfb=60900 /CWYhC='001847' /AaCEz='0' /czpuxQv='0' /PhvVlt=9BC4539E9FC64A369B9ACACF761E68F8IE /dbqJFyg=8752e8e23eda60bfea05a0f26cd9c5f0 /bpUvqNIA=1_34_07_01 /XbBmg=1.34.7.1 /KuMkLON=1406813495 /iZFOZn=hxxp:/stats.infodatacloud.com /vXUjcFcg=hxxp:/errors.infodatacloud.com /hLDwqp=hxxp:/js.infodatacloud.com /kHghnu=ch /ZfYvHXLW /wGoGYBjf=HD+V1.0 /ZOooDl='nova' /UGqgUYxbb=hxxp:/js.clientdemocloud.com /XfnXBzOPm='{asw:[0, 257, 0]}' /MvgmDMOkJ='hxxp:/update.infodatacloud.com/novarun/{CAMP_ID}/update.jso <==== AANDACHT Task: C:\Windows\Tasks\9zWqJaM08JIVZC3Gnk9V.job => C:\Windows\system32\config\systemprofile\AppData\Roaming\9zWqJaM08JIVZC3Gnk9V.exe <==== AANDACHT Task: C:\Windows\Tasks\fun4u_notification_service.job => C:\Program Files (x86)\fun4u\fun4u_notification_service.exeǡ/url='hxxp:/cdn.selectbestopt.com/notf_sys/index.html' /crregname='fun4u' /appid='73143' /srcid='2913' /bic='eb470c325c0a470f9e1d9849d8fcef45' /verifier='f54ae3ae0b8af5e2e947cbf6b0444c73' /installerversion='1.50.3.10' /statsdomain='hxxp:/stats.buildomserv.com/data.gif?' /errorsdomain='hxxp:/stats.buildomserv.com/data.gif?' /monetizationdomain='hxxp:/logs.buildomserv.com/monetization.gif <==== AANDACHT Task: C:\Windows\Tasks\fun4u_updating_service.job => C:\Program Files (x86)\fun4u\fun4u_updating_service.exe /campid=2913 /verid=1 /url=hxxp:/cdn.buildomserv.com/txt/@CAMPID@/@VER@/file.txt /appid=73143 /taskname=fun4u_updating_service /funurl=hxxp:/stats.buildomserv.com <==== AANDACHT FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [Geen bestand] CHR Extension: (Ask Web Search) - C:\Users\Fabienne\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgfehfbnofiffladdncogfobimealokp [2020-08-30] CHR Extension: (Linkey) - C:\Users\Fabienne\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah [2015-01-19] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /svc [X] <==== AANDACHT S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /medsvc [X] <==== AANDACHT S2 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X] S2 SmdmFService; C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe [X] S3 dbx; system32\DRIVERS\dbx.sys [X] S1 F06DEFF2-5B9C-490D-910F-35D3A9119622; \??\C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg [X] C:\Program Files (x86)\globalUpdate C:\Program Files (x86)\Settings Manager C:\Windows\system32\DRIVERS\dbx.sys C:\Windows\Tasks\fun4u_notification_service.job C:\Windows\Tasks\fun4u_updating_service.job C:\Program Files (x86)\GUT316B.tmp SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=155&itype=n&ver=13531&tm=425&src=ds&p={searchTerms} SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=155&itype=n&ver=13531&tm=425&src=ds&p={searchTerms} SearchScopes: HKU\S-1-5-21-3673058761-2671674328-325965399-1001 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = hxxp://www.default-search.net/search?sid=476&aid=155&itype=n&ver=13531&tm=425&src=ds&p={searchTerms} Toolbar: HKU\S-1-5-21-3673058761-2671674328-325965399-1001 -> Geen Naam - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Geen bestand CMD: netsh advfirewall reset EmptyTemp: