Start:: CreateRestorePoint: CloseProcesses: BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.6.255\AVG Web TuneUp.dll => Geen bestand BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.6.255\AVG Web TuneUp.dll => Geen bestand FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.6\\npsitesafety.dll [Geen bestand] FF Plugin HKU\S-1-5-21-3968276687-3847870925-728767108-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\moederjeanne\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [Geen bestand] CHR HKU\S-1-5-21-3968276687-3847870925-728767108-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\7za.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\DaS_21.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\hijackthis.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\NirCmd.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\PEVZ.EXE VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\remove.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\sed.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\shortcut.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\swreg.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\swxcacls.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\wget.exe VirusTotal: C:\Users\moederjeanne\AppData\Local\Temp\zoek-delete.exe CustomCLSID: HKU\S-1-5-21-3968276687-3847870925-728767108-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\moederjeanne\AppData\Local\Microsoft\OneDrive\18.065.0329.0002\amd64\FileSyncShell64.dll => Geen bestand CustomCLSID: HKU\S-1-5-21-3968276687-3847870925-728767108-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\moederjeanne\AppData\Local\Microsoft\OneDrive\18.065.0329.0002\amd64\FileSyncShell64.dll => Geen bestand CustomCLSID: HKU\S-1-5-21-3968276687-3847870925-728767108-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\moederjeanne\AppData\Local\Microsoft\OneDrive\18.065.0329.0002\amd64\FileSyncShell64.dll => Geen bestand ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Geen bestand ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Geen bestand ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Geen bestand ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Geen bestand ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Geen bestand ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Geen bestand ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Geen bestand ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Geen bestand ContextMenuHandlers1: [_MovaviSuite10] -> {9D700AB0-33CE-4ab3-BD66-3A73CC2CEDE3} => -> Geen bestand ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers6: [_MovaviSuite10] -> {9D700AB0-33CE-4ab3-BD66-3A73CC2CEDE3} => -> Geen bestand Task: {4BA71D6A-260B-4FE5-9BA6-B055D849C2BE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {6C91A252-D7DE-4CD2-9978-33EF7838047A} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {787438D9-5CC5-4C76-984C-2C7C7B39ACE1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {963128E3-9401-4BC3-A63D-8C55D41CE2E2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {96A8CA02-DB31-4C0C-845F-0C3F42B8EF41} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {A4551E4D-ECE3-4681-B1A6-0E252836A5F7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {AAA1AAB6-89E3-45B8-BA09-BEEFBB761360} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {B5B22D3B-783F-47B7-899A-154217A9D69C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {C1CC3129-A053-4111-A437-DA55E75BCA99} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {CEB8CB7C-337C-4835-9D12-B333440F24E7} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {E19FCD1F-2578-45D6-B425-2C7ED8C3F06E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {EF24BCFD-E551-42FD-8BA7-AEC33F0EBEAD} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT Task: {F8FC7809-48E1-42A8-BE05-DD91DDEF87D6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {FC6AFCB3-1E87-4CBF-A437-A49713645507} - \0316avzUpdateInfo -> Geen bestand <==== AANDACHT ShortcutWithArgument: C:\Users\moederjeanne\AppData\Local\Google\Chrome\User Data\App-opstartprogramma van Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\moederjeanne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\App-opstartprogramma van Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\moederjeanne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\ARC Welder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=emfinbmielocnlhgmfkkmkngdoccbadn ShortcutWithArgument: C:\Users\moederjeanne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Magisto - Magical Video Editor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ghmngbmfdgknokcefmkbjlcjabdklnlk ShortcutWithArgument: C:\Users\moederjeanne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\WhatsChrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=bgkodfmeijboinjdegggmkbkjfiagaan AlternateDataStreams: C:\ProgramData\Temp:054203E4 [130] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476] EmptyTemp: End::