Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 11.11.2018 Gestart door rataplan (12-11-2018 10:49:57) Run:1 Gestart vanaf C:\Users\rataplan\Desktop Geladen Profielen: rataplan (Beschikbare Profielen: rataplan) Boot Modus: Normal ============================================== fixlist inhoud: ***************** CreateRestorePoint: CloseProcesses: Winlogon\Notify\ScCertProp: wlnotify.dll [X] GroupPolicy: Restrictie ? <==== AANDACHT BHO: Geen Naam -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Geen bestand Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx FF user.js: detected! => C:\Users\rataplan\AppData\Roaming\Mozilla\Firefox\Profiles\38x2khzj.default\user.js [2018-06-29] R3 ALSysIO; C:\Users\rataplan\AppData\Local\Temp\ALSysIO64.sys [46384 2018-11-11] (Arthur Liberman) <==== AANDACHT S3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [0 2015-10-26] () <==== AANDACHT (nul byte bestand/map) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand Task: {06ADC0FA-6A4A-4DBD-9F64-A2F3B4BCBC20} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {128F4E94-C35E-42F3-B635-575F4F09E0AC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {2F08A397-9DA0-45A2-B8A2-BFA6575CE42E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {31471FDE-8C73-4D69-AE47-3AD0FFD1440A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {4FA5A429-5D03-4135-A75F-C153171A6A3A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {52E9907D-4A28-4416-990D-1727AF410D07} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {9183F834-FE02-4F32-BD9B-E763A7F8ACC9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {D7977804-E9FA-4EAE-ADD7-05E1D5E7953B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {DECBC887-9D39-41D9-AE2B-DDB49CC35BD6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {F7F48153-7015-44D2-AF40-66C10BFCE280} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {FBB34614-78B5-4C1F-825A-9769626E1B2B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {FD34E665-DA41-4602-9B22-DE416CE208CB} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT EmptyTemp: ***************** Herstelpunt is succesvol gemaakt. Proces succesvol afgesloten. HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp => is succesvol verwijderd C:\WINDOWS\system32\GroupPolicy\Machine => is succesvol verplaatst C:\WINDOWS\system32\GroupPolicy\GPT.ini => is succesvol verplaatst C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => is succesvol verplaatst HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => is succesvol verwijderd HKLM\Software\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => niet gevonden HKLM\Software\Classes\PROTOCOLS\Handler\livecall => is succesvol verwijderd HKLM\Software\Classes\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => niet gevonden HKLM\Software\Classes\PROTOCOLS\Handler\msnim => is succesvol verwijderd HKLM\Software\Classes\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => niet gevonden HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => is succesvol verwijderd C:\Users\rataplan\AppData\Roaming\Mozilla\Firefox\Profiles\38x2khzj.default\user.js => is succesvol verplaatst ALSysIO => Kon service niet stoppen. HKLM\System\CurrentControlSet\Services\ALSysIO => is succesvol verwijderd ALSysIO => dienst is succesvol verwijderd HKLM\System\CurrentControlSet\Services\amdkmdag => is succesvol verwijderd amdkmdag => dienst is succesvol verwijderd HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => is succesvol verwijderd HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => niet gevonden "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{06ADC0FA-6A4A-4DBD-9F64-A2F3B4BCBC20}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{06ADC0FA-6A4A-4DBD-9F64-A2F3B4BCBC20}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{128F4E94-C35E-42F3-B635-575F4F09E0AC}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{128F4E94-C35E-42F3-B635-575F4F09E0AC}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F08A397-9DA0-45A2-B8A2-BFA6575CE42E}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F08A397-9DA0-45A2-B8A2-BFA6575CE42E}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{31471FDE-8C73-4D69-AE47-3AD0FFD1440A}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{31471FDE-8C73-4D69-AE47-3AD0FFD1440A}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4FA5A429-5D03-4135-A75F-C153171A6A3A}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4FA5A429-5D03-4135-A75F-C153171A6A3A}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{52E9907D-4A28-4416-990D-1727AF410D07}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{52E9907D-4A28-4416-990D-1727AF410D07}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9183F834-FE02-4F32-BD9B-E763A7F8ACC9}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9183F834-FE02-4F32-BD9B-E763A7F8ACC9}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D7977804-E9FA-4EAE-ADD7-05E1D5E7953B}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D7977804-E9FA-4EAE-ADD7-05E1D5E7953B}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DECBC887-9D39-41D9-AE2B-DDB49CC35BD6}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DECBC887-9D39-41D9-AE2B-DDB49CC35BD6}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F7F48153-7015-44D2-AF40-66C10BFCE280}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F7F48153-7015-44D2-AF40-66C10BFCE280}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FBB34614-78B5-4C1F-825A-9769626E1B2B}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBB34614-78B5-4C1F-825A-9769626E1B2B}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FD34E665-DA41-4602-9B22-DE416CE208CB}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD34E665-DA41-4602-9B22-DE416CE208CB}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => niet gevonden =========== EmptyTemp: ========== BITS transfer queue => 9199616 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 132871315 B Java, Flash, Steam htmlcache => 142576 B Windows/system/drivers => 2016312 B Edge => 464570 B Chrome => 463144648 B Firefox => 1084706506 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 570936 B LocalService => 0 B LocalService => 0 B NetworkService => 22782 B NetworkService => 0 B rataplan => 38031579 B RecycleBin => 4880230 B EmptyTemp: => 1.6 GB tijdelijke gegevens verwijderd. ================================ Het systeem moest herstart worden. ==== Eind van Fixlog 10:51:16 ====