Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 20.06.2018 Gestart door Gebruiker (16-11-2018 12:24:50) Run:1 Gestart vanaf C:\Users\Gebruiker\Desktop Geladen Profielen: Gebruiker (Beschikbare Profielen: Gebruiker) Boot Modus: Normal ============================================== fixlist inhoud: ***************** CreateRestorePoint: GroupPolicy: Restrictie ? <==== AANDACHT SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://at.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_bboi_17_28_ssg04¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dat%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0BzzyC0BtBtA0E0DzyyE0CyB0BtAtDyCtN0D0Tzu0StBtDtCzytN1L2XzutAtFtBzytFtAtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0Dzz0AyBtDtDyDtGyEtA0E0FtGtCtC0D0CtGyBtC0F0CtGzztAyByCyEtCyC0F0E0DyDtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyBzy0A0CyByE0BtG0DzyyC0CtGyEyDyByDtGzztAyByBtG0B0AtB0FyEzytA0Azz0AtBtA2QtN0A0LzuyE%26cr%3D1181667552%26a%3Dwnf_bboi_17_28_ssg04%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://at.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_bboi_17_28_ssg04¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dat%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0BzzyC0BtBtA0E0DzyyE0CyB0BtAtDyCtN0D0Tzu0StBtDtCzytN1L2XzutAtFtBzytFtAtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0Dzz0AyBtDtDyDtGyEtA0E0FtGtCtC0D0CtGyBtC0F0CtGzztAyByCyEtCyC0F0E0DyDtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyBzy0A0CyByE0BtG0DzyyC0CtGyEyDyByDtGzztAyByBtG0B0AtB0FyEzytA0Azz0AtBtA2QtN0A0LzuyE%26cr%3D1181667552%26a%3Dwnf_bboi_17_28_ssg04%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} SearchScopes: HKU\S-1-5-21-4203840771-55088086-1378505996-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://at.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_bboi_17_28_ssg04¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dat%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0BzzyC0BtBtA0E0DzyyE0CyB0BtAtDyCtN0D0Tzu0StBtDtCzytN1L2XzutAtFtBzytFtAtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0Dzz0AyBtDtDyDtGyEtA0E0FtGtCtC0D0CtGyBtC0F0CtGzztAyByCyEtCyC0F0E0DyDtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyBzy0A0CyByE0BtG0DzyyC0CtGyEyDyByDtGzztAyByBtG0B0AtB0FyEzytA0Azz0AtBtA2QtN0A0LzuyE%26cr%3D1181667552%26a%3Dwnf_bboi_17_28_ssg04%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} SearchScopes: HKU\S-1-5-21-4203840771-55088086-1378505996-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://at.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_bboi_17_28_ssg04¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dat%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0BzzyC0BtBtA0E0DzyyE0CyB0BtAtDyCtN0D0Tzu0StBtDtCzytN1L2XzutAtFtBzytFtAtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0Dzz0AyBtDtDyDtGyEtA0E0FtGtCtC0D0CtGyBtC0F0CtGzztAyByCyEtCyC0F0E0DyDtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzzyBzy0A0CyByE0BtG0DzyyC0CtGyEyDyByDtGzztAyByBtG0B0AtB0FyEzytA0Azz0AtBtA2QtN0A0LzuyE%26cr%3D1181667552%26a%3Dwnf_bboi_17_28_ssg04%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} SearchScopes: HKU\S-1-5-21-4203840771-55088086-1378505996-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox BHO: Geen Naam -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> Geen bestand BHO-x32: Geen Naam -> {86a3cdaa-9b25-480e-b73f-c2d359b87966} -> Geen bestand Toolbar: HKLM-x32 - Geen Naam - {691ca8ec-7205-4aa9-bdd6-15493d16f835} - Geen bestand ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand Task: {D15BEF9F-9690-4114-8159-C487E0D51F1C} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT RemoveProxy: EmptyTemp: ***************** Herstelpunt is succesvol gemaakt. C:\WINDOWS\system32\GroupPolicy\Machine => is succesvol verplaatst C:\WINDOWS\system32\GroupPolicy\GPT.ini => is succesvol verplaatst C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => is succesvol verplaatst HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => waarde met succes hersteld "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => is succesvol verwijderd HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => niet gevonden "HKU\S-1-5-21-4203840771-55088086-1378505996-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => is succesvol verwijderd "HKU\S-1-5-21-4203840771-55088086-1378505996-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => is succesvol verwijderd HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => niet gevonden "HKU\S-1-5-21-4203840771-55088086-1378505996-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146}" => is succesvol verwijderd HKLM\Software\Classes\CLSID\{2f23ab71-4ac6-41f2-a955-ea576e553146} => niet gevonden "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}" => is succesvol verwijderd HKLM\Software\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => niet gevonden "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{86a3cdaa-9b25-480e-b73f-c2d359b87966}" => is succesvol verwijderd HKLM\Software\Wow6432Node\Classes\CLSID\{86a3cdaa-9b25-480e-b73f-c2d359b87966} => niet gevonden "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{691ca8ec-7205-4aa9-bdd6-15493d16f835}" => is succesvol verwijderd HKLM\Software\Wow6432Node\Classes\CLSID\{691ca8ec-7205-4aa9-bdd6-15493d16f835} => niet gevonden "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => is succesvol verwijderd HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => niet gevonden "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D15BEF9F-9690-4114-8159-C487E0D51F1C}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D15BEF9F-9690-4114-8159-C487E0D51F1C}" => is succesvol verwijderd HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => niet gevonden ========= RemoveProxy: ========= "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => is succesvol verwijderd "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => is succesvol verwijderd "HKU\S-1-5-21-4203840771-55088086-1378505996-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => is succesvol verwijderd "HKU\S-1-5-21-4203840771-55088086-1378505996-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => is succesvol verwijderd ========= Eind van RemoveProxy: ========= =========== EmptyTemp: ========== BITS transfer queue => 11821056 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 250172897 B Java, Flash, Steam htmlcache => 951 B Windows/system/drivers => 2547516 B Edge => 7471815 B Chrome => 442489902 B Firefox => 0 B Opera => 237568 B Temp, IE cache, history, cookies, recent: Default => 6656 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 1433140 B systemprofile32 => 0 B LocalService => 43368 B LocalService => 0 B NetworkService => 21890 B NetworkService => 0 B Gebruiker => 7882924 B RecycleBin => 0 B EmptyTemp: => 690.6 MB tijdelijke gegevens verwijderd. ================================ Het systeem moest herstart worden. ==== Eind van Fixlog 12:26:21 ====