Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 15.11.2018 Gestart door henk (20-11-2018 10:32:57) Run:1 Gestart vanaf C:\Users\henk\Desktop Geladen Profielen: henk (Beschikbare Profielen: henk & Administrator & DefaultAppPool) Boot Modus: Normal ============================================== fixlist inhoud: ***************** CreateRestorePoint: CloseProcesses: (IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe C:\Users\henk\AppData\Local\Temp\63091961-0185-467E-AA94-B4A0759E50E1\DismHost.exe HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== AANDACHT CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT CHR HKU\S-1-5-21-1716136967-1173365762-3251464594-1000\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT URLSearchHook: HKU\S-1-5-21-1716136967-1173365762-3251464594-1000 - (Geen Naam) - {87775fdb-6972-41f9-ae51-8326e38cb206} - Geen bestand URLSearchHook: HKU\S-1-5-21-1716136967-1173365762-3251464594-1000 - (Geen Naam) - {b81767e1-672d-4da1-b5cc-d277185815a6} - Geen bestand URLSearchHook: HKU\S-1-5-21-1716136967-1173365762-3251464594-1000 - (Geen Naam) - {37483b40-c254-4a72-bda4-22ee90182c1e} - Geen bestand SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = Toolbar: HKLM - Geen Naam - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Geen bestand FF Plugin-x32: @videolan.org/vlc,version=2.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] CHR HKLM-x32\...\Chrome\Extension: [cjofdnhdkbflacojpfpkchgafjahijbb] - C:\Users\henk\AppData\Local\Temp\ccex.crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-23] (IObit) U3 idsvc; geen ImagePath S3 netr28ux; \SystemRoot\System32\drivers\netr28ux.sys [X] C:\Program Files (x86)\IObit Task: {120062C2-4448-44A0-8291-2BEB6E2F5B0F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {139CE44B-5AE0-45FD-90F5-B2AA95BB2D26} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {15552364-50D9-4294-A43F-5CE4B77E0BFB} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {27607D26-3DB5-46B6-BF90-DB5F10193EC6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {4BD0C6CB-A7B3-4C6F-8C07-1C04C0428ACB} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {89779FA9-364C-4F1A-9FAC-F127195BD548} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {9403345D-1F98-4BC6-8696-AE64C1F157D7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {A6D2AABC-F090-4228-94E0-BEA0EEE2DED8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {A75AD81A-84B6-49C8-8910-01012A58E724} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {CCF01064-124D-457D-93FB-583DDAB54AA2} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {D0D58722-3034-4DDF-88A9-07AB3F23665E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {F302485F-D659-45E1-BB91-055DE9C87A15} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT RemoveProxy: CMD: netsh winsock reset catalog CMD: ipconfig /flushdns EmptyTemp: ***************** Herstelpunt is succesvol gemaakt. Proces succesvol afgesloten. C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe => Geen lopend proces gevonden C:\Users\henk\AppData\Local\Temp\63091961-0185-467E-AA94-B4A0759E50E1\DismHost.exe => is succesvol verplaatst HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== AANDACHT => met succes hersteld HKLM\SOFTWARE\Policies\Google => is succesvol verwijderd HKU\S-1-5-21-1716136967-1173365762-3251464594-1000\SOFTWARE\Policies\Google => is succesvol verwijderd "HKU\S-1-5-21-1716136967-1173365762-3251464594-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{87775fdb-6972-41f9-ae51-8326e38cb206}" => is succesvol verwijderd "HKU\S-1-5-21-1716136967-1173365762-3251464594-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{b81767e1-672d-4da1-b5cc-d277185815a6}" => is succesvol verwijderd "HKU\S-1-5-21-1716136967-1173365762-3251464594-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{37483b40-c254-4a72-bda4-22ee90182c1e}" => is succesvol verwijderd HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => is succesvol verwijderd HKLM\Software\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => niet gevonden "HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => is succesvol verwijderd HKLM\Software\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => niet gevonden HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.1 => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => niet gevonden HKLM\System\CurrentControlSet\Services\LiveUpdateSvc => is succesvol verwijderd LiveUpdateSvc => dienst is succesvol verwijderd HKLM\System\CurrentControlSet\Services\idsvc => is succesvol verwijderd idsvc => dienst is succesvol verwijderd HKLM\System\CurrentControlSet\Services\netr28ux => is succesvol verwijderd netr28ux => dienst is succesvol verwijderd C:\Program Files (x86)\IObit => is succesvol verplaatst "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{120062C2-4448-44A0-8291-2BEB6E2F5B0F}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{120062C2-4448-44A0-8291-2BEB6E2F5B0F}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{139CE44B-5AE0-45FD-90F5-B2AA95BB2D26}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{139CE44B-5AE0-45FD-90F5-B2AA95BB2D26}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{15552364-50D9-4294-A43F-5CE4B77E0BFB}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15552364-50D9-4294-A43F-5CE4B77E0BFB}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => niet gevonden "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27607D26-3DB5-46B6-BF90-DB5F10193EC6}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27607D26-3DB5-46B6-BF90-DB5F10193EC6}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4BD0C6CB-A7B3-4C6F-8C07-1C04C0428ACB}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BD0C6CB-A7B3-4C6F-8C07-1C04C0428ACB}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89779FA9-364C-4F1A-9FAC-F127195BD548}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89779FA9-364C-4F1A-9FAC-F127195BD548}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9403345D-1F98-4BC6-8696-AE64C1F157D7}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9403345D-1F98-4BC6-8696-AE64C1F157D7}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A6D2AABC-F090-4228-94E0-BEA0EEE2DED8}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6D2AABC-F090-4228-94E0-BEA0EEE2DED8}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A75AD81A-84B6-49C8-8910-01012A58E724}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A75AD81A-84B6-49C8-8910-01012A58E724}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCF01064-124D-457D-93FB-583DDAB54AA2}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCF01064-124D-457D-93FB-583DDAB54AA2}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D0D58722-3034-4DDF-88A9-07AB3F23665E}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0D58722-3034-4DDF-88A9-07AB3F23665E}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F302485F-D659-45E1-BB91-055DE9C87A15}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F302485F-D659-45E1-BB91-055DE9C87A15}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => is succesvol verwijderd ========= RemoveProxy: ========= "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => is succesvol verwijderd "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => is succesvol verwijderd "HKU\S-1-5-21-1716136967-1173365762-3251464594-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => is succesvol verwijderd "HKU\S-1-5-21-1716136967-1173365762-3251464594-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => is succesvol verwijderd ========= Eind van RemoveProxy: ========= ========= netsh winsock reset catalog ========= Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ========= Eind van CMD: ========= ========= ipconfig /flushdns ========= Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========= Eind van CMD: ========= =========== EmptyTemp: ========== BITS transfer queue => 7364608 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11657095 B Java, Flash, Steam htmlcache => 1147 B Windows/system/drivers => 21429926 B Edge => 29362548 B Chrome => 447277 B Firefox => 75307827 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 2728 B LocalService => 0 B NetworkService => 5894 B NetworkService => 0 B henk => 36979106 B Administrator => 7742 B DefaultAppPool => 0 B RecycleBin => 0 B EmptyTemp: => 174.1 MB tijdelijke gegevens verwijderd. ================================ Het systeem moest herstart worden. ==== Eind van Fixlog 10:36:24 ====