Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 25-08-2019 Gestart door Henk (26-08-2019 20:09:12) Run:2 Gestart vanaf C:\Users\Henk\Desktop Geladen Profielen: Henk (Beschikbare Profielen: Henk & Gast) Boot Modus: Normal ============================================== fixlist inhoud: ***************** CreateRestorePoint: CloseProcesses: HKU\S-1-5-21-3957663117-963798814-2176115037-1001\...\Run: [] => [X] HKU\S-1-5-21-3957663117-963798814-2176115037-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019170452139\...\Run: [] => [X] HKU\S-1-5-21-3957663117-963798814-2176115037-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019170453527\...\Run: [] => [X] Task: {0BB88D95-BE52-448F-9C44-67C27F686B88} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {27CEAB13-4062-4C68-AB9F-C0D4AD5E2E28} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe Task: {31ADE0BB-E84B-4ABE-9DA9-B7DD58170013} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {6AF0AB05-64F7-49D5-AA49-3E7D5D9123DF} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT Task: {764A1873-4CE6-47DE-9378-9007BA936C0E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {7AD80AFB-5F7C-4765-8024-711288FB9461} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {824C930E-8F2E-4CDF-AEAE-66BD3CFD16C7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {85B45F89-5925-401A-972B-F9E31B551044} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {9C863985-7C02-446F-81EF-A58BCDD4B6A9} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {B2166B53-8F2F-48BE-9A4B-1088C1CEAC05} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {C18646C3-0E50-4544-860C-10B46A2CEC3C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {C6ECA47D-2AC9-499C-8EDF-3BBA6D3DFC76} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {C76D808A-C0B8-416E-AB2D-2C03DCDF56FB} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {DA34244C-D878-4A4C-80BE-25A0B7B6D4CF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {F02E95A0-274A-43B9-AEA7-88C773247D20} - \{2E0363AA-555E-08C9-0A7C-ED1BBE288E70} -> Geen bestand <==== AANDACHT Toolbar: HKU\S-1-5-21-3957663117-963798814-2176115037-1001 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Geen bestand Toolbar: HKU\S-1-5-21-3957663117-963798814-2176115037-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019170452139 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Geen bestand Toolbar: HKU\S-1-5-21-3957663117-963798814-2176115037-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019170453527 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Geen bestand FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [Geen bestand] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [Geen bestand] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [Geen bestand] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [Geen bestand] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [Geen bestand] CHR HKLM-x32\...\Chrome\Extension: [lfffjahnfbocnaooecgijfnbpcfekoik] - C:\ProgramData\adawaretb\shortcuts\chrome\adawaretb.crx S2 McAfee WebAdvisor; "C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe" [X] S3 cpuz143; \??\C:\Users\Henk\AppData\Local\Temp\cpuz143\cpuz143_x64.sys [X] <==== AANDACHT U3 idsvc; geen ImagePath 2019-08-26 17:04 - 2018-10-30 11:33 - 000000000 ____D C:\Program Files\McAfee 2019-08-26 17:04 - 2017-02-19 16:01 - 000000000 ____D C:\Program Files\Common Files\McAfee 2019-08-26 17:04 - 2012-05-08 19:52 - 000000000 ____D C:\ProgramData\McAfee ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers1: [jZip] -> [CC]{E677C7AD-2B66-4539-AA29-3771A1CFEDA9} => -> Geen bestand ContextMenuHandlers1: [SmartDefragExtension] -> [CC]{189F1E63-33A7-404B-B2F6-8C76A452CC54} => -> Geen bestand ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Geen bestand ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand AlternateDataStreams: C:\WINDOWS\SysWOW64\gm320ain.dll:ExtraData [15] MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe MSCONFIG\startupreg: SUPERAntiSpyware => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe FCheck: C:\WINDOWS\SysWOW64\gm320ain.dll [2018-03-20] <==== AANDACHT (nul byte bestand/map) Hosts: EmptyTemp: ***************** Fout: (0) Mislukt om een herstelpunt te maken. Proces succesvol afgesloten. "HKU\S-1-5-21-3957663117-963798814-2176115037-1001\Software\Microsoft\Windows\CurrentVersion\Run\\" => is succesvol verwijderd HKU\S-1-5-21-3957663117-963798814-2176115037-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019170452139\...\Run: [] => [X] => Fout: Geen automatische fix gevonden voor dit item. HKU\S-1-5-21-3957663117-963798814-2176115037-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019170453527\...\Run: [] => [X] => Fout: Geen automatische fix gevonden voor dit item. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0BB88D95-BE52-448F-9C44-67C27F686B88}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0BB88D95-BE52-448F-9C44-67C27F686B88}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27CEAB13-4062-4C68-AB9F-C0D4AD5E2E28}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27CEAB13-4062-4C68-AB9F-C0D4AD5E2E28}" => is succesvol verwijderd C:\WINDOWS\System32\Tasks\Ad-Aware Antivirus Scheduled Scan => is succesvol verplaatst "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Ad-Aware Antivirus Scheduled Scan" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{31ADE0BB-E84B-4ABE-9DA9-B7DD58170013}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{31ADE0BB-E84B-4ABE-9DA9-B7DD58170013}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6AF0AB05-64F7-49D5-AA49-3E7D5D9123DF}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AF0AB05-64F7-49D5-AA49-3E7D5D9123DF}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{764A1873-4CE6-47DE-9378-9007BA936C0E}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{764A1873-4CE6-47DE-9378-9007BA936C0E}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7AD80AFB-5F7C-4765-8024-711288FB9461}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7AD80AFB-5F7C-4765-8024-711288FB9461}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => niet gevonden "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{824C930E-8F2E-4CDF-AEAE-66BD3CFD16C7}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{824C930E-8F2E-4CDF-AEAE-66BD3CFD16C7}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{85B45F89-5925-401A-972B-F9E31B551044}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85B45F89-5925-401A-972B-F9E31B551044}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9C863985-7C02-446F-81EF-A58BCDD4B6A9}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9C863985-7C02-446F-81EF-A58BCDD4B6A9}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B2166B53-8F2F-48BE-9A4B-1088C1CEAC05}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2166B53-8F2F-48BE-9A4B-1088C1CEAC05}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C18646C3-0E50-4544-860C-10B46A2CEC3C}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C18646C3-0E50-4544-860C-10B46A2CEC3C}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C6ECA47D-2AC9-499C-8EDF-3BBA6D3DFC76}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6ECA47D-2AC9-499C-8EDF-3BBA6D3DFC76}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C76D808A-C0B8-416E-AB2D-2C03DCDF56FB}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C76D808A-C0B8-416E-AB2D-2C03DCDF56FB}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DA34244C-D878-4A4C-80BE-25A0B7B6D4CF}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA34244C-D878-4A4C-80BE-25A0B7B6D4CF}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F02E95A0-274A-43B9-AEA7-88C773247D20}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F02E95A0-274A-43B9-AEA7-88C773247D20}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2E0363AA-555E-08C9-0A7C-ED1BBE288E70}" => is succesvol verwijderd "HKU\S-1-5-21-3957663117-963798814-2176115037-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => is succesvol verwijderd HKLM\Software\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => niet gevonden Toolbar: HKU\S-1-5-21-3957663117-963798814-2176115037-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019170452139 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Geen bestand => Fout: Geen automatische fix gevonden voor dit item. Toolbar: HKU\S-1-5-21-3957663117-963798814-2176115037-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019170453527 -> Geen Naam - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Geen bestand => Fout: Geen automatische fix gevonden voor dit item. HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.4 => is succesvol verwijderd HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5 => is succesvol verwijderd HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf => is succesvol verwijderd HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf => is succesvol verwijderd HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp => is succesvol verwijderd HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf => is succesvol verwijderd HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf => niet gevonden HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lfffjahnfbocnaooecgijfnbpcfekoik => is succesvol verwijderd HKLM\System\CurrentControlSet\Services\McAfee WebAdvisor => is succesvol verwijderd McAfee WebAdvisor => service is succesvol verwijderd HKLM\System\CurrentControlSet\Services\cpuz143 => is succesvol verwijderd cpuz143 => service is succesvol verwijderd HKLM\System\CurrentControlSet\Services\idsvc => is succesvol verwijderd idsvc => service is succesvol verwijderd C:\Program Files\McAfee => is succesvol verplaatst C:\Program Files\Common Files\McAfee => is succesvol verplaatst C:\ProgramData\McAfee => is succesvol verplaatst HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => is succesvol verwijderd HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => niet gevonden HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\jZip => is succesvol verwijderd HKLM\Software\Classes\CLSID\[CC]{E677C7AD-2B66-4539-AA29-3771A1CFEDA9} => niet gevonden HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SmartDefragExtension => is succesvol verwijderd HKLM\Software\Classes\CLSID\[CC]{189F1E63-33A7-404B-B2F6-8C76A452CC54} => niet gevonden HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => is succesvol verwijderd HKLM\Software\Classes\CLSID\{6B9228DA-9C15-419e-856C-19E768A13BDC} => niet gevonden HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => is succesvol verwijderd HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => niet gevonden C:\WINDOWS\SysWOW64\gm320ain.dll => ":ExtraData" ADS is succesvol verwijderd HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpybotSD TeaTimer => is succesvol verwijderd HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SUPERAntiSpyware => is succesvol verwijderd C:\WINDOWS\SysWOW64\gm320ain.dll => is succesvol verplaatst C:\Windows\System32\Drivers\etc\hosts => is succesvol verplaatst Hosts met succes hersteld. =========== EmptyTemp: ========== BITS transfer queue => 10510336 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 53613555 B Java, Flash, Steam htmlcache => 1124 B Windows/system/drivers => 632607 B Edge => 7757204 B Chrome => 476095 B Firefox => 21969750 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 0 B LocalService => 0 B NetworkService => 2966 B NetworkService => 0 B Henk => 21681357 B Gast => 32707 B RecycleBin => 153093 B EmptyTemp: => 111.4 MB tijdelijke gegevens verwijderd. ================================ Het systeem moest herstart worden. ==== Einde van Fixlog 20:10:05 ====