Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 16-02-2020 Gestart door Frans rOOS (21-02-2020 10:52:38) Run:1 Gestart vanaf C:\Users\Frans rOOS\Desktop Geladen Profielen: Frans rOOS (Beschikbare Profielen: Frans rOOS & Froos) Boot Modus: Normal ============================================== fixlist inhoud: ***************** CreateRestorePoint: CloseProcesses: Task: {2228952B-338A-43DB-8666-F4CB2EAF213D} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {D89C2740-8AF1-47F5-926C-30EE8AA86EE4} - \CCleanerSkipUAC -> Geen bestand <==== AANDACHT Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - Geen bestand FF HKU\S-1-5-21-928118603-159168090-4003741755-1001\...\Firefox\Extensions: [ISAllmytube@iSkysoft.com] - C:\Program Files (x86)\Aimersoft\Aimersoft iTube Studio\BrowserPlugin\isallmytube@iskysoft.com_xpi => niet gevonden FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand] CHR HKLM\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - hxxps://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKU\S-1-5-21-928118603-159168090-4003741755-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - hxxps://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] U3 idsvc; geen ImagePath C:\Users\Frans rOOS\AppData\Local\{807EEB45-0160-49E1-AF2B-5E06BADDBFDC} C:\Users\Frans rOOS\AppData\Local\{96B5D9B2-ECB3-4F8B-BA8E-AD96740B61E5} C:\Users\Frans rOOS\AppData\Local\{9A5263D9-AC28-4538-BC43-E42E2D75FCBE} C:\Users\Frans rOOS\AppData\Local\{B7300BA4-A32E-49E0-9538-A68FB67E08A0} ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Geen bestand HKU\S-1-5-21-928118603-159168090-4003741755-1001\...\StartupApproved\Run: => "safe_urls768" FirewallRules: [{1E7ABF00-74F0-4E4C-B0D9-267B0988F774}] => (Allow) E:\Install\wlan_wiz\.\wlan_assistant\waw.exe Geen bestand FirewallRules: [TCP Query User{99B35043-78AF-46DF-8A35-274CA4708379}C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Allow) C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe Geen bestand FirewallRules: [UDP Query User{4557A06E-BCEC-4894-B7B3-E2BD0F3F7B38}C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Allow) C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe Geen bestand FirewallRules: [TCP Query User{DC7BD866-6526-40F9-8906-22A33EE1E0D6}C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe Geen bestand FirewallRules: [UDP Query User{46B2098F-099D-437E-BD63-198F891CA8B8}C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe Geen bestand EmptyTemp: Reboot: ***************** Herstelpunt is succesvol gemaakt. Proces succesvol afgesloten. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2228952B-338A-43DB-8666-F4CB2EAF213D}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2228952B-338A-43DB-8666-F4CB2EAF213D}" => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => niet gevonden HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D89C2740-8AF1-47F5-926C-30EE8AA86EE4} => is succesvol verwijderd HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D89C2740-8AF1-47F5-926C-30EE8AA86EE4} => is succesvol verwijderd "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => niet gevonden HKLM\Software\Classes\PROTOCOLS\Handler\linkscanner => is succesvol verwijderd "HKU\S-1-5-21-928118603-159168090-4003741755-1001\Software\Mozilla\Firefox\Extensions\\ISAllmytube@iSkysoft.com" => is succesvol verwijderd HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8 => is succesvol verwijderd HKLM\SOFTWARE\Google\Chrome\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa => is succesvol verwijderd HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => is succesvol verwijderd HKU\S-1-5-21-928118603-159168090-4003741755-1001\SOFTWARE\Google\Chrome\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ccjleegmemocfpghkhpjmiccjcacackp => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => is succesvol verwijderd HKLM\System\CurrentControlSet\Services\idsvc => is succesvol verwijderd idsvc => service is succesvol verwijderd C:\Users\Frans rOOS\AppData\Local\{807EEB45-0160-49E1-AF2B-5E06BADDBFDC} => is succesvol verplaatst C:\Users\Frans rOOS\AppData\Local\{96B5D9B2-ECB3-4F8B-BA8E-AD96740B61E5} => is succesvol verplaatst C:\Users\Frans rOOS\AppData\Local\{9A5263D9-AC28-4538-BC43-E42E2D75FCBE} => is succesvol verplaatst C:\Users\Frans rOOS\AppData\Local\{B7300BA4-A32E-49E0-9538-A68FB67E08A0} => is succesvol verplaatst HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => is succesvol verwijderd "HKU\S-1-5-21-928118603-159168090-4003741755-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\safe_urls768" => is succesvol verwijderd "HKU\S-1-5-21-928118603-159168090-4003741755-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\safe_urls768" => niet gevonden "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1E7ABF00-74F0-4E4C-B0D9-267B0988F774}" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{99B35043-78AF-46DF-8A35-274CA4708379}C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4557A06E-BCEC-4894-B7B3-E2BD0F3F7B38}C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DC7BD866-6526-40F9-8906-22A33EE1E0D6}C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{46B2098F-099D-437E-BD63-198F891CA8B8}C:\users\frans roos\appdata\local\programs\opera\65.0.3467.78\opera.exe" => is succesvol verwijderd =========== EmptyTemp: ========== BITS transfer queue => 7888896 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 742518774 B Java, Flash, Steam htmlcache => 2927 B Windows/system/drivers => 20089600 B Edge => 1894015 B Chrome => 230500314 B Firefox => 191431593 B Opera => 430501124 B Temp, IE cache, history, cookies, recent: Default => 2572 B Users => 2572 B ProgramData => 2572 B Public => 2572 B systemprofile => 2572 B systemprofile32 => 2572 B LocalService => 2572 B NetworkService => 664260 B Frans rOOS => 194672048 B Froos => 194691163 B RecycleBin => 125707018 B EmptyTemp: => 2 GB tijdelijke gegevens verwijderd. ================================ Het systeem moest herstart worden. ==== Einde van Fixlog 11:11:00 ====