Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 25.03.2024
Gestart door user (26-03-2024 18:41:38) Run:1
Gestart vanaf C:\Users\user\Desktop
Geladen Profielen: user
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start::
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restrictie <==== AANDACHT
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restrictie <==== AANDACHT
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Geen bestand)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Geen bestand)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe --startup_mode (Geen bestand)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2024-03-26]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Geen bestand)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe  (Geen bestand)
Task: {B26F1AB7-CFAF-4FC2-8582-AB8D3FC04602} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe  LogonUpdateResults (Geen bestand)
Task: {C02C701E-427E-4E17-BA2B-10AFDED0B6DA} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe  Display (Geen bestand)
Task: {C1B13FCA-E7E9-4F15-97AA-1CD463581ED3} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe  ReadyToReboot (Geen bestand)
Task: {7CF499F7-EC77-43A4-8321-31FC7928E078} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe  /RunOnAC ReadyToReboot (Geen bestand)
Task: {9DBC234B-968D-4FFB-985E-A068E346206C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe  /RunOnBattery ReadyToReboot (Geen bestand)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Geen bestand)
Edge Notifications: Default -> hxxps://59583xowfk2qei4689.kevaxj.co.in; hxxps://d2e5fxowfxoib3y823.kevaxj.co.in; hxxps://idujew.sbs; hxxps://meet.google.com; hxxps://tinder.com; hxxps://www.telegraaf.nl
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
2024-03-26 11:02 - 2024-03-26 11:02 - 000000000 ____D C:\ProgramData\Norton
2024-03-26 10:34 - 2024-03-26 10:35 - 000000000 __RSD C:\Users\user\Documents\McAfee Kluizen
2024-03-26 10:34 - 2024-03-26 10:34 - 000000000 ____D C:\Users\user\AppData\Local\McAfee File Lock
2024-03-26 10:34 - 2021-07-27 04:19 - 000097696 ____N (McAfee, LLC) C:\WINDOWS\system32\Drivers\McPvDrv.sys
2024-03-26 10:31 - 2024-03-26 10:57 - 000000000 ____D C:\ProgramData\McInstTemp0162891711445478
2024-03-26 10:31 - 2024-03-26 10:57 - 000000000 ____D C:\Program Files\McAfee
2024-03-26 10:30 - 2024-03-26 10:57 - 000000000 ____D C:\Program Files\Common Files\McAfee
2024-03-26 10:25 - 2024-03-26 10:57 - 000000000 ____D C:\ProgramData\McAfee
2024-03-26 10:25 - 2024-03-26 10:25 - 005891472 _____ (McAfee, LLC) C:\Users\user\Downloads\mcafee_trial_setup_433.0207.3919_key.exe
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} =>  -> Geen bestand
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} =>  -> Geen bestand
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} =>  -> Geen bestand
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Geen bestand
AlternateDataStreams: C:\Users\user\Downloads\ccsetup622.exe:MBAM.Zone.Identifier [186]
AlternateDataStreams: C:\Users\user\Downloads\ChromeSetup.exe:MBAM.Zone.Identifier [405]
AlternateDataStreams: C:\Users\user\Downloads\FRST64 (1).exe:MBAM.Zone.Identifier [240]
AlternateDataStreams: C:\Users\user\Downloads\MBSetup (1).exe:MBAM.Zone.Identifier [174]
AlternateDataStreams: C:\Users\user\Downloads\mcafee_trial_setup_433.0207.3919_key.exe:MBAM.Zone.Identifier [198]
FirewallRules: [TCP Query User{F07EEB2D-2260-433B-A7F4-E77B7931DFFA}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe => Geen bestand
FirewallRules: [UDP Query User{7A0A599A-DF25-4C61-AE23-A4BA646F9C8B}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe => Geen bestand
FirewallRules: [{851A4641-8FF9-41A0-98F6-377C45189271}] => (Allow) C:\Users\user\Desktop\Lightworks\ntcardvt.exe => Geen bestand
FirewallRules: [{F440A543-760B-43E0-B04C-9B4AFE8170C3}] => (Allow) C:\Users\user\Desktop\Lightworks\ntcardvt.exe => Geen bestand
EmptyTemp:
End::
*****************

Herstelpunt is succesvol gemaakt.
Proces succesvol afgesloten.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => waarde met succes hersteld
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => waarde met succes hersteld
"HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => is succesvol verwijderd
"HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => is succesvol verwijderd
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => is succesvol verwijderd
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk => is succesvol verplaatst
"ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Geen bestand)" => niet gevonden
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => is succesvol verwijderd
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B26F1AB7-CFAF-4FC2-8582-AB8D3FC04602}" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B26F1AB7-CFAF-4FC2-8582-AB8D3FC04602}" => is succesvol verwijderd
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C02C701E-427E-4E17-BA2B-10AFDED0B6DA}" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C02C701E-427E-4E17-BA2B-10AFDED0B6DA}" => is succesvol verwijderd
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C1B13FCA-E7E9-4F15-97AA-1CD463581ED3}" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C1B13FCA-E7E9-4F15-97AA-1CD463581ED3}" => is succesvol verwijderd
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7CF499F7-EC77-43A4-8321-31FC7928E078}" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7CF499F7-EC77-43A4-8321-31FC7928E078}" => is succesvol verwijderd
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9DBC234B-968D-4FFB-985E-A068E346206C}" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9DBC234B-968D-4FFB-985E-A068E346206C}" => is succesvol verwijderd
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => is succesvol verwijderd
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => is succesvol verwijderd
"Edge Notifications" => is succesvol verwijderd
HKLM\System\CurrentControlSet\Services\WinSetupMon => is succesvol verwijderd
WinSetupMon => service is succesvol verwijderd

"C:\ProgramData\Norton" Map verplaatsing:

C:\ProgramData\Norton => is succesvol verplaatst

"C:\Users\user\Documents\McAfee Kluizen" Map verplaatsing:

C:\Users\user\Documents\McAfee Kluizen => is succesvol verplaatst

"C:\Users\user\AppData\Local\McAfee File Lock" Map verplaatsing:

C:\Users\user\AppData\Local\McAfee File Lock => is succesvol verplaatst
C:\WINDOWS\system32\Drivers\McPvDrv.sys => is succesvol verplaatst
"C:\ProgramData\McInstTemp0162891711445478" => niet gevonden

"C:\Program Files\McAfee" Map verplaatsing:

C:\Program Files\McAfee => is succesvol verplaatst

"C:\Program Files\Common Files\McAfee" Map verplaatsing:

C:\Program Files\Common Files\McAfee => is succesvol verplaatst

"C:\ProgramData\McAfee" Map verplaatsing:

C:\ProgramData\McAfee => is succesvol verplaatst
C:\Users\user\Downloads\mcafee_trial_setup_433.0207.3919_key.exe => is succesvol verplaatst
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\DriveFS 28 or later => is succesvol verwijderd
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\DriveFS 28 or later => is succesvol verwijderd
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\DriveFS 28 or later => is succesvol verwijderd
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => is succesvol verwijderd
C:\Users\user\Downloads\ccsetup622.exe => ":MBAM.Zone.Identifier" ADS is succesvol verwijderd
C:\Users\user\Downloads\ChromeSetup.exe => ":MBAM.Zone.Identifier" ADS is succesvol verwijderd
"C:\Users\user\Downloads\FRST64 (1).exe" => ":MBAM.Zone.Identifier" ADS niet gevonden.
C:\Users\user\Downloads\MBSetup (1).exe => ":MBAM.Zone.Identifier" ADS is succesvol verwijderd
"C:\Users\user\Downloads\mcafee_trial_setup_433.0207.3919_key.exe" => ":MBAM.Zone.Identifier" ADS niet gevonden.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F07EEB2D-2260-433B-A7F4-E77B7931DFFA}C:\users\user\appdata\roaming\spotify\spotify.exe" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7A0A599A-DF25-4C61-AE23-A4BA646F9C8B}C:\users\user\appdata\roaming\spotify\spotify.exe" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{851A4641-8FF9-41A0-98F6-377C45189271}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F440A543-760B-43E0-B04C-9B4AFE8170C3}" => is succesvol verwijderd

=========== EmptyTemp: ==========

FlushDNS => voltooid
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9297038 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 20888 B
Windows/system/drivers => 1261246 B
Edge => 0 B
Chrome => 13770998 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
user => 5686620 B

RecycleBin => 0 B
EmptyTemp: => 28.6 MB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Einde van Fixlog 18:42:05 ====