Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 26-12-2017
Gestart door Rik (27-12-2017 14:11:36) Run:1
Gestart vanaf C:\Users\Rik\Downloads
Geladen Profielen: Rik (Beschikbare Profielen: Rik & UpdatusUser)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start
CreateRestorePoint:
CustomCLSID: HKU\S-1-5-21-870238790-3972679876-3293455752-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Rik\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll => Geen bestand
ContextMenuHandlers1: [tosBtShllExt] -> {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1} => C:\Windows\system32\TosBtShell.dll -> Geen bestand
ContextMenuHandlers4: [tosBtShllExt] -> {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1} => C:\Windows\system32\TosBtShell.dll -> Geen bestand
Task: {591A0907-65C0-43A2-B3C1-BF127209A2C6} - \Fighters\SLOW-PCfighter\RCPRO-5-Rik-logon -> Geen bestand <==== AANDACHT
Task: {5ABFDA7D-047E-4E0A-8B10-AEDDBFACBF86} - System32\Tasks\FGRun => C:\Users\Rik\AppData\Roaming\pack.exe <==== AANDACHT
Task: {B10DA02E-964D-43B7-917D-52FF27377B59} - System32\Tasks\{9E30F639-08A7-4BAA-A1DE-8A498ADF791F} => C:\Windows\system32\pcalua.exe -a "C:\Users\Rik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9NEZHX7R\jre-8u141-windows-i586.exe" -d C:\Users\Rik\Desktop
Task: {D772283D-E9EC-47BD-B068-5F4195E100F7} - System32\Tasks\0 => c:\program files\internet explorer\iexplore.exe  <==== AANDACHT
AlternateDataStreams: C:\ProgramData\Temp:8C35AEA7 [159]
FirewallRules: [{E14CDEE9-B49E-4296-8335-E5449787EA27}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS2BFB\HPDiagnosticCoreUI.exe
FirewallRules: [{8B2D1FAA-CCB1-4704-9F54-A0E8DF134086}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS2BFB\HPDiagnosticCoreUI.exe
FirewallRules: [{5238C8B0-B7E1-4881-B28C-D8164A7D8B0B}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS711D\HP.EasyStart.exe
FirewallRules: [{055ED5AD-2E73-4CFE-AE36-177BB733D20C}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS26EE\HPDiagnosticCoreUI.exe
FirewallRules: [{C3E2C90E-7AD1-4CBE-A0E9-305F81762E2C}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS26EE\HPDiagnosticCoreUI.exe
FirewallRules: [{07022C30-2A48-4220-8C5D-73ED068B789C}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS0DC1\HPDiagnosticCoreUI.exe
FirewallRules: [{6A9F68A3-B6E7-4761-9841-F09EDD05560E}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS0DC1\HPDiagnosticCoreUI.exe
FirewallRules: [{B0E6C062-1116-4A6C-8774-1B5C276C332F}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS0E75\HPDiagnosticCoreUI.exe
FirewallRules: [{B608F820-7D8E-4F80-8D95-CBCD0AC3A545}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS0E75\HPDiagnosticCoreUI.exe
FirewallRules: [{FDAE97F5-51DC-4F76-98CC-E13EEF236868}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS0E75\HPDiagnosticCoreUI.exe
FirewallRules: [{E6774F9C-5088-4FF9-BD8D-301F26EA55EF}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS0E75\HPDiagnosticCoreUI.exe
FirewallRules: [{6D0D7710-F0FD-4BF8-AD5D-986098C5D158}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS15C9\HPDiagnosticCoreUI.exe
FirewallRules: [{D1E8DF61-AFFD-4C8F-A6AF-8BED711B3533}] => (Allow) C:\Users\Rik\AppData\Local\Temp\7zS15C9\HPDiagnosticCoreUI.exe
HKLM-x32\...\Run: [] => [X]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-870238790-3972679876-3293455752-1000 -> DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = 
SearchScopes: HKU\S-1-5-21-870238790-3972679876-3293455752-1000 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NSBU&chn=1000&geo=BE&ver=22&locale=nl_BE&gct=kwd&qsrc=2869
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> Geen bestand
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> Geen bestand
FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be => niet gevonden
FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Norton 360\Engine\22.11.2.7\Exts\Chrome.crx <niet gevonden>
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Norton 360\Engine\22.11.2.7\Exts\Chrome.crx <niet gevonden>
2017-12-26 13:35 - 2011-05-30 21:29 - 000354653 _____ C:\DUMP44cc.tmp
2017-12-08 09:20 - 2012-12-17 20:12 - 000000000 ____D C:\Program Files (x86)\Softonic
EmptyTemp:
end
*****************

Herstelpunt is succesvol gemaakt.
"HKU\S-1-5-21-870238790-3972679876-3293455752-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}" => is succesvol verwijderd
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\tosBtShllExt" => is succesvol verwijderd
"HKLM\Software\Classes\CLSID\{6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1}" => is succesvol verwijderd
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\tosBtShllExt" => is succesvol verwijderd
HKLM\Software\Classes\CLSID\{6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1} => sleutel niet gevonden
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{591A0907-65C0-43A2-B3C1-BF127209A2C6} => kon niet worden verwijderd sleutel. ErrorCode1: 0x00000002
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{591A0907-65C0-43A2-B3C1-BF127209A2C6}" => is succesvol verwijderd
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Fighters\SLOW-PCfighter\RCPRO-5-Rik-logon" => niet gevonden
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5ABFDA7D-047E-4E0A-8B10-AEDDBFACBF86}" => is succesvol verwijderd
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5ABFDA7D-047E-4E0A-8B10-AEDDBFACBF86}" => is succesvol verwijderd
C:\Windows\System32\Tasks\FGRun => is succesvol verplaatst
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FGRun" => is succesvol verwijderd
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B10DA02E-964D-43B7-917D-52FF27377B59}" => is succesvol verwijderd
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B10DA02E-964D-43B7-917D-52FF27377B59}" => is succesvol verwijderd
C:\Windows\System32\Tasks\{9E30F639-08A7-4BAA-A1DE-8A498ADF791F} => is succesvol verplaatst
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9E30F639-08A7-4BAA-A1DE-8A498ADF791F}" => is succesvol verwijderd
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D772283D-E9EC-47BD-B068-5F4195E100F7}" => is succesvol verwijderd
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D772283D-E9EC-47BD-B068-5F4195E100F7}" => is succesvol verwijderd
C:\Windows\System32\Tasks\0 => is succesvol verplaatst
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\0" => is succesvol verwijderd
C:\ProgramData\Temp => ":8C35AEA7" ADS is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E14CDEE9-B49E-4296-8335-E5449787EA27}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8B2D1FAA-CCB1-4704-9F54-A0E8DF134086}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5238C8B0-B7E1-4881-B28C-D8164A7D8B0B}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{055ED5AD-2E73-4CFE-AE36-177BB733D20C}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C3E2C90E-7AD1-4CBE-A0E9-305F81762E2C}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07022C30-2A48-4220-8C5D-73ED068B789C}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6A9F68A3-B6E7-4761-9841-F09EDD05560E}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0E6C062-1116-4A6C-8774-1B5C276C332F}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B608F820-7D8E-4F80-8D95-CBCD0AC3A545}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FDAE97F5-51DC-4F76-98CC-E13EEF236868}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E6774F9C-5088-4FF9-BD8D-301F26EA55EF}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D0D7710-F0FD-4BF8-AD5D-986098C5D158}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D1E8DF61-AFFD-4C8F-A6AF-8BED711B3533}" => is succesvol verwijderd
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => is succesvol verwijderd
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => waarde met succes hersteld
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => waarde met succes hersteld
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => waarde met succes hersteld
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => waarde met succes hersteld
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => is succesvol verwijderd
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => sleutel niet gevonden
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => waarde met succes hersteld
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => is succesvol verwijderd
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => sleutel niet gevonden
"HKU\S-1-5-21-870238790-3972679876-3293455752-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => is succesvol verwijderd
"HKU\S-1-5-21-870238790-3972679876-3293455752-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}" => is succesvol verwijderd
HKLM\Software\Classes\CLSID\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} => sleutel niet gevonden
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}" => is succesvol verwijderd
"HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}" => is succesvol verwijderd
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}" => is succesvol verwijderd
"HKLM\Software\Wow6432Node\Classes\CLSID\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}" => is succesvol verwijderd
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\belgiumeid@eid.belgium.be" => is succesvol verwijderd
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => is succesvol verwijderd
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => is succesvol verwijderd
"HKLM\SOFTWARE\Google\Chrome\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe" => is succesvol verwijderd
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe" => is succesvol verwijderd
C:\DUMP44cc.tmp => is succesvol verplaatst
C:\Program Files (x86)\Softonic => is succesvol verplaatst

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16836203 B
Java, Flash, Steam htmlcache => 20744 B
Windows/system/drivers => 228156 B
Edge => 0 B
Chrome => 354123917 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 102506 B
systemprofile32 => 2130288 B
LocalService => 82612 B
NetworkService => 2474 B
Rik => 517855401 B
UpdatusUser => 0 B

RecycleBin => 16167804 B
EmptyTemp: => 873.5 MB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Eind van Fixlog 14:23:58 ====