Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 24.10.2018 Gestart door Kris (04-11-2018 13:21:13) Run:1 Gestart vanaf C:\Users\Kris\Desktop Geladen Profielen: UpdatusUser & Kris (Beschikbare Profielen: UpdatusUser & Kris) Boot Modus: Normal ============================================== fixlist inhoud: ***************** start CreateRestorePoint: CloseProce?sses: HKLM\...\Run: [] => [X] HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-3418494263-741142788-155982698-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== AANDACHT SearchScopes: HKLM -> DefaultScope waarde ontbreekt SearchScopes: HKLM-x32 -> DefaultScope waarde ontbreekt CHR HomePage: Default -> hxxp://www.mysearchresults.com/?c=3520&t=01 CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx S3 MBAMSwissArmy; \SystemRoot\System32\Drivers\mbamswissarmy.sys [X] 2018-10-10 20:09 - 2018-09-30 13:50 - 000000150 _____ C:\Windows\Reimage.ini Task: {8430D1C0-8C02-4440-B797-9A6390AF2B7E} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ShortcutWithArgument: C:\Users\Public\Desktop\ALDI Foto Service.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.aldifoto.be/nl ShortcutWithArgument: C:\Users\Public\Desktop\ALDI Startpagina.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://aldi-bn.aldi.be ShortcutWithArgument: C:\Users\Public\Desktop\ALDI Talk.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.medionmobile.be/ ShortcutWithArgument: C:\Users\Public\Desktop\eBay.be.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://rover.ebay.com/rover/1/1553-72747-17534-0/4 ShortcutWithArgument: C:\Users\Public\Desktop\MEDIONhome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.medion.com FirewallRules: [{12C7C725-9B75-490A-8A13-CDD4BA8414C6}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{C5AA416D-1549-4A22-92AB-3FDB45F00981}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{FBF168AA-E800-4FEA-AD9B-3263F9645408}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{6E50986A-A219-4208-A5CE-6626278E8877}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{3E5A2570-8C1F-4112-9589-956894C8CA7C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{A48C176E-9A80-474C-9571-CB44FECB5461}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{92343465-2F62-4AA4-85D9-7A6CB229AA73}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{EF67B5E0-1EA2-4DAD-A6B9-D4022C6D6348}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe EmptyTemp: end ***************** Herstelpunt is succesvol gemaakt. CloseProce?sses: => Fout: Geen automatische fix gevonden voor dit item. "HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => is succesvol verwijderd "HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => is succesvol verwijderd "HKU\S-1-5-21-3418494263-741142788-155982698-1001\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell" => is succesvol verwijderd HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => waarde met succes hersteld HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => waarde met succes hersteld "Chrome HomePage" => is succesvol verwijderd HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => is succesvol verwijderd HKLM\SOFTWARE\Google\Chrome\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp => is succesvol verwijderd HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => is succesvol verwijderd HKLM\System\CurrentControlSet\Services\MBAMSwissArmy => is succesvol verwijderd MBAMSwissArmy => dienst is succesvol verwijderd C:\Windows\Reimage.ini => is succesvol verplaatst "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8430D1C0-8C02-4440-B797-9A6390AF2B7E}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8430D1C0-8C02-4440-B797-9A6390AF2B7E}" => is succesvol verwijderd C:\Windows\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => is succesvol verplaatst "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVGPCTuneUp_Task_BkGndMaintenance" => is succesvol verwijderd HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => is succesvol verwijderd HKLM\System\CurrentControlSet\Control\SafeBoot\Network\MBAMService => is succesvol verwijderd C:\Users\Public\Desktop\ALDI Foto Service.lnk => snelkoppeling argument is succesvol verwijderd C:\Users\Public\Desktop\ALDI Startpagina.lnk => snelkoppeling argument is succesvol verwijderd C:\Users\Public\Desktop\ALDI Talk.lnk => snelkoppeling argument is succesvol verwijderd C:\Users\Public\Desktop\eBay.be.lnk => snelkoppeling argument is succesvol verwijderd C:\Users\Public\Desktop\MEDIONhome.lnk => snelkoppeling argument is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{12C7C725-9B75-490A-8A13-CDD4BA8414C6}" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C5AA416D-1549-4A22-92AB-3FDB45F00981}" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FBF168AA-E800-4FEA-AD9B-3263F9645408}" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E50986A-A219-4208-A5CE-6626278E8877}" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3E5A2570-8C1F-4112-9589-956894C8CA7C}" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A48C176E-9A80-474C-9571-CB44FECB5461}" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{92343465-2F62-4AA4-85D9-7A6CB229AA73}" => is succesvol verwijderd "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EF67B5E0-1EA2-4DAD-A6B9-D4022C6D6348}" => is succesvol verwijderd =========== EmptyTemp: ========== BITS transfer queue => 8388608 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 32689261 B Java, Flash, Steam htmlcache => 2496 B Windows/system/drivers => 1114921339 B Edge => 0 B Chrome => 910162343 B Firefox => 0 B Opera => 0 B Temp, IE cache, history, cookies, recent: Users => 0 B Default => 88220 B Public => 0 B ProgramData => 0 B systemprofile => 114836 B systemprofile32 => 90924 B LocalService => 0 B NetworkService => 40926 B UpdatusUser => 0 B Kris => 1712342473 B RecycleBin => 0 B EmptyTemp: => 3.5 GB tijdelijke gegevens verwijderd. ================================ Het systeem moest herstart worden. ==== Eind van Fixlog 13:26:21 ====