Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 21.11.2018 Gestart door Pieter (24-11-2018 20:08:30) Run:2 Gestart vanaf C:\Users\Pieter\Desktop Geladen Profielen: Pieter (Beschikbare Profielen: Pieter) Boot Modus: Normal ============================================== fixlist inhoud: ***************** CreateRestorePoint: CloseProcesses: SearchScopes: HKU\S-1-5-21-2228361774-2972515982-1438480923-1001 -> DefaultScope {12E6D627-49CD-4C60-B789-9494264DD7C1} URL = SearchScopes: HKU\S-1-5-21-2228361774-2972515982-1438480923-1001 -> {12E6D627-49CD-4C60-B789-9494264DD7C1} URL = SearchScopes: HKU\S-1-5-21-2228361774-2972515982-1438480923-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11182018183430870 -> DefaultScope {12E6D627-49CD-4C60-B789-9494264DD7C1} URL = SearchScopes: HKU\S-1-5-21-2228361774-2972515982-1438480923-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11182018183430870 -> {12E6D627-49CD-4C60-B789-9494264DD7C1} URL = FF HKLM-x32\...\Firefox\Extensions: [{d4da7309-b89a-45ec-8ebb-cfb2ae13618b}] - C:\Program Files\Acer ProShield\FFExt20 => niet gevonden FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => niet gevonden VirusTotal: C:\WINDOWS\System32\DRIVERS\Trufos.sys ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand Task: {0423B138-21E8-4460-80AA-18DF8510E95A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {1FB1306D-F46F-4712-88A3-D87EF261BD5D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {2D785FA7-7842-4DC5-97AA-94A2281F4699} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {4413B6F6-556D-4AC1-8415-B549AE3C4158} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {829B73FC-0933-4E87-9F1B-82CB45285DCC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {87B308C5-3B6C-4874-BC9B-B23DBC2199FC} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {8CE1CFD3-C18B-4F53-AE44-6EC0D8C4F572} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {B835BB89-62C2-404E-AE3C-E0475049125B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {C0F9977E-C3A2-4FE2-A1A3-A33E610AE729} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {CED1AC04-0967-403E-906C-BAF3D4E2958D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {D1F0B48C-FC4C-4625-8D70-0828A867798B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {F1A2469D-5613-4BC1-AAE5-E848E9C9F1CA} - \WPD\SqmUpload_S-1-5-21-2228361774-2972515982-1438480923-1001 -> Geen bestand <==== AANDACHT Task: {FE6A4A2B-1DFF-48BB-AAE4-B111CCAD52CB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT ShortcutWithArgument: C:\Users\Pieter\AppData\Local\Google\Chrome\User Data\App-opstartprogramma van Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\App-opstartprogramma van Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list EmptyTemp: ***************** Herstelpunt is succesvol gemaakt. Proces succesvol afgesloten. "HKU\S-1-5-21-2228361774-2972515982-1438480923-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => is succesvol verwijderd HKU\S-1-5-21-2228361774-2972515982-1438480923-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{12E6D627-49CD-4C60-B789-9494264DD7C1} => is succesvol verwijderd HKLM\Software\Classes\CLSID\{12E6D627-49CD-4C60-B789-9494264DD7C1} => niet gevonden SearchScopes: HKU\S-1-5-21-2228361774-2972515982-1438480923-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11182018183430870 -> DefaultScope {12E6D627-49CD-4C60-B789-9494264DD7C1} URL = => Fout: Geen automatische fix gevonden voor dit item. SearchScopes: HKU\S-1-5-21-2228361774-2972515982-1438480923-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11182018183430870 -> {12E6D627-49CD-4C60-B789-9494264DD7C1} URL = => Fout: Geen automatische fix gevonden voor dit item. "HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{d4da7309-b89a-45ec-8ebb-cfb2ae13618b}" => is succesvol verwijderd "HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com" => is succesvol verwijderd VirusTotal: C:\WINDOWS\System32\DRIVERS\Trufos.sys => https://www.virustotal.com/file/32e9ba970d6daefb37305ed7dc01e58f43284d79f0d1a5c3e37b06b87acc82a9/analysis/1541319549/ HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => is succesvol verwijderd HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => niet gevonden "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0423B138-21E8-4460-80AA-18DF8510E95A}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0423B138-21E8-4460-80AA-18DF8510E95A}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1FB1306D-F46F-4712-88A3-D87EF261BD5D}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FB1306D-F46F-4712-88A3-D87EF261BD5D}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2D785FA7-7842-4DC5-97AA-94A2281F4699}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D785FA7-7842-4DC5-97AA-94A2281F4699}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4413B6F6-556D-4AC1-8415-B549AE3C4158}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4413B6F6-556D-4AC1-8415-B549AE3C4158}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => niet gevonden "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{829B73FC-0933-4E87-9F1B-82CB45285DCC}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{829B73FC-0933-4E87-9F1B-82CB45285DCC}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{87B308C5-3B6C-4874-BC9B-B23DBC2199FC}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87B308C5-3B6C-4874-BC9B-B23DBC2199FC}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8CE1CFD3-C18B-4F53-AE44-6EC0D8C4F572}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8CE1CFD3-C18B-4F53-AE44-6EC0D8C4F572}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B835BB89-62C2-404E-AE3C-E0475049125B}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B835BB89-62C2-404E-AE3C-E0475049125B}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C0F9977E-C3A2-4FE2-A1A3-A33E610AE729}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C0F9977E-C3A2-4FE2-A1A3-A33E610AE729}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CED1AC04-0967-403E-906C-BAF3D4E2958D}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CED1AC04-0967-403E-906C-BAF3D4E2958D}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1F0B48C-FC4C-4625-8D70-0828A867798B}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1F0B48C-FC4C-4625-8D70-0828A867798B}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F1A2469D-5613-4BC1-AAE5-E848E9C9F1CA}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F1A2469D-5613-4BC1-AAE5-E848E9C9F1CA}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-2228361774-2972515982-1438480923-1001" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE6A4A2B-1DFF-48BB-AAE4-B111CCAD52CB}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE6A4A2B-1DFF-48BB-AAE4-B111CCAD52CB}" => is succesvol verwijderd "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => is succesvol verwijderd C:\Users\Pieter\AppData\Local\Google\Chrome\User Data\App-opstartprogramma van Chrome.lnk => snelkoppeling argument is succesvol verwijderd C:\Users\Pieter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\App-opstartprogramma van Chrome.lnk => snelkoppeling argument is succesvol verwijderd =========== EmptyTemp: ========== BITS transfer queue => 10772480 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 83791768 B Java, Flash, Steam htmlcache => 506 B Windows/system/drivers => 28511865 B Edge => 822141 B Chrome => 157319913 B Firefox => 11288777 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 8120 B LocalService => 0 B NetworkService => 0 B NetworkService => 0 B Pieter => 33664477 B RecycleBin => 3778 B EmptyTemp: => 311.1 MB tijdelijke gegevens verwijderd. ================================ Het systeem moest herstart worden. ==== Eind van Fixlog 20:10:21 ====