Fix result of Farbar Recovery Scan Tool (x64) Version: 11.03.2019
Ran by Geral (13-03-2019 19:10:30) Run:1
Running from C:\Users\Geral\Desktop
Loaded Profiles: Geral (Available Profiles: defaultuser0 & Geral & omiii)
Boot Mode: Safe Mode (with Networking)
==============================================
fixlist content:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {4143DEE5-8454-460B-AAD8-F9E09E94916B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {4EC9C9BA-46AD-4091-AF20-B2AD9F03CBF7} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {DF2C992E-535B-4803-ADB3-4306A1355698} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
HKLM-x32\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
2019-03-13 00:57 - 2017-08-25 09:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-12-29 20:58 - 2018-12-29 20:58 - 000000000 _____ () C:\Users\Geral\AppData\Local\{85FB2A34-D850-4B29-80B3-A55D34E91CAA}
2018-12-29 20:58 - 2018-12-29 20:58 - 000000000 _____ () C:\Users\Geral\AppData\Local\{C4FBED46-1B59-4CC1-9C62-3FA552839788}
2019-03-05 05:44 - 2018-09-11 16:23 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-02-26 17:07 - 2019-02-26 17:07 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsign05e203efe166a89c
2019-02-26 16:59 - 2019-02-26 16:59 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsign93606907c8766e98
2019-02-26 16:59 - 2019-02-26 16:59 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsign053a37e11bb25f0b
2019-02-26 16:58 - 2019-02-26 16:58 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsignd015985b68551a22
2019-02-26 16:57 - 2019-02-26 16:57 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsign9f309115cec88aaf
2019-02-26 16:57 - 2019-02-26 16:57 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsign82ffde9f0b9fb484
2019-02-26 16:50 - 2019-02-26 16:50 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsign70ff5e8283265acf
2019-02-26 16:49 - 2019-02-26 16:49 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsign5ab4dd8245afa930
2019-02-26 16:49 - 2019-02-26 16:49 - 000000000 ____D C:\Users\Geral\AppData\Local\Tempzxpsign0782dee32f435322
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: Restore point can only be created in normal mode.
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{4143DEE5-8454-460B-AAD8-F9E09E94916B}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4143DEE5-8454-460B-AAD8-F9E09E94916B}" => removed successfully
C:\WINDOWS\System32\Tasks\Avast Software\Overseer => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{4EC9C9BA-46AD-4091-AF20-B2AD9F03CBF7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4EC9C9BA-46AD-4091-AF20-B2AD9F03CBF7}" => removed successfully
C:\WINDOWS\System32\Tasks\AVG\Overseer => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG\Overseer" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DF2C992E-535B-4803-ADB3-4306A1355698}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF2C992E-535B-4803-ADB3-4306A1355698}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AvastUI.exe" => removed successfully
"HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WAB Migrate" => removed successfully
"HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WAB Migrate" => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\Users\Geral\AppData\Local\{85FB2A34-D850-4B29-80B3-A55D34E91CAA} => moved successfully
C:\Users\Geral\AppData\Local\{C4FBED46-1B59-4CC1-9C62-3FA552839788} => moved successfully
C:\WINDOWS\System32\Tasks\AVAST Software => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsign05e203efe166a89c => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsign93606907c8766e98 => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsign053a37e11bb25f0b => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsignd015985b68551a22 => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsign9f309115cec88aaf => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsign82ffde9f0b9fb484 => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsign70ff5e8283265acf => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsign5ab4dd8245afa930 => moved successfully
C:\Users\Geral\AppData\Local\Tempzxpsign0782dee32f435322 => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-662939426-3632563996-1299455624-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-662939426-3632563996-1299455624-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
========= End of RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= End of CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
Error en la operaci¢n. No hay ning£n adaptador permitido para
esta operaci¢n.
========= End of CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
========= End of CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
Unable to connect to BITS - 0x8007043c
========= End of CMD: =========
========= netsh advfirewall reset =========
Aceptar
========= End of CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Aceptar
========= End of CMD: =========
========= netsh int ipv4 reset =========
Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= End of CMD: =========
========= netsh int ipv6 reset =========
Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= End of CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 11034624 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 168924505 B
Java, Flash, Steam htmlcache => 1124 B
Windows/system/drivers => 10141379 B
Edge => 4096 B
Chrome => 93881084 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 2770 B
LocalService => 0 B
NetworkService => 6063560 B
NetworkService => 0 B
defaultuser0 => 0 B
Geral => 1157772444 B
omiii => 97531854 B
RecycleBin => 0 B
EmptyTemp: => 1.4 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:13:21 ====