Fix result of Farbar Recovery Scan Tool (x64) Version: 02-05.2019
Ran by Pc (03-05-2019 21:00:27) Run:1
Running from C:\Users\Pc\Desktop
Loaded Profiles: Pc (Available Profiles: Pc)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start CloseProcesses: CreateRestorePoint: HKU\S-1-5-21-233006258-18527085-3623643150-1001\...\Run: [Facebook Update] => C:\Users\Pc\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook, Inc. -> Facebook Inc.) HKU\S-1-5-21-233006258-18527085-3623643150-1001\...\Run: [IRNeroReboot] => /reboot="1" FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION Task: {0AC95AAF-43CF-4001-9032-322715A65156} - System32\Tasks\{4A3ACC91-9B6B-4AC3-98F0-A7DFA3552D3C} => C:\Windows\system32\pcalua.exe -a C:\Users\Pc\Desktop\pci_es_smartrecovery.exe -d C:\Users\Pc\Desktop Task: {0FDB4D25-9981-4C41-987A-7403ADF39B21} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy Task: {1B5BE0A6-0F93-4ED5-9E2F-0952342C9222} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1001UA => C:\Users\Pc\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook, Inc. -> Facebook Inc.) Task: {5A6A2F67-F10A-4BD1-9609-82FED179BE04} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1001Core => C:\Users\Pc\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook, Inc. -> Facebook Inc.) Task: {90F42A99-C814-46A3-AD8C-1B1D9D3DCC73} - System32\Tasks\{1FBFDAA0-9E00-4B37-B762-C98F1309BC88} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\ Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1001Core.job => C:\Users\Pc\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1001UA.job => C:\Users\Pc\AppData\Local\Facebook\Update\FacebookUpdate.exe HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-233006258-18527085-3623643150-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-es/?ocid=iehp SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN SearchScopes: HKU\S-1-5-21-233006258-18527085-3623643150-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2016-01-11] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-11] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKU\S-1-5-21-233006258-18527085-3623643150-1001 -> No Name - {093F479D-712E-46CD-9E06-62E734A05F68} - No File DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-11] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-11] (Oracle America, Inc. -> Oracle Corporation) CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL) U3 agmvc5gw; C:\Windows\System32\Drivers\agmvc5gw.sys [0 0000-00-00] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder) S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 EverestDriver; \??\C:\Users\Pc\AppData\Local\Temp\Rar$EX53.520\kerneld.amd64 [X] <==== ATTENTION CMD: ipconfig /flushdns CMD: ipconfig /renew CMD: bitsadmin /reset /allusers CMD: netsh winsock reset CMD: netsh advfirewall reset CMD: netsh advfirewall set allprofiles state ON CMD: netsh int ipv4 reset CMD: netsh int ipv6 reset RemoveProxy: EmptyTemp: Hosts: END 

*****************

"HKU\Start CloseProcesses: CreateRestorePoint: S-1-5-21-233006258-18527085-3623643150-1001\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache" => not found

==== End of Fixlog 21:00:27 ====