Fix result of Farbar Recovery Scan Tool (x64) Version: 26-04-2020 Ran by Gianna Catalina (28-04-2020 13:02:27) Run:3 Running from C:\Users\Gianna Catalina\Desktop Loaded Profiles: Gianna Catalina (Available Profiles: Gianna Catalina) Boot Mode: Normal ============================================== fixlist content: ***************** Start CloseProcesses: CreateRestorePoint: HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.122\Installer\chrmstp.exe [2020-04-25] (Google LLC -> Google LLC) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] 2020-04-26 19:16 - 2020-04-26 19:16 - 000004382 _____ C:\Users\Gianna Catalina\Desktop\eset.txt 2020-04-26 16:04 - 2020-04-26 16:04 - 000000753 _____ C:\Users\Gianna Catalina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2020-04-26 16:04 - 2020-04-26 16:04 - 000000636 _____ C:\Users\Gianna Catalina\Desktop\ESET Online Scanner.lnk 2020-04-26 16:04 - 2020-04-26 16:04 - 000000000 ____D C:\Users\Gianna Catalina\AppData\Local\ESET 2020-04-26 16:03 - 2020-04-26 16:02 - 014566496 _____ (ESET spol. s r.o.) C:\Users\Gianna Catalina\Desktop\esetonlinescanner.exe 2020-04-26 15:58 - 2020-04-26 16:02 - 014566496 _____ (ESET spol. s r.o.) C:\Users\Gianna Catalina\Downloads\esetonlinescanner.exe ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File AlternateDataStreams: C:\ProgramData\TEMP:AEC0AC81 [137] FirewallRules: [TCP Query User{15817AF6-3E5D-4C4E-A25C-04FD1E66EEC4}C:\users\gianna catalina\appdata\local\temp\kmsnano\qemu-system-i386.exe] => (Allow) C:\users\gianna catalina\appdata\local\temp\kmsnano\qemu-system-i386.exe No File FirewallRules: [UDP Query User{4C71E44B-04ED-4409-8303-875FBFF5E5A4}C:\users\gianna catalina\appdata\local\temp\kmsnano\qemu-system-i386.exe] => (Allow) C:\users\gianna catalina\appdata\local\temp\kmsnano\qemu-system-i386.exe No File CMD: ipconfig /flushdns CMD: ipconfig /renew CMD: bitsadmin /reset /allusers CMD: netsh winsock reset CMD: netsh advfirewall reset CMD: netsh advfirewall set allprofiles state ON CMD: netsh int ipv4 reset CMD: netsh int ipv6 reset RemoveProxy: EmptyTemp: Hosts: END ***************** Processes closed successfully. Restore point was successfully created. HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => not found HKLM\SOFTWARE\Policies\Mozilla => not found HKLM\SOFTWARE\Policies\Google => not found wfpcapture => service not found. "C:\Users\Gianna Catalina\Desktop\eset.txt" => not found "C:\Users\Gianna Catalina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk" => not found "C:\Users\Gianna Catalina\Desktop\ESET Online Scanner.lnk" => not found "C:\Users\Gianna Catalina\AppData\Local\ESET" => not found "C:\Users\Gianna Catalina\Desktop\esetonlinescanner.exe" => not found "C:\Users\Gianna Catalina\Downloads\esetonlinescanner.exe" => not found HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => not found HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => not found HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => not found HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => not found HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => not found C:\ProgramData\TEMP => ":AEC0AC81" ADS removed successfully "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{15817AF6-3E5D-4C4E-A25C-04FD1E66EEC4}C:\users\gianna catalina\appdata\local\temp\kmsnano\qemu-system-i386.exe" => not found "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4C71E44B-04ED-4409-8303-875FBFF5E5A4}C:\users\gianna catalina\appdata\local\temp\kmsnano\qemu-system-i386.exe" => not found ========= ipconfig /flushdns ========= Configuraci¢n IP de Windows Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS. ========= End of CMD: ========= ========= ipconfig /renew ========= Configuraci¢n IP de Windows No se puede realizar ninguna operaci¢n en Ethernet mientras los medios est‚n desconectados. No se puede realizar ninguna operaci¢n en Local Area Connection* 3 mientras los medios est‚n desconectados. No se puede realizar ninguna operaci¢n en Bluetooth Network Connection mientras los medios est‚n desconectados. Adaptador de Ethernet Ethernet: Estado de los medios. . . . . . . . . . . : medios desconectados Sufijo DNS espec¡fico para la conexi¢n. . : Adaptador de LAN inal mbrica Local Area Connection* 3: Estado de los medios. . . . . . . . . . . : medios desconectados Sufijo DNS espec¡fico para la conexi¢n. . : Adaptador de LAN inal mbrica Wi-Fi: Sufijo DNS espec¡fico para la conexi¢n. . : V¡nculo: direcci¢n IPv6 local. . . : fe80::dd2a:5b6b:d8d2:9f7d%9 Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.100 M scara de subred . . . . . . . . . . . . : 255.255.255.0 Puerta de enlace predeterminada . . . . . : 192.168.0.1 Adaptador de Ethernet Bluetooth Network Connection: Estado de los medios. . . . . . . . . . . : medios desconectados Sufijo DNS espec¡fico para la conexi¢n. . : Adaptador de t£nel isatap.{B393E093-5162-4B04-A6F5-1CE130B01CDB}: Estado de los medios. . . . . . . . . . . : medios desconectados Sufijo DNS espec¡fico para la conexi¢n. . : ========= End of CMD: ========= ========= bitsadmin /reset /allusers ========= BITSADMIN version 3.0 [ 7.8.10240 ] BITS administration utility. (C) Copyright 2000-2006 Microsoft Corp. BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows. Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets. 0 out of 0 jobs canceled. ========= End of CMD: ========= ========= netsh winsock reset ========= El cat logo Winsock se restableci¢ correctamente. Debe reiniciar el equipo para completar el restablecimiento. ========= End of CMD: ========= ========= netsh advfirewall reset ========= Aceptar ========= End of CMD: ========= ========= netsh advfirewall set allprofiles state ON ========= Aceptar ========= End of CMD: ========= ========= netsh int ipv4 reset ========= Interfaz se restableci¢ correctamente. Vecino se restableci¢ correctamente. Ruta de acceso se restableci¢ correctamente. Error al restablecer . Acceso denegado. se restableci¢ correctamente. Reinicie el equipo para completar esta acci¢n. ========= End of CMD: ========= ========= netsh int ipv6 reset ========= Vecino se restableci¢ correctamente. Ruta de acceso se restableci¢ correctamente. Error al restablecer . Acceso denegado. se restableci¢ correctamente. se restableci¢ correctamente. Reinicie el equipo para completar esta acci¢n. ========= End of CMD: ========= ========= RemoveProxy: ========= "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully "HKU\S-1-5-21-2553645042-3655948027-308666166-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully "HKU\S-1-5-21-2553645042-3655948027-308666166-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully ========= End of RemoveProxy: ========= C:\Windows\System32\Drivers\etc\hosts => moved successfully Hosts restored successfully. =========== EmptyTemp: ========== BITS transfer queue => 1120592 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20122346 B Java, Flash, Steam htmlcache => 0 B Windows/system/drivers => 43408 B Edge => 0 B Chrome => 141265 B Firefox => 0 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 0 B NetworkService => 0 B Gianna Catalina => 832714 B RecycleBin => 0 B EmptyTemp: => 21.2 MB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 13:03:35 ====