Fix result of Farbar Recovery Scan Tool (x64) Version: 01-01-2017 Ran by Felipe (09-01-2017 10:00:27) Run:1 Running from D:\User2016\Desktop Loaded Profiles: Felipe (Available Profiles: Felipe) Boot Mode: Safe Mode (minimal) ============================================== fixlist content: ***************** Start CreateRestorePoint: CloseProcesses: HKU\S-1-5-21-3052470422-392353544-3589946678-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-3052470422-392353544-3589946678-1000\...\MountPoints2: {ac1b0cb2-91fa-11e6-9a82-50e5492444fa} - F:\LG_PC_Programs.exe HKU\S-1-5-21-3052470422-392353544-3589946678-1000\...\MountPoints2: {f9f8731d-7286-11e6-b397-50e5492444fa} - F:\HiSuiteDownLoader.exe Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL No File Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL No File Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL No File Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL No File HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\S-1-5-21-3052470422-392353544-3589946678-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\S-1-5-21-3052470422-392353544-3589946678-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://login.centamnetworks.com/ HKU\S-1-5-21-3052470422-392353544-3589946678-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://login.centamnetworks.com/ Toolbar: HKU\S-1-5-21-3052470422-392353544-3589946678-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File FF user.js: detected! => C:\Users\Felipe\AppData\Roaming\Mozilla\Firefox\Profiles\793f1rku.default\user.js [2017-01-07] S3 gdrv; \??\C:\Windows\gdrv.sys [X] Task: {B40F25B0-F906-46B3-98E2-4BB5B2863390} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2016-03-15] () ShortcutWithArgument: C:\Users\Felipe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\HOTMAIL.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=alkekcgkpcoagcmachoigbfdghlbeoon C:\Windows\gdrv.sys C:\Users\Felipe\mb3-setup-35891.35891-3.0.5.1299.exe C:\Users\Felipe\spybot-2.4.exe C:\Windows\AutoKMS\AutoKMS.exe CMD: netsh winsock reset CMD: ipconfig /flushdns CMD: netsh advfirewall reset CMD: netsh advfirewall set allprofiles state on Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f Emptytemp: Hosts: End ***************** Error: Restore point can only be created in normal mode. Processes closed successfully. HKU\S-1-5-21-3052470422-392353544-3589946678-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => key removed successfully HKU\S-1-5-21-3052470422-392353544-3589946678-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ac1b0cb2-91fa-11e6-9a82-50e5492444fa} => key removed successfully HKCR\CLSID\{ac1b0cb2-91fa-11e6-9a82-50e5492444fa} => key not found. HKU\S-1-5-21-3052470422-392353544-3589946678-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f9f8731d-7286-11e6-b397-50e5492444fa} => key removed successfully HKCR\CLSID\{f9f8731d-7286-11e6-b397-50e5492444fa} => key not found. HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000008 => key removed successfully HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000009 => key removed successfully HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64\000000000008 => key removed successfully HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64\000000000009 => key removed successfully HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully HKU\S-1-5-21-3052470422-392353544-3589946678-1000\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully HKU\S-1-5-21-3052470422-392353544-3589946678-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully HKU\S-1-5-21-3052470422-392353544-3589946678-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully HKU\S-1-5-21-3052470422-392353544-3589946678-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found. C:\Users\Felipe\AppData\Roaming\Mozilla\Firefox\Profiles\793f1rku.default\user.js => moved successfully C:\Users\Felipe\AppData\Roaming\Mozilla\Firefox\Profiles\793f1rku.default\user.js => not found. HKLM\System\CurrentControlSet\Services\gdrv => key removed successfully gdrv => service removed successfully HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{B40F25B0-F906-46B3-98E2-4BB5B2863390} => key removed successfully HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B40F25B0-F906-46B3-98E2-4BB5B2863390} => key removed successfully C:\Windows\System32\Tasks\AutoKMS => moved successfully HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS => key removed successfully C:\Users\Felipe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\HOTMAIL.lnk => Shortcut argument removed successfully. "C:\Windows\gdrv.sys" => not found. C:\Users\Felipe\mb3-setup-35891.35891-3.0.5.1299.exe => moved successfully C:\Users\Felipe\spybot-2.4.exe => moved successfully C:\Windows\AutoKMS\AutoKMS.exe => moved successfully ========= netsh winsock reset ========= La funci¢n de inicializaci¢n InitHelperDll en NSHHTTP.DLL no pudo iniciar, c¢digo de error 11003 El cat logo Winsock se restableci¢ correctamente. Debe reiniciar el equipo para completar el restablecimiento. ========= End of CMD: ========= ========= ipconfig /flushdns ========= Configuraci¢n IP de Windows No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n. ========= End of CMD: ========= ========= netsh advfirewall reset ========= La funci¢n de inicializaci¢n InitHelperDll en NSHHTTP.DLL no pudo iniciar, c¢digo de error 11003 Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo. ========= End of CMD: ========= ========= netsh advfirewall set allprofiles state on ========= La funci¢n de inicializaci¢n InitHelperDll en NSHHTTP.DLL no pudo iniciar, c¢digo de error 11003 Error al intentar ponerse en contacto con el servicio Firewall de Windows. Aseg£rese de que el servicio se est  ejecutando e intente la solicitud de nuevo. ========= End of CMD: ========= ========= reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f ========= La operaci¢n se complet¢ correctamente. ========= End of Reg: ========= ========= reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f ========= La operaci¢n se complet¢ correctamente. ========= End of Reg: ========= C:\Windows\System32\Drivers\etc\hosts => moved successfully Hosts restored successfully. =========== EmptyTemp: ========== BITS transfer queue => 0 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 104523827 B Java, Flash, Steam htmlcache => 0 B Windows/system/drivers => 858 B Edge => 0 B Chrome => 345537205 B Firefox => 3251260 B Opera => 0 B Temp, IE cache, history, cookies, recent: Users => 0 B Default => 0 B Public => 0 B ProgramData => 0 B systemprofile => 101033 B systemprofile32 => 66228 B LocalService => 132244 B NetworkService => 79936 B Felipe => 113249360 B RecycleBin => 2411 B EmptyTemp: => 540.7 MB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 10:00:38 ====