Fix result of Farbar Recovery Scan Tool (x86) Version: 27.01.2018 Ran by User (29-01-2018 17:27:15) Run:6 Running from C:\Users\User\Documents\Tools Loaded Profiles: User (Available Profiles: User) Boot Mode: Normal ============================================== fixlist content: ***************** ProxyEnable: [.DEFAULT] => Proxy is enabled. ProxyServer: [.DEFAULT] => http=127.0.0.1:52874;https=127.0.0.1:52874 AutoConfigURL: [.DEFAULT] => http=127.0.0.1:52874;https=127.0.0.1:52874 RemoveProxy: REG: reg query "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings" REG: reg query "HKEY_USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings" CMD: sc config WMPNetworkSvc start= demand CMD: sc config WMPNetworkSvc start= demand CMD: sc config WMPNetworkSvc start= demand reg: reg query "[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]" /s CMD: netstat -es CMD: netstat -rn EmptyTemp: CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" ***************** "HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable" => removed successfully. "HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer" => removed successfully. "HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL" => not found ========= RemoveProxy: ========= "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => removed successfully. "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully. "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully. "HKU\S-1-5-21-3088101763-2072606618-2741787397-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully. "HKU\S-1-5-21-3088101763-2072606618-2741787397-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully. ========= End of RemoveProxy: ========= ========= reg query "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings" ========= HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings IE5_UA_Backup_Flag REG_SZ 5.0 User Agent REG_SZ Mozilla/4.0 (compatible; MSIE 8.0; Win32) EmailName REG_SZ User@ PrivDiscUiShown REG_DWORD 0x1 EnableHttp1_1 REG_DWORD 0x1 WarnOnIntranet REG_DWORD 0x0 MimeExclusionListForCache REG_SZ multipart/mixed multipart/x-mixed-replace multipart/x-byteranges AutoConfigProxy REG_SZ wininet.dll UseSchannelDirectly REG_BINARY 01000000 WarnOnPost REG_BINARY 01000000 UrlEncoding REG_DWORD 0x0 SecureProtocols REG_DWORD 0xa80 PrivacyAdvanced REG_DWORD 0x0 ZonesSecurityUpgrade REG_BINARY 1C5B5525CFFFCE01 DisableCachingOfSSLPages REG_DWORD 0x0 WarnonZoneCrossing REG_DWORD 0x0 CertificateRevocation REG_DWORD 0x1 EnableNegotiate REG_DWORD 0x1 MigrateProxy REG_DWORD 0x1 ProxyHttp1.1 REG_DWORD 0x1 ShowPunycode REG_DWORD 0x0 EnablePunycode REG_DWORD 0x1 DisableIDNPrompt REG_DWORD 0x0 EnforceP3PValidity REG_DWORD 0x0 WarnonBadCertRecving REG_DWORD 0x1 WarnOnPostRedirect REG_DWORD 0x1 MaxConnectionsPerServer REG_DWORD 0xa MaxConnectionsPer1_0Server REG_DWORD 0xa ProxyEnable REG_DWORD 0x0 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CACHE HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Http Filters HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Passport HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\TemplatePolicies HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Url History HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones ========= End of Reg: ========= ========= reg query "HKEY_USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings" ========= ERROR: Invalid key name. Type "REG QUERY /?" for usage. ========= End of Reg: ========= ========= sc config WMPNetworkSvc start= demand ========= [SC] ChangeServiceConfig SUCCESS ========= End of CMD: ========= ========= sc config WMPNetworkSvc start= demand ========= [SC] ChangeServiceConfig SUCCESS ========= End of CMD: ========= ========= sc config WMPNetworkSvc start= demand ========= [SC] ChangeServiceConfig SUCCESS ========= End of CMD: ========= ========= reg query "[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]" /s ========= ERROR: Invalid key name. Type "REG QUERY /?" for usage. ========= End of Reg: ========= ========= netstat -es ========= Interface Statistics Received Sent Bytes 61223295 6073695 Unicast packets 55077 37818 Non-unicast packets 1329 1350 Discards 0 0 Errors 0 0 Unknown protocols 0 IPv4 Statistics Packets Received = 18517 Received Header Errors = 0 Received Address Errors = 0 Datagrams Forwarded = 0 Unknown Protocols Received = 0 Received Packets Discarded = 477 Received Packets Delivered = 81518 Output Requests = 76004 Routing Discards = 0 Discarded Output Packets = 1 Output Packet No Route = 5 Reassembly Required = 0 Reassembly Successful = 0 Reassembly Failures = 0 Datagrams Successfully Fragmented = 0 Datagrams Failing Fragmentation = 0 Fragments Created = 0 IPv6 Statistics Packets Received = 2 Received Header Errors = 0 Received Address Errors = 2 Datagrams Forwarded = 0 Unknown Protocols Received = 0 Received Packets Discarded = 14 Received Packets Delivered = 8 Output Requests = 95 Routing Discards = 0 Discarded Output Packets = 0 Output Packet No Route = 0 Reassembly Required = 0 Reassembly Successful = 0 Reassembly Failures = 0 Datagrams Successfully Fragmented = 0 Datagrams Failing Fragmentation = 0 Fragments Created = 0 ICMPv4 Statistics Received Sent Messages 45 0 Errors 0 0 Destination Unreachable 45 0 Time Exceeded 0 0 Parameter Problems 0 0 Source Quenches 0 0 Redirects 0 0 Echo Replies 0 0 Echos 0 0 Timestamps 0 0 Timestamp Replies 0 0 Address Masks 0 0 Address Mask Replies 0 0 Router Solicitations 0 0 Router Advertisements 0 0 ICMPv6 Statistics Received Sent Messages 0 5 Errors 0 0 Destination Unreachable 0 0 Packet Too Big 0 0 Time Exceeded 0 0 Parameter Problems 0 0 Echos 0 0 Echo Replies 0 0 MLD Queries 0 0 MLD Reports 0 0 MLD Dones 0 0 Router Solicitations 0 3 Router Advertisements 0 0 Neighbor Solicitations 0 1 Neighbor Advertisements 0 1 Redirects 0 0 Router Renumberings 0 0 TCP Statistics for IPv4 Active Opens = 281 Passive Opens = 6 Failed Connection Attempts = 11 Reset Connections = 88 Current Connections = 1 Segments Received = 81065 Segments Sent = 75356 Segments Retransmitted = 229 TCP Statistics for IPv6 Active Opens = 0 Passive Opens = 0 Failed Connection Attempts = 5 Reset Connections = 0 Current Connections = 0 Segments Received = 0 Segments Sent = 0 Segments Retransmitted = 0 UDP Statistics for IPv4 Datagrams Received = 351 No Ports = 432 Receive Errors = 0 Datagrams Sent = 362 UDP Statistics for IPv6 Datagrams Received = 13 No Ports = 14 Receive Errors = 0 Datagrams Sent = 64 ========= End of CMD: ========= ========= netstat -rn ========= =========================================================================== Interface List 11...00 21 5a 2d 20 6f ......Intel(R) 82566DM-2 Gigabit Network Connection 1...........................Software Loopback Interface 1 =========================================================================== IPv4 Route Table =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 20 127.0.0.0 255.0.0.0 On-link 127.0.0.1 306 127.0.0.1 255.255.255.255 On-link 127.0.0.1 306 127.255.255.255 255.255.255.255 On-link 127.0.0.1 306 192.168.1.0 255.255.255.0 On-link 192.168.1.2 276 192.168.1.2 255.255.255.255 On-link 192.168.1.2 276 192.168.1.255 255.255.255.255 On-link 192.168.1.2 276 224.0.0.0 240.0.0.0 On-link 127.0.0.1 306 224.0.0.0 240.0.0.0 On-link 192.168.1.2 276 255.255.255.255 255.255.255.255 On-link 127.0.0.1 306 255.255.255.255 255.255.255.255 On-link 192.168.1.2 276 =========================================================================== Persistent Routes: None IPv6 Route Table =========================================================================== Active Routes: If Metric Network Destination Gateway 1 306 ::1/128 On-link 11 276 fe80::/64 On-link 11 276 fe80::282c:7f:9ef:da0d/128 On-link 1 306 ff00::/8 On-link 11 276 ff00::/8 On-link =========================================================================== Persistent Routes: None ========= End of CMD: ========= ========= FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" ========= ========= End of CMD: ========= =========== EmptyTemp: ========== BITS transfer queue => 0 B DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20252745 B Java, Flash, Steam htmlcache => 0 B Windows/system/drivers => 317214 B Edge => 0 B Chrome => 148685621 B Firefox => 310663720 B Opera => 0 B Temp, IE cache, history, cookies, recent: Users => 0 B Default => 0 B Public => 0 B ProgramData => 0 B systemprofile => 0 B LocalService => 0 B NetworkService => 640 B User => 14558795 B RecycleBin => 0 B EmptyTemp: => 471.6 MB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 17:28:07 ====