Fix result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018 Ran by TAHER (10-04-2018 00:51:35) Run:1 Running from C:\Users\TAHER\Desktop Loaded Profiles: TAHER (Available Profiles: TAHER) Boot Mode: Normal ============================================== fixlist content: ***************** start CreateRestorePoint: CloseProcesses: RemoveProxy: HKU\S-1-5-21-2422561113-3094125170-2170945475-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 GroupPolicy: Restriction <==== ATTENTION URLSearchHook: [S-1-5-21-2422561113-3094125170-2170945475-1001] ATTENTION => Default URLSearchHook is missing FF DefaultProfile: g4k87b2p.default FF ProfilePath: C:\Users\TAHER\AppData\Roaming\Mozilla\Firefox\Profiles\g4k87b2p.default [2018-04-08] FF user.js: detected! => C:\Users\TAHER\AppData\Roaming\Mozilla\Firefox\Profiles\g4k87b2p.default\user.js [2018-04-01] FF Session Restore: Mozilla\Firefox\Profiles\g4k87b2p.default -> is enabled. CHR DefaultSearchKeyword: Default -> lp CHR Session Restore: Default -> is enabled. S4 IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFMBRProtect.sys [X] S4 IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFSafeBox.sys [X] ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File CMD: netsh winsock reset all CMD: ipconfig /flushdns hosts: EmptyTemp: Reboot: end ***************** Restore point was successfully created. Processes closed successfully. ========= RemoveProxy: ========= "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => removed successfully "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully "HKU\S-1-5-21-2422561113-3094125170-2170945475-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully "HKU\S-1-5-21-2422561113-3094125170-2170945475-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully ========= End of RemoveProxy: ========= "HKU\S-1-5-21-2422561113-3094125170-2170945475-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NolowDiskSpaceChecks" => removed successfully C:\Windows\system32\GroupPolicy\Machine => moved successfully C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully Could not restore Default URLSearchHook. FF DefaultProfile: g4k87b2p.default => Error: No automatic fix found for this entry. C:\Users\TAHER\AppData\Roaming\Mozilla\Firefox\Profiles\g4k87b2p.default => moved successfully C:\Users\TAHER\AppData\Roaming\Mozilla\Firefox\Profiles\g4k87b2p.default => path removed successfully "C:\Users\TAHER\AppData\Roaming\Mozilla\Firefox\Profiles\g4k87b2p.default\user.js" => not found FF Session Restore: Mozilla\Firefox\Profiles\g4k87b2p.default -> is enabled. => "C:\Users\TAHER\AppData\Roaming\Mozilla\Firefox\Profiles\g4k87b2p.default\prefs.js" not found "Chrome DefaultSearchKeyword" => removed successfully "Chrome Session Restore" => removed successfully "HKLM\System\CurrentControlSet\Services\IMFMBRProtect" => removed successfully IMFMBRProtect => service removed successfully "HKLM\System\CurrentControlSet\Services\IMFSafeBox" => removed successfully IMFSafeBox => service removed successfully "HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Advanced SystemCare" => removed successfully "HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}" => removed successfully "HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\Advanced SystemCare" => removed successfully HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D} => not found "HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Advanced SystemCare" => removed successfully HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D} => not found ========= netsh winsock reset all ========= Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ========= End of CMD: ========= ========= ipconfig /flushdns ========= Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========= End of CMD: ========= C:\Windows\System32\Drivers\etc\hosts => moved successfully Hosts restored successfully. =========== EmptyTemp: ========== BITS transfer queue => 8388608 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24400640 B Java, Flash, Steam htmlcache => 821 B Windows/system/drivers => 79199247 B Edge => 0 B Chrome => 271774551 B Firefox => 176996174 B Opera => 30397512 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 128 B systemprofile32 => 128 B LocalService => 29512 B NetworkService => 0 B TAHER => 171319851 B RecycleBin => 0 B EmptyTemp: => 727.2 MB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 00:53:13 ====