Fix result of Farbar Recovery Scan Tool (x64) Version:20-07-2015Ran by Mark at

1. Fix result of Farbar Recovery Scan Tool (x64) Version:20-07-2015
2. Ran by Mark at 2015-07-24 07:28:11 Run:1
3. Running from C:\Users\Mark\Desktop
4. Loaded Profiles: Mark (Available Profiles: Mark)
5. Boot Mode: Normal
6. ==============================================
7.  
8. fixlist content:
9. *****************
10. Start
11. CreateRestorePoint:
12. CloseProcesses:
13. HKU\S-1-5-21-2671571458-2749356011-94978874-1000\...\Run: [GoogleChromeAutoLaunch_96D28242BA1FDBE7F82E6712BD4F4597] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-07-13] (Google Inc.)
14. DPF: HKLM-x32 {A6616B31-4860-41E2-98E3-CA7649AF172F} file:///D:/launch.ocx
15. FF Plugin: @microsoft.com/GENUINE -> disabled No File
16. FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
17. CHR Extension: (Google Search) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-08]
18. C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
19. CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-14]
20. C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg
21. S2 BBDemon; "C:\Program Files\Dassault Systemes\B205\win_b64\code\bin\CATSysDemon.exe" -service [X]
22. C:\Program Files\Dassault Systemes\B205\win_b64\code\bin\CATSysDemon.exe
23. S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
24. S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP1a\WNt600x64\Sandra.sys [X]
25. R3 WinRing0_1_2_0; \??\C:\Program Files\OpenHardwareMonitor\OpenHardwareMonitor.sys [X]
26. C:\Windows\TEMP\GPUZ.sys
27. C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP1a\WNt600x64\Sandra.sys
28. C:\Program Files\OpenHardwareMonitor\OpenHardwareMonitor.sys
29. C:\Users\Mark\cleanup-fluent-Mark-PC-8292.bat
30. Task: {041FAA9D-A678-4051-A54E-4EBC8B36A795} - System32\Tasks\{47970B66-A95D-4BCE-A5A8-42CEEF81C0D8} => pcalua.exe -a "C:\Program Files\COMSOL\COMSOL50\Multiphysics\uninstall.exe"
31. Task: {837AB6D6-8DC9-4964-AA20-C0586D45746B} - System32\Tasks\{33178933-AA6F-4F8F-BB5E-1863B56B2EDA} => pcalua.exe -a D:\WIN7\Setup.exe -d D:\WIN7
32. Task: {C89E395D-B3C1-49E3-8901-ADEFCB89171C} - System32\Tasks\{1FDBB60B-1EA3-4D91-A1B8-F4EDC4CE845C} => pcalua.exe -a W:\Users\Mark\Downloads\winsdk_web.exe -d W:\Users\Mark\Downloads
33. cmd: ipconfig /flushdns
34. cmd: netsh advfirewall reset
35. cmd: netsh advfirewall set allprofiles state on
36. Reg: Reg Delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F
37. Reg: Reg Add "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F
38. Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
39. Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
40. CMD: bitsadmin /reset /allusers
41. RemoveProxy:
42. EmptyTemp:
43. Reboot:
44. end
45. *****************
46.  
47. Restore point was successfully created.
48. Processes closed successfully.
49. HKU\S-1-5-21-2671571458-2749356011-94978874-1000\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_96D28242BA1FDBE7F82E6712BD4F4597 => value removed successfully
50. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{A6616B31-4860-41E2-98E3-CA7649AF172F}" => key removed successfully
51. "HKCR\Wow6432Node\CLSID\{A6616B31-4860-41E2-98E3-CA7649AF172F}" => key removed successfully
52. "HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
53. "HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
54. C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf => moved successfully.
55. "C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf" => File/Folder not found.
56. C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg => moved successfully.
57. "C:\Users\Mark\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg" => File/Folder not found.
58. BBDemon => Service removed successfully
59. "C:\Program Files\Dassault Systemes\B205\win_b64\code\bin\CATSysDemon.exe" => File/Folder not found.
60. GPUZ => Service removed successfully
61. SANDRA => Service removed successfully
62. WinRing0_1_2_0 => Service stopped successfully.
63. WinRing0_1_2_0 => Service removed successfully
64. "C:\Windows\TEMP\GPUZ.sys" => File/Folder not found.
65. "C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP1a\WNt600x64\Sandra.sys" => File/Folder not found.
66. "C:\Program Files\OpenHardwareMonitor\OpenHardwareMonitor.sys" => File/Folder not found.
67. C:\Users\Mark\cleanup-fluent-Mark-PC-8292.bat => moved successfully.
68. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{041FAA9D-A678-4051-A54E-4EBC8B36A795}" => key removed successfully
69. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{041FAA9D-A678-4051-A54E-4EBC8B36A795}" => key removed successfully
70. C:\Windows\System32\Tasks\{47970B66-A95D-4BCE-A5A8-42CEEF81C0D8} => moved successfully.
71. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{47970B66-A95D-4BCE-A5A8-42CEEF81C0D8}" => key removed successfully
72. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{837AB6D6-8DC9-4964-AA20-C0586D45746B}" => key removed successfully
73. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{837AB6D6-8DC9-4964-AA20-C0586D45746B}" => key removed successfully
74. C:\Windows\System32\Tasks\{33178933-AA6F-4F8F-BB5E-1863B56B2EDA} => moved successfully.
75. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{33178933-AA6F-4F8F-BB5E-1863B56B2EDA}" => key removed successfully
76. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C89E395D-B3C1-49E3-8901-ADEFCB89171C}" => key removed successfully
77. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C89E395D-B3C1-49E3-8901-ADEFCB89171C}" => key removed successfully
78. C:\Windows\System32\Tasks\{1FDBB60B-1EA3-4D91-A1B8-F4EDC4CE845C} => moved successfully.
79. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1FDBB60B-1EA3-4D91-A1B8-F4EDC4CE845C}" => key removed successfully
80.  
81. ========= ipconfig /flushdns =========
82.  
83.  
84. Windows IP Configuration
85.  
86. Successfully flushed the DNS Resolver Cache.
87.  
88. ========= End of CMD: =========
89.  
90.  
91. ========= netsh advfirewall reset =========
92.  
93. Ok.
94.  
95.  
96. ========= End of CMD: =========
97.  
98.  
99. ========= netsh advfirewall set allprofiles state on =========
100.  
101. Ok.
102.  
103.  
104. ========= End of CMD: =========
105.  
106.  
107. ========= Reg Delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F =========
108.  
109. The operation completed successfully.
110.  
111.  
112.  
113. ========= End of Reg: =========
114.  
115.  
116. ========= Reg Add "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg" /F =========
117.  
118. The operation completed successfully.
119.  
120.  
121.  
122. ========= End of Reg: =========
123.  
124.  
125. ========= reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f =========
126.  
127. The operation completed successfully.
128.  
129.  
130.  
131. ========= End of Reg: =========
132.  
133.  
134. ========= reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f =========
135.  
136. The operation completed successfully.
137.  
138.  
139.  
140. ========= End of Reg: =========
141.  
142.  
143. ========= bitsadmin /reset /allusers =========
144.  
145.  
146. BITSADMIN version 3.0 [ 7.5.7601 ]
147. BITS administration utility.
148. (C) Copyright 2000-2006 Microsoft Corp.
149.  
150. BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
151. Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
152.  
153. 0 out of 0 jobs canceled.
154.  
155. ========= End of CMD: =========
156.  
157.  
158. ========= RemoveProxy: =========
159.  
160. HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
161. HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
162. HKU\S-1-5-21-2671571458-2749356011-94978874-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
163. HKU\S-1-5-21-2671571458-2749356011-94978874-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
164.  
165.  
166. ========= End of RemoveProxy: =========
167.  
168. EmptyTemp: => 1.5 GB temporary data Removed.
169.  
170.  
171. The system needed a reboot..
172.  
173. ==== End of Fixlog 07:28:24 ====