Fix result of Farbar Recovery Scan Tool (x64) Version: 30-11-2016
Ran by CesarAnDrOiD (01-12-2016 22:37:51) Run:1
Running from C:\Users\CesarAnDrOiD\Desktop
Loaded Profiles: CesarAnDrOiD (Available Profiles: CesarAnDrOiD)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
RemoveProxy:

HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3632631583-3328051805-244849390-1000\...\MountPoints2: {1edb5ec6-b60a-11e6-9cac-0c84dc920627} - K:\AutoRun.exe
HKU\S-1-5-18\...\Run: [] => 0
ShellExecuteHooks: - {38A4A870-AA3F-11E6-9675-64006A5CFC23} - No File [ ]
GroupPolicy: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-3632631583-3328051805-244849390-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF DefaultProfile: swlnpedq.default
FF ProfilePath: C:\Users\CesarAnDrOiD\AppData\Roaming\Mozilla\Firefox\Profiles\swlnpedq.default [2016-12-01]
FF Homepage: Mozilla\Firefox\Profiles\swlnpedq.default -> google.com/
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\CesarAnDrOiD\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-12-01] <==== ATTENTION
S2 Hiwuly; C:\Program Files (x86)\Chidry\Chuziwardschedule.dll [X]
U0 aswVmm; no ImagePath
S3 cpuz138; \??\C:\Users\CesarAnDrOiD\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
S3 iscFlash; \??\C:\Users\CesarAnDrOiD\AppData\Local\Temp\7zSE64A.tmp\iscflashx64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

Task: {4649284F-9420-4FBB-9E24-1EB5C4ABF5A9} - \psv_Stim-Fresh -> No File <==== ATTENTION
Task: {90321BDB-6838-43DC-BF1E-0806CDB0F37D} - System32\Tasks\d55d54fadd454b4024be170002ed6b6c => Rundll32.exe "C:\Program Files (x86)\Samsung\pootgo.dll",e62dc6c6547f46bda862da2d05af6862 <==== ATTENTION
Task: {95A11C8D-90DB-4420-993E-0C6646F1E940} - \psv_Subing -> No File <==== ATTENTION
Task: {B9D29AEB-5935-4042-981A-A991F68358AB} - \psv_Techhome -> No File <==== ATTENTION
Task: {C1D391F9-3FB2-4144-949D-132AAEF69A93} - \psv_Vento-Stock -> No File <==== ATTENTION
Task: {DBC48E3E-8D70-4E29-9A1B-2878CB992BE4} - \psv_Fixeco -> No File <==== ATTENTION
Task: {DF824635-8A1B-4751-A025-CD8059B56AF6} - \psv_Trescore -> No File <==== ATTENTION
Task: {E706A48F-C585-4612-BCF0-5BE6F1A939D2} - \psv_Lexikix -> No File <==== ATTENTION



CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end
*****************

Restore point was successfully created.
Processes closed successfully.

========= RemoveProxy: =========

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully
HKU\S-1-5-21-3632631583-3328051805-244849390-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-3632631583-3328051805-244849390-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
"HKU\S-1-5-21-3632631583-3328051805-244849390-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1edb5ec6-b60a-11e6-9cac-0c84dc920627}" => key removed successfully
HKCR\CLSID\{1edb5ec6-b60a-11e6-9cac-0c84dc920627} => key not found. 
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{38A4A870-AA3F-11E6-9675-64006A5CFC23} => value removed successfully
HKCR\CLSID\{38A4A870-AA3F-11E6-9675-64006A5CFC23} => key not found. 
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found. 
HKU\S-1-5-21-3632631583-3328051805-244849390-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
FF DefaultProfile: swlnpedq.default => Error: No automatic fix found for this entry.
C:\Users\CesarAnDrOiD\AppData\Roaming\Mozilla\Firefox\Profiles\swlnpedq.default => moved successfully
C:\Users\CesarAnDrOiD\AppData\Roaming\Mozilla\Firefox\Profiles\swlnpedq.default => path removed successfully
FF Homepage: Mozilla\Firefox\Profiles\swlnpedq.default -> google.com/ => not found
CHR DefaultProfile: ChromeDefaultData => Error: No automatic fix found for this entry.
C:\Users\CesarAnDrOiD\AppData\Local\Google\Chrome\User Data\ChromeDefaultData => moved successfully
Hiwuly => service removed successfully
aswVmm => service removed successfully
cpuz138 => service removed successfully
iscFlash => service removed successfully
VGPU => service removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4649284F-9420-4FBB-9E24-1EB5C4ABF5A9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4649284F-9420-4FBB-9E24-1EB5C4ABF5A9}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\psv_Stim-Fresh => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{90321BDB-6838-43DC-BF1E-0806CDB0F37D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{90321BDB-6838-43DC-BF1E-0806CDB0F37D}" => key removed successfully
C:\Windows\System32\Tasks\d55d54fadd454b4024be170002ed6b6c => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\d55d54fadd454b4024be170002ed6b6c" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{95A11C8D-90DB-4420-993E-0C6646F1E940}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{95A11C8D-90DB-4420-993E-0C6646F1E940}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\psv_Subing => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B9D29AEB-5935-4042-981A-A991F68358AB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9D29AEB-5935-4042-981A-A991F68358AB}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\psv_Techhome => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C1D391F9-3FB2-4144-949D-132AAEF69A93}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C1D391F9-3FB2-4144-949D-132AAEF69A93}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\psv_Vento-Stock => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DBC48E3E-8D70-4E29-9A1B-2878CB992BE4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DBC48E3E-8D70-4E29-9A1B-2878CB992BE4}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\psv_Fixeco => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DF824635-8A1B-4751-A025-CD8059B56AF6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF824635-8A1B-4751-A025-CD8059B56AF6}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\psv_Trescore => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E706A48F-C585-4612-BCF0-5BE6F1A939D2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E706A48F-C585-4612-BCF0-5BE6F1A939D2}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\psv_Lexikix => key not found. 

========= netsh winsock reset all =========


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.


========= End of CMD: =========


========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========

Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7599043 B
Java, Flash, Steam htmlcache => 343 B
Windows/system/drivers => 1558537 B
Edge => 0 B
Chrome => 1690036 B
Firefox => 127532216 B
Opera => 41405849 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16802 B
systemprofile32 => 66356 B
LocalService => 0 B
NetworkService => 0 B
CesarAnDrOiD => 40287916 B

RecycleBin => 24946909 B
EmptyTemp: => 241.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:38:33 ====