Fix result of Farbar Recovery Scan Tool (x64) Version: 20-06-2016 01
Ran by Brad (2016-06-24 16:12:33) Run:2
Running from C:\Users\Brad\Desktop
Loaded Profiles: Brad (Available Profiles: Brad & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Unlock: C:\Users\Brad\AppData\Roaming\Microsoft\Protect\fdd333eecbb2e25acfff.rs
C:\Users\Brad\AppData\Roaming\Microsoft\Protect\fdd333eecbb2e25acfff.rs
Unlock: HKU\S-1-5-21-1061724313-1516444972-2292327885-1000\Software\Microsoft\Windows\CurrentVersion\Run
Unlock: HKU\S-1-5-21-1061724313-1516444972-2292327885-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKU\S-1-5-21-1061724313-1516444972-2292327885-1000\...\Run: [WinResSync] => C:\WINDOWS\system32\regsvr32.exe /s "C:\Users\Brad\AppData\Roaming\Microsoft\Protect\fdd333eecbb2e25acfff.rs"
HKU\S-1-5-21-1061724313-1516444972-2292327885-1000\...\RunOnce: [WinResSync] => C:\WINDOWS\system32\regsvr32.exe /s "C:\Users\Brad\AppData\Roaming\Microsoft\Protect\fdd333eecbb2e25acfff.rs"
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome334.exe
Unlock: C:\Program Files (x86)\Internet Explorer\iexplore.bat
C:\Program Files (x86)\Internet Explorer\iexplore.bat
Unlock: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunсh Intеrnеt-Ехplоrеr Вrоwsеr.lnk
Unlock: C:\Users\Brad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехplоrеr.lnk
Unlock: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе.lnk
Unlock: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk
Unlock: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sеаrсh (2).lnk
Unlock: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sеаrсh.lnk
Unlock: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехplоrеr.lnk -> C:\Program Files\Internet Explorer\iexplore.bat (No File)
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File)
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File)
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sеаrсh (2).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File)
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sеаrсh.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File)
ShortcutWithArgument: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunсh Intеrnеt-Ехplоrеr Вrоwsеr.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat () -> hxxp://www%2dsearching.com/?prd=set_epc&s=G6Ozftpbl0cshmoAQ,429d1783-9bd1-470f-990d-cc4a7ecc6c20,
Hosts:
CMD: for /F "tokens=*" %1 in ('wevtutil.exe el') DO wevtutil.exe cl "%1"



























*****************

"C:\Users\Brad\AppData\Roaming\Microsoft\Protect\fdd333eecbb2e25acfff.rs" => was unlocked
C:\Users\Brad\AppData\Roaming\Microsoft\Protect\fdd333eecbb2e25acfff.rs => moved successfully
"HKU\S-1-5-21-1061724313-1516444972-2292327885-1000\Software\Microsoft\Windows\CurrentVersion\Run" => key was unlocked
"HKU\S-1-5-21-1061724313-1516444972-2292327885-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce" => key was unlocked
HKU\S-1-5-21-1061724313-1516444972-2292327885-1000\Software\Microsoft\Windows\CurrentVersion\Run\\WinResSync => value removed successfully
HKU\S-1-5-21-1061724313-1516444972-2292327885-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WinResSync => value removed successfully
HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command\\Default => value restored successfully
"C:\Program Files (x86)\Internet Explorer\iexplore.bat" => was unlocked
C:\Program Files (x86)\Internet Explorer\iexplore.bat => moved successfully
"C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunсh Intеrnеt-Ехplоrеr Вrоwsеr.lnk" => was unlocked
"C:\Users\Brad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехplоrеr.lnk" => was unlocked
"C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе.lnk" => was unlocked
"C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk" => was unlocked
"C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sеаrсh (2).lnk" => was unlocked
"C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sеаrсh.lnk" => was unlocked
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk" => not found.
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехplоrеr.lnk -> C:\Program Files\Internet Explorer\iexplore.bat (No File) => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File) => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File) => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sеаrсh (2).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File) => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sеаrсh.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File) => Error: No automatic fix found for this entry.
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (No File) => Error: No automatic fix found for this entry.
C:\Users\Brad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunсh Intеrnеt-Ехplоrеr Вrоwsеr.lnk => Shortcut argument removed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========  for /F "tokens=*" %1 in ('wevtutil.exe el') DO wevtutil.exe cl "%1" =========

Failed to clear log DebugChannel. The requested operation cannot be performed over an enabled direct channel. The channel must first be disabled before performing the requested operation.
Failed to clear log Microsoft-Windows-LiveId/Analytic. Access is denied.
Failed to clear log Microsoft-Windows-LiveId/Operational. Access is denied.

========= End of CMD: =========


==== End of Fixlog 16:13:11 ====