API tools faq
paste
Advertisement
Guest User

Fixlog

a guest
Feb 23rd, 2016
171
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.56 KB | None | 0 0
raw download clone embed print report
  1. Fix result of Farbar Recovery Scan Tool (x64) Version:21-02-2016 01
  2. Ran by Clair (2016-02-23 13:37:36) Run:1
  3. Running from C:\Users\Clair\Desktop
  4. Loaded Profiles: Clair (Available Profiles: Clair)
  5. Boot Mode: Normal
  6. ==============================================
  7.  
  8. fixlist content:
  9. *****************
  10. start
  11. CreateRestorePoint:
  12. CloseProcesses:
  13. AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL => No File
  14. AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => No File
  15. C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL
  16.  
  17. CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
  18. HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
  19.  
  20. FF Plugin-x32: @alibaba.com/npwangwang;version=1.0 -> C:\Program Files (x86)\AliQinTao\1.80.03U\npwangwang.dll [No File]
  21. FF Plugin HKU\.DEFAULT: @alipay.com/npalicert -> C:\windows\system32\config\systemprofile\AppData\Roaming\alipay\cf\npalicdo.dll? [No File]
  22. FF Plugin HKU\S-1-5-21-3390240173-3125293663-3244839066-1002: @alibaba.com/npAliSSOLogin;version=1.0 -> C:\Program Files (x86)\AliQinTao\1.90.02U\npAliSSOLogin.dll [No File]
  23. FF Plugin HKU\S-1-5-21-3390240173-3125293663-3244839066-1002: @alibaba.com/npwangwang;version=1.0 -> C:\Program Files (x86)\AliQinTao\1.90.02U\npwangwang.dll [No File]
  24. C:\Users\Clair\AppData\Local\SweetLabs App Platform
  25. 2016-02-15 17:22 - 2015-09-09 11:14 - 00002517 _____ C:\Users\Clair\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
  26. 2016-02-15 17:20 - 2015-10-30 18:38 - 00003392 _____ C:\WINDOWS\System32\Tasks\SweetLabs App Platform
  27. 2016-02-02 00:09 - 2015-09-19 21:17 - 00002928 _____ C:\WINDOWS\System32\Tasks\RegCure Pro
  28. Task: {0DB5D6A0-6BF3-4AE4-921B-2069F2BCC86D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
  29.  
  30. Task: {33515658-6ED5-404C-AA1E-075BE19A48C7} - System32\Tasks\RegCure Pro => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe [2012-02-09] (ParetoLogic, Inc.)
  31. C:\Program Files (x86)\ParetoLogic
  32. C:\Program Files (x86)\Common Files\ParetoLogic
  33.  
  34. Task: {3D0A27F4-C97F-4064-BEB6-E42520146878} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
  35. Task: {4434F7DA-F937-4C42-A25A-0B29C755C3EC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
  36. Task: {4602267A-41B0-4B12-B1CD-D3C7A71E2F68} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
  37. Task: {4B1FD9F9-E3D1-4528-867E-19AD061FAE0F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
  38. Task: {671EDFDB-FC62-480D-B7A9-3B79176A295C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
  39. Task: {77F6F8AD-9F53-4FB6-8AEC-33BF62B5DD81} - System32\Tasks\{E8ACF9E7-23B0-435E-8D22-0457C88BC2CD} => pcalua.exe -a "C:\Users\Clair\AppData\Local\Noble Casino\internalCasinoSetupUninstall1454449748679_na_en.exe" -c /executeuninstall /trafficsource='28000000' /profile='18041' /userid='0FAA9380254243379DFEB804A4C7DF8A' /skinid='noble' /fallbackfolder=''
  40.  
  41. Task: {853B1DF9-7A71-49DC-8178-69996323C94C} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
  42. Task: {92956720-2DE3-4FE1-8D33-FC60C6023CF4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
  43. Task: {A2F0CC2F-A57B-4845-BBFE-0530C2EF7BCF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
  44. Task: {BC50A755-BBFD-42AF-9470-2EA4EED9D24C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
  45. Task: {BCD8EE92-6779-47BC-9F25-BACD85C2D5C0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
  46.  
  47. Task: {BD90E87A-1723-4975-AB2E-A46B2960BDB0} - System32\Tasks\ParetoLogic Update Version3 Startup Task => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2013-06-20] ()
  48. Task: {CAF6E252-933E-4502-BD78-3C153B50097E} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
  49. Task: {D90DDAE6-15FF-4D2C-813B-F0A253C165FE} - System32\Tasks\SweetLabs App Platform => C:\Users\Clair\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [2016-02-15] (Pokki)
  50.  
  51. Task: {F2538995-5D1C-4156-8881-A54038BBB95F} - System32\Tasks\{C49DF153-675A-4E79-B082-60F58F58C250} => pcalua.exe -a "C:\Users\Clair\AppData\Local\Titanbet Casino UK\internalTitanCSetupUninstall1454454912408_na_en.exe" -c /executeuninstall /trafficsource='othersideinc6' /profile='nasdtbukc' /userid='F41059E581FE4215B3EA92167D1DE75F' /skinid='new' /fallbackfolder=''
  52. Task: {FB7BF233-6E7C-4B49-A38B-6340F7F04C73} - System32\Tasks\ParetoLogic Update Version3 => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2013-06-20] ()
  53.  
  54. Task: C:\WINDOWS\Tasks\ParetoLogic Registration3.job => C:\windows\system32\rundll32.exeGC:\Program Files (x86)\Common Files\ParetoLogic\UUS3\UUS3.dll
  55. Task: C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
  56. Task: C:\WINDOWS\Tasks\ParetoLogic Update Version3.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
  57. Task: C:\WINDOWS\Tasks\RegCure Pro.job => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe
  58. EmptyTemp:
  59. end
  60. *****************
  61.  
  62. Restore point was successfully created.
  63. Processes closed successfully.
  64. "C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL" => Value data removed successfully.
  65. " C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL" => Value data removed successfully.
  66. "C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL" => not found.
  67. "HKLM\SOFTWARE\Policies\Google" => key removed successfully
  68. "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
  69. "HKLM\Software\Wow6432Node\MozillaPlugins\@alibaba.com/npwangwang;version=1.0" => key removed successfully
  70. "HKU\.DEFAULT\Software\MozillaPlugins\@alipay.com/npalicert" => key removed successfully
  71. FF Plugin HKU\.DEFAULT: @alipay.com/npalicert -> C:\windows\system32\config\systemprofile\AppData\Roaming\alipay\cf\npalicdo.dll? [No File] => not found.
  72. "HKU\S-1-5-21-3390240173-3125293663-3244839066-1002\Software\MozillaPlugins\@alibaba.com/npAliSSOLogin;version=1.0" => key removed successfully
  73. C:\Program Files (x86)\AliQinTao\1.90.02U\npAliSSOLogin.dll => not found.
  74. "HKU\S-1-5-21-3390240173-3125293663-3244839066-1002\Software\MozillaPlugins\@alibaba.com/npwangwang;version=1.0" => key removed successfully
  75. C:\Program Files (x86)\AliQinTao\1.90.02U\npwangwang.dll => not found.
  76. "C:\Users\Clair\AppData\Local\SweetLabs App Platform" => not found.
  77. "C:\Users\Clair\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk" => not found.
  78. "C:\WINDOWS\System32\Tasks\SweetLabs App Platform" => not found.
  79. "C:\WINDOWS\System32\Tasks\RegCure Pro" => not found.
  80. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0DB5D6A0-6BF3-4AE4-921B-2069F2BCC86D}" => key removed successfully
  81. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0DB5D6A0-6BF3-4AE4-921B-2069F2BCC86D}" => key removed successfully
  82. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
  83. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33515658-6ED5-404C-AA1E-075BE19A48C7} => key not found.
  84. C:\WINDOWS\System32\Tasks\RegCure Pro => not found.
  85. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegCure Pro => key not found.
  86. "C:\Program Files (x86)\ParetoLogic" => not found.
  87. "C:\Program Files (x86)\Common Files\ParetoLogic" => not found.
  88. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3D0A27F4-C97F-4064-BEB6-E42520146878}" => key removed successfully
  89. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D0A27F4-C97F-4064-BEB6-E42520146878}" => key removed successfully
  90. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
  91. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4434F7DA-F937-4C42-A25A-0B29C755C3EC}" => key removed successfully
  92. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4434F7DA-F937-4C42-A25A-0B29C755C3EC}" => key removed successfully
  93. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
  94. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4602267A-41B0-4B12-B1CD-D3C7A71E2F68}" => key removed successfully
  95. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4602267A-41B0-4B12-B1CD-D3C7A71E2F68}" => key removed successfully
  96. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
  97. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4B1FD9F9-E3D1-4528-867E-19AD061FAE0F}" => key removed successfully
  98. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B1FD9F9-E3D1-4528-867E-19AD061FAE0F}" => key removed successfully
  99. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
  100. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{671EDFDB-FC62-480D-B7A9-3B79176A295C}" => key removed successfully
  101. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{671EDFDB-FC62-480D-B7A9-3B79176A295C}" => key removed successfully
  102. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
  103. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{77F6F8AD-9F53-4FB6-8AEC-33BF62B5DD81}" => key removed successfully
  104. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{77F6F8AD-9F53-4FB6-8AEC-33BF62B5DD81}" => key removed successfully
  105. C:\WINDOWS\System32\Tasks\{E8ACF9E7-23B0-435E-8D22-0457C88BC2CD} => moved successfully
  106. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E8ACF9E7-23B0-435E-8D22-0457C88BC2CD}" => key removed successfully
  107. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{853B1DF9-7A71-49DC-8178-69996323C94C}" => key removed successfully
  108. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{853B1DF9-7A71-49DC-8178-69996323C94C}" => key removed successfully
  109. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
  110. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{92956720-2DE3-4FE1-8D33-FC60C6023CF4}" => key removed successfully
  111. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92956720-2DE3-4FE1-8D33-FC60C6023CF4}" => key removed successfully
  112. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
  113. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A2F0CC2F-A57B-4845-BBFE-0530C2EF7BCF}" => key removed successfully
  114. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2F0CC2F-A57B-4845-BBFE-0530C2EF7BCF}" => key removed successfully
  115. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
  116. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BC50A755-BBFD-42AF-9470-2EA4EED9D24C}" => key removed successfully
  117. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC50A755-BBFD-42AF-9470-2EA4EED9D24C}" => key removed successfully
  118. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
  119. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BCD8EE92-6779-47BC-9F25-BACD85C2D5C0}" => key removed successfully
  120. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCD8EE92-6779-47BC-9F25-BACD85C2D5C0}" => key removed successfully
  121. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
  122. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD90E87A-1723-4975-AB2E-A46B2960BDB0} => key not found.
  123. C:\WINDOWS\System32\Tasks\ParetoLogic Update Version3 Startup Task => not found.
  124. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ParetoLogic Update Version3 Startup Task => key not found.
  125. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CAF6E252-933E-4502-BD78-3C153B50097E} => key not found.
  126. C:\WINDOWS\System32\Tasks\ParetoLogic Registration3 => not found.
  127. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ParetoLogic Registration3 => key not found.
  128. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D90DDAE6-15FF-4D2C-813B-F0A253C165FE} => key not found.
  129. C:\WINDOWS\System32\Tasks\SweetLabs App Platform => not found.
  130. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SweetLabs App Platform => key not found.
  131. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F2538995-5D1C-4156-8881-A54038BBB95F}" => key removed successfully
  132. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F2538995-5D1C-4156-8881-A54038BBB95F}" => key removed successfully
  133. C:\WINDOWS\System32\Tasks\{C49DF153-675A-4E79-B082-60F58F58C250} => moved successfully
  134. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C49DF153-675A-4E79-B082-60F58F58C250}" => key removed successfully
  135. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB7BF233-6E7C-4B49-A38B-6340F7F04C73} => key not found.
  136. C:\WINDOWS\System32\Tasks\ParetoLogic Update Version3 => not found.
  137. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ParetoLogic Update Version3 => key not found.
  138. C:\WINDOWS\Tasks\ParetoLogic Registration3.job => not found.
  139. C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job => not found.
  140. C:\WINDOWS\Tasks\ParetoLogic Update Version3.job => not found.
  141. C:\WINDOWS\Tasks\RegCure Pro.job => not found.
  142. EmptyTemp: => 83.9 MB temporary data Removed.
  143.  
  144.  
  145. The system needed a reboot.
  146.  
  147. ==== End of Fixlog 13:37:55 ====
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!