Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Fix result of Farbar Recovery Scan Tool (x64) Version:23-09-2015
- Ran by Chaz (2015-09-24 07:35:39) Run:1
- Running from C:\Users\Chaz\Downloads
- Loaded Profiles: Chaz (Available Profiles: Chaz)
- Boot Mode: Normal
- ==============================================
- fixlist content:
- *****************
- Start
- CreateRestorePoint:
- File: TiltWheelMouse.exe
- File: C:\Windows\System32\DRIVERS\t_mouse.sys
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\...\MountPoints2: {3337a7f2-22e8-11e4-a19e-10c37b6b1de4} - E:\LaunchU3.exe -a
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\...\MountPoints2: {4020498b-9fd9-11e3-bc53-806e6f6e6963} - D:\ASRSetup.exe
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\...\MountPoints2: {91678e7b-1d47-11e4-b703-806e6f6e6963} - D:\.\Bin\ASSETUP.exe
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\...\MountPoints2: {bf38f1f1-8123-11e4-bffe-10c37b6b1de4} - G:\SETUP.EXE
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {3337a7f2-22e8-11e4-a19e-10c37b6b1de4} - E:\LaunchU3.exe -a
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {4020498b-9fd9-11e3-bc53-806e6f6e6963} - D:\ASRSetup.exe
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {91678e7b-1d47-11e4-b703-806e6f6e6963} - D:\.\Bin\ASSETUP.exe
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {bf38f1f1-8123-11e4-bffe-10c37b6b1de4} - G:\SETUP.EXE
- AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => No File
- SearchScopes: HKU\S-1-5-21-1615470529-4013084047-1740189228-1000 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3324790&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP79445224-322E-4489-91E4-818CB0FE7D40&q={searchTerms}&SSPV=
- SearchScopes: HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3324790&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP79445224-322E-4489-91E4-818CB0FE7D40&q={searchTerms}&SSPV=
- Toolbar: HKU\S-1-5-21-1615470529-4013084047-1740189228-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
- Toolbar: HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
- FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
- FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\3.1.0\\npsitesafety.dll [No File]
- FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
- FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
- FF HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\...\Firefox\Extensions: [{8492baab-62ca-4e2c-983b-dfef7cae8082}] - C:\Program Files (x86)\PassShow\154.xpi
- FF HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Firefox\Extensions: [{8492baab-62ca-4e2c-983b-dfef7cae8082}] - C:\Program Files (x86)\PassShow\154.xpi
- CHR HomePage: Default -> hxxps://mysearch.avg.com?cid={8DF674E6-6623-47A7-867C-F62406776D5A}&mid=5cdd95e0063b47d281166d16b2015874-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-07-21 13:29:47&v=3.1.0.7&pid=wtu&sg=&sap=hp
- CHR StartupUrls: Default -> "hxxps://mysearch.avg.com?cid={8DF674E6-6623-47A7-867C-F62406776D5A}&mid=5cdd95e0063b47d281166d16b2015874-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=AVG&coid=avgtbavg&pr=fr&d=2014-07-21 13:29:47&v=3.1.0.7&pid=wtu&sg=&sap=hp"
- CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\ppGoogleNaClPluginChrome.dll => No File
- CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\pdf.dll => No File
- CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll => No File
- CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll => No File
- CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll => No File
- CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll => No File
- CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
- CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll => No File
- S3 AxtuDrv; no ImagePath
- S3 cthda; no ImagePath
- S3 cthdb; no ImagePath
- S3 MBfilt; no ImagePath
- Task: {6543AEE7-343E-48D2-8E19-EB7430D4570F} - System32\Tasks\SpeedUpMyPC Maintenance => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [2015-09-10] (Uniblue Systems Limited) <==== ATTENTION
- Task: {B5A0B15C-531A-401F-B7F2-198CCEE41B0E} - \LaunchPreSignup -> No File <==== ATTENTION
- Task: {B75CD175-3E13-4FFA-96A6-94491401009F} - System32\Tasks\SpeedUpMyPC Startup => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [2015-09-10] (Uniblue Systems Limited) <==== ATTENTION
- Task: C:\Windows\Tasks\SpeedUpMyPC Maintenance.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe <==== ATTENTION
- Task: C:\Windows\Tasks\SpeedUpMyPC Startup.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe <==== ATTENTION
- C:\Program Files (x86)\Uniblue
- CMD: netsh advfirewall reset
- CMD: netsh advfirewall set allprofiles state on
- EmptyTemp:
- End
- *****************
- Restore point was successfully created.
- ========================= File: TiltWheelMouse.exe ========================
- File is digitally signed
- MD5: DB367E8C8F46C26A05BA982715CC0DB5
- Creation and modification date: 2012-12-19 09:42 - 2012-12-19 09:42
- Size: 0241152
- Attributes: ----A
- Company Name: Pixart Imaging Inc
- Internal Name: pximouse.exe
- Original Name: pximouse.exe
- Product: pximouse
- Description: pximouse
- File Version: 1.0.0.2
- Product Version: 1.0.0.2
- Copyright: Copyright (c) 2009 Pixart Imaging Inc. All rights reserved.
- ====== End of File: ======
- ========================= File: C:\Windows\System32\DRIVERS\t_mouse.sys ========================
- File is digitally signed
- MD5: A070ABB9D85582B2BECADBE6FCD12350
- Creation and modification date: 2012-12-19 09:42 - 2012-12-19 09:42
- Size: 0006144
- Attributes: ----A
- Company Name:
- Internal Name:
- Original Name:
- Product:
- Description:
- File Version:
- Product Version:
- Copyright:
- ====== End of File: ======
- "HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3337a7f2-22e8-11e4-a19e-10c37b6b1de4}" => key removed successfully
- HKCR\CLSID\{3337a7f2-22e8-11e4-a19e-10c37b6b1de4} => key not found.
- "HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4020498b-9fd9-11e3-bc53-806e6f6e6963}" => key removed successfully
- HKCR\CLSID\{4020498b-9fd9-11e3-bc53-806e6f6e6963} => key not found.
- "HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91678e7b-1d47-11e4-b703-806e6f6e6963}" => key removed successfully
- HKCR\CLSID\{91678e7b-1d47-11e4-b703-806e6f6e6963} => key not found.
- "HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bf38f1f1-8123-11e4-bffe-10c37b6b1de4}" => key removed successfully
- HKCR\CLSID\{bf38f1f1-8123-11e4-bffe-10c37b6b1de4} => key not found.
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4} => key not found.
- HKCR\CLSID\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4} => key not found.
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4} => key not found.
- HKCR\CLSID\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4} => key not found.
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4} => key not found.
- HKCR\CLSID\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4} => key not found.
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4} => key not found.
- HKCR\CLSID\{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4} => key not found.
- "C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll" => Value data not found.
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\URL => value removed successfully
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\URL => value not found.
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value removed successfully
- HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => key not found.
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\Toolbar: HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value not found.
- HKCR\CLSID\Toolbar: HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => key not found.
- "HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
- HKLM\Software\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin => key not found.
- "HKLM\Software\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin" => key removed successfully
- "HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000\Software\Mozilla\Firefox\Extensions\\{8492baab-62ca-4e2c-983b-dfef7cae8082} => value removed successfully
- HKU\S-1-5-21-1615470529-4013084047-1740189228-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Mozilla\Firefox\Extensions\\{8492baab-62ca-4e2c-983b-dfef7cae8082} => value not found.
- Chrome HomePage removed successfully
- Chrome StartupUrls removed successfully
- C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\ppGoogleNaClPluginChrome.dll => not found.
- C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\pdf.dll => not found.
- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll => not found.
- C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll => not found.
- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll => not found.
- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll => not found.
- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll => moved successfully
- c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll => not found.
- AxtuDrv => service removed successfully
- cthda => service removed successfully
- cthdb => service removed successfully
- MBfilt => service removed successfully
- HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6543AEE7-343E-48D2-8E19-EB7430D4570F} => key not found.
- C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance => not found.
- HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SpeedUpMyPC Maintenance => key not found.
- "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B5A0B15C-531A-401F-B7F2-198CCEE41B0E}" => key removed successfully
- "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B5A0B15C-531A-401F-B7F2-198CCEE41B0E}" => key removed successfully
- HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\LaunchPreSignup => key not found.
- HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B75CD175-3E13-4FFA-96A6-94491401009F} => key not found.
- C:\Windows\System32\Tasks\SpeedUpMyPC Startup => not found.
- HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SpeedUpMyPC Startup => key not found.
- C:\Windows\Tasks\SpeedUpMyPC Maintenance.job => not found.
- C:\Windows\Tasks\SpeedUpMyPC Startup.job => not found.
- "C:\Program Files (x86)\Uniblue" => File/Folder not found.
- ========= netsh advfirewall reset =========
- Ok.
- ========= End of CMD: =========
- ========= netsh advfirewall set allprofiles state on =========
- Ok.
- ========= End of CMD: =========
- EmptyTemp: => 900.9 MB temporary data Removed.
- The system needed a reboot..
- ==== End of Fixlog 07:36:09 ====
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement