API tools faq
paste
Guest User

fixlog

a guest
Feb 11th, 2024
12
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.93 KB | None | 0 0
raw download clone embed print report
  1. Fix result of Farbar Recovery Scan Tool (x64) Version: 11.02.2024
  2. Ran by PC (11-02-2024 22:47:26) Run:1
  3. Running from C:\Users\PC\Downloads
  4. Loaded Profiles: PC & MSSQLFDLauncher$RAFALDB & SQLTELEMETRY$SQLEXPRESS & SQLTELEMETRY$RAFALDB & SQLTELEMETRY & SQLTELEMETRY$SQLEXPRESS01 & MSSQL$SQLEXPRESS & MSSQLSERVER & MSSQL$RAFALDB & MSSQL$SQLEXPRESS01
  5. Boot Mode: Normal
  6. ==============================================
  7.  
  8. fixlist content:
  9. *****************
  10. CreateRestorePoint:
  11. CloseProcesses:
  12. EmptyTemp:
  13. HKLM-x32\...\Run: [Backup] => C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\DrFoneBackup.exe /hide (No File)
  14. HKLM\...\RunOnce: [!BCILauncher] => C:\Windows\Temp\MUBSTemp\BCILauncher.EXE [18368 2024-02-11] (Microsoft Corporation -> ) <==== ATTENTION
  15. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001\...\Run: [utweb] => "C:\Users\PC\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (No File)
  16. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001\...\Policies\Explorer: []
  17. Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
  18. Tcpip\..\Interfaces\{14224654-69a4-4d73-a6fa-b2f7eae42c15}: [DhcpNameServer] 178.235.153.32 178.235.153.33
  19. Tcpip\..\Interfaces\{d77c4424-e89f-4dd6-a041-6d921f74fe58}: [DhcpNameServer] 31.11.173.2 89.228.4.126
  20. Tcpip\..\Interfaces\{d77c4424-e89f-4dd6-a041-6d921f74fe58}\23E24374D2655636472716D275966496D2636463344443: [DhcpNameServer] 31.11.173.2 89.228.4.126
  21. S2 DFWSIDService; C:\Program Files (x86)\Wondershare\drfone\WsidService.exe [X]
  22. S2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [X]
  23. S3 BTCOMBUS; \SystemRoot\System32\Drivers\brlinkcombus.sys [X]
  24. S3 Btcsrusb; \SystemRoot\System32\Drivers\brlinkusb.sys [X]
  25. 2024-02-11 19:59 - 2023-03-04 20:45 - 000000000 ____D C:\Users\PC\Downloads\KMSAuto Lite 1.5.6 Portable
  26. CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
  27. CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10}\localserver32 -> G:\AutoCAD 2023\acad.exe /Automation => No File
  28. CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> G:\AutoCAD 2023\acad.exe => No File
  29. CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3}\localserver32 -> G:\AutoCAD 2023\acad.exe /Automation => No File
  30. CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
  31. CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5}\localserver32 -> G:\AutoCAD 2023\acad.exe /Automation => No File
  32. CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> G:\AutoCAD 2023\pl-PL\acadficn.dll => No File
  33. CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
  34. FirewallRules: [{1F61FCC0-2AB5-4D6C-8974-4F4E15895425}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
  35. FirewallRules: [{66B0E075-AD3C-40D4-B539-26B7DDA902D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
  36. FirewallRules: [{8FCBDF1D-D42D-4BDE-999C-8078597396BC}] => (Allow) C:\Program Files (x86)\iMobie\PhoneRescue for Android\xldownload\download\MiniThunderPlatform.exe => No File
  37. FirewallRules: [{C6A86C6C-06E4-47C1-B8D0-FCF5F3EFE7DF}] => (Allow) C:\Program Files (x86)\iMobie\PhoneRescue for Android\xldownload\download\MiniThunderPlatform.exe => No File
  38. FirewallRules: [{05F6FF46-0CA7-44FF-966D-8D96161CFD7B}] => (Allow) C:\Users\PC\AppData\Local\Temp\utorrent\utorrent.exe => No File
  39. FirewallRules: [{271D6973-08B1-41A8-801D-E1AF233570DD}] => (Allow) C:\Users\PC\AppData\Local\Temp\utorrent\utorrent.exe => No File
  40. FirewallRules: [{7E910E8D-A864-4F07-B12F-6F3A1D2AEE74}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe => No File
  41. FirewallRules: [{50ED8A5B-1A65-4FB6-A423-E520A7FF4239}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe => No File
  42. FirewallRules: [{C43FEB80-A359-4229-AF33-01BCC8C3C692}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
  43. FirewallRules: [{FC740244-2D5C-4EE4-A1E3-06C6C0C35ACA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
  44. FirewallRules: [{F1842258-3CAF-4B19-8952-37C08B96B369}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\setup.exe => No File
  45. FirewallRules: [{6C9A9865-E6CE-46AF-8468-4FA0506B01C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\setup.exe => No File
  46. FirewallRules: [TCP Query User{CBC3E691-A072-4BF2-A858-0061C5681C84}G:\bin\javaw.exe] => (Allow) G:\bin\javaw.exe
  47. FirewallRules: [UDP Query User{59EB3F4D-10DA-4E3B-B769-43F5F87DA4FF}G:\bin\javaw.exe] => (Allow) G:\bin\javaw.exe
  48. FirewallRules: [TCP Query User{165B519B-F076-4FA5-9144-476BD6224D45}C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe] => (Allow) C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe => No File
  49. FirewallRules: [UDP Query User{82A44076-E4B5-42BC-A0BA-A88647F66A58}C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe] => (Allow) C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe => No File
  50. C:\Users\PC\Downloads\Dr.Fone Toolkit for iOS and Android 10.0.12.65 + Crack\Crack\Crack -DFoX\Paste Crack Here x64 (64-bit ).lnk
  51. C:\Users\PC\Downloads\Dr.Fone Toolkit for iOS and Android 10.0.12.65 + Crack\Crack\Crack -DFoX\Paste Crack Here x86 (32-bit ).lnk
  52. C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
  53.  
  54. *****************
  55.  
  56. Restore point was successfully created.
  57. Processes closed successfully.
  58. "HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Backup" => removed successfully
  59. "HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\!BCILauncher" => removed successfully
  60. "HKU\S-1-5-21-2264862351-2215873132-1152238470-1001\Software\Microsoft\Windows\CurrentVersion\Run\\utweb" => removed successfully
  61. "HKU\S-1-5-21-2264862351-2215873132-1152238470-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
  62. C:\ProgramData\NTUSER.pol => moved successfully
  63. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{14224654-69a4-4d73-a6fa-b2f7eae42c15}\\DhcpNameServer" => removed successfully
  64. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d77c4424-e89f-4dd6-a041-6d921f74fe58}\\DhcpNameServer" => removed successfully
  65. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d77c4424-e89f-4dd6-a041-6d921f74fe58}\23E24374D2655636472716D275966496D2636463344443\\DhcpNameServer" => removed successfully
  66. HKLM\System\CurrentControlSet\Services\DFWSIDService => removed successfully
  67. DFWSIDService => service removed successfully
  68. HKLM\System\CurrentControlSet\Services\WsDrvInst => removed successfully
  69. WsDrvInst => service removed successfully
  70. HKLM\System\CurrentControlSet\Services\BTCOMBUS => removed successfully
  71. BTCOMBUS => service removed successfully
  72. HKLM\System\CurrentControlSet\Services\Btcsrusb => removed successfully
  73. Btcsrusb => service removed successfully
  74.  
  75. "C:\Users\PC\Downloads\KMSAuto Lite 1.5.6 Portable" folder move:
  76.  
  77. C:\Users\PC\Downloads\KMSAuto Lite 1.5.6 Portable => moved successfully
  78. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741} => removed successfully
  79. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10} => removed successfully
  80. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8} => removed successfully
  81. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3} => removed successfully
  82. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3} => removed successfully
  83. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5} => removed successfully
  84. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005} => removed successfully
  85. HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD} => removed successfully
  86. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1F61FCC0-2AB5-4D6C-8974-4F4E15895425}" => removed successfully
  87. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{66B0E075-AD3C-40D4-B539-26B7DDA902D8}" => removed successfully
  88. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8FCBDF1D-D42D-4BDE-999C-8078597396BC}" => removed successfully
  89. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6A86C6C-06E4-47C1-B8D0-FCF5F3EFE7DF}" => removed successfully
  90. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{05F6FF46-0CA7-44FF-966D-8D96161CFD7B}" => removed successfully
  91. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{271D6973-08B1-41A8-801D-E1AF233570DD}" => removed successfully
  92. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7E910E8D-A864-4F07-B12F-6F3A1D2AEE74}" => removed successfully
  93. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50ED8A5B-1A65-4FB6-A423-E520A7FF4239}" => removed successfully
  94. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C43FEB80-A359-4229-AF33-01BCC8C3C692}" => removed successfully
  95. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FC740244-2D5C-4EE4-A1E3-06C6C0C35ACA}" => removed successfully
  96. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F1842258-3CAF-4B19-8952-37C08B96B369}" => removed successfully
  97. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6C9A9865-E6CE-46AF-8468-4FA0506B01C9}" => removed successfully
  98. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CBC3E691-A072-4BF2-A858-0061C5681C84}G:\bin\javaw.exe" => removed successfully
  99. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{59EB3F4D-10DA-4E3B-B769-43F5F87DA4FF}G:\bin\javaw.exe" => removed successfully
  100. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{165B519B-F076-4FA5-9144-476BD6224D45}C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe" => removed successfully
  101. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{82A44076-E4B5-42BC-A0BA-A88647F66A58}C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe" => removed successfully
  102. C:\Users\PC\Downloads\Dr.Fone Toolkit for iOS and Android 10.0.12.65 + Crack\Crack\Crack -DFoX\Paste Crack Here x64 (64-bit ).lnk => moved successfully
  103. C:\Users\PC\Downloads\Dr.Fone Toolkit for iOS and Android 10.0.12.65 + Crack\Crack\Crack -DFoX\Paste Crack Here x86 (32-bit ).lnk => moved successfully
  104. C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk => moved successfully
  105.  
  106. =========== EmptyTemp: ==========
  107.  
  108. FlushDNS => completed
  109. BITS transfer queue => 0 B
  110. DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 240466118 B
  111. Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 910212260 B
  112. Windows/system/drivers => 62044690 B
  113. Edge => 0 B
  114. Chrome => 1054253295 B
  115. Firefox => 0 B
  116. Opera => 0 B
  117.  
  118. Temp, IE cache, history, cookies, recent:
  119. Default => 0 B
  120. ProgramData => 0 B
  121. Public => 0 B
  122. systemprofile => 0 B
  123. systemprofile32 => 1428 B
  124. LocalService => 30000 B
  125. NetworkService => 498498 B
  126. PC => 567354669 B
  127. MSSQLFDLauncher$RAFALDB => 567354669 B
  128. SQLTELEMETRY$SQLEXPRESS => 567354669 B
  129. SQLTELEMETRY$RAFALDB => 567354669 B
  130. SQLTELEMETRY => 567354669 B
  131. SQLTELEMETRY$SQLEXPRESS01 => 567354669 B
  132. MSSQL$SQLEXPRESS => 567354669 B
  133. MSSQLSERVER => 567354669 B
  134. MSSQL$RAFALDB => 567354669 B
  135. MSSQL$SQLEXPRESS01 => 567354669 B
  136.  
  137. RecycleBin => 1503938 B
  138. EmptyTemp: => 7.4 GB temporary data Removed.
  139.  
  140. ================================
  141.  
  142.  
  143. The system needed a reboot.
  144.  
  145. ==== End of Fixlog 22:49:23 ====
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!