Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Fix result of Farbar Recovery Scan Tool (x64) Version: 11.02.2024
- Ran by PC (11-02-2024 22:47:26) Run:1
- Running from C:\Users\PC\Downloads
- Loaded Profiles: PC & MSSQLFDLauncher$RAFALDB & SQLTELEMETRY$SQLEXPRESS & SQLTELEMETRY$RAFALDB & SQLTELEMETRY & SQLTELEMETRY$SQLEXPRESS01 & MSSQL$SQLEXPRESS & MSSQLSERVER & MSSQL$RAFALDB & MSSQL$SQLEXPRESS01
- Boot Mode: Normal
- ==============================================
- fixlist content:
- *****************
- CreateRestorePoint:
- CloseProcesses:
- EmptyTemp:
- HKLM-x32\...\Run: [Backup] => C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\DrFoneBackup.exe /hide (No File)
- HKLM\...\RunOnce: [!BCILauncher] => C:\Windows\Temp\MUBSTemp\BCILauncher.EXE [18368 2024-02-11] (Microsoft Corporation -> ) <==== ATTENTION
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001\...\Run: [utweb] => "C:\Users\PC\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (No File)
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001\...\Policies\Explorer: []
- Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
- Tcpip\..\Interfaces\{14224654-69a4-4d73-a6fa-b2f7eae42c15}: [DhcpNameServer] 178.235.153.32 178.235.153.33
- Tcpip\..\Interfaces\{d77c4424-e89f-4dd6-a041-6d921f74fe58}: [DhcpNameServer] 31.11.173.2 89.228.4.126
- Tcpip\..\Interfaces\{d77c4424-e89f-4dd6-a041-6d921f74fe58}\23E24374D2655636472716D275966496D2636463344443: [DhcpNameServer] 31.11.173.2 89.228.4.126
- S2 DFWSIDService; C:\Program Files (x86)\Wondershare\drfone\WsidService.exe [X]
- S2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [X]
- S3 BTCOMBUS; \SystemRoot\System32\Drivers\brlinkcombus.sys [X]
- S3 Btcsrusb; \SystemRoot\System32\Drivers\brlinkusb.sys [X]
- 2024-02-11 19:59 - 2023-03-04 20:45 - 000000000 ____D C:\Users\PC\Downloads\KMSAuto Lite 1.5.6 Portable
- CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
- CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10}\localserver32 -> G:\AutoCAD 2023\acad.exe /Automation => No File
- CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> G:\AutoCAD 2023\acad.exe => No File
- CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3}\localserver32 -> G:\AutoCAD 2023\acad.exe /Automation => No File
- CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
- CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5}\localserver32 -> G:\AutoCAD 2023\acad.exe /Automation => No File
- CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> G:\AutoCAD 2023\pl-PL\acadficn.dll => No File
- CustomCLSID: HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
- FirewallRules: [{1F61FCC0-2AB5-4D6C-8974-4F4E15895425}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
- FirewallRules: [{66B0E075-AD3C-40D4-B539-26B7DDA902D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
- FirewallRules: [{8FCBDF1D-D42D-4BDE-999C-8078597396BC}] => (Allow) C:\Program Files (x86)\iMobie\PhoneRescue for Android\xldownload\download\MiniThunderPlatform.exe => No File
- FirewallRules: [{C6A86C6C-06E4-47C1-B8D0-FCF5F3EFE7DF}] => (Allow) C:\Program Files (x86)\iMobie\PhoneRescue for Android\xldownload\download\MiniThunderPlatform.exe => No File
- FirewallRules: [{05F6FF46-0CA7-44FF-966D-8D96161CFD7B}] => (Allow) C:\Users\PC\AppData\Local\Temp\utorrent\utorrent.exe => No File
- FirewallRules: [{271D6973-08B1-41A8-801D-E1AF233570DD}] => (Allow) C:\Users\PC\AppData\Local\Temp\utorrent\utorrent.exe => No File
- FirewallRules: [{7E910E8D-A864-4F07-B12F-6F3A1D2AEE74}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe => No File
- FirewallRules: [{50ED8A5B-1A65-4FB6-A423-E520A7FF4239}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe => No File
- FirewallRules: [{C43FEB80-A359-4229-AF33-01BCC8C3C692}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
- FirewallRules: [{FC740244-2D5C-4EE4-A1E3-06C6C0C35ACA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
- FirewallRules: [{F1842258-3CAF-4B19-8952-37C08B96B369}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\setup.exe => No File
- FirewallRules: [{6C9A9865-E6CE-46AF-8468-4FA0506B01C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\setup.exe => No File
- FirewallRules: [TCP Query User{CBC3E691-A072-4BF2-A858-0061C5681C84}G:\bin\javaw.exe] => (Allow) G:\bin\javaw.exe
- FirewallRules: [UDP Query User{59EB3F4D-10DA-4E3B-B769-43F5F87DA4FF}G:\bin\javaw.exe] => (Allow) G:\bin\javaw.exe
- FirewallRules: [TCP Query User{165B519B-F076-4FA5-9144-476BD6224D45}C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe] => (Allow) C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe => No File
- FirewallRules: [UDP Query User{82A44076-E4B5-42BC-A0BA-A88647F66A58}C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe] => (Allow) C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe => No File
- C:\Users\PC\Downloads\Dr.Fone Toolkit for iOS and Android 10.0.12.65 + Crack\Crack\Crack -DFoX\Paste Crack Here x64 (64-bit ).lnk
- C:\Users\PC\Downloads\Dr.Fone Toolkit for iOS and Android 10.0.12.65 + Crack\Crack\Crack -DFoX\Paste Crack Here x86 (32-bit ).lnk
- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
- *****************
- Restore point was successfully created.
- Processes closed successfully.
- "HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Backup" => removed successfully
- "HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\!BCILauncher" => removed successfully
- "HKU\S-1-5-21-2264862351-2215873132-1152238470-1001\Software\Microsoft\Windows\CurrentVersion\Run\\utweb" => removed successfully
- "HKU\S-1-5-21-2264862351-2215873132-1152238470-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
- C:\ProgramData\NTUSER.pol => moved successfully
- "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{14224654-69a4-4d73-a6fa-b2f7eae42c15}\\DhcpNameServer" => removed successfully
- "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d77c4424-e89f-4dd6-a041-6d921f74fe58}\\DhcpNameServer" => removed successfully
- "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d77c4424-e89f-4dd6-a041-6d921f74fe58}\23E24374D2655636472716D275966496D2636463344443\\DhcpNameServer" => removed successfully
- HKLM\System\CurrentControlSet\Services\DFWSIDService => removed successfully
- DFWSIDService => service removed successfully
- HKLM\System\CurrentControlSet\Services\WsDrvInst => removed successfully
- WsDrvInst => service removed successfully
- HKLM\System\CurrentControlSet\Services\BTCOMBUS => removed successfully
- BTCOMBUS => service removed successfully
- HKLM\System\CurrentControlSet\Services\Btcsrusb => removed successfully
- Btcsrusb => service removed successfully
- "C:\Users\PC\Downloads\KMSAuto Lite 1.5.6 Portable" folder move:
- C:\Users\PC\Downloads\KMSAuto Lite 1.5.6 Portable => moved successfully
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741} => removed successfully
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10} => removed successfully
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8} => removed successfully
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3} => removed successfully
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3} => removed successfully
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5} => removed successfully
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005} => removed successfully
- HKU\S-1-5-21-2264862351-2215873132-1152238470-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD} => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1F61FCC0-2AB5-4D6C-8974-4F4E15895425}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{66B0E075-AD3C-40D4-B539-26B7DDA902D8}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8FCBDF1D-D42D-4BDE-999C-8078597396BC}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6A86C6C-06E4-47C1-B8D0-FCF5F3EFE7DF}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{05F6FF46-0CA7-44FF-966D-8D96161CFD7B}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{271D6973-08B1-41A8-801D-E1AF233570DD}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7E910E8D-A864-4F07-B12F-6F3A1D2AEE74}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50ED8A5B-1A65-4FB6-A423-E520A7FF4239}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C43FEB80-A359-4229-AF33-01BCC8C3C692}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FC740244-2D5C-4EE4-A1E3-06C6C0C35ACA}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F1842258-3CAF-4B19-8952-37C08B96B369}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6C9A9865-E6CE-46AF-8468-4FA0506B01C9}" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CBC3E691-A072-4BF2-A858-0061C5681C84}G:\bin\javaw.exe" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{59EB3F4D-10DA-4E3B-B769-43F5F87DA4FF}G:\bin\javaw.exe" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{165B519B-F076-4FA5-9144-476BD6224D45}C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe" => removed successfully
- "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{82A44076-E4B5-42BC-A0BA-A88647F66A58}C:\users\pc\appdata\local\discord\app-1.0.9013\discord.exe" => removed successfully
- C:\Users\PC\Downloads\Dr.Fone Toolkit for iOS and Android 10.0.12.65 + Crack\Crack\Crack -DFoX\Paste Crack Here x64 (64-bit ).lnk => moved successfully
- C:\Users\PC\Downloads\Dr.Fone Toolkit for iOS and Android 10.0.12.65 + Crack\Crack\Crack -DFoX\Paste Crack Here x86 (32-bit ).lnk => moved successfully
- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk => moved successfully
- =========== EmptyTemp: ==========
- FlushDNS => completed
- BITS transfer queue => 0 B
- DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 240466118 B
- Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 910212260 B
- Windows/system/drivers => 62044690 B
- Edge => 0 B
- Chrome => 1054253295 B
- Firefox => 0 B
- Opera => 0 B
- Temp, IE cache, history, cookies, recent:
- Default => 0 B
- ProgramData => 0 B
- Public => 0 B
- systemprofile => 0 B
- systemprofile32 => 1428 B
- LocalService => 30000 B
- NetworkService => 498498 B
- PC => 567354669 B
- MSSQLFDLauncher$RAFALDB => 567354669 B
- SQLTELEMETRY$SQLEXPRESS => 567354669 B
- SQLTELEMETRY$RAFALDB => 567354669 B
- SQLTELEMETRY => 567354669 B
- SQLTELEMETRY$SQLEXPRESS01 => 567354669 B
- MSSQL$SQLEXPRESS => 567354669 B
- MSSQLSERVER => 567354669 B
- MSSQL$RAFALDB => 567354669 B
- MSSQL$SQLEXPRESS01 => 567354669 B
- RecycleBin => 1503938 B
- EmptyTemp: => 7.4 GB temporary data Removed.
- ================================
- The system needed a reboot.
- ==== End of Fixlog 22:49:23 ====
Add Comment
Please, Sign In to add comment