Fix result of Farbar Recovery Scan Tool (x64) Version: 13-05-2020 01
Ran by Administrator (18-05-2020 12:40:47) Run:2
Running from C:\Users\Administrator\Documents
Loaded Profiles: Acronis Agent User & Linda & Alberto & Barbara & Mariolina & Mena & Enzo & AMS User & Administrator
Boot Mode: Normal
==============================================
fixlist content:
*****************
cmd: sc config trustedinstaller start= auto
cmd: net start trustedinstaller
cmd: fsutil resource setautoreset true %SystemDrive%\
cmd: attrib -r -s -h %SystemRoot%\System32\Config\TxR\*
StartPowershell:
function Move-LockedFile
{
param($path, $destination)
$path = (Resolve-Path $path).Path
$destination = $executionContext.SessionState.Path.GetUnresolvedProviderPathFromPSPath($destination)
$MOVEFILE_DELAY_UNTIL_REBOOT = 0x00000004
$MOVEFILE_REPLACE_EXISTING = 1
$memberDefinition = @'
[DllImport("kernel32.dll", SetLastError=true, CharSet=CharSet.Auto)]
public static extern bool MoveFileEx(string lpExistingFileName, string lpNewFileName,
int dwFlags);
'@
$type = Add-Type -Name MoveFileUtils -MemberDefinition $memberDefinition -PassThru
$type::MoveFileEx($path, $destination, $MOVEFILE_DELAY_UNTIL_REBOOT + $MOVEFILE_REPLACE_EXISTING)
}
Get-ChildItem -path "$env:SystemRoot\system32\Config\TxR\." |
Foreach-Object {
write-output $_.fullname
Move-LockedFile -path $_.fullname "$env:SystemRoot\Temp\junk"
}
EndPowershell:
cmd: attrib -r -s -h %SystemRoot%\System32\SMI\Store\Machine\*
cmd: del /f /q %SystemRoot%\System32\SMI\Store\Machine\*.tm*
cmd: del /f /q %SystemRoot%\System32\SMI\Store\Machine\*.blf
cmd: del /f /q %SystemRoot%\System32\SMI\Store\Machine\*.regtrans-ms
EmptyTemp:
*****************
========= sc config trustedinstaller start= auto =========
[SC] ChangeServiceConfig OPERAZIONI RIUSCITE
========= End of CMD: =========
========= net start trustedinstaller =========
Servizio Programma di installazione dei moduli di Windows in fase di avvio .
Avvio del servizio Programma di installazione dei moduli di Windows riuscito.
========= End of CMD: =========
========= fsutil resource setautoreset true %SystemDrive%\ =========
Operazione completata.
========= End of CMD: =========
========= attrib -r -s -h %SystemRoot%\System32\Config\TxR\* =========
========= End of CMD: =========
========= Powershell: =========
C:\Windows\system32\Config\TxR\{70dedba6-ad10-11e8-9402-806e6f6e6963}.TxR.0.regtrans-ms
True
C:\Windows\system32\Config\TxR\{70dedba6-ad10-11e8-9402-806e6f6e6963}.TxR.0.regtrans-ms.old
True
C:\Windows\system32\Config\TxR\{70dedba6-ad10-11e8-9402-806e6f6e6963}.TxR.1.regtrans-ms
True
C:\Windows\system32\Config\TxR\{70dedba6-ad10-11e8-9402-806e6f6e6963}.TxR.1.regtrans-ms.old
True
C:\Windows\system32\Config\TxR\{70dedba6-ad10-11e8-9402-806e6f6e6963}.TxR.2.regtrans-ms
True
C:\Windows\system32\Config\TxR\{70dedba6-ad10-11e8-9402-806e6f6e6963}.TxR.2.regtrans-ms.old
True
C:\Windows\system32\Config\TxR\{70dedba6-ad10-11e8-9402-806e6f6e6963}.TxR.blf
True
C:\Windows\system32\Config\TxR\{70dedba6-ad10-11e8-9402-806e6f6e6963}.TxR.blf.old
True
C:\Windows\system32\Config\TxR\{70dedba7-ad10-11e8-9402-806e6f6e6963}.TM.blf
True
C:\Windows\system32\Config\TxR\{70dedba7-ad10-11e8-9402-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
True
C:\Windows\system32\Config\TxR\{70dedba7-ad10-11e8-9402-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
True
========= End of Powershell: =========
========= attrib -r -s -h %SystemRoot%\System32\SMI\Store\Machine\* =========
========= End of CMD: =========
========= del /f /q %SystemRoot%\System32\SMI\Store\Machine\*.tm* =========
========= End of CMD: =========
========= del /f /q %SystemRoot%\System32\SMI\Store\Machine\*.blf =========
Impossibile trovare C:\Windows\System32\SMI\Store\Machine\*.blf
========= End of CMD: =========
========= del /f /q %SystemRoot%\System32\SMI\Store\Machine\*.regtrans-ms =========
Impossibile trovare C:\Windows\System32\SMI\Store\Machine\*.regtrans-ms
========= End of CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 32768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9784815 B
Java, Flash, Steam htmlcache => 410 B
Windows/system/drivers => 5174335672 B
Edge => 0 B
Chrome => 257319450 B
Firefox => 165123336 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 128 B
Acronis Agent User => 11344 B
Linda => 497440110 B
Alberto => 1033759004 B
Barbara => 1427501703 B
Mariolina => 1563060512 B
Mena => 2215990218 B
Enzo => 2518916230 B
AMS User => 2518916230 B
BACKUP_OP => 2537078438 B
Valentina => 2538590983 B
Administrator => 2540931697 B
RecycleBin => 54367992 B
EmptyTemp: => 23.3 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 12:44:40 ====