Fix result of Farbar Recovery Scan Tool (x64) Version: 03-02-2025
Ran by Nelly Atlan (09-02-2025 15:31:38) Run:1
Running from C:\Users\Nelly Atlan\Downloads
Loaded Profiles: Nelly Atlan
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start::
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction
HKLM\...\Run: [Combo Cleaner] => C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe [2024064 2021-11-05] (RCS LT, UAB -> RCS LT)
HKLM\...\Run: [PC Cleaner] => C:\Program Files\Avanquest\PC Cleaner\application\9.9.33904.5126\PC Cleaner.exe [7212984 2025-01-14] (PC Helpsoft (7270356 Canada Inc) -> Avanquest)
HKU\S-1-5-21-1151346358-4024040651-264034373-1001\...\Run: [hiveDisk] => C:\Users\Nelly Atlan\AppData\Local\hive-desktop\update.exe [2185216 2025-02-04] () [File not signed]
HKLM\...\Print\Monitors\EPSON SX410 Series 64MonitorBE: E_ILMFCE.DLL (No File)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe  (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
AV: Kaspersky Anti-Virus (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
FirewallRules: [{399EA612-2E94-4497-B32A-C302B353EA30}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NASConnecter.exe => No File
FirewallRules: [{B0F588EF-E918-4282-8D86-31F625116E6C}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NASConnecter.exe => No File
FirewallRules: [{F54D7033-9B8C-4156-B5C1-78923A6D3169}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Monitor\Monitor.exe => No File
FirewallRules: [{9B036B66-6EE9-4F2C-A570-08D2C755A445}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Monitor\Monitor.exe => No File
FirewallRules: [TCP Query User{E5145345-B740-40A0-A80E-C74CB5B4E296}C:\users\nelly atlan\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\nelly atlan\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{D2E3421F-C156-4672-9D6D-9866A43EB928}C:\users\nelly atlan\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\nelly atlan\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [TCP Query User{8B90671C-6238-4971-8003-04925B3AECC9}C:\users\nelly atlan\appdata\local\hive-desktop\app-1.32.0\resources\hive-agent.exe] => (Block) C:\users\nelly atlan\appdata\local\hive-desktop\app-1.32.0\resources\hive-agent.exe => No File
FirewallRules: [UDP Query User{FDF99328-AA23-4293-A2FB-317DE4A355E3}C:\users\nelly atlan\appdata\local\hive-desktop\app-1.32.0\resources\hive-agent.exe] => (Block) C:\users\nelly atlan\appdata\local\hive-desktop\app-1.32.0\resources\hive-agent.exe => No File
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm]
CHR HKU\S-1-5-21-1151346358-4024040651-264034373-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm]
C:\Users\Nelly Atlan\AppData\Local\Hive CloudBridge
C:\Users\Nelly Atlan\AppData\Local\hive-desktop
C:\Users\Nelly Atlan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hive Computing SA
C:\Users\Nelly Atlan\AppData\Roaming\hive-desktop
C:\Users\Nelly Atlan\.hive
C:\Users\Nelly Atlan\hiveDisk_Backup
C:\Users\Nelly Atlan\Downloads\hiveDisk-1.32.0 Setup.exe
EmptyTemp:
End::
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Combo Cleaner" => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\PC Cleaner" => not found
"HKU\S-1-5-21-1151346358-4024040651-264034373-1001\Software\Microsoft\Windows\CurrentVersion\Run\\hiveDisk" => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\EPSON SX410 Series 64MonitorBE => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
"AV: Kaspersky Anti-Virus (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{399EA612-2E94-4497-B32A-C302B353EA30}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0F588EF-E918-4282-8D86-31F625116E6C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F54D7033-9B8C-4156-B5C1-78923A6D3169}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9B036B66-6EE9-4F2C-A570-08D2C755A445}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E5145345-B740-40A0-A80E-C74CB5B4E296}C:\users\nelly atlan\appdata\local\programs\opera\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D2E3421F-C156-4672-9D6D-9866A43EB928}C:\users\nelly atlan\appdata\local\programs\opera\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8B90671C-6238-4971-8003-04925B3AECC9}C:\users\nelly atlan\appdata\local\hive-desktop\app-1.32.0\resources\hive-agent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FDF99328-AA23-4293-A2FB-317DE4A355E3}C:\users\nelly atlan\appdata\local\hive-desktop\app-1.32.0\resources\hive-agent.exe" => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\klekeajafkkpokaofllcadenjdckhinm => removed successfully
HKU\S-1-5-21-1151346358-4024040651-264034373-1001\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\klekeajafkkpokaofllcadenjdckhinm => removed successfully

"C:\Users\Nelly Atlan\AppData\Local\Hive CloudBridge" Folder move:

C:\Users\Nelly Atlan\AppData\Local\Hive CloudBridge => moved successfully

"C:\Users\Nelly Atlan\AppData\Local\hive-desktop" Folder move:

C:\Users\Nelly Atlan\AppData\Local\hive-desktop => moved successfully

"C:\Users\Nelly Atlan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hive Computing SA" Folder move:

C:\Users\Nelly Atlan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hive Computing SA => moved successfully

"C:\Users\Nelly Atlan\AppData\Roaming\hive-desktop" Folder move:

C:\Users\Nelly Atlan\AppData\Roaming\hive-desktop => moved successfully

"C:\Users\Nelly Atlan\.hive" Folder move:

C:\Users\Nelly Atlan\.hive => moved successfully

"C:\Users\Nelly Atlan\hiveDisk_Backup" Folder move:

C:\Users\Nelly Atlan\hiveDisk_Backup => moved successfully
C:\Users\Nelly Atlan\Downloads\hiveDisk-1.32.0 Setup.exe => moved successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 68952744 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 127354194 B
Edge => 0 B
Chrome => 574252218 B
Firefox => 0 B
Opera => 19737125 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 13444102 B
NetworkService => 13465186 B
Nelly Atlan => 2294899693 B

RecycleBin => 42651095 B
EmptyTemp: => 2.9 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:33:55 ====