Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 21.01.2018 Uruchomiony przez bmend (23-01-2018 18:26:43) Run:1 Uruchomiony z C:\Users\bmend\Desktop Załadowane profile: bmend (Dostępne profile: bmend) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** CloseProcesses: ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers1_S-1-5-21-2412678058-3991403442-3374828277-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku ContextMenuHandlers4_S-1-5-21-2412678058-3991403442-3374828277-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku ContextMenuHandlers5_S-1-5-21-2412678058-3991403442-3374828277-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku Task: {D82794E2-776F-4AE8-9FCA-326EFEBF6A2C} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {D9F6C006-5C11-451D-B013-23316F97FE97} - \hlatomernetkolc -> Brak pliku <==== UWAGA GroupPolicy: Ograniczenia <==== UWAGA GroupPolicy\User: Ograniczenia <==== UWAGA SearchScopes: HKU\S-1-5-21-2412678058-3991403442-3374828277-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={searchTerms}&fr=ntg&product_id=%7B869EA21E-8973-4665-A528-86B4C43E6E8E%7D&gp=811142 SearchScopes: HKU\S-1-5-21-2412678058-3991403442-3374828277-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={searchTerms}&fr=ntg&product_id=%7B869EA21E-8973-4665-A528-86B4C43E6E8E%7D&gp=811142 SearchScopes: HKU\S-1-5-21-2412678058-3991403442-3374828277-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = CHR HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bhjhnafpiilpffhglajcaepjbnbjemci] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dijfnbhlogmffhgpelodglnnkncadnbi] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hcadgijmedbfgciegjomfpjcdchlhnif] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} EmptyTemp: ***************** Procesy zostały pomyślnie zamknięte. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw" => pomyślnie usunięto HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => klucz nie znaleziono "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => pomyślnie usunięto HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => klucz nie znaleziono "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => pomyślnie usunięto HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => klucz nie znaleziono "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\GGDriveMenu" => pomyślnie usunięto HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534} => klucz nie znaleziono "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\Software\Classes\Directory\ShellEx\ContextMenuHandlers\GGDriveMenu" => pomyślnie usunięto HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534} => klucz nie znaleziono "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\GGDriveMenu" => pomyślnie usunięto HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534} => klucz nie znaleziono HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D82794E2-776F-4AE8-9FCA-326EFEBF6A2C} => niepowodzenie przy usuwaniu klucz. ErrorCode1: 0x00000002 "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D82794E2-776F-4AE8-9FCA-326EFEBF6A2C}" => pomyślnie usunięto HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => klucz nie znaleziono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D9F6C006-5C11-451D-B013-23316F97FE97}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D9F6C006-5C11-451D-B013-23316F97FE97}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\hlatomernetkolc" => pomyślnie usunięto C:\WINDOWS\system32\GroupPolicy\Machine => pomyślnie przeniesiono C:\WINDOWS\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => pomyślnie przeniesiono C:\WINDOWS\system32\GroupPolicy\User => pomyślnie przeniesiono "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => pomyślnie usunięto "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}" => pomyślnie usunięto HKLM\Software\Classes\CLSID\{FFEBBF0A-C22C-4172-89FF-45215A135AC7} => klucz nie znaleziono "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => pomyślnie usunięto HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => klucz nie znaleziono "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Google\Chrome\Extensions\bhjhnafpiilpffhglajcaepjbnbjemci" => pomyślnie usunięto "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Google\Chrome\Extensions\dijfnbhlogmffhgpelodglnnkncadnbi" => pomyślnie usunięto "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Google\Chrome\Extensions\hcadgijmedbfgciegjomfpjcdchlhnif" => pomyślnie usunięto "HKU\S-1-5-21-2412678058-3991403442-3374828277-1001\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh" => pomyślnie usunięto ========= wevtutil el | Foreach-Object {wevtutil cl "$_"} ========= ========= Koniec Powershell: ========= =========== EmptyTemp: ========== BITS transfer queue => 7888896 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27721860 B Java, Flash, Steam htmlcache => 373910063 B Windows/system/drivers => 257750 B Edge => 1871865 B Chrome => 552958456 B Firefox => 86309822 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 0 B NetworkService => 5776 B bmend => 120752088 B RecycleBin => 0 B EmptyTemp: => 1.1 GB danych tymczasowych Usunięto. ================================ System wymagał restartu. ==== Koniec Fixlog 18:27:39 ====