Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 15-07-2019 01 Uruchomiony przez Marcin (21-07-2019 09:12:04) Run:1 Uruchomiony z C:\Users\Marcin\Desktop Załadowane profile: Marcin (Dostępne profile: Hubert & Marcin & Administrator) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** IFEO\taskmgr.exe: [Debugger] "C:\PROGRAM FILES (X86)\PROCESS EXPLORER\PROCEXP.EXE" HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA GroupPolicy: Ograniczenia ? <==== UWAGA Task: {16DDB723-3AED-4218-BDB7-A09EF3BCE212} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {303AC222-4809-4B29-847D-723A247C84A3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {47B14734-98A3-4B4D-9629-E8591A99D375} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Brak pliku <==== UWAGA Task: {7F1DF189-E7AD-4873-9189-51268CEE3FB0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {923B8556-5CF1-43F3-9302-9A89FDE1E0E3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Brak pliku <==== UWAGA Task: {C9113331-19E1-43DF-8BCB-95AE19CF7416} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {D518FA7E-5C58-4B6B-9C20-E0C629C806A7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {EDFF92D0-6DD1-4AD7-A48A-5889C90013F0} - \Microsoft\Windows\Setup\gwx\rundetector -> Brak pliku <==== UWAGA FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Brak pliku] FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Brak pliku] U3 dmwappushsvc; Brak ImagePath HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Brak pliku) FirewallRules: [{1B792E1C-AB48-4B1A-A562-5964E7E5128D}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe Brak pliku FirewallRules: [{53106D16-62F8-437E-8B58-FB3655CDC534}] => (Allow) C:\Users\Marcin\AppData\Roaming\uTorrent Web\utweb.exe Brak pliku FirewallRules: [{158DD6AE-E2D4-4D5B-8B3D-DBB63E28AAF5}] => (Allow) C:\Users\Marcin\AppData\Roaming\uTorrent Web\utweb.exe Brak pliku HOSTS: Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk EmptyTemp: ***************** HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\taskmgr.exe => pomyślnie usunięto HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => pomyślnie usunięto C:\WINDOWS\system32\GroupPolicy\Machine => pomyślnie przeniesiono C:\WINDOWS\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => pomyślnie przeniesiono HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{16DDB723-3AED-4218-BDB7-A09EF3BCE212} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{16DDB723-3AED-4218-BDB7-A09EF3BCE212} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{303AC222-4809-4B29-847D-723A247C84A3} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{303AC222-4809-4B29-847D-723A247C84A3} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{47B14734-98A3-4B4D-9629-E8591A99D375}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47B14734-98A3-4B4D-9629-E8591A99D375}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F1DF189-E7AD-4873-9189-51268CEE3FB0}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F1DF189-E7AD-4873-9189-51268CEE3FB0}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{923B8556-5CF1-43F3-9302-9A89FDE1E0E3}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{923B8556-5CF1-43F3-9302-9A89FDE1E0E3}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C9113331-19E1-43DF-8BCB-95AE19CF7416} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C9113331-19E1-43DF-8BCB-95AE19CF7416} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D518FA7E-5C58-4B6B-9C20-E0C629C806A7} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D518FA7E-5C58-4B6B-9C20-E0C629C806A7} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDFF92D0-6DD1-4AD7-A48A-5889C90013F0} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDFF92D0-6DD1-4AD7-A48A-5889C90013F0} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector => pomyślnie usunięto HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect => pomyślnie usunięto HKLM\Software\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect => pomyślnie usunięto HKLM\System\CurrentControlSet\Services\dmwappushsvc => pomyślnie usunięto dmwappushsvc => serwis pomyślnie usunięto HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Brak pliku) => Błąd: Nie znaleziono automatycznej naprawy dla tego wejścia. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1B792E1C-AB48-4B1A-A562-5964E7E5128D}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{53106D16-62F8-437E-8B58-FB3655CDC534}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{158DD6AE-E2D4-4D5B-8B3D-DBB63E28AAF5}" => pomyślnie usunięto C:\Windows\System32\Drivers\etc\hosts => pomyślnie przeniesiono Hosts pomyślnie przywrócono. ========= wevtutil el | Foreach-Object {wevtutil cl "$_"} ========= wevtutil : Failed to clear log Microsoft-Windows-LiveId/Analytic. Odmowa dostŕpu. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...Odmowa dostŕpu.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError wevtutil : Failed to clear log Microsoft-Windows-LiveId/Operational. Odmowa dostŕpu. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...Odmowa dostŕpu.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError wevtutil : Failed to clear log Microsoft-Windows-USBVideo/Analytic. Przekazana nazwa wyst╣pienia nie zosta│a uznana prz ez dostawcŕ danych WMI za prawid│ow╣. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear... za prawid│ow╣.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError ========= Koniec Powershell: ========= C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk => pomyślnie przeniesiono C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk => pomyślnie przeniesiono =========== EmptyTemp: ========== BITS transfer queue => 9199616 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 114616767 B Java, Flash, Steam htmlcache => 1203 B Windows/system/drivers => 15502 B Edge => 545373 B Chrome => 0 B Firefox => 97886048 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 214718 B LocalService => 0 B NetworkService => 659006 B NetworkService => 0 B Hubert => 47780176 B Marcin => 46262912 B Administrator => 0 B RecycleBin => 200 B EmptyTemp: => 302.5 MB danych tymczasowych Usunięto. ================================ System wymagał restartu. ==== Koniec Fixlog 09:14:07 ====