Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 15-01-2020 Uruchomiony przez KOMPUTER (17-01-2020 20:04:24) Run:1 Uruchomiony z C:\Users\KOMPUTER\Desktop Załadowane profile: KOMPUTER & postgres (Dostępne profile: KOMPUTER & postgres) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** HKU\S-1-5-21-2396012584-1682684127-3418686497-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nav-pl.com/ SearchScopes: HKU\S-1-5-21-2396012584-1682684127-3418686497-1001 -> DefaultScope {4AE4B81F-EA79-410B-88FA-789C5935CF5B} URL = hxxp://www.nav-pl.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-2396012584-1682684127-3418686497-1001 -> {4AE4B81F-EA79-410B-88FA-789C5935CF5B} URL = hxxp://www.nav-pl.com/search?q={searchTerms} CHR HomePage: Default -> hxxp://www.nav-pl.com/ CHR DefaultSearchURL: Default -> hxxp://www.nav-pl.com/search?q={searchTerms} C:\Users\KOMPUTER\Desktop\xznfxcqshajyhj.txt FirewallRules: [{3ED80FAB-BC95-4BC6-BDD2-6AFF63E95B63}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe Brak pliku FirewallRules: [{C371E83D-D1D2-4E81-B9EC-D55616BF45B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe Brak pliku FirewallRules: [{E9F45CFF-49AF-4AE0-8484-4A97F82F4546}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe Brak pliku FirewallRules: [{55EDFCA9-FA41-401D-BF59-A2A10097AAB1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe Brak pliku FirewallRules: [{1B884E98-2D62-436B-A242-5D803E0B7582}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe Brak pliku FirewallRules: [{8F88C6F9-647F-4E42-A523-82484280E060}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe Brak pliku Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} FirewallRules: [{9BC5EC67-18EA-4102-9D2F-DD6A566180D0}] => (Allow) %systemroot%\system32\alg.exe Brak pliku FirewallRules: [{8D58F44C-BF7C-49E7-91F1-3557DE8E2930}] => (Allow) %systemroot%\system32\alg.exe Brak pliku FirewallRules: [{F2734AFE-9122-47FC-B050-7357466FA206}] => (Allow) %systemroot%\system32\alg.exe Brak pliku EmptyTemp: ***************** HKU\S-1-5-21-2396012584-1682684127-3418686497-1001\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => Wartość pomyślnie przywrócono "HKU\S-1-5-21-2396012584-1682684127-3418686497-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => pomyślnie usunięto HKU\S-1-5-21-2396012584-1682684127-3418686497-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4AE4B81F-EA79-410B-88FA-789C5935CF5B} => pomyślnie usunięto "Chrome HomePage" => pomyślnie usunięto "Chrome DefaultSearchURL" => pomyślnie usunięto "C:\Users\KOMPUTER\Desktop\xznfxcqshajyhj.txt" => nie znaleziono "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3ED80FAB-BC95-4BC6-BDD2-6AFF63E95B63}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C371E83D-D1D2-4E81-B9EC-D55616BF45B9}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E9F45CFF-49AF-4AE0-8484-4A97F82F4546}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{55EDFCA9-FA41-401D-BF59-A2A10097AAB1}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1B884E98-2D62-436B-A242-5D803E0B7582}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F88C6F9-647F-4E42-A523-82484280E060}" => pomyślnie usunięto ========= wevtutil el | Foreach-Object {wevtutil cl "$_"} ========= wevtutil : Failed to clear log Microsoft-Windows-LiveId/Analytic. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...iveId/Analytic.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Odmowa dostŕpu. wevtutil : Failed to clear log Microsoft-Windows-LiveId/Operational. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...Id/Operational.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Odmowa dostŕpu. ========= Koniec Powershell: ========= "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9BC5EC67-18EA-4102-9D2F-DD6A566180D0}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8D58F44C-BF7C-49E7-91F1-3557DE8E2930}" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F2734AFE-9122-47FC-B050-7357466FA206}" => pomyślnie usunięto =========== EmptyTemp: ========== BITS transfer queue => 10248192 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 401339658 B Java, Flash, Steam htmlcache => 379802658 B Windows/system/drivers => 2665610 B Edge => 10260280 B Chrome => 522371248 B Firefox => 1093264790 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 609240 B NetworkService => 725736 B KOMPUTER => 240889036 B postgres => 240889036 B RecycleBin => 0 B EmptyTemp: => 2.7 GB danych tymczasowych Usunięto. ================================ System wymagał restartu. ==== Koniec Fixlog 20:12:59 ====