Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 01.07.2024
Uruchomiony przez KPS (04-07-2024 10:24:04) Run:1
Uruchomiony z C:\Users\KPS\Desktop
Załadowane profile: KPS
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
START::
TotalAV (HKLM-x32\...\TotalAV) (Version: 5.24.38 - TotalAV) <==== UWAGA
CustomCLSID: HKU\S-1-5-21-1396208807-2796122222-690133046-1001_Classes\CLSID\{a089c50f-a856-4f2a-a70c-582dbd4d2c19}\InprocServer32 -> C:\Program Files\Thunderbird\notificationserver.dll => Brak pliku
FirewallRules: [{2E35D369-D354-4439-8ACD-10FB5934D45B}] => (Allow) E:\GRY\Steam\steamapps\common\Commandos 3 Destination Berlin\Legacy\Commandos3.exe => Brak pliku
FirewallRules: [{42B19279-C8F5-446D-9263-D3587A93E1D1}] => (Allow) E:\GRY\Steam\steamapps\common\Commandos 3 Destination Berlin\Legacy\Commandos3.exe => Brak pliku
FirewallRules: [{3888F07C-7086-4AB2-97F6-5881A9C281BE}] => (Allow) E:\GRY\Steam\steamapps\common\Commandos 2 Men of Courage\Legacy\comm2.exe => Brak pliku
FirewallRules: [{770E5AA9-4092-4EF2-A2BC-DA7E19DA74D7}] => (Allow) E:\GRY\Steam\steamapps\common\Commandos 2 Men of Courage\Legacy\comm2.exe => Brak pliku
FirewallRules: [{910E5BF5-57EB-4A72-8735-304D48EE75E6}] => (Allow) E:\GRY\Steam\steamapps\common\Commandos Beyond the Call of Duty\Legacy\coman_mp.exe => Brak pliku
FirewallRules: [{8B3A530E-D0A0-48E6-9B6B-171C36A8D64C}] => (Allow) E:\GRY\Steam\steamapps\common\Commandos Beyond the Call of Duty\Legacy\coman_mp.exe => Brak pliku
FirewallRules: [{E0130FE2-3B98-4275-9050-A1B68D878735}] => (Allow) E:\GRY\Steam\steamapps\common\Commandos Behind Enemy Lines\Legacy\Comandos.exe => Brak pliku
FirewallRules: [{62A71E74-D3E6-4A3C-A274-8A94EA5F2CE5}] => (Allow) E:\GRY\Steam\steamapps\common\Commandos Behind Enemy Lines\Legacy\Comandos.exe => Brak pliku
FirewallRules: [{539BE862-1076-4E66-BC44-26970F5401FA}] => (Allow) C:\Program Files\DaVinci Resolve\ElementsPanelDaemon.exe => Brak pliku
FirewallRules: [TCP Query User{1CC86770-1DDE-48F0-A018-8B71E5FC9282}C:\program files\ivcam\ivcam.exe] => (Allow) C:\program files\ivcam\ivcam.exe => Brak pliku
FirewallRules: [UDP Query User{5713DDEF-732E-4C20-B7A0-387A0F8F6443}C:\program files\ivcam\ivcam.exe] => (Allow) C:\program files\ivcam\ivcam.exe => Brak pliku
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA
HKU\S-1-5-21-1396208807-2796122222-690133046-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1396208807-2796122222-690133046-1001\...\Run: [] => [X]
HKU\S-1-5-21-1396208807-2796122222-690133046-1001\...\Run: [com.messenger] => C:\Users\KPS\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin (Brak pliku)
HKU\S-1-5-21-1396208807-2796122222-690133046-1001\...\MountPoints2: {bd145d24-b444-11eb-b6fa-3c7c3fc34af1} - "F:\setup.exe" 
GroupPolicy\User: Ograniczenia ? <==== UWAGA
Task: {597A7790-052F-4A89-8E9C-E22ABED6F7F4} - System32\Tasks\ASUS\ArmouryAIOFanServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe  (Brak pliku)
Task: {0BDF013B-4A26-4E47-A7CA-F3C95DF9E93C} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe  (Brak pliku)
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => nie znaleziono
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => nie znaleziono
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-06-18] <==== UWAGA (Linkuje do pliku *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-06-18] <==== UWAGA
R2 luminati_net_updater_win_freesnippingtool_com; C:\Users\KPS\AppData\Roaming\Free Snipping Tool\App\net_updater32.exe [8408568 2024-06-27] (Bright Data Ltd -> BrightData Ltd. (certified))
S2 SecurityService; "C:\Program Files (x86)\TotalAV\SecurityService.exe" [X] <==== UWAGA
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== UWAGA
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X] <==== UWAGA
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X] <==== UWAGA
S3 cpuz153; \??\C:\WINDOWS\temp\cpuz153\cpuz153_x64.sys [X] <==== UWAGA
S3 cpuz154; \??\C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [X] <==== UWAGA
S1 EneTechIo; \??\C:\WINDOWS\system32\drivers\ene.sys [X]
C:\Users\KPS\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge Beta.lnk
CreateRestorePoint:
EmptyTemp:
END::
*****************

TotalAV (HKLM-x32\...\TotalAV) (Version: 5.24.38 - TotalAV) <==== UWAGA => Błąd: Nie znaleziono automatycznej naprawy dla tego wejścia.
HKU\S-1-5-21-1396208807-2796122222-690133046-1001_Classes\CLSID\{a089c50f-a856-4f2a-a70c-582dbd4d2c19} => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2E35D369-D354-4439-8ACD-10FB5934D45B}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{42B19279-C8F5-446D-9263-D3587A93E1D1}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3888F07C-7086-4AB2-97F6-5881A9C281BE}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{770E5AA9-4092-4EF2-A2BC-DA7E19DA74D7}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{910E5BF5-57EB-4A72-8735-304D48EE75E6}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8B3A530E-D0A0-48E6-9B6B-171C36A8D64C}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E0130FE2-3B98-4275-9050-A1B68D878735}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{62A71E74-D3E6-4A3C-A274-8A94EA5F2CE5}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{539BE862-1076-4E66-BC44-26970F5401FA}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1CC86770-1DDE-48F0-A018-8B71E5FC9282}C:\program files\ivcam\ivcam.exe" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5713DDEF-732E-4C20-B7A0-387A0F8F6443}C:\program files\ivcam\ivcam.exe" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => pomyślnie usunięto
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => pomyślnie usunięto
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => Wartość pomyślnie przywrócono
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => Wartość pomyślnie przywrócono
"HKU\S-1-5-21-1396208807-2796122222-690133046-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge" => pomyślnie usunięto
"HKU\S-1-5-21-1396208807-2796122222-690133046-1001\Software\Microsoft\Windows\CurrentVersion\Run\\" => pomyślnie usunięto
"HKU\S-1-5-21-1396208807-2796122222-690133046-1001\Software\Microsoft\Windows\CurrentVersion\Run\\com.messenger" => pomyślnie usunięto
HKU\S-1-5-21-1396208807-2796122222-690133046-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bd145d24-b444-11eb-b6fa-3c7c3fc34af1} => pomyślnie usunięto

"C:\WINDOWS\system32\GroupPolicy\User" Folder - przenoszenie:

C:\WINDOWS\system32\GroupPolicy\User => pomyślnie przeniesiono
C:\WINDOWS\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{597A7790-052F-4A89-8E9C-E22ABED6F7F4}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{597A7790-052F-4A89-8E9C-E22ABED6F7F4}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\ASUS\ArmouryAIOFanServer => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS\ArmouryAIOFanServer" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0BDF013B-4A26-4E47-A7CA-F3C95DF9E93C}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0BDF013B-4A26-4E47-A7CA-F3C95DF9E93C}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\ASUS\P508PowerAgent_sdk => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS\P508PowerAgent_sdk" => pomyślnie usunięto
"HKLM\Software\Mozilla\Firefox\Extensions\\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com" => pomyślnie usunięto
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com" => pomyślnie usunięto
C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js => pomyślnie przeniesiono
C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg => pomyślnie przeniesiono
luminati_net_updater_win_freesnippingtool_com => Usługa pomyślnie zatrzymana.
HKLM\System\CurrentControlSet\Services\luminati_net_updater_win_freesnippingtool_com => pomyślnie usunięto
luminati_net_updater_win_freesnippingtool_com => serwis pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\SecurityService => pomyślnie usunięto
SecurityService => serwis pomyślnie usunięto
webshieldfilter => Usługa pomyślnie zatrzymana.
HKLM\System\CurrentControlSet\Services\webshieldfilter => pomyślnie usunięto
webshieldfilter => serwis pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\cpuz150 => pomyślnie usunięto
cpuz150 => serwis pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\cpuz152 => pomyślnie usunięto
cpuz152 => serwis pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\cpuz153 => pomyślnie usunięto
cpuz153 => serwis pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\cpuz154 => pomyślnie usunięto
cpuz154 => serwis pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\EneTechIo => pomyślnie usunięto
EneTechIo => serwis pomyślnie usunięto
C:\Users\KPS\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge Beta.lnk => pomyślnie przeniesiono
Punkt przywracania został pomyślnie utworzony.

=========== EmptyTemp: ==========

FlushDNS => ukończone
BITS transfer queue => 1835008 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 217475653 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 965519848 B
Windows/system/drivers => 38416063 B
Edge => 0 B
Chrome => 2398571069 B
Firefox => 801154457 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 7600 B
LocalService => 1891598 B
NetworkService => 1902498 B