Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 20-09-2023 Uruchomiony przez przyb (25-09-2023 09:39:52) Run:1 Uruchomiony z C:\Users\przyb\Desktop Załadowane profile: przyb Tryb startu: Normal ============================================== fixlist - zawartość: ***************** CloseProcesses: CreateRestorePoint: HKLM\...\Policies\Explorer: [NoThumbnailCache] 0 HKLM\...\Policies\Explorer: [DisableThumbnailCache] 0 HKU\S-1-5-21-559121952-1472471594-2593221854-1001\...\Policies\Explorer: [NoThumbnailCache] 0 HKU\S-1-5-21-559121952-1472471594-2593221854-1001\...\Policies\Explorer: [DisableThumbnailCache] 0 HKU\S-1-5-21-559121952-1472471594-2593221854-1001\...\Run: [MicrosoftEdgeAutoLaunch_A2995B52FBFC27EA3F81CFC4FCD45E47] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210216 2023-09-19] (Microsoft Corporation -> Microsoft Corporation) Task: {0E477B6E-13C1-4BCB-BA53-968F1A9ABFED} - Brak ścieżki do pliku. <==== UWAGA Task: {1362B77D-AC28-44D5-9190-9CEE1A9542E2} - Brak ścieżki do pliku. <==== UWAGA Task: {4C794A4A-0D01-40EC-A46E-4A9B0894BB93} - Brak ścieżki do pliku. <==== UWAGA Task: {5B01CABF-468A-41A8-A786-BFA4BC885DC6} - Brak ścieżki do pliku. <==== UWAGA Task: {60406532-3F05-408D-82C2-991F7B357C07} - Brak ścieżki do pliku. <==== UWAGA Task: {65762C41-ACB1-4BF6-8D33-6F5BDEB464F6} - Brak ścieżki do pliku. <==== UWAGA Task: {A79A5CB6-6E83-4A9E-A899-B6CFFCD217CB} - Brak ścieżki do pliku. <==== UWAGA Task: {C57A968E-9707-40E4-8E18-27C84B861473} - Brak ścieżki do pliku. <==== UWAGA Task: {D280D088-8540-4E3C-BE8C-A81DA8AF5CB2} - Brak ścieżki do pliku. <==== UWAGA Task: {DDD886F6-E4E4-4EBA-AC67-B029E0136FB1} - Brak ścieżki do pliku. <==== UWAGA Task: {FDDC4081-4D6E-435F-98CF-BD6FAA76A9CB} - Brak ścieżki do pliku. <==== UWAGA Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{822c49a7-4c0d-42f7-a9ed-f554626da83f}: [DhcpNameServer] 192.168.1.1 Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2023-09-16] <==== UWAGA (Linkuje do pliku *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2023-09-16] <==== UWAGA S3 ampa; \??\C:\Windows\system32\ampa.sys [X] S1 amsdk; \??\C:\Windows\system32\drivers\amsdk.sys [X] S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X] U3 SARPSvc; Brak ImagePath U3 SAVASvc; Brak ImagePath AV: Kaspersky Free (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-559121952-1472471594-2593221854-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank FirewallRules: [TCP Query User{7D689FBA-03F3-442E-B08A-C906AB6CEDA0}C:\program files\windowsapps\spotifyab.spotifymusic_1.217.834.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.217.834.0_x64__zpdnekdrzrea0\spotify.exe => Brak pliku FirewallRules: [UDP Query User{0378BEC6-6B9F-4E26-9566-0A72A82802A3}C:\program files\windowsapps\spotifyab.spotifymusic_1.217.834.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.217.834.0_x64__zpdnekdrzrea0\spotify.exe => Brak pliku FirewallRules: [TCP Query User{AFDD4128-1B14-441F-99F9-B3F704297048}D:\simrail-insaneramzes\simrail.exe] => (Allow) D:\simrail-insaneramzes\simrail.exe => Brak pliku FirewallRules: [UDP Query User{5C6AC83D-DAD0-410A-A50E-96710F84BBA9}D:\simrail-insaneramzes\simrail.exe] => (Allow) D:\simrail-insaneramzes\simrail.exe => Brak pliku FirewallRules: [TCP Query User{0CDBCF57-ACF6-4719-AA7A-184F707E12C9}H:\heavyrain\heavyrain.exe] => (Block) H:\heavyrain\heavyrain.exe => Brak pliku FirewallRules: [UDP Query User{EB66012C-CFF3-47EC-8FC0-BE575B9B615E}H:\heavyrain\heavyrain.exe] => (Block) H:\heavyrain\heavyrain.exe => Brak pliku FirewallRules: [TCP Query User{C1F05227-29B4-4BF2-BF4C-3B77DCF80B93}D:\football menager\microsoft flight simulator\content\flightsimulator.exe] => (Allow) D:\football menager\microsoft flight simulator\content\flightsimulator.exe => Brak pliku FirewallRules: [UDP Query User{828569EC-68E2-45D8-A5D2-E48C767CFC41}D:\football menager\microsoft flight simulator\content\flightsimulator.exe] => (Allow) D:\football menager\microsoft flight simulator\content\flightsimulator.exe => Brak pliku Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mod Organizer\Mod Organizer.lnk -> C:\Modding\MO2skrim\ModOrganizer.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mod Organizer\Uninstall Mod Organizer.lnk -> C:\Modding\MO2skrim\unins000.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dying Light 2 Stay Human\Play Dying Light 2 Stay Human.lnk -> D:\Dying Light 2 Stay Human\ph\work\bin\x64\steamclient_loader.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dying Light 2 Stay Human\Uninstall.lnk -> D:\Dying Light 2 Stay Human\Uninstall\unins000.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip Help.lnk -> C:\Program Files (x86)\7-Zip\7-zip.chm (Brak pliku) CMD: sfc /scannow EmptyEventLogs: EmptyTemp: ***************** Procesy zostały pomyślnie zamknięte. Punkt przywracania został pomyślnie utworzony. "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoThumbnailCache" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\DisableThumbnailCache" => pomyślnie usunięto "HKU\S-1-5-21-559121952-1472471594-2593221854-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoThumbnailCache" => pomyślnie usunięto "HKU\S-1-5-21-559121952-1472471594-2593221854-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\DisableThumbnailCache" => pomyślnie usunięto "HKU\S-1-5-21-559121952-1472471594-2593221854-1001\Software\Microsoft\Windows\CurrentVersion\Run\\MicrosoftEdgeAutoLaunch_A2995B52FBFC27EA3F81CFC4FCD45E47" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0E477B6E-13C1-4BCB-BA53-968F1A9ABFED}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E477B6E-13C1-4BCB-BA53-968F1A9ABFED}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1362B77D-AC28-44D5-9190-9CEE1A9542E2}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1362B77D-AC28-44D5-9190-9CEE1A9542E2}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4C794A4A-0D01-40EC-A46E-4A9B0894BB93}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C794A4A-0D01-40EC-A46E-4A9B0894BB93}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5B01CABF-468A-41A8-A786-BFA4BC885DC6}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B01CABF-468A-41A8-A786-BFA4BC885DC6}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{60406532-3F05-408D-82C2-991F7B357C07}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{60406532-3F05-408D-82C2-991F7B357C07}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{65762C41-ACB1-4BF6-8D33-6F5BDEB464F6}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65762C41-ACB1-4BF6-8D33-6F5BDEB464F6}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A79A5CB6-6E83-4A9E-A899-B6CFFCD217CB}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A79A5CB6-6E83-4A9E-A899-B6CFFCD217CB}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C57A968E-9707-40E4-8E18-27C84B861473}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C57A968E-9707-40E4-8E18-27C84B861473}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D280D088-8540-4E3C-BE8C-A81DA8AF5CB2}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D280D088-8540-4E3C-BE8C-A81DA8AF5CB2}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DDD886F6-E4E4-4EBA-AC67-B029E0136FB1}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDD886F6-E4E4-4EBA-AC67-B029E0136FB1}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FDDC4081-4D6E-435F-98CF-BD6FAA76A9CB}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FDDC4081-4D6E-435F-98CF-BD6FAA76A9CB}" => pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer" => pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{822c49a7-4c0d-42f7-a9ed-f554626da83f}\\DhcpNameServer" => pomyślnie usunięto HKLM\SOFTWARE\Wow6432Node\Microsoft\Edge\Extensions\dbconhplchnbippmjabbcedokimacfjl => pomyślnie usunięto C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js => pomyślnie przeniesiono C:\Program Files\mozilla firefox\bd_config.cfg => pomyślnie przeniesiono HKLM\System\CurrentControlSet\Services\ampa => pomyślnie usunięto ampa => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\amsdk => pomyślnie usunięto amsdk => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\EAAntiCheat => pomyślnie usunięto EAAntiCheat => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\SARPSvc => pomyślnie usunięto SARPSvc => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\SAVASvc => pomyślnie usunięto SAVASvc => serwis pomyślnie usunięto "AV: Kaspersky Free (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}" => pomyślnie usunięto HKLM\Software\\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => Wartość pomyślnie przywrócono HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => Wartość pomyślnie przywrócono HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => Wartość pomyślnie przywrócono HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => Wartość pomyślnie przywrócono HKU\S-1-5-21-559121952-1472471594-2593221854-1001\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => Wartość pomyślnie przywrócono "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7D689FBA-03F3-442E-B08A-C906AB6CEDA0}C:\program files\windowsapps\spotifyab.spotifymusic_1.217.834.0_x64__zpdnekdrzrea0\spotify.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0378BEC6-6B9F-4E26-9566-0A72A82802A3}C:\program files\windowsapps\spotifyab.spotifymusic_1.217.834.0_x64__zpdnekdrzrea0\spotify.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AFDD4128-1B14-441F-99F9-B3F704297048}D:\simrail-insaneramzes\simrail.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5C6AC83D-DAD0-410A-A50E-96710F84BBA9}D:\simrail-insaneramzes\simrail.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0CDBCF57-ACF6-4719-AA7A-184F707E12C9}H:\heavyrain\heavyrain.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EB66012C-CFF3-47EC-8FC0-BE575B9B615E}H:\heavyrain\heavyrain.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C1F05227-29B4-4BF2-BF4C-3B77DCF80B93}D:\football menager\microsoft flight simulator\content\flightsimulator.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{828569EC-68E2-45D8-A5D2-E48C767CFC41}D:\football menager\microsoft flight simulator\content\flightsimulator.exe" => pomyślnie usunięto C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mod Organizer\Mod Organizer.lnk => pomyślnie przeniesiono C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mod Organizer\Uninstall Mod Organizer.lnk => pomyślnie przeniesiono C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dying Light 2 Stay Human\Play Dying Light 2 Stay Human.lnk => pomyślnie przeniesiono C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dying Light 2 Stay Human\Uninstall.lnk => pomyślnie przeniesiono C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip Help.lnk => pomyślnie przeniesiono ========= sfc /scannow ========= Beginning system scan. This process will take some time. Beginning verification phase of system scan. Verification 0% complete. Verification 1% complete. Verification 1% complete. Verification 2% complete. Verification 3% complete. Verification 3% complete. Verification 4% complete. Verification 5% complete. Verification 5% complete. Verification 6% complete. Verification 7% complete. Verification 7% complete. Verification 8% complete. Verification 9% complete. Verification 9% complete. Verification 10% complete. Verification 11% complete. Verification 11% complete. Verification 12% complete. Verification 12% complete. Verification 13% complete. Verification 14% complete. Verification 14% complete. Verification 15% complete. Verification 16% complete. Verification 16% complete. Verification 17% complete. Verification 18% complete. Verification 18% complete. Verification 19% complete. Verification 20% complete. Verification 20% complete. Verification 21% complete. Verification 22% complete. Verification 22% complete. Verification 23% complete. Verification 23% complete. Verification 24% complete. Verification 25% complete. Verification 25% complete. Verification 26% complete. Verification 27% complete. Verification 27% complete. Verification 28% complete. Verification 29% complete. Verification 29% complete. Verification 30% complete. Verification 31% complete. Verification 31% complete. Verification 32% complete. Verification 33% complete. Verification 33% complete. Verification 34% complete. Verification 34% complete. Verification 35% complete. Verification 36% complete. Verification 36% complete. Verification 37% complete. Verification 38% complete. Verification 38% complete. Verification 39% complete. Verification 40% complete. Verification 40% complete. Verification 41% complete. Verification 42% complete. Verification 42% complete. Verification 43% complete. Verification 44% complete. Verification 44% complete. Verification 45% complete. Verification 46% complete. Verification 46% complete. Verification 47% complete. Verification 47% complete. Verification 48% complete. Verification 49% complete. Verification 49% complete. Verification 50% complete. Verification 51% complete. Verification 51% complete. Verification 52% complete. Verification 53% complete. Verification 53% complete. Verification 54% complete. Verification 55% complete. Verification 55% complete. Verification 56% complete. Verification 57% complete. Verification 57% complete. Verification 58% complete. Verification 58% complete. Verification 59% complete. Verification 60% complete. Verification 60% complete. Verification 61% complete. Verification 62% complete. Verification 62% complete. Verification 63% complete. Verification 64% complete. Verification 64% complete. Verification 65% complete. Verification 66% complete. Verification 66% complete. Verification 67% complete. Verification 68% complete. Verification 68% complete. Verification 69% complete. Verification 69% complete. Verification 70% complete. Verification 71% complete. Verification 71% complete. Verification 72% complete. Verification 73% complete. Verification 73% complete. Verification 74% complete. Verification 75% complete. Verification 75% complete. Verification 76% complete. Verification 77% complete. Verification 77% complete. Verification 78% complete. Verification 79% complete. Verification 79% complete. Verification 80% complete. Verification 81% complete. Verification 81% complete. Verification 82% complete. Verification 82% complete. Verification 83% complete. Verification 84% complete. Verification 84% complete. Verification 85% complete. Verification 86% complete. Verification 86% complete. Verification 87% complete. Verification 88% complete. Verification 88% complete. Verification 89% complete. Verification 90% complete. Verification 90% complete. Verification 91% complete. Verification 92% complete. Verification 92% complete. Verification 93% complete. Verification 93% complete. Verification 94% complete. Verification 95% complete. Verification 95% complete. Verification 96% complete. Verification 97% complete. Verification 97% complete. Verification 98% complete. Verification 99% complete. Verification 99% complete. Verification 100% complete. Windows Resource Protection did not find any integrity violations. ========= Koniec CMD: ========= =========== EmptyEventLogs: ========== 1107 Event logs cleared. ================================ =========== EmptyTemp: ========== FlushDNS => ukończone BITS transfer queue => 1310720 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 39244029 B Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 311567105 B Windows/system/drivers => 106896 B Edge => 0 B Firefox => 594094788 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 22 B LocalService => 218490 B NetworkService => 226750 B przyb => 343957753 B RecycleBin => 1264076 B EmptyTemp: => 1.2 GB danych tymczasowych Usunięto. ================================ System wymagał restartu. ==== Koniec Fixlog 09:46:40 ====