Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 20-01-2023
Uruchomiony przez Krzysiek (21-01-2023 20:07:39) Run:1
Uruchomiony z C:\Drivers
Załadowane profile: Krzysiek & as & skaner
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
CreateRestorePoint:
CloseProcesses:
EmptyTemp:
HKLM-x32\...\Run: [Genshin Impact_Launcher] => [X]
HKLM-x32\...\Run: [Genshin Impact_launcher__1_1] => [X]
HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\MountPoints2: {e614cac0-4f10-11e8-87ca-4ccc6a460683} - "E:\setup.exe" 
GroupPolicy: Ograniczenia ? <==== UWAGA
Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
Task: {00BD03DD-0978-4521-A558-2330D929172D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1073480031-1809063097-3931629501-1003 => C:\Users\Krzysiek\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Brak pliku)
Task: {37961AD6-8691-4563-A237-6D1894D578F2} - System32\Tasks\Nahimic2Svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Brak pliku)
Task: {93C5AE81-07D1-43A2-BF19-90ACE6E71E70} - System32\Tasks\NahimicVRSvc64Run => C:\Program Files\Nahimic\Nahimic VR\Foundation\x64\NahimicVRSvc64.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Brak pliku)
Task: {98B9130E-B1BA-49A1-BE8B-D68D9E6AD4E7} - System32\Tasks\Nahimic2Svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Brak pliku)
Task: {AB5D9997-08BE-4D5E-9E38-28523620CDF3} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Brak pliku)
Task: {C83A33A2-D996-4BA3-A2E3-7F454DCAA325} - System32\Tasks\NahimicVRSvc32Run => C:\Program Files\Nahimic\Nahimic VR\Foundation\NahimicVRSvc32.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Brak pliku)
Task: {D5EA899D-F4DF-4B34-AE66-027E6A3AC560} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Brak pliku)
Task: {D83D3BBD-1A53-442E-8411-C286518CBB2E} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe (Brak pliku)
S3 ALSysIO; \??\C:\Users\Krzysiek\AppData\Local\Temp\ALSysIO64.sys [X] <==== UWAGA
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X]
S3 wtbt; \??\c:\___gry\steam\steamapps\common\super people playtest\engine\binaries\thirdparty\wondertrust\wtdrv64.sys [X]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ContextMenuHandlers1: [ FileSyncEx] -> [CC]{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Brak pliku
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Brak pliku
ContextMenuHandlers1: [BriefcaseMenu] -> [CC]{85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> [CC]{4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Brak pliku
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Brak pliku
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Brak pliku
ContextMenuHandlers6: [BriefcaseMenu] -> [CC]{85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 [134]
AlternateDataStreams: C:\Users\Public\AppData:CSM [488]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]
FirewallRules: [{2980CC9F-176B-4369-88F3-5149C084D932}] => (Allow) J:\Program Files (x86)\IncrediMail\Bin\IncMail.exe => Brak pliku
FirewallRules: [{2F105347-F61C-41E3-A27C-FAC3C0D0DD1C}] => (Allow) J:\Program Files (x86)\IncrediMail\Bin\IncMail.exe => Brak pliku
FirewallRules: [UDP Query User{02070923-1DAB-483C-94D3-1ED0552AAC1A}J:\program files (x86)\kodi\1\kodi.exe] => (Allow) J:\program files (x86)\kodi\1\kodi.exe => Brak pliku
FirewallRules: [TCP Query User{BC31220A-F20D-4376-BABF-F2F5EDD8D75D}J:\program files (x86)\kodi\1\kodi.exe] => (Allow) J:\program files (x86)\kodi\1\kodi.exe => Brak pliku
FirewallRules: [UDP Query User{6E002B30-736D-4594-B6E0-6D295ABD011D}J:\program files (x86)\kodi\kodi.exe] => (Allow) J:\program files (x86)\kodi\kodi.exe => Brak pliku
FirewallRules: [TCP Query User{042331A6-8346-4687-90AA-27C4650AA510}J:\program files (x86)\kodi\kodi.exe] => (Allow) J:\program files (x86)\kodi\kodi.exe => Brak pliku
FirewallRules: [UDP Query User{6F691AEC-2777-43CB-9158-4D9C7177AACD}H:\program files (x86)\kodi\kodi.exe] => (Allow) H:\program files (x86)\kodi\kodi.exe => Brak pliku
FirewallRules: [TCP Query User{3BB0445E-96B0-47F5-AB84-9AC2F86DE352}H:\program files (x86)\kodi\kodi.exe] => (Allow) H:\program files (x86)\kodi\kodi.exe => Brak pliku
CHR HomePage: Default -> data:image/png;base64
Hosts:
*****************

Punkt przywracania został pomyślnie utworzony.
Procesy zostały pomyślnie zamknięte.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Genshin Impact_Launcher" => pomyślnie usunięto
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Genshin Impact_launcher__1_1" => pomyślnie usunięto
HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e614cac0-4f10-11e8-87ca-4ccc6a460683} => pomyślnie usunięto
C:\WINDOWS\system32\GroupPolicy\Machine => pomyślnie przeniesiono
C:\WINDOWS\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => pomyślnie przeniesiono
C:\ProgramData\NTUSER.pol => pomyślnie przeniesiono
HKLM\SOFTWARE\Policies\Mozilla => pomyślnie usunięto
HKLM\SOFTWARE\Policies\Google => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00BD03DD-0978-4521-A558-2330D929172D}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00BD03DD-0978-4521-A558-2330D929172D}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1073480031-1809063097-3931629501-1003 => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-1073480031-1809063097-3931629501-1003" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37961AD6-8691-4563-A237-6D1894D578F2}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37961AD6-8691-4563-A237-6D1894D578F2}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Nahimic2Svc64Run => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Nahimic2Svc64Run" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{93C5AE81-07D1-43A2-BF19-90ACE6E71E70}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{93C5AE81-07D1-43A2-BF19-90ACE6E71E70}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\NahimicVRSvc64Run => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NahimicVRSvc64Run" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{98B9130E-B1BA-49A1-BE8B-D68D9E6AD4E7}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{98B9130E-B1BA-49A1-BE8B-D68D9E6AD4E7}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Nahimic2Svc32Run => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Nahimic2Svc32Run" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AB5D9997-08BE-4D5E-9E38-28523620CDF3}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AB5D9997-08BE-4D5E-9E38-28523620CDF3}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Nahimic2UILauncherRun => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Nahimic2UILauncherRun" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C83A33A2-D996-4BA3-A2E3-7F454DCAA325}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C83A33A2-D996-4BA3-A2E3-7F454DCAA325}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\NahimicVRSvc32Run => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NahimicVRSvc32Run" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5EA899D-F4DF-4B34-AE66-027E6A3AC560}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5EA899D-F4DF-4B34-AE66-027E6A3AC560}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Office\Office 15 Subscription Heartbeat" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D83D3BBD-1A53-442E-8411-C286518CBB2E}" => pomyślnie usunięto
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D83D3BBD-1A53-442E-8411-C286518CBB2E}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Microsoft\Windows\rempl\shell => pomyślnie przeniesiono
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\rempl\shell" => pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\ALSysIO => pomyślnie usunięto
ALSysIO => serwis pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\cpuz152 => pomyślnie usunięto
cpuz152 => serwis pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\wtbt => pomyślnie usunięto
wtbt => serwis pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => pomyślnie usunięto
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => pomyślnie usunięto
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => pomyślnie usunięto
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => pomyślnie usunięto
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => pomyślnie usunięto
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => pomyślnie usunięto
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => pomyślnie usunięto
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => pomyślnie usunięto
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx => pomyślnie usunięto
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => pomyślnie usunięto
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => pomyślnie usunięto
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => pomyślnie usunięto
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx => pomyślnie usunięto
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => pomyślnie usunięto
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => pomyślnie usunięto
C:\ProgramData\TEMP => ":4FC01C57" ADS pomyślnie usunięto
C:\Users\Public\AppData => ":CSM" ADS pomyślnie usunięto
C:\Users\Public\Shared Files => ":VersionCache" ADS pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2980CC9F-176B-4369-88F3-5149C084D932}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2F105347-F61C-41E3-A27C-FAC3C0D0DD1C}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{02070923-1DAB-483C-94D3-1ED0552AAC1A}J:\program files (x86)\kodi\1\kodi.exe" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BC31220A-F20D-4376-BABF-F2F5EDD8D75D}J:\program files (x86)\kodi\1\kodi.exe" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6E002B30-736D-4594-B6E0-6D295ABD011D}J:\program files (x86)\kodi\kodi.exe" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{042331A6-8346-4687-90AA-27C4650AA510}J:\program files (x86)\kodi\kodi.exe" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6F691AEC-2777-43CB-9158-4D9C7177AACD}H:\program files (x86)\kodi\kodi.exe" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3BB0445E-96B0-47F5-AB84-9AC2F86DE352}H:\program files (x86)\kodi\kodi.exe" => pomyślnie usunięto
"Chrome HomePage" => pomyślnie usunięto
C:\Windows\System32\Drivers\etc\hosts => pomyślnie przeniesiono
Hosts pomyślnie przywrócono.

=========== EmptyTemp: ==========

FlushDNS => ukończone
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9289939 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1470984658 B
Windows/system/drivers => 39354499 B
Edge => 606208 B
Chrome => 22988310 B
Firefox => 493651686 B
Opera => 525354811 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 100887 B
LocalService => 100887 B
NetworkService => 105911 B
Krzysiek => 20124488 B
as => 20146958 B
qw => 20187518 B
skaner => 30007563 B

RecycleBin => 0 B
EmptyTemp: => 2.5 GB danych tymczasowych Usunięto.

================================


System wymagał restartu.

==== Koniec  Fixlog 20:08:14 ====