Rezultat naprawy Farbar Recovery Scan Tool (x86) Wersja: 21-10-2019 Uruchomiony przez User (22-10-2019 23:33:06) Run:1 Uruchomiony z C:\Users\User\Downloads Załadowane profile: User (Dostępne profile: User) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** CloseProcesses: CreateRestorePoint: EmptyTemp: HKU\S-1-5-21-3950837632-860733910-362576068-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-3950837632-860733910-362576068-1000\...\MountPoints2: {40ebeb82-904c-11e9-90b6-1c750827631e} - D:\HiSuiteDownLoader.exe HKU\S-1-5-21-3950837632-860733910-362576068-1000\...\MountPoints2: {40ebeb8a-904c-11e9-90b6-1c750827631e} - D:\HiSuiteDownLoader.exe GroupPolicyScripts: Ograniczenia <==== UWAGA Task: {5C0E4561-2206-470A-87C6-E1E3A52155EB} - System32\Tasks\{A4A23EE8-3D9F-4F61-A9C5-135AB0C02FCC} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Desktop\EFRCSetup.exe -d C:\Users\User\Desktop Task: {6C84890A-C7BC-49C6-853B-FAA37D152E7D} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy Task: {87921EA9-160B-4236-966D-A08B973970E5} - System32\Tasks\{1DBDC224-0026-4386-826E-183D32B39261} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\WinMover\unins000.exe" Task: {94982D95-A95D-4B63-8889-A12030E75FBD} - System32\Tasks\{80D07511-EFE5-4BA2-B43B-1863B04B1CD8} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Downloads\FacebookGameroom.exe -d C:\Users\User\Downloads Task: {9E0DFAAA-48F2-4092-B916-2B13CD1DC514} - System32\Tasks\{A9DEBCEA-87C1-4580-9CB2-CF170B14BB93} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\StarterBackgroundChanger\Uninstall.exe" -d "C:\Program Files\StarterBackgroundChanger" Task: {D2CF706C-7F1E-41C1-B83D-21D2C18389FC} - System32\Tasks\{241EEA3D-2574-429C-A392-1499C7E81AA7} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Downloads\FacebookGameroom.exe -d C:\Users\User\Downloads Tcpip\..\Interfaces\{42EF621A-D065-4B27-A85E-9C56A61625E0}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{8E3AA95B-B831-445B-9FEB-18203E444BD6}: [NameServer] 87.118.111.215,209.244.0.3 Tcpip\..\Interfaces\{8E3AA95B-B831-445B-9FEB-18203E444BD6}: [DhcpNameServer] 10.0.31.237 192.168.1.1 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = SearchScopes: HKU\S-1-5-21-3950837632-860733910-362576068-1000 -> {2E0F5A3A-DA4D-4B4A-A4BE-20E409378DE6} URL = hxxp://www.google.com/search?hl=pl&q={searchTerms} DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab S3 AndNetDiag; system32\DRIVERS\lgandnetdiag.sys [X] S3 ANDNetModem; system32\DRIVERS\lgandnetmodem.sys [X] ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Brak pliku ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Brak pliku ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Brak pliku ContextMenuHandlers5_S-1-5-21-3950837632-860733910-362576068-1000: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku ***************** Procesy zostały pomyślnie zamknięte. Punkt przywracania został pomyślnie utworzony. "HKU\S-1-5-21-3950837632-860733910-362576068-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoLowDiskSpaceChecks" => pomyślnie usunięto HKU\S-1-5-21-3950837632-860733910-362576068-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{40ebeb82-904c-11e9-90b6-1c750827631e} => pomyślnie usunięto HKLM\Software\Classes\CLSID\{40ebeb82-904c-11e9-90b6-1c750827631e} => nie znaleziono HKU\S-1-5-21-3950837632-860733910-362576068-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{40ebeb8a-904c-11e9-90b6-1c750827631e} => pomyślnie usunięto HKLM\Software\Classes\CLSID\{40ebeb8a-904c-11e9-90b6-1c750827631e} => nie znaleziono C:\Windows\system32\GroupPolicy\Machine => pomyślnie przeniesiono C:\Windows\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5C0E4561-2206-470A-87C6-E1E3A52155EB}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5C0E4561-2206-470A-87C6-E1E3A52155EB}" => pomyślnie usunięto C:\Windows\System32\Tasks\{A4A23EE8-3D9F-4F61-A9C5-135AB0C02FCC} => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A4A23EE8-3D9F-4F61-A9C5-135AB0C02FCC}" => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6C84890A-C7BC-49C6-853B-FAA37D152E7D} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C84890A-C7BC-49C6-853B-FAA37D152E7D} => pomyślnie usunięto C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => pomyślnie przeniesiono HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{87921EA9-160B-4236-966D-A08B973970E5} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87921EA9-160B-4236-966D-A08B973970E5} => pomyślnie usunięto C:\Windows\System32\Tasks\{1DBDC224-0026-4386-826E-183D32B39261} => pomyślnie przeniesiono HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1DBDC224-0026-4386-826E-183D32B39261} => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{94982D95-A95D-4B63-8889-A12030E75FBD}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94982D95-A95D-4B63-8889-A12030E75FBD}" => pomyślnie usunięto C:\Windows\System32\Tasks\{80D07511-EFE5-4BA2-B43B-1863B04B1CD8} => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{80D07511-EFE5-4BA2-B43B-1863B04B1CD8}" => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9E0DFAAA-48F2-4092-B916-2B13CD1DC514} => pomyślnie usunięto HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E0DFAAA-48F2-4092-B916-2B13CD1DC514} => pomyślnie usunięto C:\Windows\System32\Tasks\{A9DEBCEA-87C1-4580-9CB2-CF170B14BB93} => pomyślnie przeniesiono HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A9DEBCEA-87C1-4580-9CB2-CF170B14BB93} => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D2CF706C-7F1E-41C1-B83D-21D2C18389FC}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D2CF706C-7F1E-41C1-B83D-21D2C18389FC}" => pomyślnie usunięto C:\Windows\System32\Tasks\{241EEA3D-2574-429C-A392-1499C7E81AA7} => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{241EEA3D-2574-429C-A392-1499C7E81AA7}" => pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{42EF621A-D065-4B27-A85E-9C56A61625E0}\\DhcpNameServer" => pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8E3AA95B-B831-445B-9FEB-18203E444BD6}\\NameServer" => pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8E3AA95B-B831-445B-9FEB-18203E444BD6}\\DhcpNameServer" => pomyślnie usunięto HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => Wartość pomyślnie przywrócono HKU\S-1-5-21-3950837632-860733910-362576068-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2E0F5A3A-DA4D-4B4A-A4BE-20E409378DE6} => pomyślnie usunięto HKLM\Software\Classes\CLSID\{2E0F5A3A-DA4D-4B4A-A4BE-20E409378DE6} => nie znaleziono HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} => pomyślnie usunięto HKLM\Software\Classes\CLSID\{4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} => pomyślnie usunięto HKLM\System\CurrentControlSet\Services\AndNetDiag => pomyślnie usunięto AndNetDiag => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\ANDNetModem => pomyślnie usunięto ANDNetModem => serwis pomyślnie usunięto HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\UAContextMenu => pomyślnie usunięto HKLM\Software\Classes\CLSID\{A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => nie znaleziono HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\UAContextMenu => pomyślnie usunięto HKLM\Software\Classes\CLSID\{A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => nie znaleziono HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\UAContextMenu => pomyślnie usunięto HKLM\Software\Classes\CLSID\{A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => nie znaleziono HKU\S-1-5-21-3950837632-860733910-362576068-1000\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\GGDriveMenu => pomyślnie usunięto HKU\S-1-5-21-3950837632-860733910-362576068-1000\SOFTWARE\Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534} => nie znaleziono =========== EmptyTemp: ========== BITS transfer queue => 8388608 B DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1647854 B Java, Flash, Steam htmlcache => 534 B Windows/system/drivers => 7813361 B Edge => 0 B Chrome => 0 B Firefox => 337932129 B Opera => 0 B Temp, IE cache, history, cookies, recent: Users => 0 B Default => 0 B Public => 0 B ProgramData => 0 B systemprofile => 36795386 B LocalService => 36795386 B NetworkService => 36795386 B User => 38541732 B RecycleBin => 0 B EmptyTemp: => 481.3 MB danych tymczasowych Usunięto. ================================ System wymagał restartu. ==== Koniec Fixlog 23:37:04 ====