Fix result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020 Ran by Dawid (15-02-2020 12:46:27) Run:1 Running from D:\Pulpit Loaded Profiles: Dawid (Available Profiles: Dawid) Boot Mode: Normal ============================================== fixlist content: ***************** HKLM\...\Policies\Explorer: [HideSCAHealth] 1 Task: {4066224E-AE10-4D74-BDEA-775C1AE8DEA1} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost <==== ATTENTION Task: {4650B68B-D982-41EF-A2D3-A22D4D186397} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION GroupPolicy: Restriction ? <==== ATTENTION FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION CHR Session Restore: Default -> is enabled. S3 H2OFFT; \SystemRoot\System32\drivers\H2OFFT64.sys [X] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} EmptyTemp: ***************** "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\HideSCAHealth" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4066224E-AE10-4D74-BDEA-775C1AE8DEA1}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4066224E-AE10-4D74-BDEA-775C1AE8DEA1}" => removed successfully C:\Windows\System32\Tasks\Microsoft\Windows\WDI\SrvHost => moved successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WDI\SrvHost" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4650B68B-D982-41EF-A2D3-A22D4D186397}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4650B68B-D982-41EF-A2D3-A22D4D186397}" => removed successfully C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => moved successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\StartupCheckLibrary" => removed successfully HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully C:\Windows\system32\GroupPolicy\Machine => moved successfully C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully HKLM\SOFTWARE\Policies\Mozilla => removed successfully "Chrome Session Restore" => removed successfully HKLM\System\CurrentControlSet\Services\H2OFFT => removed successfully H2OFFT => service removed successfully C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk => moved successfully ========= wevtutil el | Foreach-Object {wevtutil cl "$_"} ========= wevtutil : Failed to clear log Microsoft-Windows-LiveId/Analytic. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...iveId/Analytic.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Odmowa dostŕpu. wevtutil : Failed to clear log Microsoft-Windows-LiveId/Operational. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...Id/Operational.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Odmowa dostŕpu. wevtutil : Failed to clear log Microsoft-Windows-USBVideo/Analytic. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...Video/Analytic.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Przekazana nazwa wyst╣pienia nie zosta│a uznana przez dostawcŕ danych WMI za prawid│ow╣. ========= End of Powershell: ========= =========== EmptyTemp: ========== BITS transfer queue => 6053888 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 145914048 B Java, Flash, Steam htmlcache => 0 B Windows/system/drivers => 14140656 B Edge => 182459 B Chrome => 534935752 B Firefox => 0 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 50738 B NetworkService => 50738 B Dawid => 57843535 B RecycleBin => 3430 B EmptyTemp: => 724 MB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 12:47:31 ====