Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 14-12-2020 Uruchomiony przez Oran (17-12-2020 12:44:58) Run:1 Uruchomiony z F:\Dokumenty\Pobrane Załadowane profile: Oran Tryb startu: Normal ============================================== fixlist - zawartość: ***************** HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.) Task: {564AB2C9-0B73-4C3B-AE6C-14191406D6A5} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_pepper.exe Task: {79C98E21-2C4A-4F2B-A702-F4862C3AEBB1} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X] S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X] RemoveDirectory: C:\ProgramData\boost_interprocess FirewallRules: [UDP Query User{426BE471-2316-44CD-A970-C6A752D7E8AB}C:\users\oran\appdata\local\blitz\app-1.6.26\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.26\blitz.exe => Brak pliku FirewallRules: [TCP Query User{79DAA319-AD5B-4263-9C73-C44C21FB7295}C:\users\oran\appdata\local\blitz\app-1.6.26\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.26\blitz.exe => Brak pliku FirewallRules: [UDP Query User{194FA079-61A6-43B7-B499-83702B1496DD}D:\programy\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\programy\steam\steamapps\common\assettocorsa\acs.exe => Brak pliku FirewallRules: [TCP Query User{32D1DB6D-747E-4B27-923A-60B85CB47F94}D:\programy\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\programy\steam\steamapps\common\assettocorsa\acs.exe => Brak pliku FirewallRules: [UDP Query User{C75037D2-6C2F-47DD-9307-9DBF3CF3CEA9}C:\users\oran\appdata\local\blitz\app-1.6.25\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.25\blitz.exe => Brak pliku FirewallRules: [TCP Query User{F6F91349-11A6-4D11-A932-CB5B27A01F79}C:\users\oran\appdata\local\blitz\app-1.6.25\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.25\blitz.exe => Brak pliku FirewallRules: [UDP Query User{02CFEB03-9051-4D7E-9853-2FCEFAD0DDA5}C:\users\oran\appdata\local\blitz\app-1.6.24\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.24\blitz.exe => Brak pliku FirewallRules: [TCP Query User{84B36E77-8DB3-4FCF-A7FB-D46067CBCEDC}C:\users\oran\appdata\local\blitz\app-1.6.24\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.24\blitz.exe => Brak pliku FirewallRules: [UDP Query User{E646D196-7D86-4053-9632-828201CAADBC}C:\users\oran\appdata\local\blitz\app-1.6.22\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.22\blitz.exe => Brak pliku FirewallRules: [TCP Query User{F9668F8C-C42B-47E7-9134-1CA2E6C4D8FA}C:\users\oran\appdata\local\blitz\app-1.6.22\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.22\blitz.exe => Brak pliku FirewallRules: [UDP Query User{1FFD321A-0AC9-441D-9B90-363C9293726C}C:\users\oran\appdata\local\blitz\app-1.6.18\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.18\blitz.exe => Brak pliku FirewallRules: [TCP Query User{4AB0A97B-45A8-4080-A318-A109972DC2AB}C:\users\oran\appdata\local\blitz\app-1.6.18\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.18\blitz.exe => Brak pliku FirewallRules: [UDP Query User{CAE279A6-9DEB-400A-8A72-17FAB5E6C03B}C:\users\oran\appdata\local\blitz\app-1.6.17\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.17\blitz.exe => Brak pliku FirewallRules: [TCP Query User{DB26BC7F-2E18-4D82-8F5A-6A05FE39E108}C:\users\oran\appdata\local\blitz\app-1.6.17\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.17\blitz.exe => Brak pliku FirewallRules: [UDP Query User{9000D01F-15D7-408A-AB39-81226A0D8A5B}C:\users\oran\appdata\local\blitz\app-1.6.16\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.16\blitz.exe => Brak pliku FirewallRules: [TCP Query User{8F194911-9ACD-415F-BF94-C03FED40ACB7}C:\users\oran\appdata\local\blitz\app-1.6.16\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.16\blitz.exe => Brak pliku FirewallRules: [UDP Query User{109AF4A8-5CCF-4C3B-9A6C-EC1019BC07F3}C:\users\oran\appdata\local\blitz\app-1.6.14\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.14\blitz.exe => Brak pliku FirewallRules: [TCP Query User{709A725A-A381-42A0-9968-7AFE4E0450B2}C:\users\oran\appdata\local\blitz\app-1.6.14\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.14\blitz.exe => Brak pliku FirewallRules: [UDP Query User{24D89C87-370F-4706-A4DE-CA8039FFFAC2}E:\origin\fifa 20\fifa20.exe] => (Allow) E:\origin\fifa 20\fifa20.exe => Brak pliku FirewallRules: [TCP Query User{8AD492CA-E41F-4F06-9887-19679D7FD10C}E:\origin\fifa 20\fifa20.exe] => (Allow) E:\origin\fifa 20\fifa20.exe => Brak pliku FirewallRules: [UDP Query User{8F5A892B-E834-4974-BB24-532260E44BEE}C:\users\oran\appdata\local\blitz\app-1.6.12\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.12\blitz.exe => Brak pliku FirewallRules: [TCP Query User{5A30DE8B-1A57-49C9-BDCB-FCCB85E5B321}C:\users\oran\appdata\local\blitz\app-1.6.12\blitz.exe] => (Allow) C:\users\oran\appdata\local\blitz\app-1.6.12\blitz.exe => Brak pliku Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} EmptyTemp: ***************** "HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeGCInvoker-1.0" => pomyślnie usunięto "HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Creative Cloud" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{564AB2C9-0B73-4C3B-AE6C-14191406D6A5}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{564AB2C9-0B73-4C3B-AE6C-14191406D6A5}" => pomyślnie usunięto C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player PPAPI Notifier" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{79C98E21-2C4A-4F2B-A702-F4862C3AEBB1}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79C98E21-2C4A-4F2B-A702-F4862C3AEBB1}" => pomyślnie usunięto C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0 => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeGCInvoker-1.0" => pomyślnie usunięto HKLM\System\CurrentControlSet\Services\EuGdiDrv => pomyślnie usunięto EuGdiDrv => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\VBAudioVMVAIOMME => pomyślnie usunięto VBAudioVMVAIOMME => serwis pomyślnie usunięto "C:\ProgramData\boost_interprocess" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{426BE471-2316-44CD-A970-C6A752D7E8AB}C:\users\oran\appdata\local\blitz\app-1.6.26\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{79DAA319-AD5B-4263-9C73-C44C21FB7295}C:\users\oran\appdata\local\blitz\app-1.6.26\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{194FA079-61A6-43B7-B499-83702B1496DD}D:\programy\steam\steamapps\common\assettocorsa\acs.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{32D1DB6D-747E-4B27-923A-60B85CB47F94}D:\programy\steam\steamapps\common\assettocorsa\acs.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C75037D2-6C2F-47DD-9307-9DBF3CF3CEA9}C:\users\oran\appdata\local\blitz\app-1.6.25\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F6F91349-11A6-4D11-A932-CB5B27A01F79}C:\users\oran\appdata\local\blitz\app-1.6.25\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{02CFEB03-9051-4D7E-9853-2FCEFAD0DDA5}C:\users\oran\appdata\local\blitz\app-1.6.24\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{84B36E77-8DB3-4FCF-A7FB-D46067CBCEDC}C:\users\oran\appdata\local\blitz\app-1.6.24\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E646D196-7D86-4053-9632-828201CAADBC}C:\users\oran\appdata\local\blitz\app-1.6.22\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F9668F8C-C42B-47E7-9134-1CA2E6C4D8FA}C:\users\oran\appdata\local\blitz\app-1.6.22\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1FFD321A-0AC9-441D-9B90-363C9293726C}C:\users\oran\appdata\local\blitz\app-1.6.18\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4AB0A97B-45A8-4080-A318-A109972DC2AB}C:\users\oran\appdata\local\blitz\app-1.6.18\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CAE279A6-9DEB-400A-8A72-17FAB5E6C03B}C:\users\oran\appdata\local\blitz\app-1.6.17\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DB26BC7F-2E18-4D82-8F5A-6A05FE39E108}C:\users\oran\appdata\local\blitz\app-1.6.17\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9000D01F-15D7-408A-AB39-81226A0D8A5B}C:\users\oran\appdata\local\blitz\app-1.6.16\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8F194911-9ACD-415F-BF94-C03FED40ACB7}C:\users\oran\appdata\local\blitz\app-1.6.16\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{109AF4A8-5CCF-4C3B-9A6C-EC1019BC07F3}C:\users\oran\appdata\local\blitz\app-1.6.14\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{709A725A-A381-42A0-9968-7AFE4E0450B2}C:\users\oran\appdata\local\blitz\app-1.6.14\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{24D89C87-370F-4706-A4DE-CA8039FFFAC2}E:\origin\fifa 20\fifa20.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8AD492CA-E41F-4F06-9887-19679D7FD10C}E:\origin\fifa 20\fifa20.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8F5A892B-E834-4974-BB24-532260E44BEE}C:\users\oran\appdata\local\blitz\app-1.6.12\blitz.exe" => pomyślnie usunięto "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5A30DE8B-1A57-49C9-BDCB-FCCB85E5B321}C:\users\oran\appdata\local\blitz\app-1.6.12\blitz.exe" => pomyślnie usunięto ========= wevtutil el | Foreach-Object {wevtutil cl "$_"} ========= wevtutil : Failed to clear log Microsoft-Windows-LiveId/Analytic. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...iveId/Analytic.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Odmowa dostŕpu. wevtutil : Failed to clear log Microsoft-Windows-LiveId/Operational. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...Id/Operational.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Odmowa dostŕpu. ========= Koniec Powershell: ========= =========== EmptyTemp: ========== BITS transfer queue => 14180352 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 109282623 B Java, Flash, Steam htmlcache => 556968687 B Windows/system/drivers => 93278721 B Edge => 108295 B Chrome => 624368303 B Firefox => 0 B Opera => 47672639 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 2522288 B LocalService => 2669876 B NetworkService => 2701610 B Oran => 2065410950 B RecycleBin => 68062063 B EmptyTemp: => 3.3 GB danych tymczasowych Usunięto. ================================ System wymagał restartu. ==== Koniec Fixlog 12:46:21 ====