Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 11.01.2024
Uruchomiony przez Włodek (13-01-2024 17:22:54) Run:7
Uruchomiony z C:\Users\Włodek\Desktop\Fixit\FRST64
Załadowane profile: Włodek
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
cmd: SetACL -on "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc" -ot reg -actn restore -bckp C:\fix.txt
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\ACService
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\AppCs
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\AppCs\AppCs
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\DHCP
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\IPTLSIn
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\IPTLSOut
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\RPC-EPMap
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\Teredo
ListPermissions: HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Security
ExportKey: HKLM\SOFTWARE\Policies\Microsoft\Windows Defender̩
*****************


========= SetACL -on "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc" -ot reg -actn restore -bckp C:\fix.txt =========

INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
Input file for restore operation opened: 'C:\fix.txt'
Restoring SD of: <machine\SYSTEM\CurrentControlSet\Services\MpsSvc>


========= Koniec  CMD: =========

===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc":

Owner: NT AUTHORITY\SYSTEM

DACL(AI):

BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters":

Owner: NT AUTHORITY\SYSTEM

DACL(AI):

BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\ACService":

Owner: NT AUTHORITY\SYSTEM

DACL(PAI):

NT SERVICE\mpssvc	ALLOW	Create content/Delete content/List content/Self Write/Read Property/Delete/Read Control	(NI)
NT SERVICE\mpssvc	ALLOW	Delete/Generic Write/Generic Read	(CI-IO)
NT AUTHORITY\SYSTEM	ALLOW	Create content/Delete content/List content/Self Write/Read Property/Delete/Read Control	(NI)
NT AUTHORITY\SYSTEM	ALLOW	Delete/Generic Write/Generic Read	(OI-CI-IO)
BUILTIN\Administrators	ALLOW	Create content/Delete content/List content/Self Write/Read Property/Delete/Read Control	(NI)
BUILTIN\Administrators	ALLOW	Delete/Generic Write/Generic Read	(OI-CI-IO)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\AppCs":

Owner: DESKTOP-BAll Access2IM7\Włodek

DACL(AI):

DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(NI)
BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\AppCs\AppCs":

Owner: DESKTOP-BAll Access2IM7\Włodek

DACL(AI):

DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(NI)
BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords":

Owner: NT AUTHORITY\SYSTEM

DACL(AI):

BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\DHCP":

Owner: DESKTOP-BAll Access2IM7\Włodek

DACL(AI):

DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(NI)
BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\IPTLSIn":

Owner: DESKTOP-BAll Access2IM7\Włodek

DACL(AI):

DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(NI)
BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\IPTLSOut":

Owner: DESKTOP-BAll Access2IM7\Włodek

DACL(AI):

DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(NI)
BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\RPC-EPMap":

Owner: DESKTOP-BAll Access2IM7\Włodek

DACL(AI):

DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(NI)
BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Parameters\PortKeywords\Teredo":

Owner: DESKTOP-BAll Access2IM7\Włodek

DACL(AI):

DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(NI)
BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
DESKTOP-BAll Access2IM7\Włodek	ALLOW	All Access	(I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
===================================
uprawnienia  "HKLM\SYSTEM\CurrentControlSet\Services\MpsSvc\Security":

Owner: NT AUTHORITY\SYSTEM

DACL(AI):

BUILTIN\Users	ALLOW	Read	(CI-I)
BUILTIN\Administrators	ALLOW	All Access	(CI-I)
NT AUTHORITY\SYSTEM	ALLOW	All Access	(CI-I)
CREATOR OWNER	ALLOW	All Access	(CI-I-OI)
APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES	ALLOW	Read	(CI-I)
S-1-15-3-1024-1065365936-1281604716-3511738428-1654721687-432734479-3232135806-4053264122-3456934681	ALLOW	Read	(CI-I)

===================================
================== ExportKey: ===================

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender]
"DisableAntiSpyware DWORD"="0"
[HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\Policy Manager]

=== Koniec  ExportKey ===

==== Koniec  Fixlog 17:22:55 ====