Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 20-06-2022 Uruchomiony przez sebastian (20-06-2022 18:53:29) Run:2 Uruchomiony z C:\Users\sebastian\Desktop Załadowane profile: sebastian Tryb startu: Normal ============================================== fixlist - zawartość: ***************** CloseProcesses: CreateRestorePoint: File: C:\Users\sebastian\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OpenHardwareMonitor.exe HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA Task: {11E961BC-42D6-4DF2-B18F-F71A1DF577CD} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {805EB7B4-77B1-42B2-8E2D-B7830EE8B9A3} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-19] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {9DF082EF-6003-4AA3-AECC-CD85A3E00F4F} - System32\Tasks\Open Hardware Monitor\Startup => C:\Users\sebastian\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OpenHardwareMonitor.exe [493568 2020-12-27] () [Brak podpisu cyfrowego] C:\Users\sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\8822p7pt.default-beta\Extensions\{00000f2a-7cde-4f20-83ed-434fcb420d71}.xpi C:\Users\sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\8822p7pt.default-beta\Extensions\{f9cacf2e-cafc-4f0f-b6ad-8e1a01b4b4d0}.xpi 2022-06-17 07:38 - 2022-06-20 18:00 - 000000000 ____D C:\Users\sebastian\AppData\Roaming\services Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} ***************** Procesy zostały pomyślnie zamknięte. Punkt przywracania został pomyślnie utworzony. ========================= File: C:\Users\sebastian\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OpenHardwareMonitor.exe ======================== C:\Users\sebastian\Desktop\openhardwaremonitor-v0.9.6\OpenHardwareMonitor\OpenHardwareMonitor.exe Brak podpisu cyfrowego MD5: A261F824AB957A5331AF53C7722FA2DE Data utworzenia i modyfikacji: 2021-10-27 19:53 - 2020-12-27 16:45 Rozmiar: 000493568 Atrybuty: ----A Firma: Wewnętrzna nazwa: OpenHardwareMonitor.exe Oryginalna nazwa: OpenHardwareMonitor.exe Produkt: Open Hardware Monitor Opis: Open Hardware Monitor Plik Wersja: 0.9.6.0 Produkt Wersja: 0.9.6 Prawa autorskie: Copyright © 2009-2020 Michael Möller VirusTotal: https://www.virustotal.com/gui/file/ec767a74c5659a05bdb7ac10bd42c2ea6d44fa946286029b2866aed476ad83bc/detection/f-ec767a74c5659a05bdb7ac10bd42c2ea6d44fa946286029b2866aed476ad83bc-1655736040 ====== Koniec File: ====== HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => Wartość pomyślnie przywrócono HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => Wartość pomyślnie przywrócono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{11E961BC-42D6-4DF2-B18F-F71A1DF577CD}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11E961BC-42D6-4DF2-B18F-F71A1DF577CD}" => pomyślnie usunięto C:\Windows\System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Mozilla\Firefox Background Update 308046B0AF4A39CB" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{805EB7B4-77B1-42B2-8E2D-B7830EE8B9A3}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{805EB7B4-77B1-42B2-8E2D-B7830EE8B9A3}" => pomyślnie usunięto C:\Windows\System32\Tasks\BraveSoftwareUpdateTaskMachineUA => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BraveSoftwareUpdateTaskMachineUA" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9DF082EF-6003-4AA3-AECC-CD85A3E00F4F}" => pomyślnie usunięto "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9DF082EF-6003-4AA3-AECC-CD85A3E00F4F}" => pomyślnie usunięto C:\Windows\System32\Tasks\Open Hardware Monitor\Startup => pomyślnie przeniesiono "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Open Hardware Monitor\Startup" => pomyślnie usunięto C:\Users\sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\8822p7pt.default-beta\Extensions\{00000f2a-7cde-4f20-83ed-434fcb420d71}.xpi => pomyślnie przeniesiono C:\Users\sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\8822p7pt.default-beta\Extensions\{f9cacf2e-cafc-4f0f-b6ad-8e1a01b4b4d0}.xpi => pomyślnie przeniesiono C:\Users\sebastian\AppData\Roaming\services => pomyślnie przeniesiono ========= wevtutil el | Foreach-Object {wevtutil cl "$_"} ========= wevtutil : Failed to clear log Microsoft-Windows-LiveId/Analytic. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...iveId/Analytic.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Odmowa dostŕpu. wevtutil : Failed to clear log Microsoft-Windows-LiveId/Operational. At C:\FRST\tmp.ps1:1 char:31 + wevtutil el | Foreach-Object {wevtutil cl "$_"} + ~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Failed to clear...Id/Operational.:String) [], RemoteException + FullyQualifiedErrorId : NativeCommandError Odmowa dostŕpu. ========= Koniec Powershell: ========= System wymagał restartu. ==== Koniec Fixlog 18:54:02 ====