Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 06.05.2018 01 Uruchomiony przez Hejtero (10-05-2018 13:41:42) Uruchomiony z P:\Malware Adware Windows 10 Pro Wersja 1709 16299.431 (X64) (2017-12-01 11:44:34) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= admin (S-1-5-21-2593442650-3290320836-4045477851-1004 - Administrator - Enabled) Administrator (S-1-5-21-2593442650-3290320836-4045477851-500 - Administrator - Disabled) Gość (S-1-5-21-2593442650-3290320836-4045477851-501 - Limited - Disabled) Hejt (S-1-5-21-2593442650-3290320836-4045477851-1002 - Limited - Enabled) => C:\Users\Hejt Hejtero (S-1-5-21-2593442650-3290320836-4045477851-1001 - Administrator - Enabled) => C:\Users\Hejtero Konto domyślne (S-1-5-21-2593442650-3290320836-4045477851-503 - Limited - Disabled) upMByRMHQK (S-1-5-21-2593442650-3290320836-4045477851-1003 - Limited - Enabled) => C:\Users\upMByRMHQK WDAGUtilityAccount (S-1-5-21-2593442650-3290320836-4045477851-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) µTorrent (HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated) Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated) Aktualizacje NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden Aplikacja Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) AutoHotkey 1.1.26.00 (HKLM\...\AutoHotkey) (Version: 1.1.26.00 - Lexikos) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.3.2333 - AVAST Software) CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform) CurrencyCop 1.2.5-beta1 (only current user) (HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\ad9b865c-58dc-5b28-b27d-6ee8d988422e) (Version: 1.2.5-beta1 - Nijiko Yonskai) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.7.1.0340 - Disc Soft Ltd) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Diablo III Public Test (HKLM-x32\...\Diablo III Public Test) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{46829252-D381-4169-AD69-AC938BFE8BFE}) (Version: 1.1.128.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON SX230 Series Printer Uninstall (HKLM\...\EPSON SX230 Series) (Version: - SEIKO EPSON Corporation) Far Cry 5 (HKLM-x32\...\{73B938C4-0DDA-448D-8E46-87401EA87339}_is1) (Version: - Ubisoft) FIFA 18 (HKLM-x32\...\{213CC10A-B8CB-4EBA-B277-6B08B7C22A65}) (Version: 1.0.49.49749 - Electronic Arts) Filtration version 0.15 (HKLM-x32\...\{AD0C8642-110D-402E-ADF6-9DDC1908A8FC}_is1) (Version: 0.15 - Ben Wallis) Frostpunk (HKLM-x32\...\Frostpunk_is1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.139 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - ) Gyazo 3.3.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.) HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 6.0.1.2 - Hi-Rez Studios) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) Human Fall Flat Holiday (HKLM-x32\...\Human Fall Flat Holiday_is1) (Version: - ) ILLUSION プレイホーム (HKLM-x32\...\{0F41AD99-6677-4B8B-A3FE-3774E088B61C}) (Version: 1.00.0000 - ILLUSION) Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) K-Lite Codec Pack 13.5.5 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.5.5 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Life is Strange Before the Storm MULTi8 - ElAmigos version 1.0 u2 (HKLM-x32\...\{E0BADB05-339F-4470-B19E-4830FEEEE1DC}_is1) (Version: 1.0 u2 - Square Enix) Main Services (HKLM-x32\...\{9A9DEF90-72CE-43F8-A995-E42DCB0D5EA1}) (Version: 1.2.9 - System Native) Hidden <==== UWAGA Malwarebytes (wersja 3.2.2.2029) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes) Microsoft OneDrive (HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\OneDriveSetup.exe) (Version: 18.065.0329.0002 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation) Mozilla Firefox 59.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.3 (x64 en-US)) (Version: 59.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0.1 - Mozilla) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Nier.Automata.Day.One.Edition.Incl.DLC.Repack wersja 1.0 (HKLM-x32\...\{382C80CB-1519-4709-A676-31EB64328F99}}_is1) (Version: 1.0 - 0) NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.59 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.59 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project) Panel sterowania NVIDIA 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.59 - NVIDIA Corporation) Hidden Path of Building version 1.4.44 (HKLM-x32\...\{72FA9AB7-189F-4BDE-8856-72DEB90C157B}_is1) (Version: 1.4.44 - Openarl) Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 2.6.2.12845 - Grinding Gear Games) Hidden Path of Exile (HKLM-x32\...\{d8ffc64e-9073-42c4-8ea0-510c4b62f927}) (Version: 2.6.2.12845 - Grinding Gear Games) PLAYGIRLS -mana- (HKLM-x32\...\{2DB31813-DB56-4488-94B7-A6D3A044A562}) (Version: 1.00.0000 - pg-production) PoESkillTree - War for the Atlas (HKLM-x32\...\{10A38BF2-2854-4B8C-A393-2D9F595EF6AC}_is1) (Version: 2.7.4 - PoESkillTree Team) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.) Resanance (HKLM\...\{07BB6181-E1D0-4283-87D0-BE4819535A3C}) (Version: 2.1.3 - WasntAFairFight) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games) Spotify (HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\Spotify) (Version: 1.0.70.388.g8e1ed5af - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH) Tibia (HKLM-x32\...\Tibia_is1) (Version: 8.60 - CipSoft GmbH) Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.6.0 - Unified Intents AB) VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) X-Mouse Button Control 2.17 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.17 - Highresolution Enterprises) XnView 2.43 (HKLM-x32\...\XnView_is1) (Version: 2.43 - Gougelet Pierre-e) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => P:\Avast\ashShA64.dll [2018-04-07] (AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => P:\Avast\ashShA64.dll [2018-04-07] (AVAST Software) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => P:\WinRar\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => P:\WinRar\rarext32.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => P:\DAEMON Tools Lite\DTShl64.dll [2018-01-30] (Disc Soft Ltd) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => P:\Avast\ashShA64.dll [2018-04-07] (AVAST Software) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => P:\DAEMON Tools Lite\DTShl64.dll [2018-01-30] (Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-05] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => P:\Avast\ashShA64.dll [2018-04-07] (AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => P:\WinRar\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => P:\WinRar\rarext32.dll [2016-09-19] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1B9F2B60-5D96-489D-9D4D-0E6B0D61C118} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-11-16] (NVIDIA Corporation) Task: {1D489E1E-0E3C-4089-BF70-26AE9C10AA32} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-05-16] () Task: {2126DA12-0938-481C-A04E-1435986949B4} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-09-22] () Task: {2D837776-987E-470B-B430-B64E893A8BFF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation) Task: {2FC8CE2D-AC81-4EBD-BE17-272FA3228259} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-01] (Google Inc.) Task: {32272616-5E8E-4085-80D0-0EC9E14972D8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation) Task: {5AFB858D-50CD-4D32-93A2-BC18CC12BAFE} - System32\Tasks\Avast Emergency Update => P:\Avast\AvEmUpdate.exe [2018-04-07] (AVAST Software) Task: {5DEA2E90-718C-4748-9194-4CC745C7ACFB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-04-16] (AVAST Software) Task: {75B57422-2478-437B-9871-09BC8BC90867} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe Task: {7C8184CE-82C7-4D8A-8AD3-6527668535A2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd) Task: {7E6BF128-567A-4598-8FAF-2662C0F34BCB} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation) Task: {84453B9A-B4C1-480C-8368-E4C95F210D13} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-08] (Adobe Systems Incorporated) Task: {A48D5D96-3D96-4CCA-B548-7CA9D6D93F39} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-11-16] (NVIDIA Corporation) Task: {AB1078BD-7D12-4573-B059-2E1A2060486F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-11-16] (NVIDIA Corporation) Task: {AF02B067-3E74-41E1-8657-6C7A95366636} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated) Task: {C759F545-3608-43C7-93E4-DACCF9F6F126} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-01] (Google Inc.) Task: {CC6310D5-2B2E-479E-96D7-EC079B1B0352} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe [2018-05-08] (Adobe Systems Incorporated) Task: {D84290C3-2F8D-444C-8227-060DA5AB5355} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-11-16] (NVIDIA Corporation) Task: {F5A45353-F104-4AD5-9E81-57167DE04CB6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation) Task: {F6F08D61-7469-47D2-8B92-32D7BA930879} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-05-16] () (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-10-19 15:45 - 2017-10-04 13:15 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-07-12 20:19 - 2017-11-16 03:41 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-03-13 23:46 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2018-03-13 23:46 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-05-09 09:24 - 2018-05-09 09:24 - 000062464 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.8.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll 2018-05-09 09:24 - 2018-05-09 09:24 - 000084992 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.8.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll 2017-07-12 20:19 - 2017-11-16 03:41 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-04-07 02:09 - 2018-04-07 02:09 - 000282840 _____ () P:\Avast\tasks_core.dll 2018-03-18 16:26 - 2018-03-18 16:26 - 067126928 _____ () P:\Avast\libcef.dll 2018-04-07 02:09 - 2018-04-07 02:09 - 000349912 _____ () P:\Avast\streamback_avast.dll 2018-04-07 02:09 - 2018-04-07 02:09 - 000295640 _____ () P:\Avast\streamback.dll 2018-04-07 02:09 - 2018-04-07 02:09 - 000281816 _____ () P:\Avast\gaming_mode_ui.dll 2017-07-12 20:19 - 2017-11-16 03:40 - 066906560 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:6BE50C2B [464] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\46421500.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\49088402.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\46421500.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\49088402.sys => ""="Driver" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\localhost -> localhost ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2017-03-18 23:03 - 2018-01-12 21:55 - 000001320 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 cpm.paneladmin.pro 127.0.0.1 publisher.hmdiadmingate.xyz 127.0.0.1 hmdicrewtracksystem.xyz 127.0.0.1 mydownloaddomain.com 127.0.0.1 linkmate.space 127.0.0.1 space1.adminpressure.space 127.0.0.1 trackpressure.website 127.0.0.1 doctorlink.space 127.0.0.1 plugpackdownload.net 127.0.0.1 texttotalk.org 127.0.0.1 gambling577.xyz 127.0.0.1 htagdownload.space 127.0.0.1 mybcnmonetize.com 127.0.0.1 360devtraking.website 127.0.0.1 dscdn.pw 127.0.0.1 bcnmonetize.go2affise.com 127.0.0.1 beautifllink.xyz ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hejtero\Downloads\cropped-1920-1080-896569.png DNS Servers: 176.103.32.2 - 176.103.33.10 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\Run: => "SecurityHealth" HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\StartupApproved\Run: => "Epson Stylus SX230" HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-2593442650-3290320836-4045477851-1001\...\StartupApproved\Run: => "uTorrent" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{C3271CE3-FE62-42FC-88A7-A5B51747A71F}] => (Allow) C:\Users\Hejtero\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{80FB2721-9114-4A41-8D50-7571899C4895}] => (Allow) C:\Users\Hejtero\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A66BB11F-EE17-4E91-A9AD-2E566495B1D9}] => (Allow) C:\Users\Hejtero\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{FC53E0EA-B7E8-42B9-9603-0EDBA0BEFB8A}] => (Allow) C:\Users\Hejtero\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F5361979-21D4-4E94-8C34-E62FE0E94896}] => (Allow) C:\Users\Hejtero\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5FEC4AD6-BB8F-46C3-B9D9-44FB9B034D6C}] => (Allow) C:\Users\Hejtero\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8F40C5AD-6FA7-4066-93C9-06BD29880D37}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{33AE8D9B-4DA7-4032-B98D-638E9D4E490C}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [UDP Query User{36F28F90-B473-4D75-A1F7-EBE89C627D77}P:\utorrent.exe] => (Allow) P:\utorrent.exe FirewallRules: [TCP Query User{3EF539DC-6D50-4C65-BA79-0380770542A3}P:\utorrent.exe] => (Allow) P:\utorrent.exe FirewallRules: [{822585A4-C04C-42FA-9F87-77B6B4B84C29}] => (Allow) P:\\uTorrent.exe FirewallRules: [{4857AFFF-4182-40AE-8D63-29656055608F}] => (Allow) P:\\uTorrent.exe FirewallRules: [UDP Query User{B160ECD0-A136-41A1-BC82-807361920A70}C:\steamlibrary\steamapps\common\guardians of ember\exedir\ruplatform.exe] => (Allow) C:\steamlibrary\steamapps\common\guardians of ember\exedir\ruplatform.exe FirewallRules: [TCP Query User{0A93734A-8C24-4A71-85B1-BCE60B0F19AD}C:\steamlibrary\steamapps\common\guardians of ember\exedir\ruplatform.exe] => (Allow) C:\steamlibrary\steamapps\common\guardians of ember\exedir\ruplatform.exe FirewallRules: [UDP Query User{07B48EC7-E47E-4B22-A1B2-CBDA514ABC7E}C:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [TCP Query User{872E1517-5A3F-47CA-9092-E424BFC74924}C:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [{E36CEF52-68A7-4103-A228-CAC23E20B16B}] => (Allow) C:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{31A3BCAC-0B30-4152-9904-65C77EA69C7F}] => (Allow) C:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{6022C95B-8BC6-4F0B-8D8B-0E0FABEAAC4B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{0E37589C-4CE4-4B0C-A53A-F8A2EC0D3C07}] => (Allow) D:\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{79C041E8-1A5F-411F-962A-D050D88BB07A}] => (Allow) D:\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{21F839E4-B516-42A9-9CD5-7BF50297EB09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{2A8CA415-EAFC-4CA3-9C32-1EE7C065FC0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{7372E0E3-CBEF-4342-894C-C33DB94097A7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{859147CD-4C82-4450-8032-0F5A9CA63C81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{C33F920F-8986-486A-97BB-9E737663385E}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{BCA260B1-9FD7-47F0-BC88-1439FE27DD47}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{43396E34-88D2-4835-B8D4-C355251E5D97}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{65092EC1-2DD9-43B7-9F2D-68B63590107F}] => (Allow) D:\Steam\Steam.exe FirewallRules: [UDP Query User{112791FC-8D0D-4057-9251-F8B6BFBAE819}D:\diablo iii public test\x64\diablo iii64.exe] => (Allow) D:\diablo iii public test\x64\diablo iii64.exe FirewallRules: [TCP Query User{E6D454DC-B7F3-44B5-A226-2843FE650DAF}D:\diablo iii public test\x64\diablo iii64.exe] => (Allow) D:\diablo iii public test\x64\diablo iii64.exe FirewallRules: [UDP Query User{282C6248-4122-4327-BF8D-89BC0A1D3FE0}P:\mozilla\firefox.exe] => (Allow) P:\mozilla\firefox.exe FirewallRules: [TCP Query User{DDB316D9-DDDD-49CA-8F77-7C7D99370C62}P:\mozilla\firefox.exe] => (Allow) P:\mozilla\firefox.exe FirewallRules: [{9FAA7D2E-1E4F-49CD-B70A-B8EC711E5349}] => (Allow) P:\Unified Remote 3\RemoteServerWin.exe FirewallRules: [{8470FDE5-D07B-4D2F-BE1A-4CF6F34898E9}] => (Allow) P:\Unified Remote 3\RemoteServerWin.exe FirewallRules: [{CE110E01-A9E7-4BCB-9258-0549D9BCD3E6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{181CACC0-FF72-4F3D-BF54-5FF24712C74B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{2E473C17-5E9C-4B9F-A896-99164CEA2983}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{6CB1BA2B-A4F9-43FC-8F0C-EBBF7E9CA460}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{E24BF83A-9609-4763-AB75-DCAB03853FCC}] => (Allow) P:\Mozilla\firefox.exe FirewallRules: [{1B940690-45F0-45DA-BA5A-4E6204300ABF}] => (Allow) P:\Mozilla\firefox.exe FirewallRules: [TCP Query User{8D8D0B87-ACED-4C7D-A7D2-56D3598362B6}C:\users\hejtero\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hejtero\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{8D4CCEA1-14C2-458B-9843-8CE7841703D2}C:\users\hejtero\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hejtero\appdata\roaming\spotify\spotify.exe FirewallRules: [{C8A85774-6EEC-4C4B-A84B-57A54FA443C2}] => (Allow) C:\WINDOWS\system32\rundll32.exe FirewallRules: [{971BC711-9DAF-4F30-BAB7-684EA45A2433}] => (Block) C:\Disk\securedisk.exe FirewallRules: [{0F20BC85-341E-4A23-A1BF-9EA94C2EB4AF}] => (Block) C:\Windows\SysWOW64\attrib.exe FirewallRules: [{E3FB74FD-B88E-4CB8-8B4F-DFDCFE16A0CB}] => (Block) C:\Program Files\Windows Defender\MsMpEng.exe FirewallRules: [{639B51C2-23E8-4CDB-88B8-098B4F743760}] => (Block) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{FBED85E3-AFA5-4F2F-9C05-444FA674EFE5}] => (Block) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{55D00A37-DC4B-4F4F-AFC9-1CC4ACE07046}] => (Block) C:\Windows\System32\wbem\WmiPrvSE.exe FirewallRules: [{9401BC3B-34E4-4E0C-AD43-0B670971DAD0}] => (Block) C:\Windows\servicing\TrustedInstaller.exe FirewallRules: [{3E322E97-439F-4489-A222-07A6EF941BDC}] => (Block) C:\Windows\System32\GameBarPresenceWriter.exe FirewallRules: [{47512457-15E9-4EDF-8B2B-02560209CAAA}] => (Block) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe FirewallRules: [{FE056276-4133-49E7-B3E2-42949340777A}] => (Block) C:\Windows\System32\regsvr32.exe FirewallRules: [{CAC1C418-717E-43B9-B250-6F1EEC435FA5}] => (Allow) LPort=3389 FirewallRules: [{83798EE6-0017-4770-AF33-9BAA39562CFC}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{146FE134-A5CE-4CD7-98C5-1B7E3316454D}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [TCP Query User{C6825C70-4862-460B-A548-F4A3E793EB30}P:\utorrent.exe] => (Block) P:\utorrent.exe FirewallRules: [UDP Query User{1FCEED31-7614-42C9-89CB-26AE9A34F615}P:\utorrent.exe] => (Block) P:\utorrent.exe FirewallRules: [TCP Query User{2BF0202A-3EF6-4E0C-9F42-B1206E96028C}C:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [UDP Query User{40D23A93-3819-4C94-A04A-5BA8CEFFA71F}C:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [{E38BD2B3-807F-4638-A0C6-71DB6E6C7914}] => (Allow) P:\DAEMON Tools Lite\DiscSoftBusServiceLite.exe FirewallRules: [TCP Query User{1D99F5E2-DFD3-445E-9A8D-E86B3A15D4E2}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe FirewallRules: [UDP Query User{09C15402-F934-499A-A6C1-307718A97BD4}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe FirewallRules: [{439F216B-3082-47FE-85BE-16B2215349A2}] => (Allow) D:\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [{D6ED5E71-D121-4EB5-A1EB-46A904DA3645}] => (Allow) D:\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [TCP Query User{25B95C87-912E-4253-919D-BDBF8FAD95A0}D:\grand theft auto v\gta5.exe] => (Allow) D:\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{4025E4C0-F152-4B29-B1BA-4B398E77345A}D:\grand theft auto v\gta5.exe] => (Allow) D:\grand theft auto v\gta5.exe FirewallRules: [{32162C04-339E-4582-8981-2E8D87ED80F5}] => (Allow) D:\Steam\steamapps\common\Dead Maze\DeadMaze.exe FirewallRules: [{1390A731-659C-47A7-9C1D-B91DADC7CE1F}] => (Allow) D:\Steam\steamapps\common\Dead Maze\DeadMaze.exe FirewallRules: [TCP Query User{F4793FBB-FD01-467B-9257-584C35E13B99}C:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe] => (Block) C:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe FirewallRules: [UDP Query User{38BD3CE0-E177-45FA-9751-222C13890E95}C:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe] => (Block) C:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe FirewallRules: [TCP Query User{4CB35320-06E5-4A2D-B2B9-A300C3EA3204}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe FirewallRules: [UDP Query User{E222803D-F6FC-4B53-A28B-EA4F56A6D641}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe FirewallRules: [{4C735F0C-B85A-40FB-8476-3D583EF0978E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{A17F61DA-69AB-4696-AE7B-760B9B7DAD48}] => (Allow) C:\WINDOWS\SysWOW64\msiexec.exe FirewallRules: [{C6621A94-21FC-4F50-AA64-AFEE68D7BBF2}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (05/10/2018 01:40:15 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (05/10/2018 01:40:10 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (05/10/2018 01:36:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (05/10/2018 01:36:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x8007139F Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (05/10/2018 01:36:32 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x8007139F Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent Error: (05/09/2018 09:21:27 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (05/09/2018 09:21:20 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=6 Error: (05/08/2018 09:27:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: PathOfExile_x64.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x5af0e9fa Nazwa modułu powodującego błąd: PathOfExile_x64.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x5af0e9fa Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000007aaf55 Identyfikator procesu powodującego błąd: 0x1280 Godzina uruchomienia aplikacji powodującej błąd: 0x01d3e6dc1c523249 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Grinding Gear Games\Path of Exile\PathOfExile_x64.exe Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Grinding Gear Games\Path of Exile\PathOfExile_x64.exe Identyfikator raportu: 4c2966b4-233c-445a-b7e8-590ed13d07b6 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Dziennik System: ============= Error: (05/10/2018 01:39:45 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-SKEPVKS) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID {7022A3B3-D004-4F52-AF11-E9E987FEE25F} i identyfikatorem aplikacji APPID {ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D} użytkownikowi DESKTOP-SKEPVKS\Hejtero o identyfikatorze zabezpieczeń SID (S-1-5-21-2593442650-3290320836-4045477851-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (05/10/2018 01:38:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Usługi pulpitu zdalnego zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Error: (05/10/2018 01:38:11 PM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {F9A874B6-F8A8-4D73-B5A8-AB610816828B} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (05/10/2018 01:36:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa TermService zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Error: (05/09/2018 09:25:09 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {F9A874B6-F8A8-4D73-B5A8-AB610816828B} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (05/09/2018 09:23:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Usługi pulpitu zdalnego zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. Error: (05/09/2018 09:23:04 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {F9A874B6-F8A8-4D73-B5A8-AB610816828B} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (05/09/2018 02:01:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Usługi pulpitu zdalnego zakończyła działanie; wystąpił następujący błąd: Nie można odnaleźć określonego modułu. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz Procent pamięci w użyciu: 37% Całkowita pamięć fizyczna: 8130.39 MB Dostępna pamięć fizyczna: 5095.17 MB Całkowita pamięć wirtualna: 15298.39 MB Dostępna pamięć wirtualna: 12038.06 MB ==================== Dyski ================================ Drive c: (System) (Fixed) (Total:118.68 GB) (Free:24.53 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (Gry) (Fixed) (Total:253.91 GB) (Free:8.8 GB) NTFS Drive e: (Filmy itp) (Fixed) (Total:104.33 GB) (Free:60.94 GB) NTFS Drive p: (Programy) (Fixed) (Total:107.42 GB) (Free:14.22 GB) NTFS \\?\Volume{59664b9e-0000-0000-0000-e0b11d000000}\ () (Fixed) (Total:0.46 GB) (Free:0.08 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 59664B9E) Partition 1: (Active) - (Size=118.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=472 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: B1F028B6) Partition 1: (Not Active) - (Size=107.4 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=253.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=104.3 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================