Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 21.07.2018 Uruchomiony przez Maciek (28-07-2018 20:04:25) Uruchomiony z C:\Users\Maciek\Downloads Windows 10 Pro Wersja 1803 17134.165 (X64) (2018-06-14 06:53:06) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= admin (S-1-5-21-4104627804-584984733-3715976581-1006 - Limited - Enabled) Administrator (S-1-5-21-4104627804-584984733-3715976581-500 - Administrator - Disabled) defaultuser0 (S-1-5-21-4104627804-584984733-3715976581-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gość (S-1-5-21-4104627804-584984733-3715976581-501 - Limited - Disabled) Konto domyślne (S-1-5-21-4104627804-584984733-3715976581-503 - Limited - Disabled) Maciek (S-1-5-21-4104627804-584984733-3715976581-1001 - Administrator - Enabled) => C:\Users\Maciek Operator (S-1-5-21-4104627804-584984733-3715976581-1004 - Limited - Enabled) WDAGUtilityAccount (S-1-5-21-4104627804-584984733-3715976581-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\uTorrent) (Version: 3.5.3.44358 - BitTorrent Inc.) ALLPlayer Pilot (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 1.4 - ALLPlayer Group, Ltd.) ALLPlayer V7.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach) ASUS Wireless Router Device Discovery Utility (HKLM-x32\...\{09CDCA35-23FF-4ED6-AFDA-BBD55235CE4B}) (Version: 1.4.8.0 - ASUS) CCleaner (HKLM\...\CCleaner) (Version: 5.45 - Piriform) Cisco Packet Tracer 6.0.1 (HKLM-x32\...\Cisco Packet Tracer 6.0.1_is1) (Version: - Cisco Systems, Inc.) CodeBlocks (HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team) CPUID CPU-Z 1.79 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== UWAGA CPUID HWMonitor 1.32 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.32 - ) Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software) Discord (HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) e5 Secure Download Manager (HKLM-x32\...\{6A979889-133D-4E64-99BB-1DA983CDCE75}) (Version: 3.2.262.0 - Kivuto Solutions Inc.) f.lux (HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\Flux) (Version: - f.lux Software LLC) FileZilla Client 3.17.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.17.0.1 - Tim Kosse) FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Fraps (HKLM-x32\...\Fraps) (Version: - ) Geeks3D FurMark 1.19.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D) HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd) HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.0.295 - SurfRight B.V.) IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan) Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation) Koala -- A cool tool for web developers (HKLM-x32\...\Koala) (Version: 2.2.0 - koala-app.com) Logitech Gaming Software 5.04 (HKLM\...\{8753DF4D-64B0-474E-9A97-0AB5585D9A53}) (Version: 5.04.110 - Logitech) Malwarebytes (wersja 3.5.1.2522) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes) MeldaProduction Audio Plugins 10 (HKLM-x32\...\MeldaProduction Audio Plugins 10) (Version: - MeldaProduction) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\OneDriveSetup.exe) (Version: 18.111.0603.0006 - Microsoft Corporation) Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 57.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 57.0.2 (x64 pl)) (Version: 57.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 57.0.2.6549 - Mozilla) MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.8 - Napisy24.pl) Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.5.0.409 - Native Instruments) Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: - Native Instruments) Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.59 - NVIDIA Corporation) NVIDIA Sterownik graficzny 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.59 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 54.0.2952.64 (HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\Opera 54.0.2952.64) (Version: 54.0.2952.64 - Opera Software) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Oracle VM VirtualBox 5.2.6 (HKLM\...\{EA9602E3-0184-45B9-9E15-028776CD7A6E}) (Version: 5.2.6 - Oracle Corporation) Panel sterowania NVIDIA 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.59 - NVIDIA Corporation) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7989 - Realtek Semiconductor Corp.) ReaPlugs/x64 (HKLM\...\ReaPlugs) (Version: - ) reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - ) RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder) Ruby 2.4.2-2-x64 (HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\RubyInstaller-2.4-x64-mingw32_is1) (Version: 2.4.2-2 - RubyInstaller Team) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) SPL Analog Code Transient Designer VST RTAS v1.2 (HKLM-x32\...\SPL Analog Code Transient Designer VST RTAS_is1) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Sublime Text Build 3143 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd) Subtitle Edit 3.5.2 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.5.2.0 - Nikse) Sylenth1 v2.21 (HKLM\...\Sylenth1_is1) (Version: - ) TDR Nova version 1.2.0 (HKLM\...\TDR Nova_is1) (Version: 1.2.0 - Tokyo Dawn Labs) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.90922 - TeamViewer) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.12 - Ghisler Software GmbH) TT-Dynamic-Range 1.1 (HKLM-x32\...\TT-Dynamic-Range 1.1) (Version: - ) Voxengo SPAN (HKLM\...\Voxengo SPAN_is1) (Version: 3.0 - Voxengo) Waves Complete V9r15 (HKLM-x32\...\{91000001-C561-4E32-99EB-3C5AD3683A70}) (Version: 9.1.15 - Waves) WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) XAMPP (HKLM-x32\...\xampp) (Version: 5.5.38-3 - Bitnami) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-05] (NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0161C54C-727E-4BC9-9FFF-0437183A22C4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-12-05] (NVIDIA Corporation) Task: {0B9A25D8-ABB2-4E39-A3B8-6DC78FCFE303} - System32\Tasks\AdobeGCInvoker-1.0-MACIEK-Maciek => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated) Task: {1093E236-6B9F-462F-A45A-FF4FB475F93E} - System32\Tasks\S-1-5-21-4104627804-584984733-3715976581-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation) Task: {1C0D4BAA-E64A-4827-B699-3EEA0230AC9F} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-12-05] (NVIDIA Corporation) Task: {24382D65-29CB-4F81-8A5A-073B9C41694C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-12-05] (NVIDIA Corporation) Task: {4129633F-5991-47A1-AAC2-50B051553241} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-07-20] (Piriform Ltd) Task: {4F971BEA-D07E-41E0-BE08-B6758E6375D1} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-12-05] (NVIDIA Corporation) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {80A564A8-A90A-44A4-BE1A-6238B5CFF72A} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-OG63J5K-Maciek => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {AEE06DF6-ECD9-4E9C-8E24-F881AC0B36D5} - \Maciek -> Brak pliku <==== UWAGA Task: {BCB37BD2-FC6F-4E53-AC68-C6C7D6DE8266} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-12-05] (NVIDIA Corporation) Task: {D0CF108C-BD7E-4084-AD9A-D79F95BC390F} - System32\Tasks\Opera scheduled Autoupdate 1532798880 => C:\Program Files\Opera\launcher.exe [2018-07-25] (Opera Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Maciek\Desktop\Pulpit V3\pulpit\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) <==== Cyrillic Shortcut: C:\Users\Maciek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) <==== Cyrillic Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) <==== Cyrillic Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Рrzеglądаrkа Ореrа.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Brak pliku) <==== Cyrillic ==================== Załadowane moduły (filtrowane) ============== 2018-04-12 01:34 - 2018-04-12 01:34 - 000444416 _____ () c:\windows\system32\SSDM.dll 2017-07-26 09:58 - 2017-07-26 09:58 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe 2018-07-28 16:06 - 2018-06-18 13:32 - 002433744 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-07-28 16:06 - 2018-07-03 12:59 - 002535120 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll 2013-09-05 01:17 - 2013-09-05 01:17 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-07-11 10:24 - 2018-07-06 08:55 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-07-28 19:27 - 2018-07-25 07:08 - 102627416 _____ () C:\Program Files\Opera\54.0.2952.64\opera_browser.dll 2018-07-28 19:27 - 2018-07-25 07:08 - 004613208 _____ () C:\Program Files\Opera\54.0.2952.64\libglesv2.dll 2018-07-28 19:27 - 2018-07-25 07:08 - 000100440 _____ () C:\Program Files\Opera\54.0.2952.64\libegl.dll 2018-07-20 19:21 - 2018-07-20 19:21 - 000090496 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2016-07-16 13:47 - 2018-07-28 08:04 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-4104627804-584984733-3715976581-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Maciek\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: 192.168.2.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: Apache2.4 => 2 MSCONFIG\Services: clsid10474 => 2 MSCONFIG\Services: EasyAntiCheat => 3 HKLM\...\StartupApproved\StartupFolder: => "ResumeInstall.exe" HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "WindowsDefender" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run: => "Start WingMan Profiler" HKLM\...\StartupApproved\Run: => "Launch LCore" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\StartupApproved\Run: => "ALLUpdate" HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\StartupApproved\Run: => "ALLPlayer WiFi Remote" HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\StartupApproved\Run: => "Napisy24Update" HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\StartupApproved\Run: => "AceStream" HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\StartupApproved\Run: => "Napisy24.pl" HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-4104627804-584984733-3715976581-1001\...\StartupApproved\Run: => "uTorrent" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{F1647229-ABE9-4C33-B913-574B543F6CF5}] => (Allow) C:\Users\Maciek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B1048944-C10D-4326-81CD-B7E3DF405538}] => (Allow) C:\Users\Maciek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D5DC2D5A-3495-4DAE-9998-D360C0439AC0}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe FirewallRules: [{6CDBC78C-73A4-436D-9C92-0CCD31260996}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe FirewallRules: [{DAA27FDA-0914-4A9C-BFB3-186033A196E3}] => (Allow) G:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTA5.exe FirewallRules: [{A07DF393-82DE-4A38-BDE3-4B1CA54F2A10}] => (Allow) G:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTA5.exe FirewallRules: [{C45FDBE5-6579-4F81-9973-76684DC3508B}] => (Allow) G:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{BC71EF48-BB48-418B-B4DB-543BC332D24A}] => (Allow) G:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{34995BF9-251F-4D3D-BD77-16CE962F1551}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{79276E9C-FF1B-4FC1-A493-CAA346800CE2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{EB3A5C73-3D87-489C-AC10-4B4907009F02}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{03CB42AF-1378-4157-BF02-19E37B61DDF3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [UDP Query User{D758DDE9-C1AA-41C0-AFC7-E6CD34CB9B81}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe FirewallRules: [TCP Query User{6E42039B-1BE3-4D53-8FE3-DE1E10AC4713}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe FirewallRules: [{EAA7E7BD-BE78-4C18-84F1-364657C0BB45}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{1075EB9A-59A9-4741-93F1-49683933EB9C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{A146431D-DD50-4CD2-BD6F-D385C488691D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{9B12C1A7-A661-402A-8993-97B5AC5457F7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{F300DF53-565E-442E-BDC9-A357404870AD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{39C94C88-137C-4298-9420-D17B108E408F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{636E5F24-6EF2-4E34-A33A-1FB64019C2EB}G:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) G:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [TCP Query User{AF695A18-48D9-4A9C-85B8-E7FDA4D8F0E7}G:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) G:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [UDP Query User{2B546FAA-C5CB-4FB6-8A9E-F7913D81FC84}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [TCP Query User{520C2F0B-8485-4087-AD3B-9CE977B031F2}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Allow) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe FirewallRules: [UDP Query User{E4784E6C-181E-442A-BFFB-9DE26AFF41B9}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{9825AB5E-7191-4F02-9576-5F48C83A0140}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [{E9530080-4DC4-4C04-9E89-268C6FE14982}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [UDP Query User{12B751EC-752E-49F7-9645-4797DA0AF928}C:\users\maciek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\maciek\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{FDAA459D-4482-4A84-B6AC-36F0EDC7DE93}C:\users\maciek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\maciek\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{EC4BD278-180F-4D25-9A63-0EECC71E8D50}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{981E3042-2C12-45FE-9C95-7891C7730CCA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{6882F3EE-4942-45C7-8E5C-36CA9F3EFF54}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{D9C9A4EA-73F3-4E53-8C8B-C920A43A6C9B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7E43FE79-4796-4086-B7D7-FC5508E34C0E}] => (Allow) C:\WINDOWS\system32\rundll32.exe FirewallRules: [TCP Query User{ED1B3694-E994-401C-8175-A0552C7E3EE2}G:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) G:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [UDP Query User{7D481165-4EAE-4C34-9939-E57DBD041578}G:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) G:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [TCP Query User{181BB9E2-1D92-4211-AC43-9CCDE257B6DD}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{C7CF466D-D19B-43BD-B9D7-44885A4B5E12}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{8586180C-3812-415F-BA65-756C50D4F0D7}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{E1C5415C-BA42-4836-90E4-4D94ECA83FF6}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe FirewallRules: [{A916520E-06B7-416C-8108-00215B029659}] => (Block) C:\program files\java\jre1.8.0_51\bin\javaw.exe FirewallRules: [{3FCEA2CD-63E7-4082-A029-10F5F3AB38D5}] => (Block) C:\program files\java\jre1.8.0_51\bin\javaw.exe FirewallRules: [TCP Query User{B2ACB912-E817-47B9-A241-AD3CB77AC62F}C:\ruby24-x64\bin\ruby.exe] => (Allow) C:\ruby24-x64\bin\ruby.exe FirewallRules: [UDP Query User{ED36D8F3-8F32-4DF0-AD91-6AFE74CF443D}C:\ruby24-x64\bin\ruby.exe] => (Allow) C:\ruby24-x64\bin\ruby.exe FirewallRules: [{EBD68E90-9037-4998-BB0F-7539D7EF6494}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{E4703F0C-F591-47DF-B74B-7174E72C5D3B}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{C78F5C73-EB2C-4FD4-BDFF-6991B27F3654}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{5DEED412-2670-4DFE-B116-54E526B5CD0B}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{04EEAD38-7AC0-45BB-B609-94EBC45D6F47}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{907C7F03-E443-4B34-8200-390D09612A37}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [TCP Query User{BD942D0B-813C-4B77-8425-9C12D3FD7474}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{830C758F-4D60-422E-844A-E8BDF89677D0}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{ABA9369D-B665-46A7-B5E0-BF62EF552B3E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{AC4A7988-5F5D-4604-BB3D-D7F68A933B00}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{E2D584C0-D5DD-43F2-BC6A-91BC9D06789B}] => (Allow) C:\Program Files\Opera\54.0.2952.64\opera.exe ==================== Punkty Przywracania systemu ========================= 28-07-2018 15:03:16 Removed ph. ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Standardowa klawiatura PS/2 Description: Standardowa klawiatura PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Mysz Microsoft PS/2 Description: Mysz Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (07/28/2018 03:46:59 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: MACIEK) Description: httphttp-2147467263 Error: (07/28/2018 03:46:57 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: MACIEK) Description: httphttp-2147467263 Error: (07/28/2018 03:03:17 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddWin32ServiceFiles: Unable to back up image of service avgbIDSAgent since QueryServiceConfig API failed System Error: Nie można odnaleźć określonego pliku. . Error: (07/28/2018 03:03:17 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddWin32ServiceFiles: Unable to back up image of service AVG Antivirus since QueryServiceConfig API failed System Error: Nie można odnaleźć określonego pliku. . Error: (07/28/2018 03:03:17 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary avgVmm. System Error: Nie można odnaleźć określonego pliku. . Error: (07/28/2018 03:03:17 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary avgSP. System Error: Nie można odnaleźć określonego pliku. . Error: (07/28/2018 03:03:17 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary avgSnx. System Error: Nie można odnaleźć określonego pliku. . Error: (07/28/2018 03:03:17 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary avgRvrt. System Error: Nie można odnaleźć określonego pliku. . Dziennik System: ============= Error: (07/28/2018 07:53:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa ZAM Controller Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (07/28/2018 07:28:05 PM) (Source: DCOM) (EventID: 10016) (User: MACIEK) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi MACIEK\Maciek o identyfikatorze zabezpieczeń SID (S-1-5-21-4104627804-584984733-3715976581-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (07/28/2018 07:20:51 PM) (Source: DCOM) (EventID: 10016) (User: MACIEK) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi MACIEK\Maciek o identyfikatorze zabezpieczeń SID (S-1-5-21-4104627804-584984733-3715976581-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (07/28/2018 04:41:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi luafv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (07/28/2018 04:41:00 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 16:17:11 na ‎28.‎07.‎2018 było nieoczekiwane. Error: (07/28/2018 04:40:26 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: ZARZĄDZANIE NT) Description: 3221225684Wystąpił błąd krytyczny podczas przetwarzania danych przywracania. Error: (07/28/2018 03:47:36 PM) (Source: DCOM) (EventID: 10016) (User: MACIEK) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi MACIEK\Maciek o identyfikatorze zabezpieczeń SID (S-1-5-21-4104627804-584984733-3715976581-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (07/28/2018 03:47:35 PM) (Source: DCOM) (EventID: 10016) (User: MACIEK) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi MACIEK\Maciek o identyfikatorze zabezpieczeń SID (S-1-5-21-4104627804-584984733-3715976581-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. CodeIntegrity: =================================== Date: 2018-07-28 16:46:33.475 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-07-28 16:46:33.475 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-07-28 16:06:45.580 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Opera\54.0.2952.64\opera.exe) attempted to load \Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2018-07-28 07:12:30.943 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-07-28 07:12:30.943 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-07-28 00:50:34.355 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-07-28 00:50:34.354 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-07-28 00:39:32.731 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Bitdefender\Bitdefender Security\vsservp.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bitdefender\Bitdefender Security\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz Procent pamięci w użyciu: 44% Całkowita pamięć fizyczna: 8155.02 MB Dostępna pamięć fizyczna: 4524.98 MB Całkowita pamięć wirtualna: 9691.02 MB Dostępna pamięć wirtualna: 4737.27 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:118.29 GB) (Free:24.98 GB) NTFS Drive d: (Internal devices) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS Drive f: () (Fixed) (Total:44.11 GB) (Free:2.51 GB) NTFS Drive g: () (Fixed) (Total:294.6 GB) (Free:83.25 GB) NTFS Drive h: () (Fixed) (Total:126.95 GB) (Free:1.34 GB) NTFS \\?\Volume{1d67c7b4-0000-0000-0000-100000000000}\ (Zastrzeżone przez system) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS \\?\Volume{1d67c7b4-0000-0000-0000-a0b11d000000}\ () (Fixed) (Total:0.46 GB) (Free:0.08 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: BD61DBB8) Partition 1: (Not Active) - (Size=99 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=294.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=127 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=44.1 GB) - (Type=0F Extended) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 1D67C7B4) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=118.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=476 MB) - (Type=27) ==================== Koniec Addition.txt ============================