Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 21-08-2021 Uruchomiony przez User (26-08-2021 19:46:26) Uruchomiony z D:\Nowy folder (14) Windows 10 Pro Wersja 20H2 19042.1165 (X64) (2021-02-04 18:16:40) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-5354036-1856788173-4118867812-500 - Administrator - Disabled) Gość (S-1-5-21-5354036-1856788173-4118867812-501 - Limited - Disabled) Konto domyślne (S-1-5-21-5354036-1856788173-4118867812-503 - Limited - Disabled) macie (S-1-5-21-5354036-1856788173-4118867812-1002 - Limited - Enabled) macie_n3h95vs (S-1-5-21-5354036-1856788173-4118867812-1003 - Limited - Disabled) User (S-1-5-21-5354036-1856788173-4118867812-1001 - Administrator - Enabled) => C:\Users\User WDAGUtilityAccount (S-1-5-21-5354036-1856788173-4118867812-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) AIMP (HKLM-x32\...\AIMP) (Version: v4.60.2180, 25.03.2020 - AIMP DevTeam) AVG AntiVirus FREE (HKLM\...\AVG Antivirus) (Version: 21.7.3196 - AVG Technologies) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.84 - Piriform) CPUID HWMonitor 1.44 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.44 - CPUID, Inc.) Discord (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) Dynamic Application Loader Host Interface Service (HKLM\...\{044CFD6C-2031-4589-B764-308FB8DDE6EF}) (Version: 1.0.0.0 - Intel Corporation) Hidden Epic Games Launcher (HKLM-x32\...\{BE411926-37D4-45D5-9ED5-4132BEB8E9C5}) (Version: 1.1.298.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Excel (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel) Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - ) FBX Game Recorder (HKLM-x32\...\FBX Game Recorder) (Version: 3.12.0.2247 - Blueberry Software (UK) Ltd.) Forza Horizon 4 (HKLM-x32\...\Forza Horizon 4_is1) (Version: - ) Free Download Manager (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\{0C1D4CF2-5575-4786-834C-B0FC977E9714}}_is1) (Version: 6.14.2.3973 - Softdeluxe) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.159 - Google LLC) Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: - ) Intel(R) Chipset Device Software (HKLM-x32\...\{b666e502-9089-483b-9816-0774ccc9cb61}) (Version: 10.1.18295.8201 - Intel(R) Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2009.14.0.1496 - Intel Corporation) Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation) Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation) K-Lite Codec Pack 15.9.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.9.0 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.78 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\OneDriveSetup.exe) (Version: 21.150.0725.0001 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Teams) (Version: 1.4.00.11161 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{852D8FE5-BC66-4061-B1C4-CADF51E5B27D}) (Version: 2.82.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Minecraft Launcher (HKLM-x32\...\{836613A9-879F-427F-8522-52B357801273}) (Version: 1.0.0.0 - Mojang) Mouse Server (wersja 1.7.8.8) (HKLM-x32\...\{7AFAA880-BB05-4E38-9279-C53EECE1B7BE}_is1) (Version: 1.7.8.8 - Necta Inc.) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation) NVIDIA Sterownik graficzny 471.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.41 - NVIDIA Corporation) NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project) Opera GX Stable 78.0.4093.153 (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Opera GX 78.0.4093.153) (Version: 78.0.4093.153 - Opera Software) Outlook (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook) PC Remote Receiver 7.4.3 (HKLM-x32\...\PC Remote Receiver) (Version: 7.4.3 - Monect (Suzhou) Co., Ltd.) PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 201209 - Kakao Corp.) PowerPoint (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint) Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 9.15.19.1412 - Razer Inc.) Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.6.0731.072613 - Razer Inc.) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8950.1 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.38.1118.2019 - Realtek) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.37.349 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games) Shotcut (HKLM\...\Shotcut) (Version: 21.03.21 - Meltytech, LLC) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries GG 6.2.0 (HKLM\...\SteelSeries Engine 3) (Version: 6.2.0 - SteelSeries ApS) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 92.0.902.78 - Microsoft Corporation) The Forest (HKLM-x32\...\The Forest_is1) (Version: - ) TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team) VALORANT (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Vidoc version 1.6 (HKLM-x32\...\{A8256A11-4FF1-4EFA-9DA4-1C016128815A}}_is1) (Version: 1.6 - Vidoc) VidocScrobbler (HKLM-x32\...\VidocScrobbler) (Version: 1.0 - PlumResearch S.A.) War Thunder Launcher 1.0.3.275 (HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Network) Web Companion (HKLM-x32\...\{c35b65eb-4e9f-42b0-a041-223e57170c9d}) (Version: 7.0.2417.4248 - Lavasoft) Wing 101 7.2.8.0 (HKLM-x32\...\Wing 101 7.2_is1) (Version: - ) WinRAR 6.01 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH) Packages: ========= Code Writer -> C:\Program Files\WindowsApps\ActiproSoftwareLLC.562882FEEB491_4.2.42.0_x64__24pqs290vpjk0 [2021-03-02] (Actipro Software LLC) EarTrumpet -> C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.8.0_x86__1sdd7yawvg6ne [2021-07-01] (File-New-Project) [Startup Task] File Analyzer -> C:\Program Files\WindowsApps\BitberrySoftware.FileAnalyzer_2.0.0.0_x64__2js97y2b9kjke [2021-08-21] (Bitberry Software) Forza Hub -> C:\Program Files\WindowsApps\Microsoft.Lucille_1.0.4.0_x64__8wekyb3d8bbwe [2021-08-05] (Microsoft Studios) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-05] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-07-20] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.26.249.0_x64__dt26b99r8h8gj [2021-06-19] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0 [2021-08-22] (Spotify AB) [Startup Task] Word -> C:\Program Files\WindowsApps\word.office.com-CECA1A7F_1.0.0.2_neutral__jc2kecmnkxwqc [2021-06-09] (word.office.com) Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2021-02-10] (Microsoft Corporation) Zegar (Live tile, budzik, minutnik) -> C:\Program Files\WindowsApps\12199Asparion.AsparionClock_4.0.2.69_x64__f89vgcf3qm37t [2021-07-08] (Asparion) [MS Ad] ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-5354036-1856788173-4118867812-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21063.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-5354036-1856788173-4118867812-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-5354036-1856788173-4118867812-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> "C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe" -ToastActivated => Brak pliku ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\phasomobia\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2021-02-04] (IP Izmaylov Artem Andreevich -> AIMP DevTeam) ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-05-08] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-05-08] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\phasomobia\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2021-02-04] (IP Izmaylov Artem Andreevich -> AIMP DevTeam) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\nvshext.dll [2021-07-13] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\phasomobia\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-05-08] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-05-08] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf ==================== Załadowane moduły (filtrowane) ============= 2019-04-25 14:12 - 2019-04-25 14:12 - 000052224 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\boost_bzip2-vc141-mt-x32-1_70.dll 2019-04-25 14:04 - 2019-04-25 14:04 - 000044032 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\boost_date_time-vc141-mt-x32-1_70.dll 2019-04-25 14:12 - 2019-04-25 14:12 - 000098816 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\boost_filesystem-vc141-mt-x32-1_70.dll 2019-04-25 14:12 - 2019-04-25 14:12 - 000058880 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\boost_iostreams-vc141-mt-x32-1_70.dll 2019-04-25 14:16 - 2019-04-25 14:16 - 000078848 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\boost_thread-vc141-mt-x32-1_70.dll 2019-04-25 14:22 - 2019-04-25 14:22 - 000772608 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\cpprest141_2_10.dll 2018-07-23 17:00 - 2018-07-23 17:00 - 001131008 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\libesedb.dll 2018-07-23 15:35 - 2018-07-23 15:35 - 000073728 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\zlib.dll 2021-03-12 05:28 - 2021-03-12 05:28 - 001230336 _____ (Applied Informatics Software Engineering GmbH) [Brak podpisu cyfrowego] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoFoundation.dll 2021-03-12 05:28 - 2021-03-12 05:28 - 000207872 _____ (Applied Informatics Software Engineering GmbH) [Brak podpisu cyfrowego] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoJSON.dll 2021-03-12 05:28 - 2021-03-12 05:28 - 000810496 _____ (Applied Informatics Software Engineering GmbH) [Brak podpisu cyfrowego] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNet.dll 2021-03-12 05:28 - 2021-03-12 05:28 - 000238592 _____ (Applied Informatics Software Engineering GmbH) [Brak podpisu cyfrowego] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNetSSLWin.dll 2021-03-12 05:28 - 2021-03-12 05:28 - 000335360 _____ (Applied Informatics Software Engineering GmbH) [Brak podpisu cyfrowego] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoUtil.dll 2021-03-12 05:28 - 2021-03-12 05:28 - 000455168 _____ (Applied Informatics Software Engineering GmbH) [Brak podpisu cyfrowego] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoXML.dll 2020-12-21 21:49 - 2020-12-21 21:49 - 002146304 _____ (Holtek Semiconductor Inc.) [Brak podpisu cyfrowego] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll 2020-12-21 21:49 - 2020-12-21 21:49 - 002284032 _____ (Holtek) [Brak podpisu cyfrowego] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll 2021-04-10 11:54 - 2021-05-21 12:41 - 000078336 _____ (Softdeluxe) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\downloadsbatch.dll 2021-04-10 11:54 - 2021-05-21 12:42 - 003211776 _____ (Softdeluxe) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\downloadsbt.dll 2021-04-10 11:54 - 2021-05-21 12:42 - 000488448 _____ (Softdeluxe) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\downloadsms.dll 2021-04-10 11:54 - 2021-05-21 12:42 - 000273408 _____ (Softdeluxe) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\downloadswww.dll 2021-04-10 11:54 - 2021-05-21 12:38 - 000033792 _____ (Softdeluxe) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\logger.dll 2021-04-10 11:54 - 2021-05-21 12:41 - 000337920 _____ (Softdeluxe) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\vmsclshared.dll 2021-04-10 11:54 - 2021-05-21 12:39 - 000040960 _____ (Softdeluxe) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\winunivappfeatures.dll 2021-02-18 14:29 - 2021-02-18 14:29 - 002530304 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\libcrypto-1_1.dll 2021-02-18 14:29 - 2021-02-18 14:29 - 000531968 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\libssl-1_1.dll 2021-04-10 11:54 - 2020-05-27 22:16 - 002837504 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\libcrypto-1_1-x64.dll 2021-04-10 11:54 - 2020-05-27 22:16 - 000681472 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\libssl-1_1-x64.dll 2021-02-18 14:46 - 2021-02-18 14:46 - 004291584 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\Qt5Core.dll 2021-02-18 14:49 - 2021-02-18 14:49 - 000864256 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\Qt5Network.dll 2021-02-18 15:05 - 2021-02-18 15:05 - 002711552 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\Scrobbler\Qt5Qml.dll 2021-04-10 11:54 - 2021-05-21 12:42 - 005972464 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\Qt5Core.dll 2021-08-16 11:05 - 2021-08-13 11:47 - 000117248 _____ (wifimouse.necta.us) [Brak podpisu cyfrowego] C:\Program Files (x86)\Mouse Server\BluetoothAdapter.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [7908] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2021-05-16] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2021-05-16] (Oracle America, Inc. -> Oracle Corporation) (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com IE trusted site: HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\hola.org -> hxxp://hola.org IE trusted site: HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-12-07 11:14 - 2021-08-05 18:00 - 000002370 _____ C:\Windows\system32\drivers\etc\hosts 51.68.172.243 authserver.mojang.com 51.68.172.243 sessionserver.mojang.com 109.94.209.70 fitgirlrepacks.in # Fake FitGirl site 109.94.209.70 www.fitgirlrepacks.in # Fake FitGirl site 109.94.209.70 fitgirlrepacks.co # Fake FitGirl site 109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site 109.94.209.70 fitgirl-repacks.to # Fake FitGirl site 109.94.209.70 fitgirl-repack.com # Fake FitGirl site 109.94.209.70 fitgirl-repacks.website # Fake FitGirl site 109.94.209.70 fitgirlrepack.games # Fake FitGirl site 127.0.0.1 checkhost.local 109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.to # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site 109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 www.fitgirlrepack.games # Fake FitGirl site 109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 fitgirl-repack.net # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site 109.94.209.70 fitgirlpack.site # Fake FitGirl site 109.94.209.70 www.fitgirlpack.site # Fake FitGirl site ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\Vidoc\scrobbler;C:\Users\User\AppData\Local\Microsoft\WindowsApps; HKU\S-1-5-21-5354036-1856788173-4118867812-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg DNS Servers: 1.1.1.1 - 1.0.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run32: => "RazerCortex" HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant" HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\StartupApproved\Run: => "Free Download Manager" HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\StartupApproved\Run: => "Synapse3" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{1ACA8084-A83E-4589-916A-9F2273557DDB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{9D56D998-4002-4C52-A892-E7638A8E5D27}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{9E0CB4B8-1EC1-4EF8-85C9-9B4A1E50C79B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{47B47B00-9F5D-4775-B66A-A84886B3ED3C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{9524340D-9E6E-4CEE-ABD3-A6E3FB6297B4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{A74804EF-77A2-4AF6-ABC2-840EC69F499E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{EE5701F2-EDD6-4D77-B506-B859C5622979}C:\users\user\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\user\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{49CD6BA6-2A70-4EE1-A790-1ABBF50E0497}C:\users\user\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\user\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{FA0355A9-E55A-4C69-B96C-1C18294DE638}C:\program files\windowsapps\facebook.317180b0bb486_860.5.119.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_860.5.119.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Brak pliku FirewallRules: [UDP Query User{FF6FF7EF-358F-4873-8A1D-B0B3DB9FCB6F}C:\program files\windowsapps\facebook.317180b0bb486_860.5.119.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_860.5.119.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Brak pliku FirewallRules: [{C075C4A6-3C3D-4655-83F6-3CDD03A93FD2}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{58F6DB5E-752D-4BE2-88A3-F8317D660DC0}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [TCP Query User{228A6112-3E34-47EF-92FF-2B101D553718}C:\users\user\appdata\local\programs\opera gx\73.0.3856.389\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.389\opera.exe => Brak pliku FirewallRules: [UDP Query User{C772C328-DADC-42CC-9A8C-C3742CAC5532}C:\users\user\appdata\local\programs\opera gx\73.0.3856.389\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.389\opera.exe => Brak pliku FirewallRules: [TCP Query User{04A1D722-E77D-4118-A2F3-C0D821A3C8DA}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{7A513D90-1716-4CB0-87AB-329928F5F89D}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe FirewallRules: [{3D039C34-3079-4B8C-B203-4DA08C1B52AC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{37A8128A-05AC-4AA4-8FB6-28A5A80283AC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{04A0022D-E721-4B5A-A190-2EEB7F03C14B}C:\program files\windowsapps\facebook.317180b0bb486_880.7.120.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Block) C:\program files\windowsapps\facebook.317180b0bb486_880.7.120.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Brak pliku FirewallRules: [UDP Query User{0FF70E6B-A006-40F8-8AB6-A08CD0646F50}C:\program files\windowsapps\facebook.317180b0bb486_880.7.120.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Block) C:\program files\windowsapps\facebook.317180b0bb486_880.7.120.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Brak pliku FirewallRules: [TCP Query User{DC40E942-63E7-4A2D-B686-F4D977FE9114}C:\users\user\appdata\local\programs\opera gx\73.0.3856.396\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.396\opera.exe => Brak pliku FirewallRules: [UDP Query User{E6343312-FAE6-4410-BFA7-99F6C62BB0C8}C:\users\user\appdata\local\programs\opera gx\73.0.3856.396\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.396\opera.exe => Brak pliku FirewallRules: [TCP Query User{2C78B3A6-D073-470B-8909-9DB03566510A}D:\gry\minecraft\runtime\jre-x64\bin\javaw.exe] => (Block) D:\gry\minecraft\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{3D69EF2D-3474-4C7B-B2CA-83FDC487C3FB}D:\gry\minecraft\runtime\jre-x64\bin\javaw.exe] => (Block) D:\gry\minecraft\runtime\jre-x64\bin\javaw.exe FirewallRules: [TCP Query User{3CAB8B33-CD83-47DF-8B2D-AA01AD0D14F2}C:\users\user\appdata\local\programs\opera gx\73.0.3856.400\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\73.0.3856.400\opera.exe => Brak pliku FirewallRules: [UDP Query User{4B0AB03F-C13E-4259-B21F-7706C280A522}C:\users\user\appdata\local\programs\opera gx\73.0.3856.400\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\73.0.3856.400\opera.exe => Brak pliku FirewallRules: [TCP Query User{191E42E3-5799-4C80-8D52-CCD13423CAAF}D:\gry\minecraft\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) D:\gry\minecraft\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{BBD57875-F028-45EE-8CF0-81C89E9CFF83}D:\gry\minecraft\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) D:\gry\minecraft\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [TCP Query User{9B78AC55-F566-49CC-B82A-54DB0D34A02D}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe => Brak pliku FirewallRules: [UDP Query User{2069C6BA-DA8B-42D6-9DCA-B4B385357EC0}C:\program files\avast software\avast\avastui.exe] => (Block) C:\program files\avast software\avast\avastui.exe => Brak pliku FirewallRules: [TCP Query User{D9E3D943-765F-463C-8B2B-A30ACD22CA01}C:\users\user\appdata\local\programs\opera gx\73.0.3856.415\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.415\opera.exe => Brak pliku FirewallRules: [UDP Query User{92BA2002-815F-450F-9BB0-623EDAAE69C8}C:\users\user\appdata\local\programs\opera gx\73.0.3856.415\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.415\opera.exe => Brak pliku FirewallRules: [TCP Query User{E9115B64-0793-4FA6-B09F-42F1F1FBCB8F}C:\users\user\appdata\roaming\crystal-launcher\runtime\64\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\crystal-launcher\runtime\64\jre1.8.0_271\bin\javaw.exe FirewallRules: [UDP Query User{ABA8C1D4-764A-4A5A-95DA-01492D4D1BEB}C:\users\user\appdata\roaming\crystal-launcher\runtime\64\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\crystal-launcher\runtime\64\jre1.8.0_271\bin\javaw.exe FirewallRules: [TCP Query User{AC2C63CB-E091-4FC9-AEC5-9D006979AB2E}D:\gry\crystalauncher\scoped_dir2712_843915833\anydesk.exe] => (Allow) D:\gry\crystalauncher\scoped_dir2712_843915833\anydesk.exe => Brak pliku FirewallRules: [UDP Query User{C0D7C232-B430-4CB9-8BB0-4761D1ABA491}D:\gry\crystalauncher\scoped_dir2712_843915833\anydesk.exe] => (Allow) D:\gry\crystalauncher\scoped_dir2712_843915833\anydesk.exe => Brak pliku FirewallRules: [TCP Query User{5989DF7D-AF55-4642-AEE7-94A2195DCFD4}C:\users\user\appdata\local\programs\opera gx\73.0.3856.421\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\73.0.3856.421\opera.exe => Brak pliku FirewallRules: [UDP Query User{7C09ECFD-FD15-442E-9D35-ADDDDC54CD53}C:\users\user\appdata\local\programs\opera gx\73.0.3856.421\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\73.0.3856.421\opera.exe => Brak pliku FirewallRules: [{534FF03D-7A0B-4FCF-94D3-BC29A33DF19F}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera\75.0.3969.149\opera.exe => Brak pliku FirewallRules: [TCP Query User{C7DFEDF6-E103-457C-A428-1803283FF545}C:\users\user\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\user\appdata\roaming\utorrent web\utweb.exe => Brak pliku FirewallRules: [UDP Query User{EC7D7FE7-E78E-4503-8061-15F153A56E15}C:\users\user\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\user\appdata\roaming\utorrent web\utweb.exe => Brak pliku FirewallRules: [TCP Query User{BDBAA100-F1CC-4CCC-8A18-B76DBA476564}C:\users\user\appdata\local\programs\opera gx\73.0.3856.424\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.424\opera.exe => Brak pliku FirewallRules: [UDP Query User{5564E000-1B64-4D12-A7A5-FBB0316F5663}C:\users\user\appdata\local\programs\opera gx\73.0.3856.424\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.424\opera.exe => Brak pliku FirewallRules: [TCP Query User{B782F185-07B0-47E5-9DC2-2CDBF93DF0C4}C:\users\user\appdata\local\programs\opera gx\73.0.3856.427\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.427\opera.exe => Brak pliku FirewallRules: [UDP Query User{6E08D51D-CAA8-4B8A-ABF3-E85F706CEED3}C:\users\user\appdata\local\programs\opera gx\73.0.3856.427\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.427\opera.exe => Brak pliku FirewallRules: [{062C6A7E-0E0A-4179-A966-315AB3192628}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe => Brak pliku FirewallRules: [{D8ACDC93-11A8-425F-BAD4-E1D5E7FC7B1E}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe => Brak pliku FirewallRules: [{B07A8FB4-5AD5-4917-A702-4466CF09DB21}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) FirewallRules: [{9510A99C-957D-49CB-A146-772A3009015A}] => (Allow) D:\gry\gta\gtaaaa\Grand Theft Auto V\GTA5.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [{C33F36CB-6FC5-4503-8700-5DFCBC52C440}] => (Allow) D:\gry\gta\gtaaaa\Grand Theft Auto V\GTA5.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{9C10B2AB-6EBB-4582-9DBD-5D56F5A4AB1D}C:\users\user\appdata\local\programs\opera gx\73.0.3856.434\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.434\opera.exe => Brak pliku FirewallRules: [UDP Query User{07C8CC2B-D36D-45B9-8819-D6B819096366}C:\users\user\appdata\local\programs\opera gx\73.0.3856.434\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.434\opera.exe => Brak pliku FirewallRules: [TCP Query User{515CCA39-8AD0-46B0-9BD6-DFA54E4FE03D}C:\users\user\appdata\local\warthunder\launcher.exe] => (Block) C:\users\user\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin) FirewallRules: [UDP Query User{514C6BCB-7E5C-4891-9372-B6F83F935D99}C:\users\user\appdata\local\warthunder\launcher.exe] => (Block) C:\users\user\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin) FirewallRules: [TCP Query User{C9EDC8F8-1ECD-4469-A2F3-0FBBB8D7F15F}C:\users\user\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\user\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [UDP Query User{A8E5CFFA-78F2-420A-9445-1BFABB8B52C6}C:\users\user\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\user\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [TCP Query User{F0C1E87F-3766-41CB-8983-B2BE7734A4D1}C:\users\user\appdata\local\programs\opera gx\73.0.3856.438\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.438\opera.exe => Brak pliku FirewallRules: [UDP Query User{BB0FBC74-D92F-4C9B-8615-20364DACD252}C:\users\user\appdata\local\programs\opera gx\73.0.3856.438\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\73.0.3856.438\opera.exe => Brak pliku FirewallRules: [TCP Query User{59527967-DB8A-450E-907A-1D8B5C17AFE8}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{2E33E08E-D143-4FE3-82B9-6CE4D2518D5C}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{F9AABF7E-982A-4EA8-B2AF-7CEBB38CDCF1}D:\gry\fs\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe] => (Allow) D:\gry\fs\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe => Brak pliku FirewallRules: [UDP Query User{B9B86832-B5E5-4267-A860-B1A6F10C4B81}D:\gry\fs\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe] => (Allow) D:\gry\fs\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe => Brak pliku FirewallRules: [TCP Query User{AF511BA5-ABD7-4508-BE20-F4F9AA59EB0D}D:\gry\epic games\rocket lague\obcy\alienisolation\ai.exe] => (Allow) D:\gry\epic games\rocket lague\obcy\alienisolation\ai.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{9FC1E85B-DC96-4CA1-A482-FAB8752C0C09}D:\gry\epic games\rocket lague\obcy\alienisolation\ai.exe] => (Allow) D:\gry\epic games\rocket lague\obcy\alienisolation\ai.exe () [Brak podpisu cyfrowego] FirewallRules: [{D3236FD6-19E4-43FB-BC20-421A259EDFA2}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{131D7DCD-AFF4-4A9A-9B5B-A21B8601EF80}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{2F38D781-59D9-42E4-A78F-6A35B8024EFD}D:\gry\steam\csgo\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\gry\steam\csgo\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{79AC48BA-027A-47F4-8BA6-6746BE49C097}D:\gry\steam\csgo\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\gry\steam\csgo\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{107E4ABD-D03C-4513-9379-451A54A21199}C:\users\user\onedrive\pulpit\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe] => (Allow) C:\users\user\onedrive\pulpit\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{D856EC4B-1DC6-412E-8A06-1938F70A05CE}C:\users\user\onedrive\pulpit\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe] => (Allow) C:\users\user\onedrive\pulpit\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) [Brak podpisu cyfrowego] FirewallRules: [{AFDC7B00-38D5-4E3A-A4CD-3CC4335BFD5E}] => (Allow) D:\gry\gta\gtaaaa\Grand Theft Auto V\GTA5.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [{0B0D43D2-C992-4773-92AF-11EBDD4FA46C}] => (Allow) D:\gry\gta\gtaaaa\Grand Theft Auto V\GTA5.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [{2CDBAF11-DB16-4420-8721-69D4C3F67996}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Shakes & Fidget\shakesandfidget.exe () [Brak podpisu cyfrowego] FirewallRules: [{A1D9EF8B-6CE3-488A-ACAE-F7BB7A86D59C}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Shakes & Fidget\shakesandfidget.exe () [Brak podpisu cyfrowego] FirewallRules: [{42EC2DDA-7962-4BE3-B9AE-FEEA52AA718A}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Chessсakе\Chesscake.exe () [Brak podpisu cyfrowego] FirewallRules: [{9803039C-1488-4FFE-8913-8FAEB3C8FE53}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Chessсakе\Chesscake.exe () [Brak podpisu cyfrowego] FirewallRules: [{B4D53DB9-B487-4DD6-9E1C-C82BAFC60145}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{318D907B-1C13-4E3A-9ADF-31001738FBA3}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{C99E48B5-92C1-4FFF-8E9C-4461FFBDC81E}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{D7B0B060-54E6-4EAD-9043-23E77A16600F}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{D048D7E1-19D4-428E-A73A-B8C991633D2F}] => (Allow) D:\gry\Steam\csgo\steamapps\common\The Forest\TheForest.exe () [Brak podpisu cyfrowego] FirewallRules: [{1B3EB676-0BC6-4673-9C74-2050CA1CD666}] => (Allow) D:\gry\Steam\csgo\steamapps\common\The Forest\TheForest.exe () [Brak podpisu cyfrowego] FirewallRules: [{91385377-B3E0-4D7F-B64B-9165EE367420}] => (Allow) D:\gry\Steam\csgo\steamapps\common\The Forest\TheForestVR.exe () [Brak podpisu cyfrowego] FirewallRules: [{5387AF54-5B18-4D47-924C-51ED5D9633C2}] => (Allow) D:\gry\Steam\csgo\steamapps\common\The Forest\TheForestVR.exe () [Brak podpisu cyfrowego] FirewallRules: [{FC8C736B-7C64-4CAC-9339-96C43FCE2BE0}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Among Us\Among Us.exe () [Brak podpisu cyfrowego] FirewallRules: [{D4855CC5-F26C-4552-B4E4-C5D5E0BD700A}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Among Us\Among Us.exe () [Brak podpisu cyfrowego] FirewallRules: [{83B7B521-21D7-440D-A44C-8508D8FCD8BE}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Terraria\Terraria.exe (Re-Logic) [Brak podpisu cyfrowego] FirewallRules: [{2D72123C-9441-42A2-A45A-020397F3120A}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Terraria\Terraria.exe (Re-Logic) [Brak podpisu cyfrowego] FirewallRules: [{CFCD4883-94A0-4BC8-85DA-018D9D12AE4B}] => (Allow) D:\gry\Steam\csgo\steamapps\common\7 Days To Die\7dLauncher.exe () [Brak podpisu cyfrowego] FirewallRules: [{AF1735DD-1DF7-4CB6-9D40-381C0120379F}] => (Allow) D:\gry\Steam\csgo\steamapps\common\7 Days To Die\7dLauncher.exe () [Brak podpisu cyfrowego] FirewallRules: [{C600DEFB-C6FB-4CF2-BCA3-BDE99DA12289}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Geometry Dash\GeometryDash.exe () [Brak podpisu cyfrowego] FirewallRules: [{F6A59697-56A3-498B-AD56-A4B124547B40}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Geometry Dash\GeometryDash.exe () [Brak podpisu cyfrowego] FirewallRules: [{C11BB1D4-1A5A-4480-98CA-B0AF470E47F9}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Portal 2\portal2.exe () [Brak podpisu cyfrowego] FirewallRules: [{BA59266E-FCFF-4254-B689-A04572B54A4D}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Portal 2\portal2.exe () [Brak podpisu cyfrowego] FirewallRules: [{7F8FD686-BA9F-40D1-A8D2-907560CA0738}] => (Allow) D:\gry\Steam\csgo\steamapps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl) [Brak podpisu cyfrowego] FirewallRules: [{A6195CF0-22E7-4F8F-A5DB-C84E536AB40B}] => (Allow) D:\gry\Steam\csgo\steamapps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl) [Brak podpisu cyfrowego] FirewallRules: [{E443AC25-3893-4188-AF45-6972A88163CB}] => (Allow) D:\gry\Steam\csgo\steamapps\common\dont_starve\bin\dontstarve_steam.exe () [Brak podpisu cyfrowego] FirewallRules: [{AB2F0DC0-B28C-4992-A165-5F24306E10CA}] => (Allow) D:\gry\Steam\csgo\steamapps\common\dont_starve\bin\dontstarve_steam.exe () [Brak podpisu cyfrowego] FirewallRules: [{ECCC41AD-EF5F-475B-A3CD-DCF9C71D54C3}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Worms Clan Wars\WormsClanWars.exe () [Brak podpisu cyfrowego] FirewallRules: [{B5406A0D-F394-4D3C-97BA-E6335A95E048}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Worms Clan Wars\WormsClanWars.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{0F0AFA4C-E18E-4A04-A5AB-6DF6FB7E1BB2}D:\gry\steam\csgo\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\gry\steam\csgo\steamapps\common\7 days to die\7daystodie.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{633C1C22-2CCF-49E0-9FD6-514AD1442F89}D:\gry\steam\csgo\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\gry\steam\csgo\steamapps\common\7 days to die\7daystodie.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{2F43E653-9784-4C23-9774-4EA348ABB9E9}C:\users\user\appdata\local\programs\opera gx\75.0.3969.259\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\75.0.3969.259\opera.exe => Brak pliku FirewallRules: [UDP Query User{CEA8CAEF-E21C-4676-B20B-31B9C24B089E}C:\users\user\appdata\local\programs\opera gx\75.0.3969.259\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\75.0.3969.259\opera.exe => Brak pliku FirewallRules: [TCP Query User{6BB26C68-88F7-4B5B-AAB8-DC2A56F86749}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_201\bin\javaw.exe FirewallRules: [UDP Query User{2404B901-838A-40F0-925B-99EDEB5C4751}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_201\bin\javaw.exe FirewallRules: [TCP Query User{C595B11E-4EF0-4477-B8C5-BA323713B81C}C:\users\user\appdata\local\programs\opera gx\75.0.3969.282\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\75.0.3969.282\opera.exe => Brak pliku FirewallRules: [UDP Query User{21BF9032-A999-4F3F-A442-C9B5D3FD6E15}C:\users\user\appdata\local\programs\opera gx\75.0.3969.282\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\75.0.3969.282\opera.exe => Brak pliku FirewallRules: [TCP Query User{E6A9FC25-03E3-4AC3-9148-33969371082A}C:\users\user\appdata\roaming\crystal-launcher\runtimes\nx\16.0.1-windows64\jdk-16.0.1\bin\javaw.exe] => (Block) C:\users\user\appdata\roaming\crystal-launcher\runtimes\nx\16.0.1-windows64\jdk-16.0.1\bin\javaw.exe FirewallRules: [UDP Query User{2526B81F-5C3D-46B3-AFE9-51CD38682104}C:\users\user\appdata\roaming\crystal-launcher\runtimes\nx\16.0.1-windows64\jdk-16.0.1\bin\javaw.exe] => (Block) C:\users\user\appdata\roaming\crystal-launcher\runtimes\nx\16.0.1-windows64\jdk-16.0.1\bin\javaw.exe FirewallRules: [TCP Query User{A7B6BCFE-6A9D-4E51-BE32-0426EF3CCE5B}C:\users\user\appdata\local\programs\opera gx\76.0.4017.208\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\76.0.4017.208\opera.exe => Brak pliku FirewallRules: [UDP Query User{99387C51-EC40-4406-AFE4-6F48AAD3D2EB}C:\users\user\appdata\local\programs\opera gx\76.0.4017.208\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera gx\76.0.4017.208\opera.exe => Brak pliku FirewallRules: [TCP Query User{3A0A19FE-18B1-458B-BC35-C7AE62CC667F}D:\farming\farming.simulator.19.v1.7.1.0.all.dlcs\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe] => (Allow) D:\farming\farming.simulator.19.v1.7.1.0.all.dlcs\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{820AFECE-55BF-4EB1-8AAE-CFAB65751E48}D:\farming\farming.simulator.19.v1.7.1.0.all.dlcs\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe] => (Allow) D:\farming\farming.simulator.19.v1.7.1.0.all.dlcs\farming simulator 19 alpine farming\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) [Brak podpisu cyfrowego] FirewallRules: [{C0273A41-181A-4830-8070-627085FD3303}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) FirewallRules: [{65C5B54A-2465-4FDD-8FC7-8EC3C924603C}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) FirewallRules: [TCP Query User{F700880A-F06B-418F-8B24-DB88FF017E73}C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [UDP Query User{E163E7CC-5978-419A-8215-99FE2752AE94}C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [{402CB13F-E664-463C-B383-509EA626DE1D}] => (Block) C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [{6AA56CE4-B880-4F7C-8DE7-849DDD425368}] => (Block) C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [TCP Query User{EAEAB2F5-2524-49A3-AC53-8AF40E25F34D}C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{7957CC84-0156-488B-B12B-CEF1B6CF8C55}C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [{7BA6A115-0034-446B-B0FE-D518186D7889}] => (Block) C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [{E4610E90-98D9-423E-9808-62399422E9FC}] => (Block) C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [TCP Query User{D10F8136-7DEB-48D3-9D20-D7CE0A8FCC8A}C:\users\user\appdata\local\programs\opera gx\76.0.4017.227\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\76.0.4017.227\opera.exe => Brak pliku FirewallRules: [UDP Query User{88F34F59-7428-430E-BF3C-F7932825F03B}C:\users\user\appdata\local\programs\opera gx\76.0.4017.227\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\76.0.4017.227\opera.exe => Brak pliku FirewallRules: [{02FEEDC9-C162-4D89-8243-841F2EC1BE4F}] => (Block) C:\users\user\appdata\local\programs\opera gx\76.0.4017.227\opera.exe => Brak pliku FirewallRules: [{23417BCF-5483-4B3C-BF0F-29481109F0A8}] => (Block) C:\users\user\appdata\local\programs\opera gx\76.0.4017.227\opera.exe => Brak pliku FirewallRules: [{977D0033-1857-4C0B-A797-155437FE0269}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1A3B0442-C144-4E71-8AA7-56F5CDFB5AC8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7D08E132-8B8D-4AF4-A793-F9BC9C5CE27E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{75AC2609-33C1-4AED-A0B9-D208496ADF32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{FCEC7032-4C24-4144-84ED-67F2E86ED860}C:\users\user\appdata\local\programs\opera gx\77.0.4054.257\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\77.0.4054.257\opera.exe => Brak pliku FirewallRules: [UDP Query User{D6392222-5858-4AE0-B8D1-B9CCEE989B16}C:\users\user\appdata\local\programs\opera gx\77.0.4054.257\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\77.0.4054.257\opera.exe => Brak pliku FirewallRules: [{739C41EB-B9C7-4EE8-A125-7CD5B655EEF8}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Phasmophobia\Phasmophobia.exe () [Brak podpisu cyfrowego] FirewallRules: [{33C28C15-8DF7-41B8-B9E2-D810F7EF0029}] => (Allow) D:\gry\Steam\csgo\steamapps\common\Phasmophobia\Phasmophobia.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{6ED06C44-7228-40AC-974B-F1DB64FC4BAE}C:\users\user\appdata\local\programs\opera gx\77.0.4054.275\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\77.0.4054.275\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{A37BC1CD-3FCB-4A05-8076-D50EC869DDA0}C:\users\user\appdata\local\programs\opera gx\77.0.4054.275\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\77.0.4054.275\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{91215F83-EA67-4B5E-9230-A37F345A486A}C:\users\user\appdata\local\softdeluxe\free download manager\fdm.exe] => (Allow) C:\users\user\appdata\local\softdeluxe\free download manager\fdm.exe (Softdeluxe) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{9FEFE439-3F32-4480-9601-75E3D53EA4C5}C:\users\user\appdata\local\softdeluxe\free download manager\fdm.exe] => (Allow) C:\users\user\appdata\local\softdeluxe\free download manager\fdm.exe (Softdeluxe) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{61BEE262-4981-4D87-9AE8-6A049ACE7AE4}D:\games\forza horizon 4\forzahorizon4.exe] => (Allow) D:\games\forza horizon 4\forzahorizon4.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{BC99FEA3-9A37-4C8C-B3BB-708DCB2606C8}D:\games\forza horizon 4\forzahorizon4.exe] => (Allow) D:\games\forza horizon 4\forzahorizon4.exe () [Brak podpisu cyfrowego] FirewallRules: [{31DFCCC2-8454-4508-8190-0942C84900BE}] => (Allow) C:\Program Files\PC Remote Receiver\MonectServerService.exe (Monect (Suzhou) Co., Ltd. -> Monect) FirewallRules: [{39394E96-F405-4156-9271-0426A989B7C4}] => (Allow) C:\Program Files\PC Remote Receiver\MonectMediaCenter.exe (Monect (Suzhou) Co., Ltd. -> ) FirewallRules: [{90A8092B-2756-4EE5-9FD7-4D9BB98C5C2C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{161150F9-BC9A-412C-B0E9-87D485331193}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1F2ED4F6-8DA2-42CE-B60D-4B4DAA07217C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0848064A-C8AA-4C53-BDF6-5B9768722815}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{DD5C3A28-6893-4831-A70A-3D092A5ED693}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{D1F915BB-D2A2-48A5-ABCE-D3B2A11201CB}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\92.0.902.78\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A8F7F90F-FB4D-495C-A656-0D25334F5D25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7A3FEC91-00FC-4D86-971B-C10EFBB274C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{531191A6-DDA6-47A4-9C7D-CA1203A27FEE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7942EA47-7487-46BF-B641-5C1CC1677F80}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3B715D3C-C662-4942-8DBA-E4EA6FBAFE42}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{509847F4-A8ED-442D-B07B-0089C1CBCE57}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{426DC3C4-97F4-4C56-8CB9-3A6C02283AE4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{224F4F19-8170-4D3B-B5E8-AABBE2636731}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{07DF8ACA-65E3-4D87-8932-7CBA791C547A}] => (Allow) C:\Windows\rss\csrss.exe () [Brak podpisu cyfrowego] FirewallRules: [{28EF8236-33C8-4619-B85C-59616D8EEDBA}] => (Allow) C:\Windows\rss\csrss.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{9E2C79CD-0617-42E4-8283-595EEDD381A3}C:\program files (x86)\mouse server\mouseserver.exe] => (Block) C:\program files (x86)\mouse server\mouseserver.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{C3E8AFA8-9E6D-49C0-9B76-9DE4BC215AA4}C:\program files (x86)\mouse server\mouseserver.exe] => (Block) C:\program files (x86)\mouse server\mouseserver.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{82A1EC22-8191-45DB-8D01-6E62F5CC4EB1}C:\program files (x86)\mouse server\mouseserver.exe] => (Block) C:\program files (x86)\mouse server\mouseserver.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{5B5C8ABA-E834-47F8-90A2-588E40BA8CCB}C:\program files (x86)\mouse server\mouseserver.exe] => (Block) C:\program files (x86)\mouse server\mouseserver.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] FirewallRules: [{525D604C-8560-4D67-B71A-225B421DF302}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) FirewallRules: [{5D1E7476-3426-4FE7-BD4F-72FC6CF5195F}] => (Block) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: LogMeIn Hamachi Virtual Ethernet Adapter Description: LogMeIn Hamachi Virtual Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: LogMeIn Inc. Service: Hamachi Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Standardowa klawiatura PS/2 Description: Standardowa klawiatura PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Mysz Microsoft PS/2 Description: Mysz Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: vJoy Device Description: vJoy Device Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da} Manufacturer: Shaul Eizikovich Service: vjoy Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (08/26/2021 07:42:35 PM) (Source: SideBySide) (EventID: 59) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files\AVG\Antivirus\setup\aswOfferTool.exe". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files\AVG\Antivirus\setup\aswOfferTool.exe" w wierszu 0. Nieprawidłowa składnia XML. Error: (08/26/2021 07:39:48 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program fdm.exe w wersji 6.14.2.3973 przestał współpracować z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemów w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: 8eb0 Godzina rozpoczęcia: 01d79aa12a1a261a Godzina zakończenia: 4294967295 Ścieżka aplikacji: C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\fdm.exe Identyfikator raportu: 0e5d1a31-274c-4917-99d0-7dd6e3eb734c Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji powiązanej z pakietem powodującym błąd: Typ zawieszenia: Top level window is idle Error: (08/26/2021 07:36:19 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: DESKTOP-BJV2MDE) Description: Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy-2147023878 Error: (08/23/2021 08:11:27 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować biblioteki DLL rozszerzalnego licznika „C:\Windows\system32\sysmain.dll” (kod błędu systemu Win32: 126). Error: (08/22/2021 02:35:24 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować biblioteki DLL rozszerzalnego licznika „C:\Windows\system32\sysmain.dll” (kod błędu systemu Win32: 126). Error: (08/21/2021 02:01:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: YourPhone.exe, wersja: 1.21062.152.0, sygnatura czasowa: 0x61119d34 Nazwa modułu powodującego błąd: YourPhone.AppCore.WinRT.dll, wersja: 1.21062.152.0, sygnatura czasowa: 0x61119964 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000000a74e Identyfikator procesu powodującego błąd: 0x48c4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d79684540396e4 Ścieżka aplikacji powodującej błąd: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21062.152.0_x64__8wekyb3d8bbwe\YourPhone.exe Ścieżka modułu powodującego błąd: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21062.152.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.WinRT.dll Identyfikator raportu: fa39e6b0-752a-49aa-9330-3c91a7de18c1 Pełna nazwa pakietu powodującego błąd: Microsoft.YourPhone_1.21062.152.0_x64__8wekyb3d8bbwe Identyfikator aplikacji względem pakietu powodującego błąd: App Error: (08/20/2021 09:00:55 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Optymalizator magazynów nie może zakończyć operacji ograniczenie ponowne na Dysk (D:) z następującego powodu: Żądana operacja nie jest obsługiwana przez sprzęt obsługujący wolumin. (0x8900002A) Error: (08/20/2021 06:20:26 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program wordpad.exe w wersji 10.0.19041.1151 przestał współpracować z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemów w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: d64 Godzina rozpoczęcia: 01d795df43527de0 Godzina zakończenia: 5 Ścieżka aplikacji: C:\Program Files\Windows NT\Accessories\wordpad.exe Identyfikator raportu: 6623c3bc-7eea-49b2-aefa-b61573f66a88 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji powiązanej z pakietem powodującym błąd: Typ zawieszenia: Unknown Dziennik System: ============= Error: (08/24/2021 10:08:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BJV2MDE) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/24/2021 10:08:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BJV2MDE) Description: Serwer {021E4F06-9DCC-49AD-88CF-ECC2DA314C8A} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/24/2021 10:08:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BJV2MDE) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/24/2021 10:08:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BJV2MDE) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/24/2021 10:08:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BJV2MDE) Description: Serwer {021E4F06-9DCC-49AD-88CF-ECC2DA314C8A} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/24/2021 10:08:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BJV2MDE) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/24/2021 10:08:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BJV2MDE) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/24/2021 10:08:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-BJV2MDE) Description: Serwer {021E4F06-9DCC-49AD-88CF-ECC2DA314C8A} nie zarejestrował się w modelu DCOM w wymaganym czasie. Windows Defender: ================ Date: 2021-08-26 19:43:12 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Ransom:Win32/StopCrypt!ml&threatid=2147788061&enterprise=0 Nazwa: Ransom:Win32/StopCrypt!ml Identyfikator: 2147788061 Ważność: Poważny Kategoria: Oprogramowanie wymuszające okup Ścieżka: file:_C:\Users\User\AppData\Local\Temp\7zO4C306C10\Click_here-PFQJ-ANnjI2EzqQQAOUQCAFBMFwAGAMftN18A.exe; file:_C:\Users\User\AppData\Local\Temp\Rar$EXb6428.36928\Click_here-PFQJ-ANnjI2EzqQQAOUQCAFBMFwAGAMftN18A.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-BJV2MDE\User Nazwa procesu: C:\Program Files\CCleaner\CCleaner64.exe Wersja analizy zabezpieczeń: AV: 1.347.277.0, AS: 1.347.277.0, NIS: 1.347.277.0 Wersja aparatu: AM: 1.1.18400.5, NIS: 1.1.18400.5 Date: 2021-08-26 19:43:07 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Ransom:Win32/StopCrypt!ml&threatid=2147788061&enterprise=0 Nazwa: Ransom:Win32/StopCrypt!ml Identyfikator: 2147788061 Ważność: Poważny Kategoria: Oprogramowanie wymuszające okup Ścieżka: file:_C:\Users\User\AppData\Local\Temp\7zO4C306C10\Click_here-PFQJ-ANnjI2EzqQQAOUQCAFBMFwAGAMftN18A.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-BJV2MDE\User Nazwa procesu: C:\Program Files\CCleaner\CCleaner64.exe Wersja analizy zabezpieczeń: AV: 1.347.277.0, AS: 1.347.277.0, NIS: 1.347.277.0 Wersja aparatu: AM: 1.1.18400.5, NIS: 1.1.18400.5 Date: 2021-08-24 07:44:51 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {FE7D1C52-7409-489D-A78B-5106E1E3D59F} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Pełne skanowanie Użytkownik: DESKTOP-BJV2MDE\User Date: 2021-08-24 07:26:16 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Ransom:Win32/StopCrypt!ml&threatid=2147788061&enterprise=0 Nazwa: Ransom:Win32/StopCrypt!ml Identyfikator: 2147788061 Ważność: Poważny Kategoria: Oprogramowanie wymuszające okup Ścieżka: file:_D:\Nowy folder (14)\Nowy folder\Click_here-PFQJ-ANnjI2EzqQQAOUQCAFBMFwAGAMftN18A.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Użytkownik Użytkownik: DESKTOP-BJV2MDE\User Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.347.277.0, AS: 1.347.277.0, NIS: 1.347.277.0 Wersja aparatu: AM: 1.1.18400.5, NIS: 1.1.18400.5 Date: 2021-08-24 07:26:09 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Ransom:Win32/StopCrypt!ml&threatid=2147788061&enterprise=0 Nazwa: Ransom:Win32/StopCrypt!ml Identyfikator: 2147788061 Ważność: Poważny Kategoria: Oprogramowanie wymuszające okup Ścieżka: file:_D:\Nowy folder (14)\Nowy folder\Click_here-PFQJ-ANnjI2EzqQQAOUQCAFBMFwAGAMftN18A.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-BJV2MDE\User Nazwa procesu: C:\Windows\explorer.exe Wersja analizy zabezpieczeń: AV: 1.347.277.0, AS: 1.347.277.0, NIS: 1.347.277.0 Wersja aparatu: AM: 1.1.18400.5, NIS: 1.1.18400.5 Date: 2021-08-24 07:28:09 Description: Podczas skanowania produktu Program antywirusowy Microsoft Defender napotkano błąd. Skanowanie zostało przerwane. Identyfikator skanowania: {05C2AEEF-8D61-40E5-A113-ECCA8D4202C5} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Skanowanie niestandardowe Użytkownik: DESKTOP-BJV2MDE\User Kod błędu: 0x80508023 Opis błędu: Program nie znalazł na tym urządzeniu złośliwego oprogramowania ani innego potencjalnie niechcianego oprogramowania. CodeIntegrity: =============== Date: 2021-08-26 19:43:22 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2021-08-26 19:43:12 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2021-07-08 12:54:47 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2021-07-08 11:00:39 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 1.40 08/21/2020 Płyta główna: Micro-Star International Co., Ltd. B460M-A PRO (MS-7C88) Procesor: Intel(R) Core(TM) i5-10400 CPU @ 2.90GHz Procent pamięci w użyciu: 47% Całkowita pamięć fizyczna: 16322.02 MB Dostępna pamięć fizyczna: 8565.13 MB Całkowita pamięć wirtualna: 18754.02 MB Dostępna pamięć wirtualna: 8686.23 MB ==================== Dyski ================================ Drive c: (System) (Fixed) (Total:237.86 GB) (Free:106.52 GB) NTFS Drive d: (Dysk) (Fixed) (Total:1863 GB) (Free:1223.36 GB) NTFS \\?\Volume{e097fa9c-38a7-4229-8cbc-04f93710a866}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS \\?\Volume{1c8c79f7-ebd7-4eac-96d9-a95bea8701d4}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt =======================