Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 29-08-2016 Uruchomiony przez user (30-08-2016 20:34:52) Uruchomiony z D:\Programy\scoped_dir_4132_32560 Windows 7 Professional Service Pack 1 (X64) (2014-11-28 17:39:22) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2435806706-593388220-432388364-500 - Administrator - Disabled) Gość (S-1-5-21-2435806706-593388220-432388364-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2435806706-593388220-432388364-1003 - Limited - Enabled) user (S-1-5-21-2435806706-593388220-432388364-1000 - Administrator - Enabled) => C:\Users\user Łapa (S-1-5-21-2435806706-593388220-432388364-1001 - Administrator - Enabled) => C:\Users\Łapa ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.) 7-Zip 15.06 beta (x64) (HKLM\...\7-Zip) (Version: 15.06 - Igor Pavlov) 7-Zip 9.35 beta (HKLM-x32\...\7-Zip) (Version: - ) Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated) Adobe Flash Player 22 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated) Adobe Flash Player ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 9.0.124.0 - Adobe Systems Incorporated) Adobe Reader 9.3 - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{D7E0D51D-CBE7-3BD5-9270-80A10D3578C8}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.) AVG (HKLM\...\AvgZen) (Version: 1.82.2.30772 - AVG Technologies) AVG 2015 (Version: 15.0.4293 - AVG Technologies) Hidden AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.4.122 - AVG Technologies) AVG Zen (Version: 1.82.2 - AVG Technologies) Hidden BitComet 1.37 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.37 - CometNetwork) BrickEnforcer (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{c0e7631c}) (Version: - BrickEnforcer) <==== UWAGA Builder Mart (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\{C509552A-7987-97D8-68C3-F9BF83341FE7}) (Version: 1.2.6 - Piano Teacher corp) <==== UWAGA CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform) Counter Strike 1.6 Non Steam v23 (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\Counter Strike 1.6 Non Steam v23) (Version: - ) Counter-Strike 1.6 v23 (HKLM-x32\...\{6A8BC91F-83AF-4CA0-AA88-06B6FD071444}_is1) (Version: v23 - CSSetti.pl) Counter-Strike 1.6 v48 (HKLM-x32\...\Counter-Strike 1.6) (Version: v48 - CSSetti.pl) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dragonball Xenoverse (HKLM-x32\...\Dragonball Xenoverse_is1) (Version: - ) FMW 1 (Version: 1.122.3 - AVG Technologies) Hidden Forged By Chaos (HKLM-x32\...\ForgedByChaos) (Version: - ) Fraps (HKLM-x32\...\Fraps) (Version: - ) Full Pack ReBalance SnC v2 (HKLM-x32\...\{A281663D-433D-4D18-9865-CEC42A54A97E}_is1) (Version: 1.0 - Dimmell) Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden GamesDesktop 008.005010173 (HKLM-x32\...\gmsd_pl_005010173_is1) (Version: - GAMESDESKTOP) <==== UWAGA GarreControl (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{27019e42}) (Version: - GarreControl) <==== UWAGA GG (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\GG) (Version: 12 - GG Network S.A.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden Gothic 3 Zmierzch Bogów Edycja Rozszerzona (HKLM-x32\...\{6890095D-D7FE-465A-9B1D-BE605B1F5FD9_CDP}_is1) (Version: - Nordic Games GmbH) Gothic II Złota Edycja (HKLM-x32\...\{B4FD3F41-E90C-4A3E-AADF-F2FB64CF2E42}) (Version: 2.6 - JoWood) Gtk# for .Net 2.12.10 (HKLM-x32\...\{550B72C4-F404-4812-971F-947E835A877E}) (Version: 2.12.10 - Novell, Inc.) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.17.0.001 - HTC Corporation) HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.69.5 - HTC) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Kepard (HKLM-x32\...\Kepard) (Version: - Kepard) Kyrmir (HKLM-x32\...\{5EA74D66-4008-4E84-87F4-2842341EC95E}) (Version: 1.0.0.2 - Kyrmir) League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games) League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden Maxiget Software Manager (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\Maxiget Software Manager) (Version: 1.6.14 - ) <==== UWAGA Metin2 (HKLM-x32\...\Metin2_PL_is1) (Version: - Gameforge 4D GmbH) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie To GIF 1.2.4.0 (HKLM-x32\...\{8757DAA6-01B2-4CD9-ADEB-76D5F2D9977D}_is1) (Version: - zxt2007.com) Mozilla Firefox 44.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 pl)) (Version: 44.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NC Launcher (GameForge) (HKLM-x32\...\NCLauncher_GameForge) (Version: - NCsoft) Odkurzacz (HKLM-x32\...\Odkurzacz 14.2_is1) (Version: 14.2.0.4492 - FranmoSoftware - Maciej Opaliński) OpenFM (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\OpenFM) (Version: 2 - GG Network S.A.) Opera Stable 39.0.2256.48 (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\Opera 39.0.2256.48) (Version: 39.0.2256.48 - Opera Software) Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.) S.K.I.L.L. - Special Force 2 (HKLM\...\Steam App 286940) (Version: - Dragonfly GF Co., LTD) Sandboxie 4.14 (64-bit) (HKLM\...\Sandboxie) (Version: 4.14 - Sandboxie Holdings, LLC) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation) Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.102 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SystemHelp (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{a9cff455}) (Version: - SystemHelp) <==== UWAGA TeamSpeak 3 Client (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Unity Web Player (HKU\S-1-5-21-2435806706-593388220-432388364-1000\...\UnityWebPlayer) (Version: 5.3.1f1 - Unity Technologies ApS) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2435806706-593388220-432388364-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\user\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03DDE5CD-9583-4AAD-9D7B-0C76EAB0A297} - System32\Tasks\Opera scheduled Autoupdate 1417258443 => D:\Opera\launcher.exe [2016-08-03] (Opera Software) Task: {0AAF18A9-0964-407B-8C02-B8DEEC561FFC} - System32\Tasks\Odkurzacz => D:\Programy\Odkurzacz\odkurzacz.exe [2016-08-28] (FranmoSoftware) Task: {4BFE32DD-36D1-4820-80BA-4E1C95F30D8C} - System32\Tasks\CCleanerSkipUAC => D:\Programy\CClear\CCleaner.exe [2016-01-15] (Piriform Ltd) Task: {4FBFEC6C-3AD7-4A45-87F7-9C341977AEF1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {601E1F6D-92FB-4880-8FAA-11FBC3DD2738} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12] (Adobe Systems Incorporated) Task: {8098D844-10AA-4269-A87C-34FFA6324184} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {86D823F4-F2D7-4837-907C-83EAECFBBFCA} - System32\Tasks\Builder Mart => Rundll32.exe "C:\Users\user\AppData\Local\Builder Mart\{D7AFE6C6-0312-A1D1-D08A-1B25807B6F87}\BuilderMart.dll",#1 <==== UWAGA Task: {A665A973-3F55-4ED3-9AFA-C9EFFAE02F2E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {ACABA57F-0978-49AF-B12C-C685319FD613} - System32\Tasks\{44D2BD15-1B45-4141-BF8D-B557E803771B} => D:\Gry\cs 1.6 v23\cstrike.exe Task: {ADC88EF0-7C0C-4506-8075-146CB15863E5} - System32\Tasks\{5EBE0406-B74F-4AA9-8049-9E144A6D07A4} => D:\Gry\cs 1.6 v23\cstrike.exe Task: {B78FD874-D1D6-4485-B556-D265FC86F6D6} - System32\Tasks\{C0361124-2113-4190-A68E-0FFFC96F59FB} => D:\Gry\cs 1.6 v23\cstrike.exe Task: {C20AF9CB-5BCC-437D-B733-7E151B574757} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {E74A2CDD-54B8-44CA-BD6A-9BDD330F3305} - System32\Tasks\Builder Mart2 => Rundll32.exe "C:\Users\user\AppData\Local\Builder Mart\{D7AFE6C6-0312-A1D1-D08A-1B25807B6F87}\uxol.dll",#1 <==== UWAGA Task: {F851600A-E74B-48FC-ACA1-1EC4325A4CF6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe [2016-07-12] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\BetterDeals Update.job => C:\Program Files (x86)\ver1BetterDeals\R5BetterDealsW24.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\user\AppData\Local\Microsoft\Windows\GameExplorer\{A059A19F-E099-411D-ACDE-07A861CE13B7}\SupportTasks\0\Pomoc techniczna.lnk -> hxxp://support.aspyr.com/ Shortcut: C:\Users\user\AppData\Local\Microsoft\Windows\GameExplorer\{33B8FF67-38B9-4109-B7DA-5BD148D84956}\SupportTasks\0\Więcej gier od firmy Microsoft.lnk -> hxxp://www.rockstargames.com/sanandreas/ ==================== Załadowane moduły (filtrowane) ============== 2014-11-28 20:06 - 2012-02-07 12:04 - 00128280 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe 2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe 2016-05-04 14:35 - 2016-03-15 08:40 - 04984448 _____ () C:\Windows\system32\config\systemprofile\AppData\Roaming\WMPNetworkAcSvc\WMPNetworkAcSvc.exe 2015-07-14 15:37 - 2015-07-14 15:37 - 00821240 _____ () D:\Programy\HTC\HTC Sync\adb.exe 2012-06-20 17:51 - 2012-06-20 17:51 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2016-01-15 22:45 - 2016-01-15 22:45 - 00061440 _____ () D:\Programy\CClear\lang\lang-1045.dll 2016-08-30 20:31 - 2016-08-30 20:31 - 00012970 _____ () C:\Users\user\AppData\Local\Temp\winvkmrhm.exe 2015-07-14 15:35 - 2015-07-14 15:35 - 00030720 _____ () D:\Programy\HTC\DbAccess.dll 2015-07-14 15:35 - 2015-07-14 15:35 - 00607016 _____ () D:\Programy\HTC\sqlite3.dll 2015-07-14 15:36 - 2015-07-14 15:36 - 00059392 _____ () D:\Programy\HTC\NAdvLog.dll 2015-07-14 15:35 - 2015-07-14 15:35 - 00035864 _____ () D:\Programy\HTC\NFileCacheDBAccess.dll 2015-07-14 15:36 - 2015-07-14 15:36 - 00079888 _____ () D:\Programy\HTC\ninstallerhelper.dll 2015-07-14 15:37 - 2015-07-14 15:37 - 00129016 _____ () D:\Programy\HTC\zlib1.dll 2015-07-14 15:39 - 2015-07-14 15:39 - 00223240 _____ () D:\Programy\HTC\DevConnMon.dll 2015-12-14 16:08 - 2016-04-07 17:07 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2016-08-05 14:58 - 2016-08-05 14:58 - 69095432 _____ () D:\Opera\39.0.2256.48\opera.dll 2016-08-05 14:58 - 2016-08-05 14:58 - 02209800 _____ () D:\Opera\39.0.2256.48\libglesv2.dll 2016-08-05 14:58 - 2016-08-05 14:58 - 00086024 _____ () D:\Opera\39.0.2256.48\libegl.dll 2016-05-14 16:14 - 2016-05-14 16:14 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5a8eeeddc97028a9f94d0518c22f4c2c\IsdiInterop.ni.dll 2014-11-28 20:02 - 2011-11-29 21:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2014-11-28 20:05 - 2012-02-07 11:39 - 01198872 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2015-12-12 12:31 - 00000895 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2435806706-593388220-432388364-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: BrowserProtector-repairJob => wscript.exe "C:\Users\user\AppData\Local\BrowserProtector\repair.js" "BrowserProtector-repairJob" MSCONFIG\startupreg: SandboxieControl => "D:\Programy\Sandbox\SbieCtrl.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{2A919AE9-3D17-4CC5-91AA-E247932BF11A}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{7EFAAB3D-3073-4C27-A3EE-E84B39EAB9B0}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{E9F2730B-3CAC-4B15-8856-E4B5BCE65710}] => (Allow) D:\Steam\bin\steamwebhelper.exe FirewallRules: [{F0DA47B3-0FD2-4E2D-BF1D-804F451828AA}] => (Allow) D:\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{54C8738B-264B-447F-A797-6E6002D7E016}D:\java\bin\javaw.exe] => (Allow) D:\java\bin\javaw.exe FirewallRules: [UDP Query User{60AFCA67-D011-465C-A3CD-DAF163ED814A}D:\java\bin\javaw.exe] => (Allow) D:\java\bin\javaw.exe FirewallRules: [{E4D37F60-F347-47D8-B1B6-AA1BC0E4A4CB}] => (Allow) C:\Program Files (x86)\Bench\Proxy\pwdg.exe FirewallRules: [TCP Query User{84D09E2E-3FB3-4B55-9B1B-F0B8B0658D9E}D:\steam\steamapps\common\half-life\hltv.exe] => (Allow) D:\steam\steamapps\common\half-life\hltv.exe FirewallRules: [UDP Query User{F140E843-97FC-44E9-958B-BDF10A5080D9}D:\steam\steamapps\common\half-life\hltv.exe] => (Allow) D:\steam\steamapps\common\half-life\hltv.exe FirewallRules: [{BE233ADE-4693-45DB-8FD7-3D1B6EDE8E96}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe FirewallRules: [{8E31A91A-3771-4DD8-9A18-E70ADBE85DD8}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe FirewallRules: [{CC35DD37-80EC-40A5-BB55-8C3A36932D92}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{BB4356C6-DC74-4E67-B602-A26F9DF6C86C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{F9738982-BA2F-4A7D-8797-A98064CF08D1}D:\gry\elitemt2\elitemt2\elitemt2(bez_patchera).exe] => (Allow) D:\gry\elitemt2\elitemt2\elitemt2(bez_patchera).exe FirewallRules: [UDP Query User{3F8C39B2-AA49-4186-AE1C-75A7BD412E04}D:\gry\elitemt2\elitemt2\elitemt2(bez_patchera).exe] => (Allow) D:\gry\elitemt2\elitemt2\elitemt2(bez_patchera).exe FirewallRules: [TCP Query User{3B499147-DB5D-4467-981F-D878571C1C20}D:\gry\elitemt2\elitemt2\metin2.bin] => (Allow) D:\gry\elitemt2\elitemt2\metin2.bin FirewallRules: [UDP Query User{C1669F6D-A181-42EB-82C3-B989BAF86E7D}D:\gry\elitemt2\elitemt2\metin2.bin] => (Allow) D:\gry\elitemt2\elitemt2\metin2.bin FirewallRules: [{34ACFF48-786E-47E7-805D-4E3E5F6DDD6B}] => (Allow) LPort=30567 FirewallRules: [{7A0161E4-C5FB-4F45-A8F8-E39126EC046F}] => (Allow) D:\Programy\Torrent\BitComet\BitComet.exe FirewallRules: [{30216A07-B452-441A-9139-DE8E26C12DBA}] => (Allow) D:\Programy\Torrent\BitComet\BitComet.exe FirewallRules: [TCP Query User{3E0DDFBA-EE72-4A9F-89BC-4806240B4C7F}D:\java\bin\javaw.exe] => (Block) D:\java\bin\javaw.exe FirewallRules: [UDP Query User{6C8484E9-17D4-43EA-AE3D-AE3320A14C7B}D:\java\bin\javaw.exe] => (Block) D:\java\bin\javaw.exe FirewallRules: [TCP Query User{12CBF9AB-D3BB-492A-98D9-2CC0CDB6391C}D:\gry\kopia gta sa\samp.exe] => (Allow) D:\gry\kopia gta sa\samp.exe FirewallRules: [UDP Query User{4C8F3294-991C-4C3F-901C-45980D0C4616}D:\gry\kopia gta sa\samp.exe] => (Allow) D:\gry\kopia gta sa\samp.exe FirewallRules: [TCP Query User{B3A8DC05-FC65-4ECC-8991-A730150D795B}C:\programdata\{eac6dde0-e8f5-2d84-eac6-6dde0e8f7783}\metin2mod_2011sf_10122013.exe] => (Block) C:\programdata\{eac6dde0-e8f5-2d84-eac6-6dde0e8f7783}\metin2mod_2011sf_10122013.exe FirewallRules: [UDP Query User{ECD5F6D7-3265-4468-9906-4EB4C90655FA}C:\programdata\{eac6dde0-e8f5-2d84-eac6-6dde0e8f7783}\metin2mod_2011sf_10122013.exe] => (Block) C:\programdata\{eac6dde0-e8f5-2d84-eac6-6dde0e8f7783}\metin2mod_2011sf_10122013.exe FirewallRules: [TCP Query User{E2BDFA1D-50DD-4D7F-BBE5-3D9576BE3D75}C:\program files (x86)\common files\java\java update\jusched.exe] => (Allow) C:\program files (x86)\common files\java\java update\jusched.exe FirewallRules: [UDP Query User{50787CFE-D6BA-4C4D-87CC-46B94E1EA5EF}C:\program files (x86)\common files\java\java update\jusched.exe] => (Allow) C:\program files (x86)\common files\java\java update\jusched.exe FirewallRules: [{D66A9E32-E43E-4FA4-AA38-8E75473F9B28}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{9C176814-3A08-49ED-B628-19DB26EDDA52}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{5CDB9C76-8FD1-44F3-B298-6D9792DDE70C}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{827E5C58-5F18-458F-BA09-62B26C03D822}] => (Allow) D:\Programy\HTC\HTCSyncManager.exe FirewallRules: [{D7507421-D6E6-410D-B6F4-8A5557158EB0}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{21C29E08-8FB0-4C6E-BB27-E107999BB3EF}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{28C20036-4620-45E5-9110-C5CC523BEB5A}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{76996758-88F3-4B05-9B35-CA4E4AC87DC5}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E68673C7-ABD1-4176-A562-B9E850C37854}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{456C2A64-73DF-4AAE-9834-3F4E141C333E}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{18C26463-AD8B-4A42-96D6-F690186A8B0E}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\user\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{787E6850-741B-4F0B-BE35-F179412258B0}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\user\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{013C8BFC-76DA-439A-B27C-BA466D574EDC}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\user\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{47BACAE2-DABF-425F-AA94-CAF6C9C98300}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\user\appdata\local\akamai\netsession_win.exe FirewallRules: [{B517F0E9-80BC-4424-9EF4-C4E3DABD2CC7}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{E5269C47-95A9-4307-A7E7-A7183EE12588}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{03CBC563-AE12-4521-B22D-0AE723C40376}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe FirewallRules: [{965D47C0-A85C-46BF-A8F0-1B42A64CE703}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe FirewallRules: [TCP Query User{79CBD596-E57E-4BE5-857D-0E4E056BBE3A}D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe FirewallRules: [UDP Query User{E6D7E8DF-942E-4B1D-AAB6-2B62BA5AB155}D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe FirewallRules: [{02AE9B2B-0253-48D8-9D47-6474ED756B60}] => (Allow) D:\Steam\steamapps\common\Dead Island\DeadIslandGame.exe FirewallRules: [{00A4C55A-CB5F-4E64-B9C6-EAF58219D7FA}] => (Allow) D:\Steam\steamapps\common\Dead Island\DeadIslandGame.exe FirewallRules: [{34C9206D-083E-4DAC-B93A-8859E020CB9A}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{34B61281-85E3-43E6-B0D0-148603F8BFD2}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{62046A84-F465-4D8F-9036-0CBD8FB66D30}] => (Allow) D:\Programy\HTC\HTCSyncManager.exe FirewallRules: [TCP Query User{CA85ECC4-62DF-420D-8F08-667E7BD105D8}C:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe] => (Block) C:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe FirewallRules: [UDP Query User{49281FE0-86CC-4E70-A844-2EA34D0F0B17}C:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe] => (Block) C:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe FirewallRules: [TCP Query User{2828E6E2-573A-4D46-8542-50D02AE345B9}C:\programdata\mxskyperecorder\mxskyperecorder.exe] => (Block) C:\programdata\mxskyperecorder\mxskyperecorder.exe FirewallRules: [UDP Query User{A9F11954-EEEE-418A-AA04-F48EF34850AC}C:\programdata\mxskyperecorder\mxskyperecorder.exe] => (Block) C:\programdata\mxskyperecorder\mxskyperecorder.exe FirewallRules: [TCP Query User{8CAFAA22-CDA5-482F-8D1A-1FCF607E8AB8}C:\program files (x86)\avg\framework\common\avguix.exe] => (Allow) C:\program files (x86)\avg\framework\common\avguix.exe FirewallRules: [UDP Query User{F3A31D3B-3B7F-4162-9F13-D7308C74CFC2}C:\program files (x86)\avg\framework\common\avguix.exe] => (Allow) C:\program files (x86)\avg\framework\common\avguix.exe FirewallRules: [TCP Query User{89DC660A-20C1-49B9-9ECB-885E390D9E1F}C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\bootstrap.exe] => (Block) C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\bootstrap.exe FirewallRules: [UDP Query User{D05FFA74-E838-4567-953E-B5181C529147}C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\bootstrap.exe] => (Block) C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\bootstrap.exe FirewallRules: [TCP Query User{CEB52C13-BE3A-4B01-992A-6BC6869DDF42}C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\ismagent.exe] => (Block) C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\ismagent.exe FirewallRules: [UDP Query User{119E66B5-EED9-4370-B8D1-D03A0221802F}C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\ismagent.exe] => (Block) C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\ismagent.exe FirewallRules: [TCP Query User{8FD9995C-2421-42BE-B8CD-FBD158E6315C}C:\program files (x86)\avg\framework\common\avguix.exe] => (Block) C:\program files (x86)\avg\framework\common\avguix.exe FirewallRules: [UDP Query User{7D95F2F7-AFB9-4B8F-8DC3-C1F3B9D46063}C:\program files (x86)\avg\framework\common\avguix.exe] => (Block) C:\program files (x86)\avg\framework\common\avguix.exe FirewallRules: [TCP Query User{96AB12EB-39E6-40FD-804E-3E801EDE8937}C:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe] => (Block) C:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe FirewallRules: [UDP Query User{BA6DFC78-8927-484C-ADF5-D781E5049591}C:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe] => (Block) C:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe FirewallRules: [TCP Query User{9AC6DB42-1064-4310-9945-F63542F8244D}D:\gry\counter-strike 1.6 v23\hl.exe] => (Allow) D:\gry\counter-strike 1.6 v23\hl.exe FirewallRules: [UDP Query User{4B1C2EEF-A054-402B-ADDD-BF04B39F717F}D:\gry\counter-strike 1.6 v23\hl.exe] => (Allow) D:\gry\counter-strike 1.6 v23\hl.exe FirewallRules: [{0CD3A962-3AE7-4396-AC14-075CCFD4CDA8}] => (Allow) D:\Steam\steamapps\common\SKILL\DFUBG.exe FirewallRules: [{199F6C3D-3FC5-47E2-A72C-093862FE15BC}] => (Allow) D:\Steam\steamapps\common\SKILL\DFUBG.exe FirewallRules: [TCP Query User{9426C3BE-8A75-4BA8-A1CA-EC3627C5671C}D:\opera\launcher.exe] => (Block) D:\opera\launcher.exe FirewallRules: [UDP Query User{E1360CC8-64DD-468B-AAB8-185FF464C2D2}D:\opera\launcher.exe] => (Block) D:\opera\launcher.exe FirewallRules: [TCP Query User{AE8EFB37-D9F9-4331-B63D-FFA98710759A}C:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe] => (Block) C:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe FirewallRules: [UDP Query User{63058F63-5ABF-46E8-9ACD-E120DD485149}C:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe] => (Block) C:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe FirewallRules: [TCP Query User{D1E28814-A0EB-4045-9BE7-65721BB03236}D:\programy\htc\htc sync\adb.exe] => (Block) D:\programy\htc\htc sync\adb.exe FirewallRules: [UDP Query User{4C1805FD-7071-4058-891B-076017895171}D:\programy\htc\htc sync\adb.exe] => (Block) D:\programy\htc\htc sync\adb.exe FirewallRules: [TCP Query User{09DBEB20-60C9-469F-BFE5-ABC1A15C9C49}C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\ismagent.exe] => (Block) C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\ismagent.exe FirewallRules: [UDP Query User{054BDD44-A0AB-4164-A60E-56F5727F83BE}C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\ismagent.exe] => (Block) C:\program files (x86)\intel\intel(r) me fw recovery agent\bin\ismagent.exe FirewallRules: [TCP Query User{D1222778-60F5-44BE-9AB3-5D02A77AC2F0}C:\program files (x86)\avg web tuneup\vprot.exe] => (Block) C:\program files (x86)\avg web tuneup\vprot.exe FirewallRules: [UDP Query User{DCD2C4D6-D6D2-4A8B-BFAA-3EDF8B4E1DB3}C:\program files (x86)\avg web tuneup\vprot.exe] => (Block) C:\program files (x86)\avg web tuneup\vprot.exe FirewallRules: [TCP Query User{B3177172-2145-4A57-A260-0F505FFAD9FE}D:\gry\marinermt2.pl-09.04.2016\marinermt2.exe] => (Allow) D:\gry\marinermt2.pl-09.04.2016\marinermt2.exe FirewallRules: [UDP Query User{2B1288C3-7B95-4788-95E2-815B79EBE7A2}D:\gry\marinermt2.pl-09.04.2016\marinermt2.exe] => (Allow) D:\gry\marinermt2.pl-09.04.2016\marinermt2.exe FirewallRules: [TCP Query User{8D909C8D-269C-41A8-8190-4AF6E8A31128}D:\gry\marinermt2.pl-09.04.2016\marinermt2.exe] => (Allow) D:\gry\marinermt2.pl-09.04.2016\marinermt2.exe FirewallRules: [UDP Query User{1FB2FA66-C265-4931-A504-A3773B75B09A}D:\gry\marinermt2.pl-09.04.2016\marinermt2.exe] => (Allow) D:\gry\marinermt2.pl-09.04.2016\marinermt2.exe FirewallRules: [TCP Query User{7C39DE8F-5B2B-49B4-9B70-2DB882E2DF56}C:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe] => (Block) C:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe FirewallRules: [UDP Query User{5B60E6DD-46BE-44F3-B08C-BAA6BC17C00E}C:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe] => (Block) C:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe FirewallRules: [TCP Query User{CBC18004-A138-4444-B889-9B3BE932B71F}C:\programdata\mxskyperecorder\mxskyperecorder.exe] => (Block) C:\programdata\mxskyperecorder\mxskyperecorder.exe FirewallRules: [UDP Query User{84915125-4D5A-4819-B07F-69B092325590}C:\programdata\mxskyperecorder\mxskyperecorder.exe] => (Block) C:\programdata\mxskyperecorder\mxskyperecorder.exe FirewallRules: [TCP Query User{62A886D8-5874-4399-834D-74431886D25C}D:\gry\ateron2\ateron2\zzldjklhdf0dop12123009.exe] => (Allow) D:\gry\ateron2\ateron2\zzldjklhdf0dop12123009.exe FirewallRules: [UDP Query User{69B78D28-BA55-43EC-8B07-38121C19B423}D:\gry\ateron2\ateron2\zzldjklhdf0dop12123009.exe] => (Allow) D:\gry\ateron2\ateron2\zzldjklhdf0dop12123009.exe FirewallRules: [{6A0C0D9D-D709-482C-9ABC-4E77AEEF280C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{11BE43C0-F075-4493-8539-EA080295D0CF}] => (Allow) LPort=2869 FirewallRules: [{779E6CD9-3D69-4AA7-92B1-534D56C03432}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{5CE935A6-8CA9-43A4-843B-2C71447F36FA}C:\program files (x86)\avg web tuneup\vprot.exe] => (Block) C:\program files (x86)\avg web tuneup\vprot.exe FirewallRules: [UDP Query User{D7AB5012-DC28-4915-8BE2-9001B26CB06D}C:\program files (x86)\avg web tuneup\vprot.exe] => (Block) C:\program files (x86)\avg web tuneup\vprot.exe FirewallRules: [TCP Query User{1B568949-4E8A-4139-9508-CD8CA9483A9E}D:\gry\karty\battle.net\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe] => (Allow) D:\gry\karty\battle.net\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{E16BD9B3-CDE4-4A8C-BB7F-A073CBB664CE}D:\gry\karty\battle.net\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe] => (Allow) D:\gry\karty\battle.net\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{E58594A7-4844-4727-ABAF-493893A115A4}C:\program files (x86)\intel\intel(r) usb 3.0 extensible host controller driver\application\iusb3mon.exe] => (Allow) C:\program files (x86)\intel\intel(r) usb 3.0 extensible host controller driver\application\iusb3mon.exe FirewallRules: [UDP Query User{E64F1738-8D41-4C3F-ADA3-26DC2F3EBF90}C:\program files (x86)\intel\intel(r) usb 3.0 extensible host controller driver\application\iusb3mon.exe] => (Allow) C:\program files (x86)\intel\intel(r) usb 3.0 extensible host controller driver\application\iusb3mon.exe FirewallRules: [TCP Query User{BA5E1FD0-41A6-4F55-B66B-ED6D004982D1}D:\opera\38.0.2220.31\opera.exe] => (Block) D:\opera\38.0.2220.31\opera.exe FirewallRules: [UDP Query User{755576FA-EEF8-4A79-875B-B76121B1B9E9}D:\opera\38.0.2220.31\opera.exe] => (Block) D:\opera\38.0.2220.31\opera.exe FirewallRules: [TCP Query User{73DEF05F-CEE8-43FE-9399-E9A312AFF1C3}D:\opera\38.0.2220.31\opera.exe] => (Block) D:\opera\38.0.2220.31\opera.exe FirewallRules: [UDP Query User{86B35131-28AD-40F1-A8DF-225BE25BD25C}D:\opera\38.0.2220.31\opera.exe] => (Block) D:\opera\38.0.2220.31\opera.exe FirewallRules: [TCP Query User{E95D2D71-FCB0-4EF9-ADA8-F4D02C94E3FA}C:\users\user\appdata\local\temp\rvro.exe] => (Block) C:\users\user\appdata\local\temp\rvro.exe FirewallRules: [UDP Query User{19198A6A-8022-4CE5-805C-23165E092037}C:\users\user\appdata\local\temp\rvro.exe] => (Block) C:\users\user\appdata\local\temp\rvro.exe FirewallRules: [TCP Query User{E9D1A6DF-A5E1-43F7-A3DA-66408822420D}C:\users\user\appdata\local\temp\winmxge.exe] => (Block) C:\users\user\appdata\local\temp\winmxge.exe FirewallRules: [UDP Query User{023599E6-3E51-492E-A9C5-F70D9E93218D}C:\users\user\appdata\local\temp\winmxge.exe] => (Block) C:\users\user\appdata\local\temp\winmxge.exe FirewallRules: [TCP Query User{DFE2329E-EAFD-4DE8-9670-D71CB65CF83A}C:\users\user\appdata\local\temp\winwomd.exe] => (Block) C:\users\user\appdata\local\temp\winwomd.exe FirewallRules: [UDP Query User{8A5CEBD2-45D9-467E-ADDB-A71DEC5F7B89}C:\users\user\appdata\local\temp\winwomd.exe] => (Block) C:\users\user\appdata\local\temp\winwomd.exe FirewallRules: [TCP Query User{42FD3A49-2918-4185-8163-2063161955E8}C:\users\user\appdata\local\temp\winfaywsh.exe] => (Block) C:\users\user\appdata\local\temp\winfaywsh.exe FirewallRules: [UDP Query User{7E81174A-5F0C-457D-AB38-22C781AB6608}C:\users\user\appdata\local\temp\winfaywsh.exe] => (Block) C:\users\user\appdata\local\temp\winfaywsh.exe FirewallRules: [TCP Query User{89FCA98E-07F8-45A7-AAD5-97D66FFA29EF}C:\users\user\appdata\local\temp\winwefm.exe] => (Allow) C:\users\user\appdata\local\temp\winwefm.exe FirewallRules: [UDP Query User{AFBAEF1A-94F9-423B-ADF2-714A20CDB5A5}C:\users\user\appdata\local\temp\winwefm.exe] => (Allow) C:\users\user\appdata\local\temp\winwefm.exe FirewallRules: [TCP Query User{3C13E3B5-4965-4273-AE25-B8817336F7CF}C:\users\user\appdata\local\temp\baetb.exe] => (Block) C:\users\user\appdata\local\temp\baetb.exe FirewallRules: [UDP Query User{D1CC56DE-2475-40F8-AAB1-18E18A4171BE}C:\users\user\appdata\local\temp\baetb.exe] => (Block) C:\users\user\appdata\local\temp\baetb.exe FirewallRules: [TCP Query User{63376A2A-9DA6-4002-AD2F-CE5D6CEF0FE2}C:\users\user\appdata\local\temp\newjj.exe] => (Block) C:\users\user\appdata\local\temp\newjj.exe FirewallRules: [UDP Query User{CD08D9C7-F39A-484A-9D74-AED2E574238A}C:\users\user\appdata\local\temp\newjj.exe] => (Block) C:\users\user\appdata\local\temp\newjj.exe FirewallRules: [TCP Query User{D6E82170-2C10-4E0E-B19B-3A5EE5FF789C}C:\users\user\appdata\local\temp\winmgpv.exe] => (Block) C:\users\user\appdata\local\temp\winmgpv.exe FirewallRules: [UDP Query User{24E2EC56-D82A-4593-8424-C75C5270A7B6}C:\users\user\appdata\local\temp\winmgpv.exe] => (Block) C:\users\user\appdata\local\temp\winmgpv.exe FirewallRules: [TCP Query User{65645691-F923-4412-A36D-14DE15C0942F}C:\users\user\appdata\local\temp\winhwdydr.exe] => (Block) C:\users\user\appdata\local\temp\winhwdydr.exe FirewallRules: [UDP Query User{345DF430-6741-439D-BD83-EACAA3B5EFE5}C:\users\user\appdata\local\temp\winhwdydr.exe] => (Block) C:\users\user\appdata\local\temp\winhwdydr.exe FirewallRules: [TCP Query User{6731530E-EE14-491D-B0BD-D615F847B5C1}C:\users\user\appdata\local\temp\nrmfx.exe] => (Block) C:\users\user\appdata\local\temp\nrmfx.exe FirewallRules: [UDP Query User{42FF65C2-3907-4321-BB61-17E749961D3D}C:\users\user\appdata\local\temp\nrmfx.exe] => (Block) C:\users\user\appdata\local\temp\nrmfx.exe FirewallRules: [TCP Query User{DB8E75A1-1EF5-4106-BF5A-7D228B0DBEF1}C:\users\user\appdata\local\temp\botd.exe] => (Block) C:\users\user\appdata\local\temp\botd.exe FirewallRules: [UDP Query User{25B663A7-B167-43E9-8C6C-810672146782}C:\users\user\appdata\local\temp\botd.exe] => (Block) C:\users\user\appdata\local\temp\botd.exe FirewallRules: [TCP Query User{BA684733-3B23-4CD4-BD93-C10ED965B210}C:\users\user\appdata\local\temp\vmhuqg.exe] => (Block) C:\users\user\appdata\local\temp\vmhuqg.exe FirewallRules: [UDP Query User{67076C5C-336E-4A3D-9962-248AD6990CCE}C:\users\user\appdata\local\temp\vmhuqg.exe] => (Block) C:\users\user\appdata\local\temp\vmhuqg.exe FirewallRules: [TCP Query User{35B88CF0-C200-4E9E-82EB-C36AB75E91A5}C:\users\user\appdata\local\temp\yvuseu.exe] => (Block) C:\users\user\appdata\local\temp\yvuseu.exe FirewallRules: [UDP Query User{851C0DBC-F876-4849-9A2D-9349C361883D}C:\users\user\appdata\local\temp\yvuseu.exe] => (Block) C:\users\user\appdata\local\temp\yvuseu.exe FirewallRules: [TCP Query User{7826267E-6A4C-4E9C-AE42-1B9ECDA31472}C:\users\user\appdata\local\temp\sdoloe.exe] => (Block) C:\users\user\appdata\local\temp\sdoloe.exe FirewallRules: [UDP Query User{1F131181-F592-4819-9788-9AB7277FA355}C:\users\user\appdata\local\temp\sdoloe.exe] => (Block) C:\users\user\appdata\local\temp\sdoloe.exe FirewallRules: [TCP Query User{A904D7FF-A565-4D84-A16F-95A0329CA391}C:\users\user\appdata\local\temp\pvxpx.exe] => (Block) C:\users\user\appdata\local\temp\pvxpx.exe FirewallRules: [UDP Query User{46C7772B-9935-4983-B1D7-F768897103B2}C:\users\user\appdata\local\temp\pvxpx.exe] => (Block) C:\users\user\appdata\local\temp\pvxpx.exe FirewallRules: [TCP Query User{6A80B581-B91B-49DF-AA7F-C9676FCB431C}C:\users\user\appdata\local\temp\pljkj.exe] => (Block) C:\users\user\appdata\local\temp\pljkj.exe FirewallRules: [UDP Query User{E18B1659-7909-4F5B-8B57-2684B534394A}C:\users\user\appdata\local\temp\pljkj.exe] => (Block) C:\users\user\appdata\local\temp\pljkj.exe FirewallRules: [TCP Query User{CA1E0ABE-FA4A-4C82-A5FC-B90B0BB2085C}C:\users\user\appdata\local\temp\winsdiu.exe] => (Block) C:\users\user\appdata\local\temp\winsdiu.exe FirewallRules: [UDP Query User{AC6DFD87-4F02-468A-8F59-442BDDC36304}C:\users\user\appdata\local\temp\winsdiu.exe] => (Block) C:\users\user\appdata\local\temp\winsdiu.exe FirewallRules: [TCP Query User{4E5B6D91-7B1E-4B85-B705-7B7A373DDB15}C:\users\user\appdata\local\temp\winltmxaj.exe] => (Block) C:\users\user\appdata\local\temp\winltmxaj.exe FirewallRules: [UDP Query User{039F19F6-BCD8-42DA-B0A2-AC147C403361}C:\users\user\appdata\local\temp\winltmxaj.exe] => (Block) C:\users\user\appdata\local\temp\winltmxaj.exe FirewallRules: [TCP Query User{2D6E3A7B-50C0-480E-A1CE-7F8B3C1D1395}C:\users\user\appdata\local\temp\winhwvh.exe] => (Block) C:\users\user\appdata\local\temp\winhwvh.exe FirewallRules: [UDP Query User{27CB25B1-3DDC-48A2-BBA7-90AD4CADC480}C:\users\user\appdata\local\temp\winhwvh.exe] => (Block) C:\users\user\appdata\local\temp\winhwvh.exe FirewallRules: [TCP Query User{A70A221D-ACA2-473A-AA7D-D208D2407DAA}C:\users\user\appdata\local\temp\celk.exe] => (Block) C:\users\user\appdata\local\temp\celk.exe FirewallRules: [UDP Query User{5AC6CAD0-DF8F-47FF-95A7-37C623238656}C:\users\user\appdata\local\temp\celk.exe] => (Block) C:\users\user\appdata\local\temp\celk.exe FirewallRules: [TCP Query User{E56472A7-C460-4791-BFD5-1A8FAE8E9666}C:\users\user\appdata\local\temp\viqm.exe] => (Block) C:\users\user\appdata\local\temp\viqm.exe FirewallRules: [UDP Query User{3D291E8A-2F0B-42C4-A4F6-4B7BF8B611B8}C:\users\user\appdata\local\temp\viqm.exe] => (Block) C:\users\user\appdata\local\temp\viqm.exe FirewallRules: [TCP Query User{96A43BB1-F183-41C9-9309-D6FA6A8C737B}C:\users\user\appdata\local\temp\windjkp.exe] => (Block) C:\users\user\appdata\local\temp\windjkp.exe FirewallRules: [UDP Query User{79050CDD-859A-4392-8EB5-AEA4F4889447}C:\users\user\appdata\local\temp\windjkp.exe] => (Block) C:\users\user\appdata\local\temp\windjkp.exe FirewallRules: [TCP Query User{A0036787-DD97-45F6-9DD4-3B4A858DAD2B}C:\users\user\appdata\local\temp\winoekxad.exe] => (Block) C:\users\user\appdata\local\temp\winoekxad.exe FirewallRules: [UDP Query User{9F120FA4-5A71-415A-B495-0B90E8C58F0A}C:\users\user\appdata\local\temp\winoekxad.exe] => (Block) C:\users\user\appdata\local\temp\winoekxad.exe FirewallRules: [TCP Query User{B9CEFB43-EDC7-4C74-9AD7-9E2CD3AE1E52}C:\users\user\appdata\local\temp\gecfud.exe] => (Block) C:\users\user\appdata\local\temp\gecfud.exe FirewallRules: [UDP Query User{57B0343A-DDD7-40B8-9943-693AF04B9C84}C:\users\user\appdata\local\temp\gecfud.exe] => (Block) C:\users\user\appdata\local\temp\gecfud.exe FirewallRules: [TCP Query User{8BA106CB-7352-424A-9E4D-B327DE72F383}C:\users\user\appdata\local\temp\eein.exe] => (Block) C:\users\user\appdata\local\temp\eein.exe FirewallRules: [UDP Query User{D5A3B0EC-261A-471D-BDFE-A32FA005C6BF}C:\users\user\appdata\local\temp\eein.exe] => (Block) C:\users\user\appdata\local\temp\eein.exe FirewallRules: [TCP Query User{335B96D5-AA43-4F92-BDF1-4E01D92713DC}C:\users\user\appdata\local\temp\lwlh.exe] => (Block) C:\users\user\appdata\local\temp\lwlh.exe FirewallRules: [UDP Query User{C22C906E-78AC-4B7A-8617-1F4E923564B3}C:\users\user\appdata\local\temp\lwlh.exe] => (Block) C:\users\user\appdata\local\temp\lwlh.exe FirewallRules: [TCP Query User{9865261A-D733-4EDC-AA70-A367D391C346}C:\users\user\appdata\local\temp\winqxioi.exe] => (Block) C:\users\user\appdata\local\temp\winqxioi.exe FirewallRules: [UDP Query User{C391AB15-4B8B-4C3D-909C-7B01D8BC016B}C:\users\user\appdata\local\temp\winqxioi.exe] => (Block) C:\users\user\appdata\local\temp\winqxioi.exe FirewallRules: [TCP Query User{29AEBF91-804F-47B8-9F3D-F20743045747}C:\users\user\appdata\local\temp\pkhgij.exe] => (Block) C:\users\user\appdata\local\temp\pkhgij.exe FirewallRules: [UDP Query User{DA0AC4F2-5006-4C19-8975-D1F2E1504895}C:\users\user\appdata\local\temp\pkhgij.exe] => (Block) C:\users\user\appdata\local\temp\pkhgij.exe FirewallRules: [TCP Query User{CF6E69DE-D7C0-4C98-AEC5-078FDC4AA40E}C:\users\user\appdata\local\temp\winyqbfxj.exe] => (Block) C:\users\user\appdata\local\temp\winyqbfxj.exe FirewallRules: [UDP Query User{592F6355-3119-4597-8D5E-979C1B4F3C2B}C:\users\user\appdata\local\temp\winyqbfxj.exe] => (Block) C:\users\user\appdata\local\temp\winyqbfxj.exe FirewallRules: [TCP Query User{F1781381-B907-46CF-B9A5-6EDB5FB66AB3}C:\users\user\appdata\local\temp\ebmh.exe] => (Block) C:\users\user\appdata\local\temp\ebmh.exe FirewallRules: [UDP Query User{17494445-237C-4258-87DF-BA0478D65922}C:\users\user\appdata\local\temp\ebmh.exe] => (Block) C:\users\user\appdata\local\temp\ebmh.exe FirewallRules: [TCP Query User{5FA9B663-1666-4EC8-8FBE-F9859C3C2335}C:\users\user\appdata\local\temp\nfkwxo.exe] => (Block) C:\users\user\appdata\local\temp\nfkwxo.exe FirewallRules: [UDP Query User{92BC7561-7F31-4535-A8F7-A71B02075C1B}C:\users\user\appdata\local\temp\nfkwxo.exe] => (Block) C:\users\user\appdata\local\temp\nfkwxo.exe FirewallRules: [TCP Query User{0E270546-BB2B-4BD6-B3A7-97F3D4F24B4C}C:\users\user\appdata\local\temp\winlexg.exe] => (Block) C:\users\user\appdata\local\temp\winlexg.exe FirewallRules: [UDP Query User{CBB6CD57-874E-43DA-B7DC-1D849185ADF6}C:\users\user\appdata\local\temp\winlexg.exe] => (Block) C:\users\user\appdata\local\temp\winlexg.exe FirewallRules: [TCP Query User{28F6F60A-2651-4471-8070-D1373F9EC401}C:\users\user\appdata\local\temp\cjtqwl.exe] => (Block) C:\users\user\appdata\local\temp\cjtqwl.exe FirewallRules: [UDP Query User{D1A4FA21-62BF-492B-A655-EAF399796563}C:\users\user\appdata\local\temp\cjtqwl.exe] => (Block) C:\users\user\appdata\local\temp\cjtqwl.exe FirewallRules: [TCP Query User{13B830A3-27EE-4E53-9651-34FEEC2C8B88}C:\users\user\appdata\local\temp\winvbcxqa.exe] => (Block) C:\users\user\appdata\local\temp\winvbcxqa.exe FirewallRules: [UDP Query User{0C93E9CF-7CE3-4233-ABC5-76C3C4F30D43}C:\users\user\appdata\local\temp\winvbcxqa.exe] => (Block) C:\users\user\appdata\local\temp\winvbcxqa.exe FirewallRules: [TCP Query User{8497C5A2-1CEC-4FB9-8978-C6A03C17BE91}C:\users\user\appdata\local\temp\dxrvx.exe] => (Block) C:\users\user\appdata\local\temp\dxrvx.exe FirewallRules: [UDP Query User{EB51D78E-AA96-4918-A3D6-C25A9065DDA6}C:\users\user\appdata\local\temp\dxrvx.exe] => (Block) C:\users\user\appdata\local\temp\dxrvx.exe FirewallRules: [TCP Query User{BC89E805-9460-4FEE-B149-9C55FC6B7314}C:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe] => (Block) C:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe FirewallRules: [UDP Query User{D789FD3A-99EB-4403-9FFF-BA12513AA686}C:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe] => (Block) C:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe FirewallRules: [TCP Query User{AD5E3052-5A4B-4275-8694-6663BCE30885}C:\users\user\appdata\local\temp\winsfss.exe] => (Block) C:\users\user\appdata\local\temp\winsfss.exe FirewallRules: [UDP Query User{DB8E6DD0-86C5-4472-B27F-5CAEDF67A1A0}C:\users\user\appdata\local\temp\winsfss.exe] => (Block) C:\users\user\appdata\local\temp\winsfss.exe FirewallRules: [TCP Query User{01CC3EE9-07F1-48EA-BB8A-646EFF85412E}C:\users\user\appdata\local\temp\winiahgu.exe] => (Block) C:\users\user\appdata\local\temp\winiahgu.exe FirewallRules: [UDP Query User{2E4460F2-4720-42ED-9B78-11A451EDE353}C:\users\user\appdata\local\temp\winiahgu.exe] => (Block) C:\users\user\appdata\local\temp\winiahgu.exe FirewallRules: [TCP Query User{00AE39EE-3E16-4876-96BC-BE9847AD89E7}C:\users\user\appdata\local\temp\winbcorsf.exe] => (Block) C:\users\user\appdata\local\temp\winbcorsf.exe FirewallRules: [UDP Query User{979B4B81-E08E-4847-8ED3-401CD0D8C5BC}C:\users\user\appdata\local\temp\winbcorsf.exe] => (Block) C:\users\user\appdata\local\temp\winbcorsf.exe FirewallRules: [TCP Query User{75914A90-F07D-4E29-9C4F-29F539C69ACD}C:\users\user\appdata\local\temp\winattetb.exe] => (Block) C:\users\user\appdata\local\temp\winattetb.exe FirewallRules: [UDP Query User{C7C29706-4400-4E97-A52A-8AAF3074ACE7}C:\users\user\appdata\local\temp\winattetb.exe] => (Block) C:\users\user\appdata\local\temp\winattetb.exe FirewallRules: [TCP Query User{3AD880BF-306C-4486-9D32-A8D92AF72FDF}C:\users\user\appdata\local\temp\hsserv.exe] => (Block) C:\users\user\appdata\local\temp\hsserv.exe FirewallRules: [UDP Query User{C326EAFE-D344-43C8-A4F9-911396722F97}C:\users\user\appdata\local\temp\hsserv.exe] => (Block) C:\users\user\appdata\local\temp\hsserv.exe FirewallRules: [TCP Query User{5C31B2F2-68CF-4A4A-A369-9CA95EB915F1}C:\users\user\appdata\local\temp\winwjtf.exe] => (Block) C:\users\user\appdata\local\temp\winwjtf.exe FirewallRules: [UDP Query User{972788C3-DC22-4362-AEC2-8F84139581F3}C:\users\user\appdata\local\temp\winwjtf.exe] => (Block) C:\users\user\appdata\local\temp\winwjtf.exe FirewallRules: [TCP Query User{3E122032-DB52-4995-82BD-7F32655F85BB}C:\users\user\appdata\local\temp\ldglpg.exe] => (Block) C:\users\user\appdata\local\temp\ldglpg.exe FirewallRules: [UDP Query User{98610FEB-E6B5-4446-881A-DBD129101408}C:\users\user\appdata\local\temp\ldglpg.exe] => (Block) C:\users\user\appdata\local\temp\ldglpg.exe FirewallRules: [TCP Query User{8CB2DF02-1FF1-4BD5-9AD8-9910742BDDA7}C:\users\user\appdata\local\temp\winnslvcc.exe] => (Block) C:\users\user\appdata\local\temp\winnslvcc.exe FirewallRules: [UDP Query User{CD9023E1-DA33-4A13-8B61-D18CBF1E9D51}C:\users\user\appdata\local\temp\winnslvcc.exe] => (Block) C:\users\user\appdata\local\temp\winnslvcc.exe FirewallRules: [TCP Query User{8BE06334-D803-47BF-B439-9C43357CF002}C:\users\user\appdata\local\temp\winrtoy.exe] => (Block) C:\users\user\appdata\local\temp\winrtoy.exe FirewallRules: [UDP Query User{15C05822-5795-4B97-AEFE-B3BFF41D96D0}C:\users\user\appdata\local\temp\winrtoy.exe] => (Block) C:\users\user\appdata\local\temp\winrtoy.exe FirewallRules: [TCP Query User{01E1ECEC-5DFD-4E00-92EE-4FD4102CD63C}C:\users\user\appdata\local\temp\xqxk.exe] => (Block) C:\users\user\appdata\local\temp\xqxk.exe FirewallRules: [UDP Query User{BBDF11E6-7931-4546-947E-22E82EC10DAA}C:\users\user\appdata\local\temp\xqxk.exe] => (Block) C:\users\user\appdata\local\temp\xqxk.exe FirewallRules: [TCP Query User{4EB1F8D7-88CF-4DCF-859B-499E37DA1719}C:\users\user\appdata\local\temp\wintneoms.exe] => (Block) C:\users\user\appdata\local\temp\wintneoms.exe FirewallRules: [UDP Query User{97888043-C78E-4548-9145-E896166BD67D}C:\users\user\appdata\local\temp\wintneoms.exe] => (Block) C:\users\user\appdata\local\temp\wintneoms.exe FirewallRules: [TCP Query User{10016ADD-5A63-44D8-BDBA-F30C72ACE8ED}C:\users\user\appdata\local\temp\fdsmp.exe] => (Block) C:\users\user\appdata\local\temp\fdsmp.exe FirewallRules: [UDP Query User{DF745B2E-5682-4062-B9AE-E8A1DA459C77}C:\users\user\appdata\local\temp\fdsmp.exe] => (Block) C:\users\user\appdata\local\temp\fdsmp.exe FirewallRules: [TCP Query User{EE2DB584-92B4-4961-AFDB-A1707F1F2DA6}C:\users\user\appdata\local\temp\winilxq.exe] => (Block) C:\users\user\appdata\local\temp\winilxq.exe FirewallRules: [UDP Query User{AC952A39-EFAF-4C7C-AF96-A7F4B7B8BF27}C:\users\user\appdata\local\temp\winilxq.exe] => (Block) C:\users\user\appdata\local\temp\winilxq.exe FirewallRules: [TCP Query User{EBC4C2F4-2180-42B1-BF38-D55438C44CFD}C:\users\user\appdata\local\temp\dlhrr.exe] => (Block) C:\users\user\appdata\local\temp\dlhrr.exe FirewallRules: [UDP Query User{1FF78E90-3050-4845-B26B-059646DFBCFC}C:\users\user\appdata\local\temp\dlhrr.exe] => (Block) C:\users\user\appdata\local\temp\dlhrr.exe FirewallRules: [TCP Query User{FE116246-EFFA-4EC8-B89B-6614DE021BBF}C:\users\user\appdata\local\temp\winjoiq.exe] => (Block) C:\users\user\appdata\local\temp\winjoiq.exe FirewallRules: [UDP Query User{988A7EC0-61F1-443F-B07E-8BBE70787E1C}C:\users\user\appdata\local\temp\winjoiq.exe] => (Block) C:\users\user\appdata\local\temp\winjoiq.exe FirewallRules: [TCP Query User{BCB866A2-D5B3-4B5F-85A1-073743D9E54B}D:\opera\38.0.2220.41\opera.exe] => (Block) D:\opera\38.0.2220.41\opera.exe FirewallRules: [UDP Query User{9B2EA608-FA88-42D7-814D-145F079A9FE6}D:\opera\38.0.2220.41\opera.exe] => (Block) D:\opera\38.0.2220.41\opera.exe FirewallRules: [TCP Query User{58A35AA0-2AAD-4AF8-A90D-437B0298CA21}C:\users\user\appdata\local\temp\winqbrqqi.exe] => (Block) C:\users\user\appdata\local\temp\winqbrqqi.exe FirewallRules: [UDP Query User{AF850EC3-8296-4F6E-973F-4781B6648CAE}C:\users\user\appdata\local\temp\winqbrqqi.exe] => (Block) C:\users\user\appdata\local\temp\winqbrqqi.exe FirewallRules: [TCP Query User{AB7643BE-27C1-4253-8544-DFEB849BA4DC}C:\users\user\appdata\local\temp\hhev.exe] => (Block) C:\users\user\appdata\local\temp\hhev.exe FirewallRules: [UDP Query User{04FC1362-13F9-4F63-A92A-483E7F78870F}C:\users\user\appdata\local\temp\hhev.exe] => (Block) C:\users\user\appdata\local\temp\hhev.exe FirewallRules: [TCP Query User{70A74F66-994D-4787-ACAF-4F9C0D71DAAE}C:\users\user\appdata\local\temp\winygnt.exe] => (Block) C:\users\user\appdata\local\temp\winygnt.exe FirewallRules: [UDP Query User{C4D91F22-66C1-4038-B8FB-34D82130EC64}C:\users\user\appdata\local\temp\winygnt.exe] => (Block) C:\users\user\appdata\local\temp\winygnt.exe FirewallRules: [TCP Query User{0ED74756-BAB3-4C20-9E28-67CA3B9F4E4A}C:\users\user\appdata\local\temp\winmoflpo.exe] => (Block) C:\users\user\appdata\local\temp\winmoflpo.exe FirewallRules: [UDP Query User{71B4523C-13B0-4103-BF96-16DD8AF02595}C:\users\user\appdata\local\temp\winmoflpo.exe] => (Block) C:\users\user\appdata\local\temp\winmoflpo.exe FirewallRules: [TCP Query User{E7204E49-F68A-45FF-9FA5-0B2134FB41B4}D:\opera\38.0.2220.41\opera_autoupdate.exe] => (Block) D:\opera\38.0.2220.41\opera_autoupdate.exe FirewallRules: [UDP Query User{A720B748-C650-41EE-8F59-9F00B6495EC4}D:\opera\38.0.2220.41\opera_autoupdate.exe] => (Block) D:\opera\38.0.2220.41\opera_autoupdate.exe FirewallRules: [TCP Query User{FD6DA8FD-DE9B-410D-A3CB-6AB7FB7A2DEC}C:\users\user\appdata\local\temp\winpwri.exe] => (Block) C:\users\user\appdata\local\temp\winpwri.exe FirewallRules: [UDP Query User{226C9735-E3B6-46E7-B663-20419E413F35}C:\users\user\appdata\local\temp\winpwri.exe] => (Block) C:\users\user\appdata\local\temp\winpwri.exe FirewallRules: [TCP Query User{EBD95717-9E4E-4474-96EB-8B1F30CE72F4}C:\users\user\appdata\local\temp\winkighmq.exe] => (Block) C:\users\user\appdata\local\temp\winkighmq.exe FirewallRules: [UDP Query User{E199949A-9695-44FF-8517-13F8554DF754}C:\users\user\appdata\local\temp\winkighmq.exe] => (Block) C:\users\user\appdata\local\temp\winkighmq.exe FirewallRules: [TCP Query User{1B6A5FBD-BD24-4144-AA90-3EBBD910B9EB}C:\users\user\appdata\local\temp\xwnijy.exe] => (Block) C:\users\user\appdata\local\temp\xwnijy.exe FirewallRules: [UDP Query User{E5EA38B3-1223-422C-9ABA-3DE5B39BF418}C:\users\user\appdata\local\temp\xwnijy.exe] => (Block) C:\users\user\appdata\local\temp\xwnijy.exe FirewallRules: [TCP Query User{2B1827ED-EBA9-44DE-BD1B-336A360B6EB6}C:\users\user\appdata\local\temp\winbmbi.exe] => (Block) C:\users\user\appdata\local\temp\winbmbi.exe FirewallRules: [UDP Query User{EF0F5A11-94CF-499C-B3B3-2CB0A037521A}C:\users\user\appdata\local\temp\winbmbi.exe] => (Block) C:\users\user\appdata\local\temp\winbmbi.exe FirewallRules: [TCP Query User{6B1B14A2-C4A9-4B3E-80F5-5B0B76B30E34}C:\users\user\appdata\local\temp\nhspgn.exe] => (Block) C:\users\user\appdata\local\temp\nhspgn.exe FirewallRules: [UDP Query User{8DEF159C-F666-4D15-891A-79B1679ED4B8}C:\users\user\appdata\local\temp\nhspgn.exe] => (Block) C:\users\user\appdata\local\temp\nhspgn.exe FirewallRules: [TCP Query User{E4C536B5-AEB5-4EE8-9528-5577D534BBA2}C:\users\user\appdata\local\temp\winujgts.exe] => (Block) C:\users\user\appdata\local\temp\winujgts.exe FirewallRules: [UDP Query User{8FF1C7E5-8769-4CEF-BD04-BFA9C9F1F689}C:\users\user\appdata\local\temp\winujgts.exe] => (Block) C:\users\user\appdata\local\temp\winujgts.exe FirewallRules: [TCP Query User{4D35FF71-9225-40FA-A7CF-634B134B16E7}C:\users\user\appdata\local\temp\mobvgk.exe] => (Block) C:\users\user\appdata\local\temp\mobvgk.exe FirewallRules: [UDP Query User{44FAD241-33E5-449B-ACFD-E20F3C42262E}C:\users\user\appdata\local\temp\mobvgk.exe] => (Block) C:\users\user\appdata\local\temp\mobvgk.exe FirewallRules: [TCP Query User{F7056F8F-2857-4E66-A6CF-A1D2A8B34274}C:\program files (x86)\common files\java\java update\jucheck.exe] => (Block) C:\program files (x86)\common files\java\java update\jucheck.exe FirewallRules: [UDP Query User{F39EB1FC-5B7C-4358-8350-593F84A518C0}C:\program files (x86)\common files\java\java update\jucheck.exe] => (Block) C:\program files (x86)\common files\java\java update\jucheck.exe FirewallRules: [TCP Query User{F209E4D4-5189-437E-81B7-E4BCAC33543E}C:\users\user\appdata\local\temp\winauey.exe] => (Block) C:\users\user\appdata\local\temp\winauey.exe FirewallRules: [UDP Query User{721173A0-3DFC-4857-9154-E0D29F483F39}C:\users\user\appdata\local\temp\winauey.exe] => (Block) C:\users\user\appdata\local\temp\winauey.exe FirewallRules: [TCP Query User{9537B1EC-9AD0-4961-8160-602B7DA526F7}C:\users\user\appdata\local\temp\winlofp.exe] => (Block) C:\users\user\appdata\local\temp\winlofp.exe FirewallRules: [UDP Query User{F02C5AAC-C2FE-447E-BA88-74DCCEF76C9E}C:\users\user\appdata\local\temp\winlofp.exe] => (Block) C:\users\user\appdata\local\temp\winlofp.exe FirewallRules: [TCP Query User{17DEF360-6838-44FD-899B-3E233C822B7E}C:\users\user\appdata\local\temp\uvqqxf.exe] => (Block) C:\users\user\appdata\local\temp\uvqqxf.exe FirewallRules: [UDP Query User{056A8FB5-24B8-48F5-BE6D-F22A665873B4}C:\users\user\appdata\local\temp\uvqqxf.exe] => (Block) C:\users\user\appdata\local\temp\uvqqxf.exe FirewallRules: [TCP Query User{517D2CDA-8E42-4667-B571-DF858260F1E0}C:\users\user\appdata\local\temp\winvmyus.exe] => (Block) C:\users\user\appdata\local\temp\winvmyus.exe FirewallRules: [UDP Query User{3B6F16C4-962C-4D20-B202-CB9C76172313}C:\users\user\appdata\local\temp\winvmyus.exe] => (Block) C:\users\user\appdata\local\temp\winvmyus.exe FirewallRules: [TCP Query User{DF6CEF03-7757-4B2D-9EF5-111219A320DB}C:\users\user\appdata\local\temp\kijapg.exe] => (Block) C:\users\user\appdata\local\temp\kijapg.exe FirewallRules: [UDP Query User{E3E0047E-EC2E-4284-AFCB-59EF64B6DA3D}C:\users\user\appdata\local\temp\kijapg.exe] => (Block) C:\users\user\appdata\local\temp\kijapg.exe FirewallRules: [TCP Query User{A4A90428-9B8F-4919-A27D-2294E5148DA3}C:\users\user\appdata\local\temp\dcgge.exe] => (Block) C:\users\user\appdata\local\temp\dcgge.exe FirewallRules: [UDP Query User{69FF1C8F-575D-4A59-A29C-08F9A4D5F098}C:\users\user\appdata\local\temp\dcgge.exe] => (Block) C:\users\user\appdata\local\temp\dcgge.exe FirewallRules: [TCP Query User{178D8F9B-C34D-4E53-9840-524D412E0EFB}C:\users\user\appdata\local\temp\winmphdf.exe] => (Block) C:\users\user\appdata\local\temp\winmphdf.exe FirewallRules: [UDP Query User{C18C22F8-0385-4462-B6E7-50D25C13E738}C:\users\user\appdata\local\temp\winmphdf.exe] => (Block) C:\users\user\appdata\local\temp\winmphdf.exe FirewallRules: [TCP Query User{D48C9775-335E-4E08-AD44-95CE5E51CFE1}C:\users\user\appdata\local\temp\bses.exe] => (Block) C:\users\user\appdata\local\temp\bses.exe FirewallRules: [UDP Query User{BB5F301F-4792-4321-B623-D59A1326B130}C:\users\user\appdata\local\temp\bses.exe] => (Block) C:\users\user\appdata\local\temp\bses.exe FirewallRules: [TCP Query User{AF1E99EB-1B4F-4A01-9C30-DAB7F49C405F}C:\users\user\appdata\local\temp\aiuijb.exe] => (Block) C:\users\user\appdata\local\temp\aiuijb.exe FirewallRules: [UDP Query User{C766E728-A330-4BDE-A106-A2DA5B8393D3}C:\users\user\appdata\local\temp\aiuijb.exe] => (Block) C:\users\user\appdata\local\temp\aiuijb.exe FirewallRules: [TCP Query User{CB781EC3-3298-4BEF-BFF3-5B21CD3CBF1A}C:\users\user\appdata\local\temp\winaafqkr.exe] => (Block) C:\users\user\appdata\local\temp\winaafqkr.exe FirewallRules: [UDP Query User{F0ED8615-EF6C-450F-B643-162371FD11AC}C:\users\user\appdata\local\temp\winaafqkr.exe] => (Block) C:\users\user\appdata\local\temp\winaafqkr.exe FirewallRules: [TCP Query User{5C311984-B673-41B0-982C-06BEE1EA3906}C:\users\user\appdata\local\temp\wingbga.exe] => (Block) C:\users\user\appdata\local\temp\wingbga.exe FirewallRules: [UDP Query User{007E2331-859E-4E02-A73F-C73DEBC297F4}C:\users\user\appdata\local\temp\wingbga.exe] => (Block) C:\users\user\appdata\local\temp\wingbga.exe FirewallRules: [TCP Query User{188F4D35-AC9A-432D-AD8E-E271A3E637C4}C:\users\user\appdata\local\temp\qnqurp.exe] => (Block) C:\users\user\appdata\local\temp\qnqurp.exe FirewallRules: [UDP Query User{88BDD3C8-81A6-48D0-9CA2-EF5CA90E7158}C:\users\user\appdata\local\temp\qnqurp.exe] => (Block) C:\users\user\appdata\local\temp\qnqurp.exe FirewallRules: [TCP Query User{892565A7-65F8-4AA1-A55E-43ED37B79BB9}C:\users\user\appdata\local\temp\granjc.exe] => (Block) C:\users\user\appdata\local\temp\granjc.exe FirewallRules: [UDP Query User{DC13231C-68DF-43E1-AB5E-3FE48D0A1F0C}C:\users\user\appdata\local\temp\granjc.exe] => (Block) C:\users\user\appdata\local\temp\granjc.exe FirewallRules: [TCP Query User{3F689C68-0A52-47E6-8AFE-A2D9B7CA9B75}C:\users\user\appdata\local\temp\winhlqsn.exe] => (Block) C:\users\user\appdata\local\temp\winhlqsn.exe FirewallRules: [UDP Query User{0B84D4C4-0027-4294-974D-F6ADF26D162A}C:\users\user\appdata\local\temp\winhlqsn.exe] => (Block) C:\users\user\appdata\local\temp\winhlqsn.exe FirewallRules: [TCP Query User{E506437D-E516-4CA1-A8CF-77BD90509AC1}C:\users\user\appdata\local\temp\winmouiot.exe] => (Block) C:\users\user\appdata\local\temp\winmouiot.exe FirewallRules: [UDP Query User{58B14416-7558-414B-8EDD-6965AEE059E8}C:\users\user\appdata\local\temp\winmouiot.exe] => (Block) C:\users\user\appdata\local\temp\winmouiot.exe FirewallRules: [TCP Query User{06FCD3AD-BB16-4920-8195-C5850A25C1D9}C:\users\user\appdata\local\temp\winjjvi.exe] => (Block) C:\users\user\appdata\local\temp\winjjvi.exe FirewallRules: [UDP Query User{A083CD47-2A7C-4E00-A76A-4AA683ED91D6}C:\users\user\appdata\local\temp\winjjvi.exe] => (Block) C:\users\user\appdata\local\temp\winjjvi.exe FirewallRules: [TCP Query User{0404394E-D8B4-4953-99BE-ADFD43314E8B}C:\users\user\appdata\local\temp\winnsey.exe] => (Block) C:\users\user\appdata\local\temp\winnsey.exe FirewallRules: [UDP Query User{27D8BD1E-627A-468C-A041-76F755E0DD83}C:\users\user\appdata\local\temp\winnsey.exe] => (Block) C:\users\user\appdata\local\temp\winnsey.exe FirewallRules: [TCP Query User{8040222E-ACD7-4C35-B5CA-1477E99A14B9}C:\users\user\appdata\local\temp\bqro.exe] => (Block) C:\users\user\appdata\local\temp\bqro.exe FirewallRules: [UDP Query User{B74F39AE-C6C9-4E73-9B87-0094FCCDCB05}C:\users\user\appdata\local\temp\bqro.exe] => (Block) C:\users\user\appdata\local\temp\bqro.exe FirewallRules: [TCP Query User{31CEEE6C-C7D8-4DCB-B034-6702ECB1B509}C:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe] => (Block) C:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe FirewallRules: [UDP Query User{B419E991-43D7-46A3-9516-277CDF4627B5}C:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe] => (Block) C:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe FirewallRules: [TCP Query User{F55F8D2B-A4B5-413F-976D-B028E102E9D6}D:\gry\lol\rads\projects\lol_air_client\releases\0.0.1.207\deploy\lolclient.exe] => (Allow) D:\gry\lol\rads\projects\lol_air_client\releases\0.0.1.207\deploy\lolclient.exe FirewallRules: [UDP Query User{92377C3F-D901-411B-9851-102E2D36E5A0}D:\gry\lol\rads\projects\lol_air_client\releases\0.0.1.207\deploy\lolclient.exe] => (Allow) D:\gry\lol\rads\projects\lol_air_client\releases\0.0.1.207\deploy\lolclient.exe FirewallRules: [TCP Query User{3AC45A16-FEED-417E-9616-646B3D7129D1}C:\users\user\appdata\local\temp\winhoke.exe] => (Block) C:\users\user\appdata\local\temp\winhoke.exe FirewallRules: [UDP Query User{04630D66-1EFC-4F73-AB8B-31650435370A}C:\users\user\appdata\local\temp\winhoke.exe] => (Block) C:\users\user\appdata\local\temp\winhoke.exe FirewallRules: [TCP Query User{3529CE16-D858-47CB-AD1E-BC68C35B7DDE}C:\users\user\appdata\local\temp\windlohg.exe] => (Block) C:\users\user\appdata\local\temp\windlohg.exe FirewallRules: [UDP Query User{DBA98720-E380-4CDE-B5D0-0A15D08D4982}C:\users\user\appdata\local\temp\windlohg.exe] => (Block) C:\users\user\appdata\local\temp\windlohg.exe FirewallRules: [TCP Query User{37A93FF8-CE54-4910-A9CF-90137B266C8A}C:\users\user\appdata\local\temp\wintribnq.exe] => (Allow) C:\users\user\appdata\local\temp\wintribnq.exe FirewallRules: [UDP Query User{27A99187-73E6-48A7-A90E-F0642EC741E9}C:\users\user\appdata\local\temp\wintribnq.exe] => (Allow) C:\users\user\appdata\local\temp\wintribnq.exe FirewallRules: [TCP Query User{EC2D6D33-2B63-4B6C-9C34-9F5B46615F86}C:\users\user\appdata\local\temp\emlr.exe] => (Block) C:\users\user\appdata\local\temp\emlr.exe FirewallRules: [UDP Query User{908E0F66-5DF8-4F4D-88D5-22A739D399E7}C:\users\user\appdata\local\temp\emlr.exe] => (Block) C:\users\user\appdata\local\temp\emlr.exe FirewallRules: [TCP Query User{987D2D55-2127-4343-A156-1B57C2D0A895}C:\users\user\appdata\local\temp\bgoak.exe] => (Block) C:\users\user\appdata\local\temp\bgoak.exe FirewallRules: [UDP Query User{90F7274C-D0A5-40B4-AE8B-8FE5A2EB8E86}C:\users\user\appdata\local\temp\bgoak.exe] => (Block) C:\users\user\appdata\local\temp\bgoak.exe FirewallRules: [TCP Query User{6BD50058-7C37-48D8-AED1-756AAAA0B321}C:\users\user\appdata\local\temp\wincavb.exe] => (Block) C:\users\user\appdata\local\temp\wincavb.exe FirewallRules: [UDP Query User{90D170A0-1AFA-4B9A-B8C2-15AC5E024947}C:\users\user\appdata\local\temp\wincavb.exe] => (Block) C:\users\user\appdata\local\temp\wincavb.exe FirewallRules: [TCP Query User{71A6719A-DD70-4298-9F09-3E64EF56A871}C:\users\user\appdata\local\temp\winbjferf.exe] => (Block) C:\users\user\appdata\local\temp\winbjferf.exe FirewallRules: [UDP Query User{59D38808-FD2C-40F8-9A2A-F6BA575D810B}C:\users\user\appdata\local\temp\winbjferf.exe] => (Block) C:\users\user\appdata\local\temp\winbjferf.exe FirewallRules: [TCP Query User{6E6D20D0-2794-4880-A814-2C350356610F}C:\users\user\appdata\local\temp\winxiadwo.exe] => (Block) C:\users\user\appdata\local\temp\winxiadwo.exe FirewallRules: [UDP Query User{388B941F-3609-403F-AD2D-E67396121162}C:\users\user\appdata\local\temp\winxiadwo.exe] => (Block) C:\users\user\appdata\local\temp\winxiadwo.exe FirewallRules: [TCP Query User{72BC30F3-A56D-4B00-A748-E41A32FD99A6}C:\users\user\appdata\local\temp\phyl.exe] => (Block) C:\users\user\appdata\local\temp\phyl.exe FirewallRules: [UDP Query User{4416FDE2-10D1-4B38-8951-2ECC730F58C1}C:\users\user\appdata\local\temp\phyl.exe] => (Block) C:\users\user\appdata\local\temp\phyl.exe FirewallRules: [TCP Query User{0B8B76B9-05EF-4816-A1F8-C557E52F1F4A}C:\users\user\appdata\local\temp\winqwqo.exe] => (Block) C:\users\user\appdata\local\temp\winqwqo.exe FirewallRules: [UDP Query User{86AF6399-571A-4EC9-9F36-806F2527AC98}C:\users\user\appdata\local\temp\winqwqo.exe] => (Block) C:\users\user\appdata\local\temp\winqwqo.exe FirewallRules: [TCP Query User{A087CF9C-9B38-4B9C-8268-14BD9A2184E4}C:\users\user\appdata\local\temp\winnpmp.exe] => (Block) C:\users\user\appdata\local\temp\winnpmp.exe FirewallRules: [UDP Query User{A1D21A82-AC48-4C22-9B61-876EEAEBEDD5}C:\users\user\appdata\local\temp\winnpmp.exe] => (Block) C:\users\user\appdata\local\temp\winnpmp.exe FirewallRules: [TCP Query User{A7D1E1DF-2D1F-482D-ABE2-0AC86A7BF985}C:\users\user\appdata\local\temp\fvbnp.exe] => (Block) C:\users\user\appdata\local\temp\fvbnp.exe FirewallRules: [UDP Query User{CEBEC63E-1431-4C57-9B30-ED2D66D1F67C}C:\users\user\appdata\local\temp\fvbnp.exe] => (Block) C:\users\user\appdata\local\temp\fvbnp.exe FirewallRules: [TCP Query User{0391145F-2841-4600-9253-3402C991950B}C:\users\user\appdata\local\temp\winxeqgl.exe] => (Block) C:\users\user\appdata\local\temp\winxeqgl.exe FirewallRules: [UDP Query User{E1C8165E-3F05-4D14-853E-90E0C9FB8B24}C:\users\user\appdata\local\temp\winxeqgl.exe] => (Block) C:\users\user\appdata\local\temp\winxeqgl.exe FirewallRules: [TCP Query User{514B0A2E-05D8-4F09-8AD2-12A294CEC7DF}C:\users\user\appdata\local\temp\wincbawto.exe] => (Block) C:\users\user\appdata\local\temp\wincbawto.exe FirewallRules: [UDP Query User{269E38E6-667E-4754-8043-8770EE3800DB}C:\users\user\appdata\local\temp\wincbawto.exe] => (Block) C:\users\user\appdata\local\temp\wincbawto.exe FirewallRules: [TCP Query User{791A098E-D8B9-420B-8EC3-8DD1841BB952}C:\users\user\appdata\local\temp\gumxay.exe] => (Block) C:\users\user\appdata\local\temp\gumxay.exe FirewallRules: [UDP Query User{FDFA481F-4CDC-4114-814F-66114BCCD6B5}C:\users\user\appdata\local\temp\gumxay.exe] => (Block) C:\users\user\appdata\local\temp\gumxay.exe FirewallRules: [TCP Query User{B93432AE-3349-475F-B32D-5D447F0B63FF}C:\users\user\appdata\local\temp\windymq.exe] => (Block) C:\users\user\appdata\local\temp\windymq.exe FirewallRules: [UDP Query User{C70168B2-F80D-4446-8B24-E405C68360A2}C:\users\user\appdata\local\temp\windymq.exe] => (Block) C:\users\user\appdata\local\temp\windymq.exe FirewallRules: [TCP Query User{8063921B-AE8D-4690-BB2D-A09D9818E336}C:\users\user\appdata\local\temp\winlowpbi.exe] => (Block) C:\users\user\appdata\local\temp\winlowpbi.exe FirewallRules: [UDP Query User{44080464-25B0-4D27-B9C2-01532FE3E547}C:\users\user\appdata\local\temp\winlowpbi.exe] => (Block) C:\users\user\appdata\local\temp\winlowpbi.exe FirewallRules: [TCP Query User{C1D4AAE5-2F96-45B2-8BBA-CFA16CDFC7EA}C:\users\user\appdata\local\temp\cogo.exe] => (Block) C:\users\user\appdata\local\temp\cogo.exe FirewallRules: [UDP Query User{99120C2C-7CE3-4A84-892D-577CE52743BE}C:\users\user\appdata\local\temp\cogo.exe] => (Block) C:\users\user\appdata\local\temp\cogo.exe FirewallRules: [TCP Query User{32AFBECD-6620-49E7-954D-FB974FD71D25}C:\program files (x86)\amd avt\bin\kdbsync.exe] => (Block) C:\program files (x86)\amd avt\bin\kdbsync.exe FirewallRules: [UDP Query User{713CE606-D175-4CD6-94BB-FA84B7CCD361}C:\program files (x86)\amd avt\bin\kdbsync.exe] => (Block) C:\program files (x86)\amd avt\bin\kdbsync.exe FirewallRules: [TCP Query User{3FF41FE5-C217-4C76-A9B0-F3931BECE541}C:\users\user\appdata\local\temp\wintsoxx.exe] => (Block) C:\users\user\appdata\local\temp\wintsoxx.exe FirewallRules: [UDP Query User{208AEED2-A9F4-4ECA-9C8C-02A9975331B7}C:\users\user\appdata\local\temp\wintsoxx.exe] => (Block) C:\users\user\appdata\local\temp\wintsoxx.exe FirewallRules: [TCP Query User{44D40921-FD08-4FE5-845E-55055188090C}C:\users\user\appdata\local\temp\winfjcddn.exe] => (Block) C:\users\user\appdata\local\temp\winfjcddn.exe FirewallRules: [UDP Query User{05B0E393-BD72-4348-AC4F-2CE99C2C6905}C:\users\user\appdata\local\temp\winfjcddn.exe] => (Block) C:\users\user\appdata\local\temp\winfjcddn.exe FirewallRules: [TCP Query User{BE7CBCB7-15CB-4BAB-8FD4-8E3602BBF999}C:\users\user\appdata\local\temp\hbmw.exe] => (Block) C:\users\user\appdata\local\temp\hbmw.exe FirewallRules: [UDP Query User{852C63A2-17A7-4790-94F7-396C0B9869A6}C:\users\user\appdata\local\temp\hbmw.exe] => (Block) C:\users\user\appdata\local\temp\hbmw.exe FirewallRules: [TCP Query User{A923D5DA-ABC4-4137-AABD-D0EE84F4AAFF}C:\users\user\appdata\local\temp\winoiobbe.exe] => (Block) C:\users\user\appdata\local\temp\winoiobbe.exe FirewallRules: [UDP Query User{98BB81E1-E2D6-411E-97F7-FE13D69D4915}C:\users\user\appdata\local\temp\winoiobbe.exe] => (Block) C:\users\user\appdata\local\temp\winoiobbe.exe FirewallRules: [TCP Query User{EF4564D5-174B-40EC-84B5-617BE7710434}C:\users\user\appdata\local\temp\winefno.exe] => (Block) C:\users\user\appdata\local\temp\winefno.exe FirewallRules: [UDP Query User{85E5C128-7763-4BC7-821C-9FDCE7D35323}C:\users\user\appdata\local\temp\winefno.exe] => (Block) C:\users\user\appdata\local\temp\winefno.exe FirewallRules: [TCP Query User{81C4C68D-A1A0-4828-BB6A-6F7DD927E359}C:\users\user\appdata\local\temp\flamyi.exe] => (Block) C:\users\user\appdata\local\temp\flamyi.exe FirewallRules: [UDP Query User{C6165675-1035-4064-9420-290AE833689C}C:\users\user\appdata\local\temp\flamyi.exe] => (Block) C:\users\user\appdata\local\temp\flamyi.exe FirewallRules: [TCP Query User{4453061D-DB8E-44A0-BC2F-AE11182E4804}C:\users\user\appdata\local\temp\winkowmvo.exe] => (Block) C:\users\user\appdata\local\temp\winkowmvo.exe FirewallRules: [UDP Query User{B98E5FB7-C1F1-48C2-9A4A-46303B5DA1F5}C:\users\user\appdata\local\temp\winkowmvo.exe] => (Block) C:\users\user\appdata\local\temp\winkowmvo.exe FirewallRules: [TCP Query User{EDEB6618-7441-448E-B79E-8001DF947957}C:\users\user\appdata\local\temp\winnows.exe] => (Block) C:\users\user\appdata\local\temp\winnows.exe FirewallRules: [UDP Query User{FD980BB0-4349-4659-BF60-2466DBD8947C}C:\users\user\appdata\local\temp\winnows.exe] => (Block) C:\users\user\appdata\local\temp\winnows.exe FirewallRules: [TCP Query User{F082F454-82B1-4F47-B80C-D14AF1E8B997}C:\users\user\appdata\local\temp\winusjfng.exe] => (Block) C:\users\user\appdata\local\temp\winusjfng.exe FirewallRules: [UDP Query User{7A90A657-AE86-4147-B414-3FBA03F0DE38}C:\users\user\appdata\local\temp\winusjfng.exe] => (Block) C:\users\user\appdata\local\temp\winusjfng.exe FirewallRules: [TCP Query User{8FD5A9A4-E359-42C6-9201-17804D883642}C:\users\user\appdata\local\temp\winywhgtm.exe] => (Block) C:\users\user\appdata\local\temp\winywhgtm.exe FirewallRules: [UDP Query User{7198D5AD-D33C-48A0-8F4A-6358C9BD3F41}C:\users\user\appdata\local\temp\winywhgtm.exe] => (Block) C:\users\user\appdata\local\temp\winywhgtm.exe FirewallRules: [TCP Query User{12081AA0-588F-4D13-BA5E-83A5DEC5ECCF}C:\users\user\appdata\local\temp\winmqkpbn.exe] => (Block) C:\users\user\appdata\local\temp\winmqkpbn.exe FirewallRules: [UDP Query User{EE3E6870-24C1-4947-9BE9-024FE56252AD}C:\users\user\appdata\local\temp\winmqkpbn.exe] => (Block) C:\users\user\appdata\local\temp\winmqkpbn.exe FirewallRules: [TCP Query User{EB60A5E9-2935-4904-93CF-16B44B95AD13}D:\opera\39.0.2256.48\opera.exe] => (Block) D:\opera\39.0.2256.48\opera.exe FirewallRules: [UDP Query User{B17257D9-374D-45ED-82CD-88100A0404F7}D:\opera\39.0.2256.48\opera.exe] => (Block) D:\opera\39.0.2256.48\opera.exe FirewallRules: [TCP Query User{ABA2BCF6-BF83-4727-B45D-C5A8A0CBC07F}C:\users\user\appdata\local\temp\winrnplb.exe] => (Block) C:\users\user\appdata\local\temp\winrnplb.exe FirewallRules: [UDP Query User{C01A9CC9-8447-4622-8BC6-1F53879795E2}C:\users\user\appdata\local\temp\winrnplb.exe] => (Block) C:\users\user\appdata\local\temp\winrnplb.exe FirewallRules: [TCP Query User{9AC070FE-9953-4F64-A925-0A135C3B043B}C:\users\user\appdata\local\temp\reshni.exe] => (Block) C:\users\user\appdata\local\temp\reshni.exe FirewallRules: [UDP Query User{EEFECCB9-353E-4D9C-82D1-D3088CE947F6}C:\users\user\appdata\local\temp\reshni.exe] => (Block) C:\users\user\appdata\local\temp\reshni.exe FirewallRules: [TCP Query User{2345F313-6F04-44E1-9CE3-EA58B46F6180}C:\users\user\appdata\local\temp\winscupx.exe] => (Block) C:\users\user\appdata\local\temp\winscupx.exe FirewallRules: [UDP Query User{B49FFE7A-7DA7-4049-BA16-D5A161FFB163}C:\users\user\appdata\local\temp\winscupx.exe] => (Block) C:\users\user\appdata\local\temp\winscupx.exe FirewallRules: [TCP Query User{2DF6F05B-1F09-46E1-8575-F00E93A3A81E}C:\users\user\appdata\local\temp\winfdstk.exe] => (Block) C:\users\user\appdata\local\temp\winfdstk.exe FirewallRules: [UDP Query User{E3371986-76E8-4091-AF8F-14BB513D1176}C:\users\user\appdata\local\temp\winfdstk.exe] => (Block) C:\users\user\appdata\local\temp\winfdstk.exe FirewallRules: [TCP Query User{6FFD4CA8-000C-4B0F-912A-DB4EA7B6FBE2}C:\users\user\appdata\local\temp\wineash.exe] => (Block) C:\users\user\appdata\local\temp\wineash.exe FirewallRules: [UDP Query User{0BE213CF-CC4A-4915-BCD1-E8192190851A}C:\users\user\appdata\local\temp\wineash.exe] => (Block) C:\users\user\appdata\local\temp\wineash.exe FirewallRules: [TCP Query User{342974FF-E5E8-4F27-B616-FE72F6F5505A}C:\users\user\appdata\local\temp\winxxkdd.exe] => (Block) C:\users\user\appdata\local\temp\winxxkdd.exe FirewallRules: [UDP Query User{8077D5F3-BDC1-448D-8362-CF3BE01478F3}C:\users\user\appdata\local\temp\winxxkdd.exe] => (Block) C:\users\user\appdata\local\temp\winxxkdd.exe FirewallRules: [TCP Query User{BD21B6AC-4981-46ED-83E7-BF184D2D3887}C:\users\user\appdata\local\temp\qyrji.exe] => (Block) C:\users\user\appdata\local\temp\qyrji.exe FirewallRules: [UDP Query User{D22BA1BE-71FA-41CC-B7A4-34BEDA983457}C:\users\user\appdata\local\temp\qyrji.exe] => (Block) C:\users\user\appdata\local\temp\qyrji.exe FirewallRules: [TCP Query User{D02A0F3B-223D-4562-88ED-C997459634F1}C:\users\user\appdata\local\temp\pklwrf.exe] => (Block) C:\users\user\appdata\local\temp\pklwrf.exe FirewallRules: [UDP Query User{266DA43E-F98C-4313-8DEE-ED328A31C91D}C:\users\user\appdata\local\temp\pklwrf.exe] => (Block) C:\users\user\appdata\local\temp\pklwrf.exe FirewallRules: [TCP Query User{B27868E2-532E-4268-B265-C90D0D9D210C}C:\users\user\appdata\local\temp\winbhstn.exe] => (Block) C:\users\user\appdata\local\temp\winbhstn.exe FirewallRules: [UDP Query User{6B23CA53-F8B9-43FA-AFF2-32DF92A55976}C:\users\user\appdata\local\temp\winbhstn.exe] => (Block) C:\users\user\appdata\local\temp\winbhstn.exe FirewallRules: [TCP Query User{84D411C9-9DDA-448B-B425-F0E00EDE5F2D}C:\users\user\appdata\local\temp\auhu.exe] => (Block) C:\users\user\appdata\local\temp\auhu.exe FirewallRules: [UDP Query User{94BD81F6-55DD-4DC5-8BA1-12A1D16589CE}C:\users\user\appdata\local\temp\auhu.exe] => (Block) C:\users\user\appdata\local\temp\auhu.exe FirewallRules: [TCP Query User{D00BA71A-CC35-45F3-AC63-4113BB0C07C4}C:\users\user\appdata\local\temp\efbk.exe] => (Block) C:\users\user\appdata\local\temp\efbk.exe FirewallRules: [UDP Query User{E87DC785-B1D6-4EED-B4CD-4837B5CF17AC}C:\users\user\appdata\local\temp\efbk.exe] => (Block) C:\users\user\appdata\local\temp\efbk.exe FirewallRules: [TCP Query User{537A3A92-E1E2-41F2-AB14-C4E8218F202B}C:\users\user\appdata\local\temp\windjgqv.exe] => (Block) C:\users\user\appdata\local\temp\windjgqv.exe FirewallRules: [UDP Query User{5026A7DA-F4E7-4821-97B5-F7B6A7059BFC}C:\users\user\appdata\local\temp\windjgqv.exe] => (Block) C:\users\user\appdata\local\temp\windjgqv.exe FirewallRules: [TCP Query User{AF676301-0DEB-4334-8EF1-D50C87464E3C}C:\users\user\appdata\local\temp\wineuix.exe] => (Block) C:\users\user\appdata\local\temp\wineuix.exe FirewallRules: [UDP Query User{4EDE1B00-D9F9-4DCF-BE1D-F5B30D3EB7CE}C:\users\user\appdata\local\temp\wineuix.exe] => (Block) C:\users\user\appdata\local\temp\wineuix.exe FirewallRules: [TCP Query User{6EC082C9-EFF3-4D6B-9BCB-F3DA57FAB600}C:\users\user\appdata\local\temp\nxwcn.exe] => (Block) C:\users\user\appdata\local\temp\nxwcn.exe FirewallRules: [UDP Query User{E4B98C0B-29A3-48E9-99A0-EA9360C61EA4}C:\users\user\appdata\local\temp\nxwcn.exe] => (Block) C:\users\user\appdata\local\temp\nxwcn.exe FirewallRules: [TCP Query User{00F6EBA0-5DCE-4090-AD13-CD7057E9419D}C:\users\user\appdata\local\temp\jnrv.exe] => (Block) C:\users\user\appdata\local\temp\jnrv.exe FirewallRules: [UDP Query User{63CC4681-4B47-4909-92FB-EB840431D7F0}C:\users\user\appdata\local\temp\jnrv.exe] => (Block) C:\users\user\appdata\local\temp\jnrv.exe FirewallRules: [TCP Query User{49BB5D10-A23C-4C63-944C-0AA1C9E68C94}C:\users\user\appdata\local\temp\winqtjkb.exe] => (Block) C:\users\user\appdata\local\temp\winqtjkb.exe FirewallRules: [UDP Query User{E49B1FA1-95C4-4FB5-86BC-133F143B4F4F}C:\users\user\appdata\local\temp\winqtjkb.exe] => (Block) C:\users\user\appdata\local\temp\winqtjkb.exe FirewallRules: [TCP Query User{E32BF840-D8E3-4F38-AADF-DA7F1C250A8C}C:\users\user\appdata\local\temp\lbmew.exe] => (Block) C:\users\user\appdata\local\temp\lbmew.exe FirewallRules: [UDP Query User{2906354F-1BFE-4AB2-B7F3-CEA06EC9FBD0}C:\users\user\appdata\local\temp\lbmew.exe] => (Block) C:\users\user\appdata\local\temp\lbmew.exe FirewallRules: [TCP Query User{3D74368A-ED43-4236-8E6D-B34BA2C255B4}C:\users\user\appdata\local\temp\kmvpww.exe] => (Block) C:\users\user\appdata\local\temp\kmvpww.exe FirewallRules: [UDP Query User{48B5F2FC-D302-4255-B6AA-664256524533}C:\users\user\appdata\local\temp\kmvpww.exe] => (Block) C:\users\user\appdata\local\temp\kmvpww.exe FirewallRules: [TCP Query User{8147AAA0-FBFB-404D-B38B-D5E16F08C738}C:\users\user\appdata\local\temp\fqvlkv.exe] => (Block) C:\users\user\appdata\local\temp\fqvlkv.exe FirewallRules: [UDP Query User{F614A59F-03E8-46EA-8BEF-2E989BCB9070}C:\users\user\appdata\local\temp\fqvlkv.exe] => (Block) C:\users\user\appdata\local\temp\fqvlkv.exe FirewallRules: [TCP Query User{07E1E1F3-82A5-4A61-85DA-5CDF2108F153}C:\users\user\appdata\local\temp\jnpxed.exe] => (Block) C:\users\user\appdata\local\temp\jnpxed.exe FirewallRules: [UDP Query User{30DCC900-E418-484A-8C1A-61DDAD94FC4F}C:\users\user\appdata\local\temp\jnpxed.exe] => (Block) C:\users\user\appdata\local\temp\jnpxed.exe FirewallRules: [TCP Query User{D8CB0B55-7F20-4555-9464-535005FB760A}C:\users\user\appdata\local\temp\xonjna.exe] => (Block) C:\users\user\appdata\local\temp\xonjna.exe FirewallRules: [UDP Query User{14D6A0D9-12A0-4531-A4A8-2DD2FFC7345F}C:\users\user\appdata\local\temp\xonjna.exe] => (Block) C:\users\user\appdata\local\temp\xonjna.exe FirewallRules: [TCP Query User{78249543-9BCB-4728-B79F-BDE72EFCCE38}D:\gry\lol\rads\system\rads_user_kernel.exe] => (Allow) D:\gry\lol\rads\system\rads_user_kernel.exe FirewallRules: [UDP Query User{C6E2D9D6-A08E-4DDE-987B-0E25565CB494}D:\gry\lol\rads\system\rads_user_kernel.exe] => (Allow) D:\gry\lol\rads\system\rads_user_kernel.exe FirewallRules: [TCP Query User{E3C230CD-2B8B-45C2-B82A-1FA57ACB3452}C:\users\user\appdata\local\temp\dlsar.exe] => (Block) C:\users\user\appdata\local\temp\dlsar.exe FirewallRules: [UDP Query User{91F035B7-2B6C-4967-A074-5D9EEFFC97E7}C:\users\user\appdata\local\temp\dlsar.exe] => (Block) C:\users\user\appdata\local\temp\dlsar.exe FirewallRules: [TCP Query User{89CF7DE2-6A05-413C-AE31-7B102EB66C27}C:\users\user\appdata\local\temp\wineuso.exe] => (Block) C:\users\user\appdata\local\temp\wineuso.exe FirewallRules: [UDP Query User{977741F9-953D-413A-AA3F-065F9480C0F3}C:\users\user\appdata\local\temp\wineuso.exe] => (Block) C:\users\user\appdata\local\temp\wineuso.exe FirewallRules: [TCP Query User{D0924818-AAD8-4900-A824-FD4B104D4FA0}C:\users\user\appdata\local\temp\cqrbp.exe] => (Block) C:\users\user\appdata\local\temp\cqrbp.exe FirewallRules: [UDP Query User{D64536E1-F2CB-48ED-9B9E-F1BF52365184}C:\users\user\appdata\local\temp\cqrbp.exe] => (Block) C:\users\user\appdata\local\temp\cqrbp.exe FirewallRules: [TCP Query User{F2FC085C-06D4-4EE0-A8DD-58F86DA5B120}C:\users\user\appdata\local\temp\winmsybqc.exe] => (Block) C:\users\user\appdata\local\temp\winmsybqc.exe FirewallRules: [UDP Query User{5C5EF913-3C0C-498D-9AA4-672C9C9A063D}C:\users\user\appdata\local\temp\winmsybqc.exe] => (Block) C:\users\user\appdata\local\temp\winmsybqc.exe FirewallRules: [TCP Query User{505D192B-4E8E-4D9D-A948-074F94BFED56}C:\users\user\appdata\local\temp\btig.exe] => (Block) C:\users\user\appdata\local\temp\btig.exe FirewallRules: [UDP Query User{F2DF0FD3-F611-473A-AFEE-42DC48DB043E}C:\users\user\appdata\local\temp\btig.exe] => (Block) C:\users\user\appdata\local\temp\btig.exe FirewallRules: [TCP Query User{C16615FC-7E30-4AC9-AA24-A5144E804FD5}D:\gry\lol\rads\system\rads_user_kernel.exe] => (Block) D:\gry\lol\rads\system\rads_user_kernel.exe FirewallRules: [UDP Query User{B0A9902D-5DA9-4CA6-B71A-3C0303F673BD}D:\gry\lol\rads\system\rads_user_kernel.exe] => (Block) D:\gry\lol\rads\system\rads_user_kernel.exe FirewallRules: [TCP Query User{09DFFFCC-B213-4FB5-8671-84C319E998C3}C:\users\user\appdata\local\temp\fkpd.exe] => (Block) C:\users\user\appdata\local\temp\fkpd.exe FirewallRules: [UDP Query User{E65996C2-596D-4786-83CE-DEAD64560B75}C:\users\user\appdata\local\temp\fkpd.exe] => (Block) C:\users\user\appdata\local\temp\fkpd.exe FirewallRules: [TCP Query User{C62B450B-FAE6-45DC-840F-ED4F7D325B78}C:\users\user\appdata\local\temp\winadqey.exe] => (Block) C:\users\user\appdata\local\temp\winadqey.exe FirewallRules: [UDP Query User{3FAF2504-D1F2-46DF-896D-BBD185BE87CF}C:\users\user\appdata\local\temp\winadqey.exe] => (Block) C:\users\user\appdata\local\temp\winadqey.exe FirewallRules: [TCP Query User{BEF087C3-63FA-4048-86B6-602A3B944666}C:\users\user\appdata\local\temp\winmgbo.exe] => (Block) C:\users\user\appdata\local\temp\winmgbo.exe FirewallRules: [UDP Query User{F429F6B5-E056-4B18-9EB9-3F9C7B8F2A28}C:\users\user\appdata\local\temp\winmgbo.exe] => (Block) C:\users\user\appdata\local\temp\winmgbo.exe FirewallRules: [TCP Query User{4639DD9C-4265-405F-B309-AF5F6A933E19}C:\users\user\appdata\local\temp\nmusc.exe] => (Block) C:\users\user\appdata\local\temp\nmusc.exe FirewallRules: [UDP Query User{101866AF-63C1-4E28-BBCB-05562F469201}C:\users\user\appdata\local\temp\nmusc.exe] => (Block) C:\users\user\appdata\local\temp\nmusc.exe FirewallRules: [TCP Query User{3E791695-3EC3-4305-96E5-AC0462EBC337}C:\users\user\appdata\local\temp\winunmfg.exe] => (Block) C:\users\user\appdata\local\temp\winunmfg.exe FirewallRules: [UDP Query User{B1B387CD-00B5-4A0B-83E4-C84969CC13CC}C:\users\user\appdata\local\temp\winunmfg.exe] => (Block) C:\users\user\appdata\local\temp\winunmfg.exe FirewallRules: [TCP Query User{DB173FCA-C269-421C-8655-CAFE1B99D4C0}C:\users\user\appdata\local\temp\winahdho.exe] => (Block) C:\users\user\appdata\local\temp\winahdho.exe FirewallRules: [UDP Query User{29983E7A-F31B-48A5-921F-0DE4A926B6B5}C:\users\user\appdata\local\temp\winahdho.exe] => (Block) C:\users\user\appdata\local\temp\winahdho.exe FirewallRules: [TCP Query User{B6C1DD31-4175-4628-A9F7-8DB72B15E055}C:\users\user\appdata\local\temp\wineffx.exe] => (Block) C:\users\user\appdata\local\temp\wineffx.exe FirewallRules: [UDP Query User{EF7F86F4-4021-4EEF-9A95-BBE39133B0B5}C:\users\user\appdata\local\temp\wineffx.exe] => (Block) C:\users\user\appdata\local\temp\wineffx.exe FirewallRules: [TCP Query User{0DA6ACDE-CA11-429F-AFBF-DDBA7B69D925}C:\users\user\appdata\local\temp\winwqjl.exe] => (Block) C:\users\user\appdata\local\temp\winwqjl.exe FirewallRules: [UDP Query User{C3A72C0F-AEBC-4453-8396-34A1495FCFD0}C:\users\user\appdata\local\temp\winwqjl.exe] => (Block) C:\users\user\appdata\local\temp\winwqjl.exe FirewallRules: [TCP Query User{87F4F618-99D6-446F-965D-79F8E427616A}C:\users\user\appdata\local\temp\obgvc.exe] => (Block) C:\users\user\appdata\local\temp\obgvc.exe FirewallRules: [UDP Query User{07781274-F2A5-46F7-95C2-B520C0A834F4}C:\users\user\appdata\local\temp\obgvc.exe] => (Block) C:\users\user\appdata\local\temp\obgvc.exe FirewallRules: [TCP Query User{AD64B18A-E890-4A3C-A099-93282967FF44}C:\users\user\appdata\local\temp\winavlae.exe] => (Block) C:\users\user\appdata\local\temp\winavlae.exe FirewallRules: [UDP Query User{428D4B47-C56D-4A3F-88F8-35993846C5FC}C:\users\user\appdata\local\temp\winavlae.exe] => (Block) C:\users\user\appdata\local\temp\winavlae.exe FirewallRules: [TCP Query User{6730DB83-37FF-4F95-87B5-297F4F179308}C:\users\user\appdata\local\temp\winawtvht.exe] => (Block) C:\users\user\appdata\local\temp\winawtvht.exe FirewallRules: [UDP Query User{C27B5D41-D09F-419E-8D26-5973FF6C400E}C:\users\user\appdata\local\temp\winawtvht.exe] => (Block) C:\users\user\appdata\local\temp\winawtvht.exe FirewallRules: [TCP Query User{D2D44D09-0778-4B46-9EED-6F0808569EEF}C:\users\user\appdata\local\temp\bqwx.exe] => (Block) C:\users\user\appdata\local\temp\bqwx.exe FirewallRules: [UDP Query User{F71B1A3F-1EFC-4D63-A81A-4BF664E41EFD}C:\users\user\appdata\local\temp\bqwx.exe] => (Block) C:\users\user\appdata\local\temp\bqwx.exe FirewallRules: [TCP Query User{0CDCF108-21D3-419F-A5D8-26DE4010411E}C:\users\user\appdata\local\temp\winxkirm.exe] => (Block) C:\users\user\appdata\local\temp\winxkirm.exe FirewallRules: [UDP Query User{70391DBF-BC0A-4AB1-8AFA-5397FCB2730A}C:\users\user\appdata\local\temp\winxkirm.exe] => (Block) C:\users\user\appdata\local\temp\winxkirm.exe FirewallRules: [TCP Query User{E7511790-AE72-4E2F-81F6-BC9DEA745A68}C:\users\user\appdata\local\temp\winkjjlxr.exe] => (Block) C:\users\user\appdata\local\temp\winkjjlxr.exe FirewallRules: [UDP Query User{28120764-A65D-45D1-839B-6070E5EC459D}C:\users\user\appdata\local\temp\winkjjlxr.exe] => (Block) C:\users\user\appdata\local\temp\winkjjlxr.exe FirewallRules: [TCP Query User{8E3FFEBA-E798-48F2-A109-36EAAE6D634D}C:\users\user\appdata\local\temp\winywjtry.exe] => (Block) C:\users\user\appdata\local\temp\winywjtry.exe FirewallRules: [UDP Query User{C82AA07B-21EF-49AE-B568-C0D2B6C5D55B}C:\users\user\appdata\local\temp\winywjtry.exe] => (Block) C:\users\user\appdata\local\temp\winywjtry.exe FirewallRules: [TCP Query User{78BC871A-A654-487C-8F48-8D23B57DBB2D}C:\users\user\appdata\local\temp\winjkgap.exe] => (Block) C:\users\user\appdata\local\temp\winjkgap.exe FirewallRules: [UDP Query User{D2BA961E-D204-4096-A51B-CE6896A9B27B}C:\users\user\appdata\local\temp\winjkgap.exe] => (Block) C:\users\user\appdata\local\temp\winjkgap.exe FirewallRules: [TCP Query User{2742A0F2-62DF-4242-8A37-B7993E6B910C}C:\users\user\appdata\local\temp\winuvqlb.exe] => (Block) C:\users\user\appdata\local\temp\winuvqlb.exe FirewallRules: [UDP Query User{54D17786-7E0A-4B34-925E-7F0853BE960C}C:\users\user\appdata\local\temp\winuvqlb.exe] => (Block) C:\users\user\appdata\local\temp\winuvqlb.exe FirewallRules: [TCP Query User{5F500FB3-A1A4-422A-B4E0-36A00D3E639F}C:\users\user\appdata\local\temp\winiego.exe] => (Block) C:\users\user\appdata\local\temp\winiego.exe FirewallRules: [UDP Query User{DFF0B6CA-3C56-4308-859B-B8930A74A1FB}C:\users\user\appdata\local\temp\winiego.exe] => (Block) C:\users\user\appdata\local\temp\winiego.exe FirewallRules: [TCP Query User{81C246B7-A41A-4B7A-BF4D-DE09AA756ADB}C:\users\user\appdata\local\temp\winwerjty.exe] => (Block) C:\users\user\appdata\local\temp\winwerjty.exe FirewallRules: [UDP Query User{C4B1B827-7792-45FD-A271-BB6BF697DADB}C:\users\user\appdata\local\temp\winwerjty.exe] => (Block) C:\users\user\appdata\local\temp\winwerjty.exe FirewallRules: [TCP Query User{B2BB2AE6-0887-4967-A25B-E67971CA58CF}C:\users\user\appdata\local\temp\wintfih.exe] => (Block) C:\users\user\appdata\local\temp\wintfih.exe FirewallRules: [UDP Query User{37F26F07-1675-4965-8B0B-DDFD03BFAACB}C:\users\user\appdata\local\temp\wintfih.exe] => (Block) C:\users\user\appdata\local\temp\wintfih.exe FirewallRules: [TCP Query User{136E60EE-FF4F-40FE-A4B4-CDE7ECD8D773}C:\users\user\appdata\local\temp\winvikgvc.exe] => (Block) C:\users\user\appdata\local\temp\winvikgvc.exe FirewallRules: [UDP Query User{7294A27D-C763-48DE-951E-E9004A9D36FE}C:\users\user\appdata\local\temp\winvikgvc.exe] => (Block) C:\users\user\appdata\local\temp\winvikgvc.exe FirewallRules: [TCP Query User{CBB8ED14-06E9-4017-9A50-5954930750D6}C:\users\user\appdata\local\temp\laqhx.exe] => (Block) C:\users\user\appdata\local\temp\laqhx.exe FirewallRules: [UDP Query User{661906E8-D859-410F-AC58-EC5AA47B42E7}C:\users\user\appdata\local\temp\laqhx.exe] => (Block) C:\users\user\appdata\local\temp\laqhx.exe FirewallRules: [TCP Query User{57A58551-ED59-4FBC-BDF4-210E5F947FDE}C:\users\user\appdata\local\temp\piarqt.exe] => (Block) C:\users\user\appdata\local\temp\piarqt.exe FirewallRules: [UDP Query User{A97F4451-34F6-4187-A560-8198B990E9F4}C:\users\user\appdata\local\temp\piarqt.exe] => (Block) C:\users\user\appdata\local\temp\piarqt.exe FirewallRules: [TCP Query User{D87D057E-FF55-47B9-8568-0809D9491B4E}C:\users\user\appdata\local\temp\ybor.exe] => (Block) C:\users\user\appdata\local\temp\ybor.exe FirewallRules: [UDP Query User{3A37F1A3-80F7-4414-9D00-7B64F609E09A}C:\users\user\appdata\local\temp\ybor.exe] => (Block) C:\users\user\appdata\local\temp\ybor.exe FirewallRules: [TCP Query User{11DBD81A-E730-418C-AF01-52C0A7A926C1}C:\users\user\appdata\local\temp\mpgc.exe] => (Block) C:\users\user\appdata\local\temp\mpgc.exe FirewallRules: [UDP Query User{73A2626A-3265-484B-953B-21899E4C6D17}C:\users\user\appdata\local\temp\mpgc.exe] => (Block) C:\users\user\appdata\local\temp\mpgc.exe FirewallRules: [TCP Query User{19D1DDE9-F676-4C51-A946-DDDFD6D0C523}C:\users\user\appdata\local\temp\thvufx.exe] => (Block) C:\users\user\appdata\local\temp\thvufx.exe FirewallRules: [UDP Query User{B463F51C-CBF3-41BB-8A69-DF4F5A514CE5}C:\users\user\appdata\local\temp\thvufx.exe] => (Block) C:\users\user\appdata\local\temp\thvufx.exe FirewallRules: [TCP Query User{007CA0C0-4CCD-4D70-96DF-C3FAF9203BC1}C:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe] => (Block) C:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe FirewallRules: [UDP Query User{2BDAC224-56C2-449C-8189-22126CAA07CF}C:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe] => (Block) C:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe FirewallRules: [TCP Query User{CF64B03F-0F02-4573-AE14-84014D68F087}C:\users\user\appdata\local\temp\vqua.exe] => (Block) C:\users\user\appdata\local\temp\vqua.exe FirewallRules: [UDP Query User{18F653CB-0CE1-4356-BF2B-6C13B8180FDD}C:\users\user\appdata\local\temp\vqua.exe] => (Block) C:\users\user\appdata\local\temp\vqua.exe FirewallRules: [TCP Query User{EEC330D1-9BA6-486F-8F21-B8C3B8D0621D}C:\users\user\appdata\local\temp\obfv.exe] => (Block) C:\users\user\appdata\local\temp\obfv.exe FirewallRules: [UDP Query User{3C7988AC-69B1-487B-A46B-22AA0993B9A0}C:\users\user\appdata\local\temp\obfv.exe] => (Block) C:\users\user\appdata\local\temp\obfv.exe FirewallRules: [TCP Query User{72D14E92-43C5-4981-9656-256A6044AE6B}C:\users\user\appdata\local\temp\winvkmrhm.exe] => (Block) C:\users\user\appdata\local\temp\winvkmrhm.exe FirewallRules: [UDP Query User{BFA7430D-904A-4EF5-964D-CAFCB09837BD}C:\users\user\appdata\local\temp\winvkmrhm.exe] => (Block) C:\users\user\appdata\local\temp\winvkmrhm.exe ==================== Punkty Przywracania systemu ========================= 30-08-2016 15:14:07 Instalacja pakietu sterownika urządzenia: TAP-Win32 Provider V9 Karty sieciowe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (08/30/2016 08:27:25 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/30/2016 08:05:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/30/2016 09:21:30 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/29/2016 06:00:07 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/29/2016 07:12:13 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/28/2016 07:09:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/28/2016 12:28:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/28/2016 12:19:22 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {d6a37329-5a05-4a51-8064-15a9d13d7fbf} Error: (08/28/2016 07:36:55 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/28/2016 01:13:01 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= Error: (08/30/2016 08:27:14 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: avgtp Error: (08/30/2016 08:27:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi lirsgt z powodu następującego błędu: System Windows nie może zweryfikować podpisu cyfrowego tego pliku. Ostatnia zmiana sprzętu lub oprogramowania mogła spowodować zainstalowanie pliku, który jest niepoprawnie podpisany lub uszkodzony. Możliwe także, że jest to złośliwe oprogramowanie pochodzące z nieznanego źródła. Error: (08/30/2016 08:27:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą IndepthRunner. Error: (08/30/2016 08:26:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi atksgt z powodu następującego błędu: System Windows nie może zweryfikować podpisu cyfrowego tego pliku. Ostatnia zmiana sprzętu lub oprogramowania mogła spowodować zainstalowanie pliku, który jest niepoprawnie podpisany lub uszkodzony. Możliwe także, że jest to złośliwe oprogramowanie pochodzące z nieznanego źródła. Error: (08/30/2016 08:26:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą ReactorExtender. Error: (08/30/2016 08:26:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą IndepthInit. Error: (08/30/2016 08:24:02 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie: Jedno wystąpienie usługi już działa. . Error: (08/30/2016 08:23:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Intel(R) Rapid Storage Technology niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/30/2016 08:23:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Intel(R) Management and Security Application User Notification Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/30/2016 08:23:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa udostępniania w sieci programu Windows Media Player niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2016-08-30 20:27:14.287 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 20:27:14.240 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 20:26:43.851 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 20:26:43.804 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 20:05:37.986 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 20:05:37.935 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 20:05:07.586 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 20:05:07.538 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 09:21:29.667 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-08-30 09:21:29.593 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz Procent pamięci w użyciu: 56% Całkowita pamięć fizyczna: 4037.96 MB Dostępna pamięć fizyczna: 1755.01 MB Całkowita pamięć wirtualna: 8074.11 MB Dostępna pamięć wirtualna: 5680.96 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:80.05 GB) (Free:29.44 GB) NTFS Drive d: () (Fixed) (Total:385.61 GB) (Free:267.95 GB) NTFS Drive e: (SAGA_GOTHIC) (CDROM) (Total:3.76 GB) (Free:0 GB) CDFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 5BBD0792) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=80 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=385.6 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================