Update ! Proszę o sprawdzenie logów. Trojan:PowerShell/Powdow.MBB!MTB

[Scarface]

Witam , jak w temacie. Windows Defender nie może tego usunąć. Z objawów, to komp co chwila coś mieli i jest przymulony. Update : zainstalowałem GridinSoft i teraz WD na chwilę obecną nie wykrywa tego. Wklejam nowe logi. 

 

Addition.txt FRST.txt Shortcut.txt

[Illidan]

Uruchom FRST.  Skopiuj zawartość podaną niżej i nigdzie nie wklejaj-FRST sam znajdzie "fixlist" w schowku systemowym.

 

Spoiler

Start::
CreateRestorePoint:
C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
C:\Users\scarf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stray\Stray.lnk
C:\Users\scarf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stray\Uninstall.lnk
C:\Users\scarf\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Death Stranding.lnk
HKU\S-1-5-21-2277654708-3986498821-1161186268-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\scarf\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Brak pliku)
HKU\S-1-5-21-2277654708-3986498821-1161186268-1002\...\RunOnce: [Uninstall 25.091.0512.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\scarf\AppData\Local\Microsoft\OneDrive\25.091.0512.0001" [0 2025-06-22] () <==== UWAGA [zerobajtowy plik/folder]
Task: {8A23270E-E56F-48C9-BB7B-611AE5B0AB81} - System32\Tasks\DESKTOP-PKCT45J => C:\Users\scarf\AppData\Roaming\Microsoft\Windows\\AutoIt3.exe  -> C:\Users\scarf\AppData\Roaming\Microsoft\Windows\DESKTOP-PKCT45J.au3 <==== UWAGA
Task: {3A6DB6F9-A355-420A-B6E0-7C54D12F4033} - System32\Tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo => C:\WINDOWS\system32\gatherNetworkInfo.vbs [88781 2019-12-07] (Microsoft Windows -> )
Task: {B247774A-B150-4076-BF14-73B264E8B452} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => %ProgramFiles%\rempl\remsh.exe  /RunUsoScanOnly (Brak pliku)
Edge HKU\S-1-5-21-2277654708-3986498821-1161186268-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx <nie znaleziono>
Edge HKU\S-1-5-21-2277654708-3986498821-1161186268-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx <nie znaleziono>
Edge HKU\S-1-5-21-2277654708-3986498821-1161186268-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx <nie znaleziono>
FF HKU\S-1-5-21-2277654708-3986498821-1161186268-1002\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\scarf\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => nie znaleziono
FF Plugin HKU\S-1-5-21-2277654708-3986498821-1161186268-1002: @acestream.net/acestreamplugin,version=3.2.8 -> C:\Users\scarf\AppData\Roaming\ACEStream\player\npace_plugin.dll [Brak pliku]
S3 cpuz149; \??\C:\Users\scarf\AppData\Local\Temp\cpuz149\cpuz149_x64.sys [X] <==== UWAGA
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
FirewallRules: [{E2BFC7BA-F9DB-4382-A91D-169A7DE96F65}] => (Block) D:\Gry\Fishing North Atlantic\FNA.exe => Brak pliku
FirewallRules: [UDP Query User{0FCC6C31-3612-4FE7-A87D-3F0300C322D5}D:\gry\fishing north atlantic\fna\binaries\win64\fna-win64-shipping.exe] => (Block) D:\gry\fishing north atlantic\fna\binaries\win64\fna-win64-shipping.exe => Brak pliku
FirewallRules: [TCP Query User{F09E3625-F219-4133-86BA-B144C92D22ED}D:\gry\fishing north atlantic\fna\binaries\win64\fna-win64-shipping.exe] => (Block) D:\gry\fishing north atlantic\fna\binaries\win64\fna-win64-shipping.exe => Brak pliku
FirewallRules: [{4E0899DB-DCCB-4468-9825-D140CA0CB600}] => (Block) D:\Gry\Fast and Furious Crossroads\FFCROSSROADS.exe => Brak pliku
FirewallRules: [UDP Query User{E938E310-99A4-495A-A388-E92F5B4B21DF}D:\gry\wrc 9\wrc9.exe] => (Allow) D:\gry\wrc 9\wrc9.exe => Brak pliku
FirewallRules: [TCP Query User{238CB2D8-C6B7-49A2-A305-0E2CADB1B5D1}D:\gry\wrc 9\wrc9.exe] => (Allow) D:\gry\wrc 9\wrc9.exe => Brak pliku
FirewallRules: [UDP Query User{D877E905-CA10-4C07-9AA5-3D7E301F4949}D:\gry\wrc 9 fia world rally championship\wrc9.exe] => (Allow) D:\gry\wrc 9 fia world rally championship\wrc9.exe => Brak pliku
FirewallRules: [TCP Query User{7D49CD60-5ADA-4DAD-97DB-7F212BF32294}D:\gry\wrc 9 fia world rally championship\wrc9.exe] => (Allow) D:\gry\wrc 9 fia world rally championship\wrc9.exe => Brak pliku
FirewallRules: [UDP Query User{49227ED3-C87F-4F9E-86FB-903A2A890ACD}D:\gry\microsoft flight simulator\flightsimulator.exe] => (Allow) D:\gry\microsoft flight simulator\flightsimulator.exe => Brak pliku
FirewallRules: [TCP Query User{1AE3DF80-D43E-40C3-BD46-13DCA24AEC33}D:\gry\microsoft flight simulator\flightsimulator.exe] => (Allow) D:\gry\microsoft flight simulator\flightsimulator.exe => Brak pliku
FirewallRules: [{6736502E-D09C-4331-9A13-546A894740B3}] => (Block) D:\Gry\Far Cry New Dawn\bin\FarCryNewDawn.exe => Brak pliku
FirewallRules: [{DE51C0C1-1F61-4AF9-94F4-C27C1E2A9D2D}] => (Block) D:\Gry\Mafia II Definitive Edition\pc\Mafia II Definitive Edition.exe => Brak pliku
FirewallRules: [{63136887-D1DC-42F6-82E8-9D08F04E3660}] => (Block) D:\Gry\Need for Speed Heat\NeedForSpeedHeat.exe => Brak pliku
FirewallRules: [{3B609DD8-EC46-43E8-9DA8-A30B1FA719B2}] => (Block) D:\Gry\Need for Speed Heat\NeedForSpeedHeat.exe => Brak pliku
FirewallRules: [UDP Query User{518AE46C-ED12-449A-A5D9-28C2F60D6BC9}D:\gry\need for speed heat\needforspeedheat.exe] => (Block) D:\gry\need for speed heat\needforspeedheat.exe => Brak pliku
FirewallRules: [TCP Query User{094C793F-F9E9-483F-BCE7-285A1EF1F511}D:\gry\need for speed heat\needforspeedheat.exe] => (Block) D:\gry\need for speed heat\needforspeedheat.exe => Brak pliku
FirewallRules: [UDP Query User{73E9EAC0-60E6-476C-A944-FE57B7628F18}D:\gry\far cry 3\bin\farcry3.exe] => (Block) D:\gry\far cry 3\bin\farcry3.exe => Brak pliku
FirewallRules: [TCP Query User{73BF77B0-77B9-44D3-90CF-29C1BD7E9742}D:\gry\far cry 3\bin\farcry3.exe] => (Block) D:\gry\far cry 3\bin\farcry3.exe => Brak pliku
FirewallRules: [UDP Query User{FE9C675A-E277-4F5E-9A21-7612AA39A578}D:\gry\call of duty black ops iii\blackops3.exe] => (Block) D:\gry\call of duty black ops iii\blackops3.exe => Brak pliku
FirewallRules: [TCP Query User{D50C05B9-A5EB-4DC6-92AE-265DCE605EF3}D:\gry\call of duty black ops iii\blackops3.exe] => (Block) D:\gry\call of duty black ops iii\blackops3.exe => Brak pliku
FirewallRules: [UDP Query User{EE5BCFA8-E6FC-4CCF-9670-2B8E112B08E4}D:\gry\steam\steamapps\common\dakar 18\dakar18game\binaries\win64\dakar18game-win64-shipping.exe] => (Allow) D:\gry\steam\steamapps\common\dakar 18\dakar18game\binaries\win64\dakar18game-win64-shipping.exe => Brak pliku
FirewallRules: [TCP Query User{17092C8F-F04A-4E41-8629-0EB3414F8409}D:\gry\steam\steamapps\common\dakar 18\dakar18game\binaries\win64\dakar18game-win64-shipping.exe] => (Allow) D:\gry\steam\steamapps\common\dakar 18\dakar18game\binaries\win64\dakar18game-win64-shipping.exe => Brak pliku
FirewallRules: [UDP Query User{CD531F67-7601-4114-A6A7-1CE5EB9FF6C9}D:\gry\far cry 3\bin\farcry3.exe] => (Block) D:\gry\far cry 3\bin\farcry3.exe => Brak pliku
FirewallRules: [TCP Query User{0E19FFCD-B17B-462D-928D-0343ADE370C8}D:\gry\far cry 3\bin\farcry3.exe] => (Block) D:\gry\far cry 3\bin\farcry3.exe => Brak pliku
FirewallRules: [UDP Query User{6A42F12F-DF6E-4875-A2BC-25A3118BD76B}D:\użytki\5\vsodownloader.exe] => (Allow) D:\użytki\5\vsodownloader.exe => Brak pliku
FirewallRules: [TCP Query User{08A91327-8F8B-45BC-9966-7BECDD7013B1}D:\użytki\5\vsodownloader.exe] => (Allow) D:\użytki\5\vsodownloader.exe => Brak pliku
FirewallRules: [UDP Query User{FAA1C966-EA7E-448A-A724-EFA6DE1D4834}D:\gry\need for speed most wanted limited edition\nfs13.exe] => (Block) D:\gry\need for speed most wanted limited edition\nfs13.exe => Brak pliku
FirewallRules: [TCP Query User{DD4142FC-537C-499A-B79A-33744957839E}D:\gry\need for speed most wanted limited edition\nfs13.exe] => (Block) D:\gry\need for speed most wanted limited edition\nfs13.exe => Brak pliku
FirewallRules: [UDP Query User{65649003-6141-4BC7-B66A-FF50736379A0}D:\gry\tom clancys rainbow six siege operation blood orchid\rainbowsix.exe] => (Block) D:\gry\tom clancys rainbow six siege operation blood orchid\rainbowsix.exe => Brak pliku
FirewallRules: [TCP Query User{E942E73E-1C55-49C1-8A9D-10826B410F17}D:\gry\tom clancys rainbow six siege operation blood orchid\rainbowsix.exe] => (Block) D:\gry\tom clancys rainbow six siege operation blood orchid\rainbowsix.exe => Brak pliku
FirewallRules: [UDP Query User{A1C2587F-E136-4B18-9CAE-FCE10183A3A8}D:\gry\call of duty - infinite warfare\iw7_ship.exe] => (Block) D:\gry\call of duty - infinite warfare\iw7_ship.exe => Brak pliku
FirewallRules: [TCP Query User{212D01BC-A7E8-429E-994C-8EB5C91377F6}D:\gry\call of duty - infinite warfare\iw7_ship.exe] => (Block) D:\gry\call of duty - infinite warfare\iw7_ship.exe => Brak pliku
FirewallRules: [UDP Query User{CDEF155C-A3ED-403A-B77E-6A8FBE7B9FA0}D:\gry\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) D:\gry\beamng.drive\bin64\beamng.drive.x64.exe => Brak pliku
FirewallRules: [TCP Query User{BEFC826B-64BB-45DC-A17E-581F7CBA35E0}D:\gry\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) D:\gry\beamng.drive\bin64\beamng.drive.x64.exe => Brak pliku
FirewallRules: [UDP Query User{444877B2-5996-49E8-B99D-82E1369409E7}D:\gry\sniper ghost warrior 3\win_x64\sgw3.exe] => (Block) D:\gry\sniper ghost warrior 3\win_x64\sgw3.exe => Brak pliku
FirewallRules: [TCP Query User{6208272D-1F8D-4654-B71E-B835C9B73070}D:\gry\sniper ghost warrior 3\win_x64\sgw3.exe] => (Block) D:\gry\sniper ghost warrior 3\win_x64\sgw3.exe => Brak pliku
FirewallRules: [UDP Query User{D392A778-9E07-40B1-85A6-101543D3F377}D:\gry\assetto corsa\acs.exe] => (Block) D:\gry\assetto corsa\acs.exe => Brak pliku
FirewallRules: [TCP Query User{F4890FC2-7EF6-40C2-9BE5-68B3956187AC}D:\gry\assetto corsa\acs.exe] => (Block) D:\gry\assetto corsa\acs.exe => Brak pliku
FirewallRules: [UDP Query User{813BCB8B-6475-480B-AD1E-358ECB43D2F4}D:\gry\geteven\binaries\win64\geteven.exe] => (Block) D:\gry\geteven\binaries\win64\geteven.exe => Brak pliku
FirewallRules: [TCP Query User{58994DDA-AE9E-4669-A824-8DD46DDEE776}D:\gry\geteven\binaries\win64\geteven.exe] => (Block) D:\gry\geteven\binaries\win64\geteven.exe => Brak pliku
FirewallRules: [UDP Query User{6455F364-0AA8-4258-81C4-330DC248EFF0}D:\gry\city car driving\bin\win32\starter.exe] => (Block) D:\gry\city car driving\bin\win32\starter.exe => Brak pliku
FirewallRules: [TCP Query User{B2A3E168-05DA-422F-B941-6C25D6F86973}D:\gry\city car driving\bin\win32\starter.exe] => (Block) D:\gry\city car driving\bin\win32\starter.exe => Brak pliku
FirewallRules: [UDP Query User{1B9E3514-677F-4626-A312-DDF51ED9E42C}D:\gry\quantum break\dx11\quantumbreak.exe] => (Block) D:\gry\quantum break\dx11\quantumbreak.exe => Brak pliku
FirewallRules: [TCP Query User{E44907CF-D04E-4C2A-89F6-37715BDFB1CF}D:\gry\quantum break\dx11\quantumbreak.exe] => (Block) D:\gry\quantum break\dx11\quantumbreak.exe => Brak pliku
FirewallRules: [UDP Query User{82D2373D-8C78-40CA-AEE4-A31F132DA194}D:\gry\max payne 3\max payne 3\maxpayne3.exe] => (Allow) D:\gry\max payne 3\max payne 3\maxpayne3.exe => Brak pliku
FirewallRules: [TCP Query User{1990792C-18F9-483F-9C0D-DD284E25C88B}D:\gry\max payne 3\max payne 3\maxpayne3.exe] => (Allow) D:\gry\max payne 3\max payne 3\maxpayne3.exe => Brak pliku
FirewallRules: [UDP Query User{04062972-48C4-490F-9E09-11132551BD4C}D:\gry\max payne 3\max payne 3\maxpayne3.exe] => (Block) D:\gry\max payne 3\max payne 3\maxpayne3.exe => Brak pliku
FirewallRules: [TCP Query User{25294EC0-DE61-4009-8C8A-69908878E858}D:\gry\max payne 3\max payne 3\maxpayne3.exe] => (Block) D:\gry\max payne 3\max payne 3\maxpayne3.exe => Brak pliku
FirewallRules: [UDP Query User{413E1CC1-85B9-4C75-9F24-60FE0B517581}D:\gry\call of duty black ops iii\blackops3.exe] => (Block) D:\gry\call of duty black ops iii\blackops3.exe => Brak pliku
FirewallRules: [TCP Query User{12C1114C-1804-4D48-9DB2-0166295D5C77}D:\gry\call of duty black ops iii\blackops3.exe] => (Block) D:\gry\call of duty black ops iii\blackops3.exe => Brak pliku
FirewallRules: [{EB6AEB47-87DA-4115-8D9C-7776F06AE816}] => (Block) %SystemRoot%\System32\daemon.exe => Brak pliku
FirewallRules: [{44FF02CD-31D6-4C9F-A245-324AB1B3E591}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe => Brak pliku
FirewallRules: [{4F5F08F9-EB9D-4213-9776-7464F5ABAF11}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => Brak pliku
FirewallRules: [{C614B7F4-17C4-42EF-B605-2C9D7A0A253B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => Brak pliku
FirewallRules: [{7EA654FA-617B-42EF-A53F-ECB3C45C7544}] => (Block) D:\Gry\Mafia III\mafia3.exe => Brak pliku
FirewallRules: [{531A617F-9906-4032-B134-C97B6D4BFCD8}] => (Allow) D:\Gry\Steam\bin\cef\cef.win7\steamwebhelper.exe => Brak pliku
FirewallRules: [{7CAB27E9-E5E0-4569-9322-4DCC3178E316}] => (Allow) D:\Gry\Steam\bin\cef\cef.win7\steamwebhelper.exe => Brak pliku
FirewallRules: [TCP Query User{BEC8FC77-46ED-4720-891C-93A2C8FAF37E}D:\gry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\gry\kingdom come deliverance\bin\win64\kingdomcome.exe => Brak pliku
FirewallRules: [UDP Query User{BF50EEE8-9D83-4CCD-A018-674C3CE70139}D:\gry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\gry\kingdom come deliverance\bin\win64\kingdomcome.exe => Brak pliku
FirewallRules: [TCP Query User{3597FDEE-104E-4859-A2F8-7E5B07FF2744}D:\gry\theworksofmercy.tech.story.demo\windowsnoeditor\theworksofmercy\binaries\win64\theworksofmercy-win64-shipping.exe] => (Block) D:\gry\theworksofmercy.tech.story.demo\windowsnoeditor\theworksofmercy\binaries\win64\theworksofmercy-win64-shipping.exe => Brak pliku
FirewallRules: [UDP Query User{7845FA12-52B3-41F8-8C46-210EB6A6B0EE}D:\gry\theworksofmercy.tech.story.demo\windowsnoeditor\theworksofmercy\binaries\win64\theworksofmercy-win64-shipping.exe] => (Block) D:\gry\theworksofmercy.tech.story.demo\windowsnoeditor\theworksofmercy\binaries\win64\theworksofmercy-win64-shipping.exe => Brak pliku
FirewallRules: [{BCF8A26B-532F-4BBA-9638-687EC6D23321}] => (Block) D:\Gry\Far Cry New Dawn\bin\FarCryNewDawn.exe => Brak pliku
FirewallRules: [TCP Query User{7C76F82C-2770-44C1-ACC1-2AC63C4569D3}D:\gry\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Block) D:\gry\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe => Brak pliku
FirewallRules: [UDP Query User{BB78CA42-9CFE-46E0-8F4E-FC72AE9BAE93}D:\gry\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Block) D:\gry\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe => Brak pliku
FirewallRules: [{5CEE504D-A4AF-44A5-A2F2-75172B13BD57}] => (Block) D:\Gry\WRC 8 FIA World Rally Championship\WRC8.exe => Brak pliku
FirewallRules: [{40849578-6AA4-4437-ABA7-1FE3E468B451}] => (Block) D:\Gry\PGA TOUR 2K21\golf.exe => Brak pliku
FirewallRules: [{5959B00A-5041-47C8-A5F6-913AAE8AD0D1}] => (Block) D:\Gry\WRC 9 FIA World Rally Championship\WRC9.exe => Brak pliku
FirewallRules: [TCP Query User{20EC5766-0ABF-44BE-A3EF-A8A62D11AB0D}D:\gry\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Block) D:\gry\cyberpunk 2077\bin\x64\cyberpunk2077.exe => Brak pliku
FirewallRules: [UDP Query User{A99723F4-0BCA-48F5-94AB-A64F92796F66}D:\gry\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Block) D:\gry\cyberpunk 2077\bin\x64\cyberpunk2077.exe => Brak pliku
FirewallRules: [TCP Query User{F0F72848-1BA1-4386-B2F6-55F580D7CEBE}D:\gry\assetto corsa\acs.exe] => (Block) D:\gry\assetto corsa\acs.exe => Brak pliku
FirewallRules: [UDP Query User{1BA97085-7C41-4DB3-9BA5-9D1A4BFD3C11}D:\gry\assetto corsa\acs.exe] => (Block) D:\gry\assetto corsa\acs.exe => Brak pliku
FirewallRules: [{B6F4A4E9-A15A-4617-A8EC-5DE4B856E96B}] => (Block) D:\Gry\Assetto Corsa\AssettoCorsa.exe => Brak pliku
FirewallRules: [{8BE529BF-AA51-4442-BE09-5697980139E4}] => (Block) D:\Gry\SnowRunner\Sources\Bin\SnowRunner.exe => Brak pliku
FirewallRules: [TCP Query User{491C1C21-14D9-4097-AA76-3DA8F8322A77}D:\gry\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\gry\microsoft flight simulator 2020\flightsimulator.exe => Brak pliku
FirewallRules: [UDP Query User{B7674388-C1DF-47A5-B38F-42C72F762845}D:\gry\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\gry\microsoft flight simulator 2020\flightsimulator.exe => Brak pliku
FirewallRules: [{CAC595A7-0BF5-4B43-AE5D-F1E75AA41EA1}] => (Block) D:\Gry\Tour de France 2021\TDF.exe => Brak pliku
FirewallRules: [{79814C8C-F4C5-4358-9568-A54E7697F81B}] => (Block) D:\Gry\Heliborne Collection\heliborne-launcher.exe => Brak pliku
FirewallRules: [{4C0C7917-74BB-4EF6-BC9B-272A7A536EBD}] => (Block) D:\Gry\Drift21\Drift21.exe => Brak pliku
FirewallRules: [{305B881A-BDEE-4346-8E05-6015E5504BE5}] => (Block) D:\Gry\Open Country\OutdoorAdventures\Binaries\Win64\OutdoorAdventures.exe => Brak pliku
FirewallRules: [{D129F8F4-CE92-4C94-81C8-5E1926430769}] => (Block) D:\Gry\Land of War - The Beginning\Land_of_War.exe => Brak pliku
FirewallRules: [TCP Query User{B511633C-7D74-4933-BDBD-A43155DBFB2B}D:\download\city.car.driving.v1.5.9.2\city.car.driving.v1.5.9.2\bin\win32\starter.exe] => (Block) D:\download\city.car.driving.v1.5.9.2\city.car.driving.v1.5.9.2\bin\win32\starter.exe => Brak pliku
FirewallRules: [UDP Query User{CB03263D-4561-4AED-BABE-D2A252810173}D:\download\city.car.driving.v1.5.9.2\city.car.driving.v1.5.9.2\bin\win32\starter.exe] => (Block) D:\download\city.car.driving.v1.5.9.2\city.car.driving.v1.5.9.2\bin\win32\starter.exe => Brak pliku
FirewallRules: [{A4165C76-4DD7-44FC-8420-A1696A298532}] => (Block) D:\Gry\Tokyo2020\musashi.exe => Brak pliku
FirewallRules: [TCP Query User{F7BD7570-6D94-44DE-8934-811FDA15BFDE}D:\download\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe] => (Block) D:\download\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe => Brak pliku
FirewallRules: [UDP Query User{CF5F1485-C15A-4669-80A5-697904C8CD60}D:\download\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe] => (Block) D:\download\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe => Brak pliku
FirewallRules: [{23E8C258-DDC2-43FF-92DC-4507F9DF23AC}] => (Block) D:\Gry\Police.Simulator.Patrol.Officers.Early.Access\Police Simulator Patrol Officers\Boston.exe => Brak pliku
FirewallRules: [TCP Query User{9CD16231-ADC0-45D5-A613-DA5D2C860954}D:\gry\insurgency.sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Block) D:\gry\insurgency.sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Brak pliku
FirewallRules: [UDP Query User{2246429F-20FB-4F87-8987-401088750D88}D:\gry\insurgency.sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Block) D:\gry\insurgency.sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Brak pliku
FirewallRules: [TCP Query User{6E895721-1C1B-4D89-AFCF-43B7AB19F3A4}D:\gry\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe] => (Block) D:\gry\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe => Brak pliku
FirewallRules: [UDP Query User{21626BA1-4A84-4A19-8852-0938984A75E7}D:\gry\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe] => (Block) D:\gry\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe => Brak pliku
FirewallRules: [TCP Query User{7B0774B3-5BF7-4393-9B34-F65BF5FB2588}E:\cfg\ieembed.exe] => (Allow) E:\cfg\ieembed.exe => Brak pliku
FirewallRules: [UDP Query User{185ED3BE-F587-46FE-A0EA-6A1A009B1292}E:\cfg\ieembed.exe] => (Allow) E:\cfg\ieembed.exe => Brak pliku
FirewallRules: [{3DD2B5F3-A0DC-400A-90A1-F4E81BBEA619}] => (Block) D:\Gry\WRC 10 FIA World Rally Championship\WRC10.exe => Brak pliku
FirewallRules: [{9F81D5EB-87CF-4ABF-9111-7C92CCC02350}] => (Block) D:\Gry\F1 2020\F1_2020.exe => Brak pliku
FirewallRules: [TCP Query User{BCF5A3B2-C7C4-4143-960D-0561B797E6F0}D:\użytki\tixati\tixati.exe] => (Allow) D:\użytki\tixati\tixati.exe => Brak pliku
FirewallRules: [UDP Query User{07D0FDB9-2B0E-4328-9F2A-F8C2B482DB41}D:\użytki\tixati\tixati.exe] => (Allow) D:\użytki\tixati\tixati.exe => Brak pliku
FirewallRules: [TCP Query User{BE7224B2-DE65-4675-98C2-20DED3678EC8}D:7\forzahorizon5.exe] => (Allow) D:7\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{1EB38F50-10C6-47FC-A53C-B0D76E61279B}D:7\forzahorizon5.exe] => (Allow) D:7\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{5E7A6A35-FA7D-4BFA-8949-80136D52C817}D:\gry\far cry 6\bin\farcry6.exe] => (Block) D:\gry\far cry 6\bin\farcry6.exe => Brak pliku
FirewallRules: [UDP Query User{EBC3D890-8CAC-45E1-85E4-063071EED59D}D:\gry\far cry 6\bin\farcry6.exe] => (Block) D:\gry\far cry 6\bin\farcry6.exe => Brak pliku
FirewallRules: [TCP Query User{8FA516E5-9ED1-4281-9D1B-7C9792D7ACBE}D:9\forzahorizon5.exe] => (Allow) D:9\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{61FCDB8C-6D97-4671-8094-768CCF89B343}D:9\forzahorizon5.exe] => (Allow) D:9\forzahorizon5.exe => Brak pliku
FirewallRules: [{BB91C0FD-1B2B-40FF-BBE9-493613A099BD}] => (Block) D:\Gry\Games\Stray\Stray.exe => Brak pliku
FirewallRules: [TCP Query User{EDFF1739-24E8-4377-806F-2B9498EF14ED}C:8\forzahorizon5.exe] => (Allow) C:8\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{C1531B26-9E1D-4FE1-9BEC-834643C494A6}C:8\forzahorizon5.exe] => (Allow) C:8\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{42E8FCFA-9753-4EA5-AC13-D2F3E12BEBC8}D:\gry\arma reforger\armareforgersteam.exe] => (Block) D:\gry\arma reforger\armareforgersteam.exe => Brak pliku
FirewallRules: [UDP Query User{0C263EBD-FD0B-4653-89C0-9FB48F49D176}D:\gry\arma reforger\armareforgersteam.exe] => (Block) D:\gry\arma reforger\armareforgersteam.exe => Brak pliku
FirewallRules: [TCP Query User{5D7BF038-4274-4DF1-8A43-FE91578D75E4}C:2\forzahorizon5.exe] => (Allow) C:2\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{6B4BB5EA-A9EE-4925-8E50-34249859F4AD}C:2\forzahorizon5.exe] => (Allow) C:2\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{9696FE8F-2C5A-4560-A5C7-A13218D21654}D:\gry\nhra championship drag racing sfa\nhra\binaries\win64\nhra-win64-shipping.exe] => (Block) D:\gry\nhra championship drag racing sfa\nhra\binaries\win64\nhra-win64-shipping.exe => Brak pliku
FirewallRules: [UDP Query User{FC51F2B6-9F19-49B0-9BB9-7AC36E16F156}D:\gry\nhra championship drag racing sfa\nhra\binaries\win64\nhra-win64-shipping.exe] => (Block) D:\gry\nhra championship drag racing sfa\nhra\binaries\win64\nhra-win64-shipping.exe => Brak pliku
FirewallRules: [TCP Query User{5910D710-BC27-4876-AF5F-FD7C9C4820B2}C:6\forzahorizon5.exe] => (Allow) C:6\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{70F411F6-2F6D-40C3-AD3B-562F4B83677D}C:6\forzahorizon5.exe] => (Allow) C:6\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{D8BA81AD-D676-42CB-9D9D-66667ED17574}D:3\forzahorizon5.exe] => (Allow) D:3\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{9ED136B8-CD78-46BA-8CDE-AFDEEE9823FB}D:3\forzahorizon5.exe] => (Allow) D:3\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{8997CF17-375C-4E28-A3D7-F1FF3320878B}C:4\forzahorizon5.exe] => (Allow) C:4\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{698269FA-A255-40E9-B411-4E6D4B4D94CE}C:4\forzahorizon5.exe] => (Allow) C:4\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{74B9816C-53EE-43CD-A504-45204C88BBAD}C:0\forzahorizon5.exe] => (Allow) C:0\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{4F982CF0-9728-4C00-885E-68457D24F751}C:0\forzahorizon5.exe] => (Allow) C:0\forzahorizon5.exe => Brak pliku
FirewallRules: [{44633638-592E-438F-B399-06069269292E}] => (Block) D:\Gry\WRC Generations - The FIA WRC Official Game\WRCG.exe => Brak pliku
FirewallRules: [TCP Query User{14C33A45-AF3D-45E3-BBD7-DB1F0CE18A3D}C:7\forzahorizon5.exe] => (Allow) C:7\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{8A5D0C0C-0A9A-4923-9CC2-3C858F4FD014}C:7\forzahorizon5.exe] => (Allow) C:7\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{C1188506-ADDF-4185-9991-1054BAFF288F}D:1\forzahorizon5.exe] => (Allow) D:1\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{FDDD53EB-9D96-45E0-ACC8-03A8A6955B50}D:1\forzahorizon5.exe] => (Allow) D:1\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{6AB69741-02E7-4CAE-A9D7-D818583BF844}C:1\forzahorizon5.exe] => (Allow) C:1\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{E552F056-067E-4A38-A55F-04A347F4B6BE}C:1\forzahorizon5.exe] => (Allow) C:1\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{6D1A85CE-A897-4FC4-991A-506DDB55D5DD}C:5\forzahorizon5.exe] => (Allow) C:5\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{6BEB3919-540A-42FB-A807-7587AFE7C336}C:5\forzahorizon5.exe] => (Allow) C:5\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{13CA53E2-6981-4953-BE32-21D05E8CA4BA}D:6\forzahorizon5.exe] => (Allow) D:6\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{FC78E59F-AEC0-4186-8CF4-67F21C5079E7}D:6\forzahorizon5.exe] => (Allow) D:6\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{F5ADEC03-38D3-4707-8AA1-FCC69AD918F3}D:8\forzahorizon5.exe] => (Allow) D:8\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{44CB0D3E-B4B0-4C38-8D11-F97CE1B9585B}D:8\forzahorizon5.exe] => (Allow) D:8\forzahorizon5.exe => Brak pliku
FirewallRules: [TCP Query User{F16CA8FD-CDE9-44E0-82B3-7A282226448B}D:2\forzahorizon5.exe] => (Allow) D:2\forzahorizon5.exe => Brak pliku
FirewallRules: [UDP Query User{88168214-430F-4F3D-B92D-CD43BC8D2C8D}D:2\forzahorizon5.exe] => (Allow) D:2\forzahorizon5.exe => Brak pliku
FirewallRules: [{E3C60BB8-12C7-4A8E-B105-09467C912EF9}] => (Block) D:\Gry\TramSim Munich HAPPY XMAS\TramSimVienna.exe => Brak pliku
FirewallRules: [TCP Query User{961D6C5A-EB30-4976-844D-D5D2CAB947B0}C:\program files\podpis gov\jre\bin\javaw.exe] => (Allow) C:\program files\podpis gov\jre\bin\javaw.exe => Brak pliku
FirewallRules: [UDP Query User{A894459C-55AE-4DB8-A5F0-676D35FBBC3B}C:\program files\podpis gov\jre\bin\javaw.exe] => (Allow) C:\program files\podpis gov\jre\bin\javaw.exe => Brak pliku
FirewallRules: [TCP Query User{70D7D11B-BC60-48FC-A14D-39E8D3208C44}D:\gry\heavy duty challenge the off road truck simulator\hdc.exe] => (Block) D:\gry\heavy duty challenge the off road truck simulator\hdc.exe => Brak pliku
FirewallRules: [UDP Query User{8740680F-8B20-40D2-A6D6-2EADD6909CCA}D:\gry\heavy duty challenge the off road truck simulator\hdc.exe] => (Block) D:\gry\heavy duty challenge the off road truck simulator\hdc.exe => Brak pliku
FirewallRules: [{385C1791-5585-4892-974C-08BE2221AB90}] => (Block) D:\Gry\Games\Forza Motorsport\forza_gaming.desktop.x64_release_final.exe => Brak pliku
FirewallRules: [{3E91BFAF-70F6-42C7-A8BB-D0C24059CEEC}] => (Block) D:\Gry\Games\Dakar Desert Rally\Dakar2Game.exe => Brak pliku
FirewallRules: [{22B4A28F-0E64-4730-B71D-FD1E29A6CF97}] => (Block) D:\Gry\Games\Arma Reforger\ArmaReforgerSteam.exe => Brak pliku
FirewallRules: [TCP Query User{3ADB413F-1782-4FC2-87FA-86333DABB0E7}D:\gry\beamng.drive.v0.30.6\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) D:\gry\beamng.drive.v0.30.6\beamng.drive\bin64\beamng.drive.x64.exe => Brak pliku
FirewallRules: [UDP Query User{B5BEF60C-9D06-47C9-83EB-8836D0708A35}D:\gry\beamng.drive.v0.30.6\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) D:\gry\beamng.drive.v0.30.6\beamng.drive\bin64\beamng.drive.x64.exe => Brak pliku
FirewallRules: [TCP Query User{CB51D83D-C417-4174-989C-BEB856373971}D:\gry\le.mans.ultimate.early.access\le mans ultimate.exe] => (Block) D:\gry\le.mans.ultimate.early.access\le mans ultimate.exe => Brak pliku
FirewallRules: [UDP Query User{2A600727-3DBA-4091-B2EA-7FD8D4E3AFE0}D:\gry\le.mans.ultimate.early.access\le mans ultimate.exe] => (Block) D:\gry\le.mans.ultimate.early.access\le mans ultimate.exe => Brak pliku
FirewallRules: [TCP Query User{5C46CBA5-A148-48AD-AE66-125369097338}D:\gry\fallout 4\creationkit.exe] => (Block) D:\gry\fallout 4\creationkit.exe => Brak pliku
FirewallRules: [UDP Query User{748247AA-E492-4AD1-BB45-1EB8A142BFCF}D:\gry\fallout 4\creationkit.exe] => (Block) D:\gry\fallout 4\creationkit.exe => Brak pliku
FirewallRules: [{756D1A3B-CFA9-41F1-82C2-EC5FB0937FC4}] => (Block) D:\Gry\CarX Street\CarX Street.exe => Brak pliku
FirewallRules: [TCP Query User{9D6A9F5C-1D60-4EF1-B923-9429512E00BA}D:\gry\pista motorsport\pistamotorsport.exe] => (Block) D:\gry\pista motorsport\pistamotorsport.exe => Brak pliku
FirewallRules: [UDP Query User{093D9759-1F32-46A2-8FD1-DE10C337A0A2}D:\gry\pista motorsport\pistamotorsport.exe] => (Block) D:\gry\pista motorsport\pistamotorsport.exe => Brak pliku
FirewallRules: [TCP Query User{B5CBF6F0-F187-4926-91DD-5B1B877A3675}D:\gry\le mans ultimate\le mans ultimate.exe] => (Block) D:\gry\le mans ultimate\le mans ultimate.exe => Brak pliku
FirewallRules: [UDP Query User{0AE576E0-631A-4EB2-A425-2E861ECF237A}D:\gry\le mans ultimate\le mans ultimate.exe] => (Block) D:\gry\le mans ultimate\le mans ultimate.exe => Brak pliku
FirewallRules: [{D0073EF6-04FE-4978-8AD1-EC79C392E104}] => (Block) D:\Gry\Le Mans Ultimate\Le Mans Ultimate.exe => Brak pliku
FirewallRules: [TCP Query User{E18D9E71-F59E-4D7F-BC94-F909E4F18F27}D:\gry\ships at sea\sas\binaries\win64\sas-win64-shipping.exe] => (Block) D:\gry\ships at sea\sas\binaries\win64\sas-win64-shipping.exe => Brak pliku
FirewallRules: [UDP Query User{509EA8A8-5603-4AC2-99C1-9201875A593E}D:\gry\ships at sea\sas\binaries\win64\sas-win64-shipping.exe] => (Block) D:\gry\ships at sea\sas\binaries\win64\sas-win64-shipping.exe => Brak pliku
FirewallRules: [{80F0BF24-43CD-430B-A93C-F87C1AAE5F35}] => (Block) D:\Gry\Ships At Sea\Sas.exe => Brak pliku
FirewallRules: [TCP Query User{F96AA24D-DAD7-480F-B9C0-5CB659781D0D}D:\download\ohv.v2024.12.31\ohv.v2024.12.31\ohv\ohv.exe] => (Block) D:\download\ohv.v2024.12.31\ohv.v2024.12.31\ohv\ohv.exe => Brak pliku
FirewallRules: [UDP Query User{BC81B6B8-FFE7-4A72-81D7-200ABD17267C}D:\download\ohv.v2024.12.31\ohv.v2024.12.31\ohv\ohv.exe] => (Block) D:\download\ohv.v2024.12.31\ohv.v2024.12.31\ohv\ohv.exe => Brak pliku
EmptyTemp:
End::

 

Fixlist przeznaczona tylko dla autora tematu!

W FRST kliknij opcję "Napraw" (Fix). Pokaż raport  "fixlog.txt", który otrzymasz po restarcie komputera. Pobierz dodatkowo "Malwaresbytes" . Przeskanuj nim komputer, usuń jeśli coś zostanie jeszcze wykryte i pokaż raport. Pobierz też darmowy "ADWCleaner" i tak samo, skanowanie, usuwanie jeśli coś zostanie wykryte, pokaż raport z usuwania.

[Scarface]

Dziękuje za pomoc. ADW oraz MB nic nie nie wykryło.

Fixlog.txt