Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-02-2021
Uruchomiony przez RAFONIX (administrator)  PCDOMANIA (Gigabyte Technology Co., Ltd. B85M-D3H) (15-02-2021 22:27:02)
Uruchomiony z C:\Users\RAFONIX\Desktop\scan
Załadowane profile: RAFONIX
Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Chrome
Tryb startu: Normal

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

() [Brak podpisu cyfrowego] C:\Program Files (x86)\Elgato\EpocCam\EpocCamService.exe
() [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\PLAY INTERNET\OnlineUpdate\ouc.exe
(Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\alg.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Tim Kosse -> FileZilla Project) C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe

==================== Rejestr (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390912 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-10-16] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [FileZilla Server Interface] => C:\Program Files (x86)\FileZilla Server\FileZilla Server Interface.exe [2770088 2017-02-08] (Tim Kosse -> FileZilla Project)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [8192 2013-04-29] () [Brak podpisu cyfrowego]
HKU\S-1-5-21-2684602908-2750127974-2092376734-1000\...\Run: [MicrosoftEdgeAutoLaunch_AD5FA95BE8F08790752BA957041A8DFC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-2684602908-2750127974-2092376734-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\wiktor\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-11-05] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2684602908-2750127974-2092376734-1002\...\Run: [Discord] => C:\Users\wiktor\AppData\Local\Discord\app-0.0.308\Discord.exe [91023672 2020-09-10] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2684602908-2750127974-2092376734-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-05] (Valve -> Valve Corporation)
HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Run: [Discord] => C:\DiscordSetup\Discord-0.0.308-full\lib\Update.exe --processStart Discord.exe
HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Run: [com.squirrel.Teams.Teams] => C:\Users\RAFONIX\AppData\Local\Microsoft\Teams\Update.exe [2453688 2021-01-26] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32894024 2021-02-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Run: [iVCam] => C:\Program Files\e2eSoft\iVCam\iVCam.exe [5109624 2020-12-25] (Shanghai Yitu Information Technology Co., Ltd. -> )
HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Run: [Voicemod] => C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe [5139088 2021-02-02] (Voicemod Sociedad Limitada -> Voicemod)
HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP1100LM: C:\Windows\system32\HP1100LM.DLL [288768 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe [2021-02-09] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{73c99849-44A8-338b-8B83-3988A20089AA}] -> C:\Windows\system32\OpCredProv64.dll [2020-09-18] (SoftStory G.Zielinski, K.Jez s.c. -> SoftStory)

==================== Zaplanowane zadania (filtrowane) ============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {3352F4A7-F3FE-48F5-9CA6-E3E00A1F1A63} - System32\Tasks\NVIDIA GeForceNow_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Users\RAFONIX\AppData\Local\NVIDIA Corporation\GeForceNOW\CEF\GeForceNOW.exe [3550008 2020-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {518803F5-9054-4001-807A-59EEBF44F39E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-05] (Google LLC -> Google LLC)
Task: {90334C88-89E9-42CE-B434-C205A9CBA542} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693456 2020-12-21] (Mozilla Corporation -> Mozilla Foundation)
Task: {A94DC38F-C72F-4C49-B33E-CF34F8938A5D} - System32\Tasks\Opera GX scheduled Autoupdate 1604418902 => C:\Users\Ania\AppData\Local\Programs\Opera GX\launcher.exe [1654808 2020-10-30] (Opera Software AS -> Opera Software)
Task: {ACFD0F1D-03B7-4A81-8F05-9DCF12AE76BC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-05] (Google LLC -> Google LLC)
Task: {CB04190F-E497-4FF2-9A91-D5C2B08CD8DA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {E54ABA8B-D48D-4B9C-9CE7-AD6F42A0D898} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {F6243B6E-844A-4A0C-A1C0-A53AF6AB07D9} - System32\Tasks\Opera GX scheduled Autoupdate 1604435523 => C:\Users\wiktor\AppData\Local\Programs\Opera GX\launcher.exe [1654808 2020-10-30] (Opera Software AS -> Opera Software)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)


==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{E895A72B-9D9B-414B-8391-59913300D72B}: [DhcpNameServer] 172.20.10.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\RAFONIX\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-16]

FireFox:
========
FF DefaultProfile: 7ew3alkc.default
FF ProfilePath: C:\Users\RAFONIX\AppData\Roaming\Mozilla\Firefox\Profiles\7ew3alkc.default [2021-02-15]
FF ProfilePath: C:\Users\RAFONIX\AppData\Roaming\Mozilla\Firefox\Profiles\nm6wzwbn.default-release [2021-02-15]
FF Extension: (OpiekunWEB) - C:\Users\RAFONIX\AppData\Roaming\Mozilla\Firefox\Profiles\nm6wzwbn.default-release\Extensions\{de912e04-40f3-468f-86ee-6d5725264b5b}.xpi [2021-01-02]
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-11-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-11-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default [2021-02-15]
CHR Notifications: Default -> hxxps://key-drop.com
CHR DefaultSearchURL: Default -> hxxps://sf16-sg.tiktokcdn.com/obj/eden-sg/uvkuhyieh7lpqpbj/pwa/512x512.png
CHR Extension: (Prezentacje) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-12]
CHR Extension: (TikTok) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahoadnkmomodgfkfokbclmabbfdaejpe [2021-02-07]
CHR Extension: (Dokumenty) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-12]
CHR Extension: (Dysk Google) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-12]
CHR Extension: (YouTube) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-12]
CHR Extension: (Arkusze) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12]
CHR Extension: (Notatnik) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfiakonnfjgmaoppaleapjgcpmdimmhe [2020-11-18]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-12]
CHR Extension: (Chrome Media Router) - C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-27]
CHR Profile: C:\Users\RAFONIX\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-15]

Opera: 
=======
StartMenuInternet: (HKU\S-1-5-21-2684602908-2750127974-2092376734-1000) Opera GXStable - "C:\Users\Ania\AppData\Local\Programs\Opera GX\Launcher.exe"
StartMenuInternet: (HKU\S-1-5-21-2684602908-2750127974-2092376734-1002) Opera GXStable - "C:\Users\wiktor\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Usługi (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

"ESProtectionDriver" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ESProtectionDriver => C:\Windows\system32\drivers\mbae64.sys [153312 2021-02-15] (Malwarebytes Corporation -> Malwarebytes) <==== UWAGA (Rootkit!/Zablokowana usługa)
"MBAMChameleon" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MBAMChameleon => \SystemRoot\System32\Drivers\MbamChameleon.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"MBAMFarflt" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MBAMFarflt => system32\DRIVERS\farflt.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"MBAMProtection" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MBAMProtection => \??\C:\Windows\system32\DRIVERS\mbam.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"MBAMWebProtection" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MBAMWebProtection => system32\DRIVERS\mwac.sys <==== UWAGA (Rootkit!/Zablokowana usługa)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-12-16] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-16] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 EpocCamService; C:\Program Files (x86)\Elgato\EpocCam\EpocCamService.exe [782336 2020-12-17] () [Brak podpisu cyfrowego]
R2 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [859304 2017-02-08] (Tim Kosse -> FileZilla Project)
R2 gadjservice; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [16896 2015-04-14] () [Brak podpisu cyfrowego]
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2014-01-15] (Huawei Technologies Co., Ltd. -> )
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-15] (Malwarebytes Inc -> Malwarebytes)
S2 PLAY INTERNET. RunOuc; C:\Program Files (x86)\PLAY INTERNET\UpdateDog\ouc.exe [651856 2013-10-26] (Huawei Technologies Co., Ltd. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1631360 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2020-07-30] (Microsoft Windows -> Microsoft Corporation)
R2 wuauserv; C:\Windows\System32\wuaueng3.dll [2651136 2021-02-15] (Microsoft Corporation) [Brak podpisu cyfrowego]
S4 opiekun; "C:\Program Files (x86)\OpiekunWEB5\Agent\OwFilter\owfilter.exe" [X]
S3 uvnc_service; "C:\Program Files (x86)\OpiekunWEB5\Agent\Vnc\WinVNC.exe" -service [X]

===================== Sterowniki (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 AcpiCtlDrv; C:\Windows\System32\DRIVERS\AcpiCtlDrv.sys [25880 2012-07-17] (Intel(R) Software -> Intel Corporation)
S3 ew_hwusbdev; C:\Windows\System32\DRIVERS\ew_hwusbdev.sys [109568 2013-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\Windows\System32\DRIVERS\ew_usbenumfilter.sys [14976 2012-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 gdrv; C:\Windows\gdrv.sys [26192 2021-02-15] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R3 huawei_enumerator; C:\Windows\System32\DRIVERS\ew_jubusenum.sys [91648 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [125952 2014-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [380672 2014-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iVCam; C:\Windows\System32\DRIVERS\iVCam.sys [1089912 2020-11-03] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft)
R3 kinonivd; C:\Windows\System32\DRIVERS\kinonivd.sys [292560 2020-11-21] (Kinoni Oy -> Windows (R) Win 7 DDK provider)
R3 KINONI_Wave; C:\Windows\System32\drivers\kinonivad.sys [31256 2020-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-02-15] (Malwarebytes Inc -> Malwarebytes)
S3 mtinvme; C:\Windows\system32\drivers\mtinvme.sys [129504 2019-11-05] (Micron Technology, Inc. -> Micron Technology, Inc.)
S3 mv91cons; C:\Windows\system32\drivers\mv91cons.sys [33512 2016-04-13] (Marvell Semiconductor, Inc. -> Marvell Semiconductor Inc.)
S3 mvs91xx; C:\Windows\system32\drivers\mvs91xx.sys [342760 2016-04-13] (Marvell Semiconductor, Inc. -> Marvell Semiconductor, Inc.)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 nvme; C:\Windows\system32\drivers\nvme.sys [77488 2016-08-17] (Lite-On Technology Corporation -> Windows (R) Win 7 DDK provider)
R1 opwebfilter; C:\Windows\System32\drivers\opwebfilter.sys [77624 2020-07-17] (SoftStory G.Zielinski, K.Jez s.c. -> SoftStory)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [8241104 2018-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 secnvme; C:\Windows\system32\drivers\secnvme.sys [90648 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R0 secnvmeF; C:\Windows\System32\drivers\secnvmeF.sys [30456 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
S3 tusb3hub; C:\Windows\system32\drivers\tusb3hub.sys [409128 2017-12-06] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
S3 tusb3xhc; C:\Windows\system32\drivers\tusb3xhc.sys [824872 2017-12-06] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 VOICEMOD_Driver; C:\Windows\System32\drivers\vmdrv.sys [27648 2021-01-10] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
R3 wovad_micarray; C:\Windows\System32\drivers\womic.sys [35696 2017-11-25] (Beijing Wolicheng Technology Co., Ltd. -> Windows (R) Win 7 DDK provider)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [340880 2020-12-22] (Nox Limited -> Nox Limited Corporation)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc (utworzone) (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2021-02-15 21:23 - 2021-02-15 21:23 - 000005949 _____ C:\Users\RAFONIX\Desktop\scanzkompa.txt
2021-02-15 21:16 - 2021-02-15 21:54 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-02-15 21:16 - 2021-02-15 21:16 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-02-15 21:16 - 2021-02-15 21:16 - 000001967 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-02-15 21:16 - 2021-02-15 21:16 - 000001955 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-02-15 21:16 - 2021-02-15 21:16 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\mbam
2021-02-15 21:16 - 2021-02-15 21:16 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-15 21:11 - 2021-02-15 21:11 - 000000000 ____D C:\Program Files\Malwarebytes
2021-02-15 21:04 - 2021-02-15 21:04 - 002040904 _____ (Malwarebytes) C:\Users\RAFONIX\Downloads\MBSetup-076981.076981-Consumer.exe
2021-02-15 20:41 - 2021-02-15 20:42 - 000000000 ____D C:\AdwCleaner
2021-02-15 20:41 - 2021-02-15 20:41 - 008457584 _____ (Malwarebytes) C:\Users\RAFONIX\Downloads\adwcleaner_8.0.9.1.exe
2021-02-15 19:28 - 2021-02-15 19:28 - 000001041 _____ C:\ProgramData\Desktop\Revo Uninstaller.lnk
2021-02-15 19:28 - 2021-02-15 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-02-15 19:28 - 2021-02-15 19:28 - 000000000 ____D C:\Program Files\VS Revo Group
2021-02-15 19:26 - 2021-02-15 19:28 - 007461704 _____ (VS Revo Group ) C:\Users\RAFONIX\Downloads\revosetup.exe
2021-02-15 14:19 - 2021-02-15 14:20 - 002794485 _____ C:\Users\RAFONIX\Desktop\mb_driver_chipset_intel_w10.zip
2021-02-15 13:11 - 2013-08-21 15:16 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2021-02-15 13:09 - 2021-02-15 13:09 - 004499606 _____ (Igor Pavlov) C:\Users\RAFONIX\Desktop\mb_driver_chipset_intel_8series.exe
2021-02-15 11:47 - 2021-02-15 11:49 - 000052638 _____ C:\Users\RAFONIX\Desktop\FRST.txt
2021-02-15 11:45 - 2021-02-15 22:27 - 000000000 ____D C:\Users\RAFONIX\Desktop\scan
2021-02-15 11:45 - 2021-02-15 22:27 - 000000000 ____D C:\FRST
2021-02-13 21:32 - 2021-02-13 21:32 - 000000000 ____D C:\Users\RAFONIX\Desktop\Nowy folder
2021-02-13 21:30 - 2021-02-13 21:30 - 000330853 _____ C:\Users\RAFONIX\Desktop\RealTemp_370.zip
2021-02-13 20:39 - 2021-02-13 21:40 - 000000000 ____D C:\ProgramData\Avast Software
2021-02-13 20:38 - 2021-02-13 20:38 - 000220784 _____ (AVAST Software) C:\Users\RAFONIX\Desktop\avast_free_antivirus_setup_online.exe
2021-02-13 15:20 - 2021-02-13 15:20 - 001319136 _____ (CPUID, Inc. ) C:\Users\RAFONIX\Desktop\hwmonitor_1.43.exe
2021-02-13 15:20 - 2021-02-13 15:20 - 000000937 _____ C:\ProgramData\Desktop\CPUID HWMonitor.lnk
2021-02-13 14:14 - 2021-02-13 14:14 - 000000331 _____ C:\Users\RAFONIX\Downloads\config.properties
2021-02-12 22:03 - 2021-02-12 22:08 - 000000000 ____D C:\Users\RAFONIX\Desktop\esasa
2021-02-12 22:02 - 2021-02-15 22:24 - 000026192 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2021-02-12 21:59 - 2021-02-12 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte
2021-02-12 21:59 - 2021-02-12 21:59 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2021-02-12 21:59 - 2021-02-12 21:59 - 000000000 ____D C:\Program Files (x86)\Gigabyte
2021-02-12 21:43 - 2021-02-13 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2021-02-12 21:43 - 2021-02-13 15:20 - 000000000 ____D C:\Program Files\CPUID
2021-02-12 14:05 - 2021-02-12 14:05 - 000007607 _____ C:\Users\RAFONIX\AppData\Local\Resmon.ResmonCfg
2021-02-11 02:52 - 2021-02-11 03:03 - 000082764 _____ C:\Users\RAFONIX\Desktop\keywords.txt
2021-02-09 22:43 - 2021-02-09 22:43 - 001504215 _____ C:\Users\RAFONIX\Desktop\ProtocolLib.jar
2021-02-09 22:42 - 2021-02-09 22:42 - 000055463 _____ C:\Users\RAFONIX\Desktop\skin_changer-0.2.0.jar
2021-02-09 20:43 - 2021-02-09 20:47 - 135037749 _____ C:\Users\RAFONIX\Downloads\tabmc.wmv
2021-02-09 18:15 - 2021-02-09 18:15 - 005683973 _____ C:\Users\RAFONIX\Downloads\OptiFine_1.16.1_HD_U_G2.jar
2021-02-09 17:19 - 2021-02-09 17:19 - 000000013 _____ C:\Users\RAFONIX\Desktop\Nowy dokument tekstowy.txt
2021-02-09 17:18 - 2021-02-09 17:21 - 000000513 _____ C:\Users\RAFONIX\Desktop\rap.txt
2021-02-09 14:28 - 2021-02-09 14:28 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\Intel_Corporation
2021-02-08 12:40 - 2021-02-08 12:40 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\Sony
2021-02-08 12:02 - 2021-02-12 14:06 - 000001058 _____ C:\Users\RAFONIX\Desktop\Adobe Photoshop 2020.lnk
2021-02-08 12:02 - 2021-02-08 12:02 - 000001026 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2021-02-08 12:01 - 2021-02-08 12:02 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-02-08 12:01 - 2021-02-08 12:01 - 000000000 ____D C:\Program Files\Adobe
2021-02-08 11:27 - 2021-02-08 21:35 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\Mine_imator
2021-02-08 11:27 - 2021-02-08 11:27 - 000000000 ____D C:\Users\RAFONIX\Mine-imator
2021-02-08 11:27 - 2021-02-08 11:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mine-imator
2021-02-08 11:25 - 2021-02-08 11:26 - 010593426 _____ (David Norgren ) C:\Users\RAFONIX\Desktop\Mine-imator 1.2.7 installer.exe
2021-02-07 21:26 - 2021-02-07 21:28 - 000323560 _____ C:\Users\RAFONIX\Downloads\c418-sweden-minecraft-volume-alpha.mp3.sfk
2021-02-07 20:49 - 2021-02-07 20:49 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome
2021-02-07 19:58 - 2021-02-07 21:11 - 2151016599 _____ C:\Users\RAFONIX\Downloads\Adobe Photoshop 2020 by MrPGG.rar
2021-02-07 19:44 - 2021-02-07 19:44 - 001192256 _____ C:\Users\RAFONIX\Downloads\reaplugs236_x64-install.exe
2021-02-07 19:44 - 2021-02-07 19:44 - 000000000 ____D C:\Program Files\VSTPlugins
2021-02-07 19:38 - 2021-02-07 19:44 - 135317716 _____ C:\Users\RAFONIX\Downloads\THETpAIN.zip
2021-02-06 17:54 - 2021-02-06 17:54 - 000000332 _____ C:\Users\RAFONIX\Desktop\config.properties
2021-02-06 15:27 - 2021-02-13 20:07 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\BY-COMBO2
2021-02-06 15:27 - 2021-02-06 15:27 - 002508857 _____ C:\Users\RAFONIX\Downloads\SHINOBI_Setup_V1.0.44.zip
2021-02-06 15:27 - 2021-02-06 15:27 - 000001929 _____ C:\Users\RAFONIX\Desktop\SHINOBI.lnk
2021-02-06 15:27 - 2021-02-06 15:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MODECOM
2021-02-06 15:27 - 2021-02-06 15:27 - 000000000 ____D C:\Program Files (x86)\MODECOM
2021-02-05 20:14 - 2021-02-05 20:16 - 000000468 _____ C:\Users\RAFONIX\Desktop\wea.txt
2021-02-03 00:02 - 2021-02-03 00:02 - 001121651 _____ C:\Users\RAFONIX\Downloads\worldguard-bukkit-7.0.4.jar
2021-02-02 23:58 - 2021-02-02 23:58 - 000006146 _____ C:\Users\RAFONIX\Downloads\Manhunt-1.0-SNAPSHOT.jar
2021-02-02 22:26 - 2021-02-02 22:26 - 000626187 _____ C:\Users\RAFONIX\Downloads\tiktokvideo_1612301170.mp4
2021-02-02 10:34 - 2021-02-02 10:35 - 023860557 _____ C:\Users\RAFONIX\Downloads\!   Guinys §b2K  PACK §8[§7256x§8].zip
2021-01-30 23:49 - 2021-01-30 23:53 - 000000000 ____D C:\Users\RAFONIX\Desktop\ilve
2021-01-29 01:43 - 2021-01-29 17:31 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\VEGAS
2021-01-29 01:43 - 2021-01-29 01:43 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\Plugin.VegasOfxStitch
2021-01-29 01:43 - 2021-01-29 01:43 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\Plugin.MxOfxRotation
2021-01-29 01:43 - 2021-01-29 01:43 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\MAGIX
2021-01-29 01:43 - 2021-01-29 01:43 - 000000000 ____D C:\ProgramData\VEGAS Pro
2021-01-29 01:42 - 2021-01-29 01:43 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\MAGIX
2021-01-29 01:42 - 2021-01-29 01:42 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\VEGAS Pro
2021-01-29 01:42 - 2021-01-29 01:42 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\VEGAS Pro
2021-01-29 01:42 - 2021-01-29 01:42 - 000000000 ____D C:\ProgramData\Magix
2021-01-29 01:31 - 2021-01-29 01:31 - 000000000 ____D C:\Program Files (x86)\DemographicAppendicularFlintlock
2021-01-29 01:30 - 2021-01-29 01:31 - 000000000 ____D C:\Program Files (x86)\SaserPurviewbxsInstall
2021-01-29 01:00 - 2021-01-29 01:01 - 000143728 _____ C:\Users\RAFONIX\Downloads\Sildurs Vibrant Shaders v1.281 High.zip
2021-01-29 00:52 - 2021-01-29 00:56 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\Opera Software
2021-01-29 00:52 - 2021-01-29 00:56 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\Opera Software
2021-01-29 00:52 - 2021-01-29 00:52 - 000002331 _____ C:\Users\RAFONIX\Desktop\facebook.lnk
2021-01-29 00:52 - 2021-01-29 00:52 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\TaskbarSystem
2021-01-29 00:49 - 2021-01-29 00:52 - 036034256 _____ (Genymobile ) C:\Users\RAFONIX\Downloads\Shaders_Mod_1.16.5.exe
2021-01-29 00:49 - 2021-01-29 00:49 - 000016438 _____ C:\Users\RAFONIX\AppData\Local\partner.bmp
2021-01-29 00:44 - 2021-01-29 00:44 - 000030973 _____ C:\Users\RAFONIX\Downloads\MrMeepz Shaders v05 Medium.zip
2021-01-29 00:42 - 2021-01-29 00:42 - 000031001 _____ C:\Users\RAFONIX\Downloads\MrMeepz Shaders v05 Ultra Motionblur.zip
2021-01-29 00:34 - 2021-01-29 00:34 - 000912015 _____ C:\Users\RAFONIX\Downloads\BSL_v7.2.01pre2.zip
2021-01-29 00:30 - 2021-01-29 00:30 - 005835761 _____ C:\Users\RAFONIX\Desktop\OptiFine_1.16.5_HD_U_G6.jar
2021-01-27 16:11 - 2021-01-27 16:12 - 041648057 _____ C:\Users\RAFONIX\Desktop\lovely _ CSGO Highlights _ prod. MoxXiak so2 _ (online-video-cutter.com).mp4
2021-01-27 08:53 - 2021-01-27 08:53 - 000136944 _____ C:\Users\RAFONIX\Downloads\pohj;,mn.pdf
2021-01-27 08:52 - 2021-01-27 08:52 - 000406990 _____ C:\Users\RAFONIX\Downloads\polklm.pdf
2021-01-26 15:40 - 2021-01-26 15:40 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2021-01-26 15:39 - 2021-01-26 15:39 - 001242464 _____ (BraveSoftware Inc.) C:\Users\RAFONIX\Downloads\BraveBrowserSetup-BRV001.exe
2021-01-24 13:44 - 2021-01-24 13:44 - 003892789 _____ C:\Users\RAFONIX\Downloads\forge-1.8.9-11.15.1.1722-installer.jar
2021-01-24 13:43 - 2021-01-24 13:43 - 005833874 _____ C:\Users\RAFONIX\Downloads\LiquidBounce1.8.9-b72.zip
2021-01-23 20:09 - 2021-01-23 20:17 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\TS3Client
2021-01-23 20:09 - 2021-01-23 20:09 - 000001226 _____ C:\Users\RAFONIX\Desktop\TeamSpeak 3 Client.lnk
2021-01-23 20:09 - 2021-01-23 20:09 - 000001184 _____ C:\Users\RAFONIX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2021-01-23 20:09 - 2021-01-23 20:09 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\TeamSpeak 3 Client
2021-01-23 20:09 - 2021-01-23 20:09 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\TeamSpeak 3
2021-01-20 18:02 - 2021-01-20 18:02 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\Sun
2021-01-20 18:02 - 2021-01-20 18:02 - 000000000 ____D C:\Users\RAFONIX\AppData\LocalLow\Sun
2021-01-18 23:18 - 2021-01-18 23:18 - 000397724 _____ C:\Users\RAFONIX\Downloads\SanLib-1.12.2.jar
2021-01-18 23:15 - 2021-01-26 23:09 - 000000000 ____D C:\Users\RAFONIX\Desktop\mody
2021-01-17 19:39 - 2021-01-17 19:39 - 000652958 _____ C:\Users\RAFONIX\Downloads\fabric-api-0.17.0+build.386-1.16.1.jar
2021-01-17 19:37 - 2021-01-17 19:37 - 000419030 _____ C:\Users\RAFONIX\Downloads\sodium-fabric-mc1.16.1-0.1.0.jar
2021-01-17 19:36 - 2021-01-17 19:36 - 000360636 _____ (Fabric Team) C:\Users\RAFONIX\Downloads\fabric-installer-0.6.1.51.exe
2021-01-16 22:36 - 2021-02-07 15:07 - 000000299 _____ C:\Users\RAFONIX\d4ac4633ebd6440fa397b84f1bc94a3c.7z

==================== Jeden miesiąc (zmodyfikowane) ==================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2021-02-15 22:25 - 2021-01-10 00:28 - 000000000 ____D C:\ProgramData\Voicemod
2021-02-15 22:25 - 2020-11-18 13:40 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\LogMeIn Hamachi
2021-02-15 22:24 - 2020-10-27 13:03 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-15 22:24 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-15 22:06 - 2009-07-14 05:45 - 000037456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-02-15 22:06 - 2009-07-14 05:45 - 000037456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-02-15 22:00 - 2011-04-12 14:21 - 004148776 _____ C:\Windows\system32\perfh015.dat
2021-02-15 22:00 - 2011-04-12 14:21 - 001310450 _____ C:\Windows\system32\perfc015.dat
2021-02-15 22:00 - 2009-07-14 06:13 - 000006208 _____ C:\Windows\system32\PerfStringBackup.INI
2021-02-15 21:18 - 2020-11-13 11:51 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\CrashDumps
2021-02-15 20:39 - 2020-11-27 09:12 - 000000000 ____D C:\Users\RAFONIX\AppData\LocalLow\Temp
2021-02-15 20:39 - 2020-10-31 07:25 - 000000000 ____D C:\Users\Ania\AppData\LocalLow\Temp
2021-02-15 20:38 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2021-02-15 20:21 - 2020-10-27 12:15 - 002651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng3.dll
2021-02-15 19:51 - 2020-10-28 10:34 - 000000000 ____D C:\Program Files (x86)\OpiekunWEB5
2021-02-15 19:14 - 2020-11-16 20:44 - 000000435 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2021-02-15 14:41 - 2020-11-16 13:46 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\.minecraft
2021-02-15 14:21 - 2020-11-17 15:38 - 000000000 ____D C:\ProgramData\Package Cache
2021-02-15 14:21 - 2020-10-27 13:01 - 000000000 ____D C:\Program Files\Intel
2021-02-15 13:11 - 2020-10-27 13:01 - 000000000 ____D C:\Program Files (x86)\Intel
2021-02-14 22:37 - 2020-11-16 11:21 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\discord
2021-02-13 21:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-02-13 10:41 - 2020-11-16 20:48 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\ElevatedDiagnostics
2021-02-13 10:41 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2021-02-11 23:08 - 2020-11-04 12:59 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2021-02-11 16:02 - 2021-01-02 23:47 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\obs-studio
2021-02-11 09:21 - 2020-11-12 09:25 - 000000000 __SHD C:\Users\RAFONIX\IntelGraphicsProfiles
2021-02-10 22:53 - 2021-01-02 23:56 - 000000000 ____D C:\Users\RAFONIX\Desktop\mama
2021-02-10 22:46 - 2021-01-05 17:14 - 000000000 ____D C:\Users\RAFONIX\Desktop\pluginy
2021-02-10 17:42 - 2020-10-27 15:48 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-02-10 17:42 - 2020-10-27 15:48 - 000002066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-09 22:25 - 2020-11-05 14:59 - 000002183 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-09 22:25 - 2020-11-05 14:59 - 000002142 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-02-09 00:35 - 2020-11-12 09:25 - 000000000 ____D C:\Users\RAFONIX
2021-02-08 12:03 - 2020-11-12 09:25 - 000000000 ____D C:\Users\RAFONIX\AppData\Roaming\Adobe
2021-02-08 12:01 - 2020-10-27 15:48 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-02-08 12:01 - 2020-10-27 15:47 - 000000000 ____D C:\ProgramData\Adobe
2021-02-08 12:00 - 2020-11-12 09:37 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\Adobe
2021-02-07 19:44 - 2021-01-10 00:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2021-02-07 19:44 - 2021-01-10 00:28 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-02-07 16:57 - 2020-11-04 09:55 - 000000000 ____D C:\Program Files (x86)\Steam
2021-02-07 15:07 - 2020-11-20 23:06 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\Nox
2021-02-07 14:42 - 2020-12-22 11:16 - 000000000 ____D C:\Users\RAFONIX\.BigNox
2021-02-07 14:42 - 2020-11-20 23:08 - 000000000 ____D C:\Users\RAFONIX\.android
2021-02-07 14:42 - 2020-11-20 23:07 - 000000000 ____D C:\Users\RAFONIX\vmlogs
2021-02-07 14:42 - 2020-11-20 23:07 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\NoxSrv
2021-02-06 22:19 - 2009-07-14 06:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2021-02-05 20:18 - 2020-11-05 14:57 - 000003482 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 20:18 - 2020-11-05 14:57 - 000003354 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-31 00:44 - 2021-01-13 00:26 - 000000000 ____D C:\Users\RAFONIX\Desktop\usta
2021-01-30 23:53 - 2021-01-13 00:25 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\http___livesplit.org_
2021-01-28 22:02 - 2021-01-02 23:37 - 000000000 ____D C:\ProgramData\Documents\Lightworks
2021-01-27 00:20 - 2020-11-19 21:11 - 000000000 ____D C:\Users\RAFONIX\.junique
2021-01-27 00:20 - 2020-11-19 21:06 - 000001949 _____ C:\Users\RAFONIX\Desktop\Crystal Launcher.lnk
2021-01-27 00:20 - 2020-11-19 21:06 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\CrystalLauncherInstaller
2021-01-26 12:03 - 2020-11-13 08:08 - 000002310 _____ C:\Users\RAFONIX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-26 12:03 - 2020-11-13 08:08 - 000002302 _____ C:\Users\RAFONIX\Desktop\Microsoft Teams.lnk
2021-01-25 20:36 - 2021-01-12 11:06 - 000000000 ____D C:\Users\RAFONIX\AppData\Local\FiveM
2021-01-21 22:37 - 2010-11-21 04:27 - 000799104 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-01-20 18:55 - 2020-11-21 09:36 - 000000000 ____D C:\Users\RAFONIX\Desktop\Nowy folder (2)
2021-01-17 17:49 - 2020-12-27 23:26 - 000000000 ____D C:\Users\RAFONIX\Desktop\ds

==================== Pliki w katalogu głównym wybranych folderów ========

2021-01-12 10:48 - 2021-01-12 10:48 - 000000000 _____ () C:\Program Files\Blade Group
2020-11-19 21:06 - 2020-11-19 21:06 - 000000049 _____ () C:\Users\RAFONIX\AppData\Roaming\.crystalinst
2021-01-03 14:22 - 2021-01-03 14:27 - 000002942 _____ () C:\Users\RAFONIX\AppData\Roaming\vidiot.ini
2021-01-03 14:38 - 2021-01-03 14:43 - 000003584 _____ () C:\Users\RAFONIX\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-01-29 00:49 - 2021-01-29 00:49 - 000016438 _____ () C:\Users\RAFONIX\AppData\Local\partner.bmp
2021-02-12 14:05 - 2021-02-12 14:05 - 000007607 _____ () C:\Users\RAFONIX\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)


LastRegBack: 2021-02-11 11:38
==================== Koniec  FRST.txt ========================