﻿Лог утилиты random's system information tool 1.17(автор: random/random)
Run by Zordak at 2023-05-02 11:30:49
Майкрософт Windows 10 Корпоративная LTSC 
Системный раздел C:  Свободно 85 GB (70%) размер 121 GB
Total RAM: 16253 MB (80% free)
X64


====== Список процессов ======

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\Windows\system32\fontdrvhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7ee9eec9-45a7-4519-87a1-544b3df53066 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-6b6437e8-9c4a-4244-ae89-db36144c7ea9 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-56ebfefc-58da-49ad-a893-594eb25dfa24 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-4a4df1af-bfdd-4deb-8be7-b276ce248e7c -LifetimeId:ce150d90-6a0d-4461-b545-db3886ee90a3 -DeviceGroupId: -HostArg:0
C:\Windows\system32\svchost.exe -k RPCSS -p
C:\Windows\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\Windows\system32\winlogon.exe
C:\Windows\system32\fontdrvhost.exe
C:\Windows\system32\dwm.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\Windows\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\Windows\system32\svchost.exe -k netsvcs -p -s Schedule
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\Windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\Windows\system32\svchost.exe -k netsvcs -p -s UserManager
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\Windows\system32\svchost.exe -k LocalService -p -s nsi
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\Windows\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8156678a4c5d0913\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8156678a4c5d0913\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\Windows\System32\svchost.exe -k netsvcs -p -s Themes
C:\Windows\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\Windows\system32\svchost.exe -k LocalService -p -s EventSystem
C:\Windows\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\Windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\Windows\System32\svchost.exe -k LocalService -p -s netprofm
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\Windows\system32\svchost.exe -k LocalService -p -s FontCache
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
"C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8156678a4c5d0913\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8156678a4c5d0913\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
C:\Windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\Windows\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\Windows\System32\svchost.exe -k utcsvc -p
C:\Windows\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\Windows\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe"
"C:\Program Files\LGHUB\lghub_updater.exe" --run-as-service
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\Windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files (x86)\Yandex\YandexBrowser\23.3.3.721\service_update.exe" --run-as-service
C:\Windows\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
"C:\Program Files (x86)\Yandex\YandexBrowser\23.3.3.721\service_update.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://crash-reports.browser.yandex.net/submit --annotation=machine_id= --annotation=main_process_pid=3764 --annotation=plat=Win64 --annotation=prod=Yandex --annotation=session_logout=False --annotation=ver=23.3.3.721 --initial-client-data=0x224,0x228,0x22c,0x200,0x230,0x7ff666f781c0,0x7ff666f781d0,0x7ff666f781e0
C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
C:\Windows\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\Windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\Windows\System32\svchost.exe -k netsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sihost.exe
C:\Windows\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\Windows\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\Windows\system32\taskhostw.exe
C:\Windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\Windows\system32\AUDIODG.EXE 0x63c
"C:\Windows\System32\SecurityHealthSystray.exe" 
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
"C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe" -background
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files\LGHUB\lghub.exe" --background
"C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe" --background
"C:\Program Files\LGHUB\lghub.exe" --type=gpu-process --user-data-dir="C:\Users\Zordak\AppData\Roaming/lghub" --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1896 --field-trial-handle=1988,i,13900358757051191899,2927540167388610280,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:2
"C:\Program Files\LGHUB\lghub.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=ru --service-sandbox-type=none --user-data-dir="C:\Users\Zordak\AppData\Roaming/lghub" --mojo-platform-channel-handle=2088 --field-trial-handle=1988,i,13900358757051191899,2927540167388610280,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:8
"C:\Program Files\LGHUB\lghub_agent.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k appmodel -p -s camsvc
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\Windows\System32\svchost.exe -k netsvcs -p -s BDESVC
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
C:\Windows\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\Windows\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\Windows\system32\DllHost.exe /Processid:{7E55A26D-EF95-4A45-9F55-21E52ADF9887}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3865644239-149826060-2925775712-10013_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3865644239-149826060-2925775712-10013 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"  "1"
C:\Windows\System32\svchost.exe -k netsvcs -p -s BITS
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --no-startup-window --external-app-data=null_data --external-app-null-path
C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --type=crashpad-handler "--user-data-dir=C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\User Data" --url=https://crash-reports.browser.yandex.net/submit --annotation=install_date=1682949521 --annotation=last_update_date=1682951623 --annotation=launches_after_update=27 --annotation=machine_id= --annotation=main_process_pid=240 --annotation=metrics_client_id=986e0894f54a43cd9bb302943a1ce371 --annotation=plat=Win64 --annotation=prod=Yandex --annotation=session_logout=False --annotation=ver=23.3.3.721 --initial-client-data=0x120,0x124,0x128,0xfc,0x12c,0x7fff8d7c3068,0x7fff8d7c3078,0x7fff8d7c3088
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1920 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:2
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=ru --service-sandbox-type=none --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --process-name="Network Service" --mojo-platform-channel-handle=2284 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 --brver=23.3.3.721 /prefetch:8
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=ru --service-sandbox-type=service --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --process-name="Storage Service" --mojo-platform-channel-handle=2472 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 --brver=23.3.3.721 /prefetch:8
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --extension-process --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --web-ntp-url-for-renderer=https://webntp.yandex.ru/ --translate-security-origin=https://browser.translate.yandex.net/ --enable-instaserp --first-renderer-process --allow-prefetch --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --time-ticks-at-unix-epoch=-1683001485106309 --launch-time-ticks=230929671 --mojo-platform-channel-handle=3660 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:1
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --extension-process --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --web-ntp-url-for-renderer=https://webntp.yandex.ru/ --translate-security-origin=https://browser.translate.yandex.net/ --enable-instaserp --allow-prefetch --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --time-ticks-at-unix-epoch=-1683001485106309 --launch-time-ticks=230946177 --mojo-platform-channel-handle=3780 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:1
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --web-ntp-url-for-renderer=https://webntp.yandex.ru/ --translate-security-origin=https://browser.translate.yandex.net/ --enable-instaserp --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --time-ticks-at-unix-epoch=-1683001485106309 --launch-time-ticks=234015258 --mojo-platform-channel-handle=4556 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:1
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --web-ntp-url-for-renderer=https://webntp.yandex.ru/ --translate-security-origin=https://browser.translate.yandex.net/ --enable-instaserp --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --time-ticks-at-unix-epoch=-1683001485106309 --launch-time-ticks=240259028 --mojo-platform-channel-handle=5336 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:1
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --utility-sub-type=speechkit.mojom.Speechkit --lang=ru --service-sandbox-type=none --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --process-name="Speechkit Service" --mojo-platform-channel-handle=5468 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 --brver=23.3.3.721 /prefetch:8
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=ru --service-sandbox-type=audio --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --process-name="Audio Service" --mojo-platform-channel-handle=5480 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 --brver=23.3.3.721 /prefetch:8
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --web-ntp-url-for-renderer=https://webntp.yandex.ru/ --translate-security-origin=https://browser.translate.yandex.net/ --ya-custo-process --enable-instaserp --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --time-ticks-at-unix-epoch=-1683001485106309 --launch-time-ticks=241513271 --mojo-platform-channel-handle=5848 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:1
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --web-ntp-url-for-renderer=https://webntp.yandex.ru/ --translate-security-origin=https://browser.translate.yandex.net/ --ya-custo-process --enable-instaserp --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --time-ticks-at-unix-epoch=-1683001485106309 --launch-time-ticks=241616315 --mojo-platform-channel-handle=6796 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:1
\\?\C:\Windows\system32\wbem\WMIADAP.EXE
"C:\Users\Zordak\Desktop\AutoLogger.exe" 
"C:\Users\Zordak\Desktop\AutoLogger\AV\AV_Z.exe" Script=AV\GeneralScript.txt HiddenMode=0
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" http://google.ru
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:9596 CREDAT:17410 /prefetch:2
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --web-ntp-url-for-renderer=https://webntp.yandex.ru/ --translate-security-origin=https://browser.translate.yandex.net/ --enable-instaserp --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --time-ticks-at-unix-epoch=-1683001485106309 --launch-time-ticks=295927604 --mojo-platform-channel-handle=7012 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:1
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --utility-sub-type=deep_links_provider.mojom.DeepLinksProvider --lang=ru --service-sandbox-type=none --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --process-name="DeepLinks service" --mojo-platform-channel-handle=2772 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 --brver=23.3.3.721 /prefetch:8
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --help-url=https://api.browser.yandex.ru/redirect/help/ --user-agent-info --web-ntp-url-for-renderer=https://webntp.yandex.ru/ --translate-security-origin=https://browser.translate.yandex.net/ --enable-instaserp --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --time-ticks-at-unix-epoch=-1683001485106309 --launch-time-ticks=302857528 --mojo-platform-channel-handle=5876 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 /prefetch:1
"C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=utility --utility-sub-type=autofill.mojom.TflPredictionsService --lang=ru --service-sandbox-type=utility --user-id=A3E62126-F7F9-4201-BF9E-C7302886A725 --brand-id=yandex --partner-id=18105 --process-name="Autofill Tfl Predictions" --mojo-platform-channel-handle=7684 --field-trial-handle=2004,i,15925599527204928128,11758610944960824182,131072 --brver=23.3.3.721 /prefetch:8
"C:\Windows\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 
"C:\Users\Zordak\Desktop\AutoLogger\RSIT\RSITx64.exe" /silent /m3 /autolog /logfolder "C:\Users\Zordak\Desktop\AutoLogger\RSIT\Log" /nohjt /rus 

====== Папка назначенных заданий ======

C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job - C:\Windows\explorer.exe /NOUACCHECK
C:\Windows\tasks\Восстановление сервиса обновлений Яндекс Браузера.job - C:\Program Files (x86)\Yandex\YandexBrowser\23.3.3.721\service_update.exe  --repair
C:\Windows\tasks\Обновление Браузера Яндекс.job - C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe  --background-update --noerrdialogs
C:\Windows\tasks\Системное обновление Браузера Яндекс.job - C:\Program Files (x86)\Yandex\YandexBrowser\23.3.3.721\service_update.exe  --run-as-launcher
C:\Windows\system32\tasks\Intel PTT EK Recertification - "C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe"
C:\Windows\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\Windows\system32\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - "C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
C:\Windows\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\Windows\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
C:\Windows\system32\tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
C:\Windows\system32\tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
C:\Windows\system32\tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
C:\Windows\system32\tasks\Восстановление сервиса обновлений Яндекс Браузера - C:\Program Files (x86)\Yandex\YandexBrowser\23.3.3.721\service_update.exe --repair
C:\Windows\system32\tasks\Обновление Браузера Яндекс - C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe --background-update --noerrdialogs
C:\Windows\system32\tasks\Системное обновление Браузера Яндекс - C:\Program Files (x86)\Yandex\YandexBrowser\23.3.3.721\service_update.exe --run-as-launcher
C:\Windows\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\Windows\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\Windows\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe $(Arg0) $(Arg1) $(Arg2)
C:\Windows\system32\tasks\Microsoft\Windows\Workplace Join\Recovery-Check - %SystemRoot%\System32\dsregcmd.exe /checkrecovery
C:\Windows\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\Windows\system32\sc.exe start wuauserv
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\Windows\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2303.8-0\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\Windows\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2303.8-0\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\Windows\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2303.8-0\MpCmdRun.exe Scan -ScheduleJob -ScanTrigger 55 -IdleScheduledJob
C:\Windows\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2303.8-0\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\Windows\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Backup Scan - %systemroot%\system32\usoclient.exe StartScan
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Driver Install - %systemroot%\system32\usoclient.exe StartInstall
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task - %systemroot%\system32\usoclient.exe StartScan
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\UpdateModelTask - %systemroot%\system32\usoclient.exe StartModelUpdates
C:\Windows\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - %systemroot%\system32\MusNotification.exe
C:\Windows\system32\tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - %windir%\System32\UNP\UpdateNotificationMgr.exe
C:\Windows\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\Windows\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\Windows\system32\tasks\Microsoft\Windows\Speech\HeadsetButtonPress - %windir%\system32\speech_onecore\common\SpeechRuntime.exe StartedFromTask
C:\Windows\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\Windows\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\Windows\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\Windows\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\Windows\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\PushToInstall\LoginCheck - %windir%\system32\sc.exe start pushtoinstall login
C:\Windows\system32\tasks\Microsoft\Windows\PushToInstall\Registration - %windir%\system32\sc.exe start pushtoinstall registration
C:\Windows\system32\tasks\Microsoft\Windows\Printing\EduPrintProv - %windir%\system32\eduprintprov.exe
C:\Windows\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\Windows\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\Windows\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\Windows\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\Windows\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\Windows\system32\tasks\Microsoft\Windows\HelloFace\FODCleanupTask - %WinDir%\System32\WinBioPlugIns\FaceFodUninstaller.exe
C:\Windows\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\Windows\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\Windows\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\Windows\system32\tasks\Microsoft\Windows\DirectX\DXGIAdapterCache - %windir%\system32\dxgiadaptercache.exe
C:\Windows\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\Windows\system32\tasks\Microsoft\Windows\Chkdsk\SyspartRepair - %windir%\system32\bcdboot.exe %windir% /sysrepair
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe

======Снимок реестра ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Windows\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RtkAudUService"=C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe [2021-02-17 1231864]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"YandexBrowserAutoLaunch_E1D6658B673BF43EC622D077EB676563"=C:\Users\Zordak\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [2023-04-20 4940952]
"Discord"=C:\Users\Zordak\AppData\Local\Discord\Update.exe [2023-03-22 1525016]
"EpicGamesLauncher"=E:\Epic Store\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [2023-05-01 37101520]
"Steam"=E:\Steam\steam.exe [2023-04-29 4362600]
"LGHUB"=C:\Program Files\LGHUB\lghub.exe [2023-05-01 152025856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppXSVC]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\camsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MSIServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableFullTrustStartupTasks"=2
"EnableUIADesktopToggle"=0
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

====== Ассоциации файлов ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== Список файлов и папок, созданных за последние 3 месяца ======

2023-05-02 09:44:36 ----A---- C:\Windows\system32\drivers\ACE-BASE.sys
2023-05-02 07:25:30 ----D---- C:\Windows\system32\drivers\mde
2023-05-02 03:19:20 ----D---- C:\Program Files\UNP
2023-05-02 01:41:50 ----D---- C:\Windows\system32\MRT
2023-05-02 01:41:48 ----AC---- C:\Windows\system32\MRT.exe
2023-05-02 01:40:24 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2023-05-02 01:38:37 ----A---- C:\Windows\SYSWOW64\quickassist.exe
2023-05-02 01:38:37 ----A---- C:\Windows\SYSWOW64\dswave.dll
2023-05-02 01:38:37 ----A---- C:\Windows\SYSWOW64\dmusic.dll
2023-05-02 01:38:37 ----A---- C:\Windows\SYSWOW64\dmime.dll
2023-05-02 01:38:37 ----A---- C:\Windows\SYSWOW64\dmband.dll
2023-05-02 01:38:37 ----A---- C:\Windows\SYSWOW64\curl.exe
2023-05-02 01:38:37 ----A---- C:\Windows\system32\wdigest.dll
2023-05-02 01:38:37 ----A---- C:\Windows\system32\ShellAppRuntime.exe
2023-05-02 01:38:37 ----A---- C:\Windows\system32\quickassist.exe
2023-05-02 01:38:37 ----A---- C:\Windows\system32\OOBE-Maintenance.exe
2023-05-02 01:38:37 ----A---- C:\Windows\system32\mssecwfpu.dll
2023-05-02 01:38:37 ----A---- C:\Windows\system32\lapscsp.dll
2023-05-02 01:38:37 ----A---- C:\Windows\system32\laps.dll
2023-05-02 01:38:37 ----A---- C:\Windows\system32\KernelBase.dll
2023-05-02 01:38:37 ----A---- C:\Windows\system32\drivers\mssecwfp.sys
2023-05-02 01:38:37 ----A---- C:\Windows\system32\drivers\msseccore.sys
2023-05-02 01:38:37 ----A---- C:\Windows\system32\CustomShellHost.exe
2023-05-02 01:38:37 ----A---- C:\Windows\system32\ContainerOSShellHost.exe
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Search.dll
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Bluetooth.dll
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\tzautoupdate.dll
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\AcGenral.dll
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\aadtb.dll
2023-05-02 01:38:36 ----A---- C:\Windows\SYSWOW64\aadauthhelper.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\wkssvc.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\vertdll.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\ucrtbase_enclave.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\tssrvlic.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\tcbloader.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\tcblaunch.exe
2023-05-02 01:38:36 ----A---- C:\Windows\system32\setupcl.exe
2023-05-02 01:38:36 ----A---- C:\Windows\system32\RpcRtRemote.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\PinEnrollmentHelper.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\iscsiwmiv2.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\iscsiexe.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\iscsidsc.dll
2023-05-02 01:38:36 ----A---- C:\Windows\system32\drivers\rmcast.sys
2023-05-02 01:38:36 ----A---- C:\Windows\system32\apphelp.dll
2023-05-02 01:38:36 ----A---- C:\Windows\explorer.exe
2023-05-02 01:38:35 ----A---- C:\Windows\SYSWOW64\uReFS.dll
2023-05-02 01:38:35 ----A---- C:\Windows\SYSWOW64\sdiageng.dll
2023-05-02 01:38:35 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2023-05-02 01:38:35 ----A---- C:\Windows\SYSWOW64\mf.dll
2023-05-02 01:38:35 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2023-05-02 01:38:35 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\WsmWmiPl.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\WsmSvc.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\WsmAuto.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2023-05-02 01:38:35 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\tquery.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\TpmTasks.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2023-05-02 01:38:35 ----A---- C:\Windows\system32\SearchIndexer.exe
2023-05-02 01:38:35 ----A---- C:\Windows\system32\SearchFilterHost.exe
2023-05-02 01:38:35 ----A---- C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\schedsvc.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\schannel.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\msv1_0.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\mssvp.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\mssrch.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\mssprxy.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\mssph.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\hvloader.dll
2023-05-02 01:38:35 ----A---- C:\Windows\system32\hvix64.exe
2023-05-02 01:38:35 ----A---- C:\Windows\system32\hvax64.exe
2023-05-02 01:38:35 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2023-05-02 01:38:35 ----A---- C:\Windows\system32\drivers\hvservice.sys
2023-05-02 01:38:35 ----A---- C:\Windows\system32\drivers\dfsc.sys
2023-05-02 01:38:35 ----A---- C:\Windows\system32\certmgr.dll
2023-05-02 01:38:34 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2023-05-02 01:38:34 ----A---- C:\Windows\SYSWOW64\sxs.dll
2023-05-02 01:38:34 ----A---- C:\Windows\SYSWOW64\resutils.dll
2023-05-02 01:38:34 ----A---- C:\Windows\SYSWOW64\NtlmShared.dll
2023-05-02 01:38:34 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2023-05-02 01:38:34 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2023-05-02 01:38:34 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2023-05-02 01:38:34 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\wersvc.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\wermgr.exe
2023-05-02 01:38:34 ----A---- C:\Windows\system32\weretw.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\wer.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\sxssrv.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\sxs.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\shell32.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\sdrsvc.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\sdengin2.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\sdclt.exe
2023-05-02 01:38:34 ----A---- C:\Windows\system32\resutils.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\offlinelsa.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\lsasrv.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\FntCache.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2023-05-02 01:38:34 ----A---- C:\Windows\system32\drivers\cng.sys
2023-05-02 01:38:34 ----A---- C:\Windows\system32\clusapi.dll
2023-05-02 01:38:34 ----A---- C:\Windows\system32\AssignedAccessShellProxy.dll
2023-05-02 01:38:33 ----A---- C:\Windows\SYSWOW64\wsecedit.dll
2023-05-02 01:38:33 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2023-05-02 01:38:33 ----A---- C:\Windows\SYSWOW64\spopk.dll
2023-05-02 01:38:33 ----A---- C:\Windows\SYSWOW64\rastls.dll
2023-05-02 01:38:33 ----A---- C:\Windows\SYSWOW64\raschap.dll
2023-05-02 01:38:33 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2023-05-02 01:38:33 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2023-05-02 01:38:33 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\wow64win.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\winsrvext.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\usermgr.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\spopk.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\shutdownux.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\sechost.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\LogonController.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\kerberos.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\gpsvc.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\gpapi.dll
2023-05-02 01:38:33 ----A---- C:\Windows\system32\drivers\msrpc.sys
2023-05-02 01:38:33 ----A---- C:\Windows\system32\drivers\afd.sys
2023-05-02 01:38:32 ----A---- C:\Windows\SYSWOW64\webplatstorageserver.dll
2023-05-02 01:38:32 ----A---- C:\Windows\SYSWOW64\iemigplugin.dll
2023-05-02 01:38:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2023-05-02 01:38:32 ----A---- C:\Windows\SYSWOW64\EdgeManager.dll
2023-05-02 01:38:32 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2023-05-02 01:38:32 ----A---- C:\Windows\system32\wevtsvc.dll
2023-05-02 01:38:32 ----A---- C:\Windows\system32\spp.dll
2023-05-02 01:38:32 ----A---- C:\Windows\system32\spoolsv.exe
2023-05-02 01:38:32 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2023-05-02 01:38:32 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2023-05-02 01:38:32 ----A---- C:\Windows\system32\localspl.dll
2023-05-02 01:38:32 ----A---- C:\Windows\system32\FaxPrinterInstaller.dll
2023-05-02 01:38:32 ----A---- C:\Windows\splwow64.exe
2023-05-02 01:38:31 ----A---- C:\Windows\SYSWOW64\Windows.Internal.SecurityMitigationsBroker.dll
2023-05-02 01:38:31 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2023-05-02 01:38:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2023-05-02 01:38:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2023-05-02 01:38:31 ----A---- C:\Windows\SYSWOW64\IndexedDbLegacy.dll
2023-05-02 01:38:31 ----A---- C:\Windows\SYSWOW64\ieproxy.dll
2023-05-02 01:38:31 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2023-05-02 01:38:31 ----A---- C:\Windows\system32\mstscax.dll
2023-05-02 01:38:31 ----A---- C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2023-05-02 01:38:31 ----A---- C:\Windows\system32\AppXApplicabilityBlob.dll
2023-05-02 01:38:31 ----A---- C:\Windows\system32\ApplyTrustOffline.exe
2023-05-02 01:38:30 ----A---- C:\Windows\SYSWOW64\spacebridge.dll
2023-05-02 01:38:30 ----A---- C:\Windows\SYSWOW64\dsprop.dll
2023-05-02 01:38:30 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2023-05-02 01:38:30 ----A---- C:\Windows\system32\shdocvw.dll
2023-05-02 01:38:30 ----A---- C:\Windows\system32\sdiageng.dll
2023-05-02 01:38:30 ----A---- C:\Windows\system32\msdt.exe
2023-05-02 01:38:30 ----A---- C:\Windows\system32\mdmregistration.dll
2023-05-02 01:38:30 ----A---- C:\Windows\system32\bcryptprimitives.dll
2023-05-02 01:38:30 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2023-05-02 01:38:30 ----A---- C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\WinFax.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryClient.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\Windows.StateRepositoryBroker.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\Windows.StateRepository.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\srclient.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\spp.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\netprovisionsp.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\netprovfw.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\joinutil.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\joinproviderol.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\iscsiwmiv2.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\iscsidsc.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\FXSCOMEX.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\FXSCOM.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\dsound.dll
2023-05-02 01:38:29 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\WMVCORE.DLL
2023-05-02 01:38:29 ----A---- C:\Windows\system32\winlogonext.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\Windows.Storage.Search.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\win32kfull.sys
2023-05-02 01:38:29 ----A---- C:\Windows\system32\user32.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\srclient.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\services.exe
2023-05-02 01:38:29 ----A---- C:\Windows\system32\nettrace.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\netplwiz.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\LaunchWinApp.exe
2023-05-02 01:38:29 ----A---- C:\Windows\system32\hlink.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\dsprop.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\CPFilters.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\correngine.dll
2023-05-02 01:38:29 ----A---- C:\Windows\system32\AcGenral.dll
2023-05-02 01:38:28 ----A---- C:\Windows\SYSWOW64\tquery.dll
2023-05-02 01:38:28 ----A---- C:\Windows\SYSWOW64\TileDataRepository.dll
2023-05-02 01:38:28 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2023-05-02 01:38:28 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2023-05-02 01:38:28 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2023-05-02 01:38:28 ----A---- C:\Windows\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2023-05-02 01:38:28 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2023-05-02 01:38:28 ----A---- C:\Windows\SYSWOW64\mssph.dll
2023-05-02 01:38:28 ----A---- C:\Windows\system32\usercpl.dll
2023-05-02 01:38:28 ----A---- C:\Windows\system32\twinui.dll
2023-05-02 01:38:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2023-05-02 01:38:27 ----A---- C:\Windows\SYSWOW64\hlink.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\Windows.StateRepositoryClient.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\Windows.StateRepositoryBroker.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\Windows.StateRepository.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\tdh.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\scesrv.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\scecli.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\ntoskrnl.exe
2023-05-02 01:38:27 ----A---- C:\Windows\system32\ntdll.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\msobjs.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\hal.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\drivers\wof.sys
2023-05-02 01:38:27 ----A---- C:\Windows\system32\drivers\partmgr.sys
2023-05-02 01:38:27 ----A---- C:\Windows\system32\drivers\ntfs.sys
2023-05-02 01:38:27 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2023-05-02 01:38:27 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2023-05-02 01:38:27 ----A---- C:\Windows\system32\adtschema.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\wldp.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\samlib.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\offlinesam.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\LaunchWinApp.exe
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\keyiso.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\dsparse.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\combase.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2023-05-02 01:38:26 ----A---- C:\Windows\SYSWOW64\authz.dll
2023-05-02 01:38:26 ----A---- C:\Windows\system32\Windows.Data.Activities.dll
2023-05-02 01:38:26 ----A---- C:\Windows\system32\sppsvc.exe
2023-05-02 01:38:26 ----A---- C:\Windows\system32\sppobjs.dll
2023-05-02 01:38:26 ----A---- C:\Windows\system32\SppExtComObj.Exe
2023-05-02 01:38:26 ----A---- C:\Windows\system32\sppcext.dll
2023-05-02 01:38:26 ----A---- C:\Windows\system32\refsutil.exe
2023-05-02 01:38:26 ----A---- C:\Windows\system32\profext.dll
2023-05-02 01:38:26 ----A---- C:\Windows\system32\osk.exe
2023-05-02 01:38:26 ----A---- C:\Windows\system32\nltest.exe
2023-05-02 01:38:26 ----A---- C:\Windows\system32\LsaIso.exe
2023-05-02 01:38:26 ----A---- C:\Windows\system32\drivers\tcpip.sys
2023-05-02 01:38:26 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2023-05-02 01:38:26 ----A---- C:\Windows\system32\curl.exe
2023-05-02 01:38:26 ----A---- C:\Windows\system32\CloudExperienceHostBroker.dll
2023-05-02 01:38:26 ----A---- C:\Windows\system32\CloudExperienceHost.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\twinui.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\pidgenx.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\msIso.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\esent.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\EsdSip.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\edgeIso.dll
2023-05-02 01:38:25 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\spacebridge.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\smphost.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\skci.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\seclogon.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\rastls.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\raschap.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\pidgenx.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\netprovisionsp.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\netprovfw.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\netlogon.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\netjoin.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\joinutil.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\joinproviderol.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\DscCore.dll
2023-05-02 01:38:25 ----A---- C:\Windows\system32\drivers\clfs.sys
2023-05-02 01:38:25 ----A---- C:\Windows\system32\credui.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\win32kfull.sys
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\VCardParser.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\UserDataTimeUtil.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\UserDataPlatformHelperUtil.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\sechost.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\POSyncServices.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\ExSMime.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\explorer.exe
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\enrollmentapi.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\edpnotify.exe
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\dmenrollengine.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\ContactActivation.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\BitLockerCsp.dll
2023-05-02 01:38:24 ----A---- C:\Windows\SYSWOW64\AppointmentActivation.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\wsecedit.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\wmicmiplugin.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\win32kbase.sys
2023-05-02 01:38:24 ----A---- C:\Windows\system32\urlmon.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\smartscreenps.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\smartscreen.exe
2023-05-02 01:38:24 ----A---- C:\Windows\system32\rtutils.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\Robocopy.exe
2023-05-02 01:38:24 ----A---- C:\Windows\system32\omadmclient.exe
2023-05-02 01:38:24 ----A---- C:\Windows\system32\ntdsapi.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\msIso.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\mispace.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\IKEEXT.DLL
2023-05-02 01:38:24 ----A---- C:\Windows\system32\iertutil.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2023-05-02 01:38:24 ----A---- C:\Windows\system32\EsdSip.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\enrollmentapi.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\edpnotify.exe
2023-05-02 01:38:24 ----A---- C:\Windows\system32\edgeIso.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\dmenrollengine.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\deviceregistration.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\COLORCNV.DLL
2023-05-02 01:38:24 ----A---- C:\Windows\system32\BitLockerCsp.dll
2023-05-02 01:38:24 ----A---- C:\Windows\system32\BFE.DLL
2023-05-02 01:38:23 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2023-05-02 01:38:23 ----A---- C:\Windows\SYSWOW64\weretw.dll
2023-05-02 01:38:23 ----A---- C:\Windows\SYSWOW64\wer.dll
2023-05-02 01:38:23 ----A---- C:\Windows\SYSWOW64\smartscreenps.dll
2023-05-02 01:38:23 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2023-05-02 01:38:23 ----A---- C:\Windows\SYSWOW64\msdt.exe
2023-05-02 01:38:23 ----A---- C:\Windows\SYSWOW64\gpapi.dll
2023-05-02 01:38:23 ----A---- C:\Windows\SYSWOW64\gdi32full.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\wintrust.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\tzautoupdate.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\twinui.pcshell.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\termsrv.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\sqlsrv32.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\SettingsHandlers_User.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\rdsdwmdr.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\gdi32full.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\esent.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\efscore.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\drivers\raspppoe.sys
2023-05-02 01:38:23 ----A---- C:\Windows\system32\drivers\ipnat.sys
2023-05-02 01:38:23 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\dhcpcsvc.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\dhcpcore6.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\dhcpcore.dll
2023-05-02 01:38:23 ----A---- C:\Windows\system32\conhost.exe
2023-05-02 01:38:23 ----A---- C:\Windows\system32\bcastdvruserservice.dll
2023-05-02 01:38:22 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2023-05-02 01:38:22 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2023-05-02 01:38:22 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2023-05-02 01:38:22 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2023-05-02 01:38:22 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2023-05-02 01:38:22 ----A---- C:\Windows\SYSWOW64\authui.dll
2023-05-02 01:38:22 ----A---- C:\Windows\system32\witnesswmiv2provider.dll
2023-05-02 01:38:22 ----A---- C:\Windows\system32\mf.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\user32.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\sppcext.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\mskeyprotect.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\mavinject.exe
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\colbact.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\clbcatq.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\catsrv.dll
2023-05-02 01:38:21 ----A---- C:\Windows\SYSWOW64\AppVEntSubsystems32.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\WinFax.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\TpmCoreProvisioning.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\rpchttp.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\mavinject.exe
2023-05-02 01:38:21 ----A---- C:\Windows\system32\kernel32.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\ieapfltr.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXSUNATD.exe
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXSTIFF.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXST30.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXSSVC.exe
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXSROUTE.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXSMON.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXSCOMEX.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXSCOM.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\FXSAPI.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\drivers\http.sys
2023-05-02 01:38:21 ----A---- C:\Windows\system32\drivers\AppvVfs.sys
2023-05-02 01:38:21 ----A---- C:\Windows\system32\drivers\AppvVemgr.sys
2023-05-02 01:38:21 ----A---- C:\Windows\system32\drivers\AppVStrm.sys
2023-05-02 01:38:21 ----A---- C:\Windows\system32\colbact.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\clbcatq.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\catsrv.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\authui.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\AppVEntSubsystems64.dll
2023-05-02 01:38:21 ----A---- C:\Windows\system32\AppVClient.exe
2023-05-02 01:38:21 ----A---- C:\Windows\system32\apisetschema.dll
2023-05-02 01:38:20 ----A---- C:\Windows\system32\ieframe.dll
2023-05-02 01:38:20 ----A---- C:\Windows\system32\EdgeManager.dll
2023-05-02 01:38:20 ----A---- C:\Windows\system32\edgehtml.dll
2023-05-02 01:38:19 ----A---- C:\Windows\SYSWOW64\TpmCoreProvisioning.dll
2023-05-02 01:38:19 ----A---- C:\Windows\system32\Windows.Internal.SecurityMitigationsBroker.dll
2023-05-02 01:38:19 ----A---- C:\Windows\system32\webplatstorageserver.dll
2023-05-02 01:38:19 ----A---- C:\Windows\system32\mshtml.dll
2023-05-02 01:38:19 ----A---- C:\Windows\system32\jscript9diag.dll
2023-05-02 01:38:19 ----A---- C:\Windows\system32\jscript9.dll
2023-05-02 01:38:19 ----A---- C:\Windows\system32\IndexedDbLegacy.dll
2023-05-02 01:38:19 ----A---- C:\Windows\system32\ieproxy.dll
2023-05-02 01:38:18 ----A---- C:\Windows\SYSWOW64\profext.dll
2023-05-02 01:38:18 ----A---- C:\Windows\SYSWOW64\offlinelsa.dll
2023-05-02 01:38:18 ----A---- C:\Windows\SYSWOW64\credui.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\wldp.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\WinTypes.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\winresume.exe
2023-05-02 01:38:18 ----A---- C:\Windows\system32\winload.exe
2023-05-02 01:38:18 ----A---- C:\Windows\system32\wincorlib.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\uReFS.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\tzres.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\samsrv.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\samlib.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\rpcss.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\profsvc.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\offlinesam.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\nshwfp.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\ncryptsslp.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\ncrypt.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\Microsoft.Uev.AppAgent.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\keyiso.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\KdsCli.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\dsparse.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\drivers\refs.sys
2023-05-02 01:38:18 ----A---- C:\Windows\system32\drivers\ClipSp.sys
2023-05-02 01:38:18 ----A---- C:\Windows\system32\dpapisrv.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\combase.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\ci.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\bcrypt.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\authz.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\advapi32.dll
2023-05-02 01:38:18 ----A---- C:\Windows\system32\aadauthhelper.dll
2023-05-02 01:38:17 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\rpcrt4.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\mfps.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\mfcore.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\inetpp.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\dswave.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\dmusic.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\cloudAP.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\ClipUp.exe
2023-05-02 01:38:17 ----A---- C:\Windows\system32\aadtb.dll
2023-05-02 01:38:17 ----A---- C:\Windows\system32\aadcloudap.dll
2023-05-02 01:38:16 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2023-05-02 01:38:16 ----A---- C:\Windows\SYSWOW64\shell32.dll
2023-05-02 01:38:16 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2023-05-02 01:38:16 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2023-05-02 01:38:16 ----A---- C:\Windows\system32\NtlmShared.dll
2023-05-02 01:38:16 ----A---- C:\Windows\system32\mssecuser.dll
2023-05-02 01:38:16 ----A---- C:\Windows\system32\drivers\mssecflt.sys
2023-05-02 01:38:15 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2023-05-02 01:38:15 ----A---- C:\Windows\SYSWOW64\Microsoft.Uev.Office2013CustomActions.dll
2023-05-02 01:38:15 ----A---- C:\Windows\SYSWOW64\Microsoft.Uev.AppAgent.dll
2023-05-02 01:38:15 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2023-05-02 01:38:15 ----A---- C:\Windows\system32\dsound.dll
2023-05-02 01:38:14 ----A---- C:\Windows\SYSWOW64\tdh.dll
2023-05-02 01:38:14 ----A---- C:\Windows\SYSWOW64\smphost.dll
2023-05-02 01:38:14 ----A---- C:\Windows\SYSWOW64\scecli.dll
2023-05-02 01:38:14 ----A---- C:\Windows\SYSWOW64\ntdsapi.dll
2023-05-02 01:38:14 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2023-05-02 01:38:14 ----A---- C:\Windows\SYSWOW64\mispace.dll
2023-05-02 01:38:14 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\vpnike.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\VCardParser.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\UserDataTimeUtil.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\UserDataPlatformHelperUtil.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\TileDataRepository.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\rasppp.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\POSyncServices.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\mskeyprotect.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\ExSMime.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\drivers\rassstp.sys
2023-05-02 01:38:14 ----A---- C:\Windows\system32\drivers\raspptp.sys
2023-05-02 01:38:14 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2023-05-02 01:38:14 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2023-05-02 01:38:14 ----A---- C:\Windows\system32\drivers\agilevpn.sys
2023-05-02 01:38:14 ----A---- C:\Windows\system32\dab.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\d3d10warp.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\ContactActivation.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\computecore.dll
2023-05-02 01:38:14 ----A---- C:\Windows\system32\AppointmentActivation.dll
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\spaceport.sys
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\spacedump.sys
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\processr.sys
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\intelppm.sys
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\bthport.sys
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\bthenum.sys
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\amdppm.sys
2023-05-02 01:38:13 ----A---- C:\Windows\system32\drivers\amdk8.sys
2023-05-02 00:50:46 ----SHD---- C:\$RECYCLE.BIN
2023-05-02 00:50:37 ----D---- C:\Windows\SoftwareDistribution
2023-05-02 00:50:20 ----SHD---- C:\ProgramData\Шаблоны
2023-05-02 00:50:20 ----SHD---- C:\ProgramData\Рабочий стол
2023-05-02 00:50:20 ----SHD---- C:\ProgramData\Документы
2023-05-02 00:50:20 ----SHD---- C:\ProgramData\главное меню
2023-05-02 00:50:20 ----SHD---- C:\ProgramData\Application Data
2023-05-02 00:50:20 ----SHD---- C:\Documents and Settings
2023-05-02 00:50:12 ----ASH---- C:\hiberfil.sys
2023-05-02 00:49:45 ----SHD---- C:\Recovery
2023-05-02 00:49:42 ----HD---- C:\Program Files\Uninstall Information
2023-05-02 00:49:38 ----D---- C:\Windows\system32\drivers\wd
2023-05-02 00:49:38 ----D---- C:\Windows\Prefetch
2023-05-02 00:49:30 ----D---- C:\Windows\system32\SleepStudy
2023-05-02 00:49:30 ----D---- C:\Windows\ServiceProfiles
2023-05-02 00:49:29 ----SHD---- C:\System Volume Information
2023-05-02 00:49:29 ----SD---- C:\Windows\system32\Microsoft
2023-05-02 00:49:29 ----ASH---- C:\swapfile.sys
2023-05-02 00:49:29 ----ASH---- C:\pagefile.sys
2023-05-02 00:49:29 ----A---- C:\Windows\system32\FNTCACHE.DAT
2023-05-02 00:49:04 ----D---- C:\Windows\Panther
2023-05-01 23:35:55 ----N---- C:\Windows\system32\MpSigStub.exe
2023-05-01 23:12:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2023-05-01 23:12:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2023-05-01 23:12:50 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2023-05-01 23:12:50 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2023-05-01 23:12:50 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2023-05-01 23:12:50 ----A---- C:\Windows\system32\XAudio2_6.dll
2023-05-01 23:12:50 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2023-05-01 23:12:50 ----A---- C:\Windows\system32\xactengine3_6.dll
2023-05-01 23:12:49 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2023-05-01 23:12:49 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2023-05-01 23:12:49 ----A---- C:\Windows\system32\XAudio2_5.dll
2023-05-01 23:12:49 ----A---- C:\Windows\system32\xactengine3_5.dll
2023-05-01 23:12:48 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2023-05-01 23:12:48 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2023-05-01 23:12:48 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2023-05-01 23:12:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2023-05-01 23:12:48 ----A---- C:\Windows\system32\d3dx11_42.dll
2023-05-01 23:12:48 ----A---- C:\Windows\system32\d3dx10_42.dll
2023-05-01 23:12:48 ----A---- C:\Windows\system32\d3dcsx_42.dll
2023-05-01 23:12:48 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2023-05-01 23:12:47 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2023-05-01 23:12:47 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2023-05-01 23:12:47 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2023-05-01 23:12:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2023-05-01 23:12:47 ----A---- C:\Windows\system32\D3DX9_42.dll
2023-05-01 23:12:47 ----A---- C:\Windows\system32\D3DX9_41.dll
2023-05-01 23:12:47 ----A---- C:\Windows\system32\d3dx10_41.dll
2023-05-01 23:12:47 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2023-05-01 23:12:46 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2023-05-01 23:12:46 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2023-05-01 23:12:46 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2023-05-01 23:12:46 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2023-05-01 23:12:46 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2023-05-01 23:12:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2023-05-01 23:12:46 ----A---- C:\Windows\system32\XAudio2_4.dll
2023-05-01 23:12:46 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2023-05-01 23:12:46 ----A---- C:\Windows\system32\xactengine3_4.dll
2023-05-01 23:12:46 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2023-05-01 23:12:46 ----A---- C:\Windows\system32\d3dx10_40.dll
2023-05-01 23:12:46 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2023-05-01 23:12:45 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2023-05-01 23:12:45 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2023-05-01 23:12:45 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2023-05-01 23:12:45 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2023-05-01 23:12:45 ----A---- C:\Windows\system32\XAudio2_3.dll
2023-05-01 23:12:45 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2023-05-01 23:12:45 ----A---- C:\Windows\system32\xactengine3_3.dll
2023-05-01 23:12:45 ----A---- C:\Windows\system32\D3DX9_40.dll
2023-05-01 23:12:44 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2023-05-01 23:12:44 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2023-05-01 23:12:44 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2023-05-01 23:12:44 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2023-05-01 23:12:44 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2023-05-01 23:12:44 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2023-05-01 23:12:44 ----A---- C:\Windows\system32\XAudio2_2.dll
2023-05-01 23:12:44 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2023-05-01 23:12:44 ----A---- C:\Windows\system32\xactengine3_2.dll
2023-05-01 23:12:44 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2023-05-01 23:12:44 ----A---- C:\Windows\system32\d3dx10_39.dll
2023-05-01 23:12:44 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2023-05-01 23:12:43 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2023-05-01 23:12:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2023-05-01 23:12:43 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2023-05-01 23:12:43 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2023-05-01 23:12:43 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2023-05-01 23:12:43 ----A---- C:\Windows\system32\XAudio2_1.dll
2023-05-01 23:12:43 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2023-05-01 23:12:43 ----A---- C:\Windows\system32\xactengine3_1.dll
2023-05-01 23:12:43 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2023-05-01 23:12:43 ----A---- C:\Windows\system32\D3DX9_39.dll
2023-05-01 23:12:42 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2023-05-01 23:12:42 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2023-05-01 23:12:42 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2023-05-01 23:12:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2023-05-01 23:12:42 ----A---- C:\Windows\system32\XAudio2_0.dll
2023-05-01 23:12:42 ----A---- C:\Windows\system32\D3DX9_38.dll
2023-05-01 23:12:42 ----A---- C:\Windows\system32\d3dx10_38.dll
2023-05-01 23:12:42 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2023-05-01 23:12:41 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2023-05-01 23:12:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2023-05-01 23:12:41 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2023-05-01 23:12:41 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2023-05-01 23:12:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2023-05-01 23:12:41 ----A---- C:\Windows\system32\xactengine3_0.dll
2023-05-01 23:12:41 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2023-05-01 23:12:41 ----A---- C:\Windows\system32\D3DX9_37.dll
2023-05-01 23:12:41 ----A---- C:\Windows\system32\d3dx10_37.dll
2023-05-01 23:12:41 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2023-05-01 23:12:40 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2023-05-01 23:12:40 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2023-05-01 23:12:40 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2023-05-01 23:12:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2023-05-01 23:12:40 ----A---- C:\Windows\system32\xactengine2_10.dll
2023-05-01 23:12:40 ----A---- C:\Windows\system32\d3dx9_36.dll
2023-05-01 23:12:40 ----A---- C:\Windows\system32\d3dx10_36.dll
2023-05-01 23:12:40 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2023-05-01 23:12:39 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2023-05-01 23:12:39 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2023-05-01 23:12:39 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2023-05-01 23:12:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2023-05-01 23:12:39 ----A---- C:\Windows\system32\xactengine2_9.dll
2023-05-01 23:12:39 ----A---- C:\Windows\system32\d3dx9_35.dll
2023-05-01 23:12:39 ----A---- C:\Windows\system32\d3dx10_35.dll
2023-05-01 23:12:39 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2023-05-01 23:12:38 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2023-05-01 23:12:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2023-05-01 23:12:38 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2023-05-01 23:12:38 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2023-05-01 23:12:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2023-05-01 23:12:38 ----A---- C:\Windows\system32\xactengine2_8.dll
2023-05-01 23:12:38 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2023-05-01 23:12:38 ----A---- C:\Windows\system32\d3dx9_34.dll
2023-05-01 23:12:38 ----A---- C:\Windows\system32\d3dx10_34.dll
2023-05-01 23:12:38 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2023-05-01 23:12:37 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2023-05-01 23:12:37 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2023-05-01 23:12:37 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2023-05-01 23:12:37 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2023-05-01 23:12:37 ----A---- C:\Windows\system32\xactengine2_7.dll
2023-05-01 23:12:37 ----A---- C:\Windows\system32\d3dx9_33.dll
2023-05-01 23:12:37 ----A---- C:\Windows\system32\d3dx10_33.dll
2023-05-01 23:12:37 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2023-05-01 23:12:36 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2023-05-01 23:12:36 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2023-05-01 23:12:36 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2023-05-01 23:12:36 ----A---- C:\Windows\system32\xactengine2_6.dll
2023-05-01 23:12:36 ----A---- C:\Windows\system32\xactengine2_5.dll
2023-05-01 23:12:36 ----A---- C:\Windows\system32\d3dx10.dll
2023-05-01 23:12:35 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2023-05-01 23:12:35 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2023-05-01 23:12:35 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2023-05-01 23:12:35 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2023-05-01 23:12:35 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2023-05-01 23:12:35 ----A---- C:\Windows\system32\xactengine2_4.dll
2023-05-01 23:12:35 ----A---- C:\Windows\system32\xactengine2_3.dll
2023-05-01 23:12:35 ----A---- C:\Windows\system32\x3daudio1_1.dll
2023-05-01 23:12:35 ----A---- C:\Windows\system32\d3dx9_32.dll
2023-05-01 23:12:35 ----A---- C:\Windows\system32\d3dx9_31.dll
2023-05-01 23:12:34 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2023-05-01 23:12:34 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2023-05-01 23:12:34 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2023-05-01 23:12:34 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2023-05-01 23:12:34 ----A---- C:\Windows\system32\xinput1_2.dll
2023-05-01 23:12:34 ----A---- C:\Windows\system32\xinput1_1.dll
2023-05-01 23:12:34 ----A---- C:\Windows\system32\xactengine2_2.dll
2023-05-01 23:12:34 ----A---- C:\Windows\system32\xactengine2_1.dll
2023-05-01 23:12:31 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2023-05-01 23:12:31 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2023-05-01 23:12:31 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2023-05-01 23:12:31 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2023-05-01 23:12:31 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2023-05-01 23:12:31 ----A---- C:\Windows\system32\xactengine2_0.dll
2023-05-01 23:12:31 ----A---- C:\Windows\system32\x3daudio1_0.dll
2023-05-01 23:12:31 ----A---- C:\Windows\system32\d3dx9_30.dll
2023-05-01 23:12:31 ----A---- C:\Windows\system32\d3dx9_29.dll
2023-05-01 23:12:31 ----A---- C:\Windows\system32\d3dx9_28.dll
2023-05-01 23:12:30 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2023-05-01 23:12:30 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2023-05-01 23:12:30 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2023-05-01 23:12:30 ----A---- C:\Windows\system32\d3dx9_27.dll
2023-05-01 23:12:30 ----A---- C:\Windows\system32\d3dx9_26.dll
2023-05-01 23:12:30 ----A---- C:\Windows\system32\d3dx9_25.dll
2023-05-01 23:12:29 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2023-05-01 23:12:29 ----A---- C:\Windows\system32\d3dx9_24.dll
2023-05-01 23:10:32 ----D---- C:\ProgramData\Rockstar Games
2023-05-01 23:10:32 ----D---- C:\Program Files\Rockstar Games
2023-05-01 23:10:32 ----D---- C:\Program Files (x86)\Rockstar Games
2023-05-01 23:04:59 ----D---- C:\Users\Zordak\AppData\Roaming\EasyAntiCheat
2023-05-01 23:04:59 ----D---- C:\Program Files (x86)\EasyAntiCheat_EOS
2023-05-01 22:41:25 ----D---- C:\Users\Zordak\AppData\Roaming\ecef_process
2023-05-01 21:38:24 ----A---- C:\Windows\system32\logi_audio_hx2e_render_apo.dll
2023-05-01 21:38:24 ----A---- C:\Windows\system32\drivers\logi_audio_surround.sys
2023-05-01 21:38:23 ----A---- C:\Windows\system32\logi_audio_dts_studio_capture_apo.dll
2023-05-01 21:37:45 ----D---- C:\ProgramData\Logishrd
2023-05-01 21:37:44 ----D---- C:\Program Files\Logitech
2023-05-01 21:37:42 ----D---- C:\Users\Zordak\AppData\Roaming\lghub
2023-05-01 21:37:42 ----A---- C:\Windows\system32\drivers\logi_joy_xlcore.sys
2023-05-01 21:37:42 ----A---- C:\Windows\system32\drivers\logi_joy_vir_hid.sys
2023-05-01 21:37:42 ----A---- C:\Windows\system32\drivers\logi_joy_bus_enum.sys
2023-05-01 21:37:33 ----D---- C:\Program Files\LGHUB
2023-05-01 21:29:20 ----A---- C:\Windows\system32\drivers\HWiNFO64A_172.SYS
2023-05-01 21:29:14 ----D---- C:\ProgramData\FPSMonitor
2023-05-01 21:28:22 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2023-05-01 21:28:22 ----A---- C:\Windows\SYSWOW64\FvSDK_x86.dll
2023-05-01 21:28:22 ----A---- C:\Windows\system32\nvspcap64.dll
2023-05-01 21:28:22 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2023-05-01 21:28:22 ----A---- C:\Windows\system32\FvSDK_x64.dll
2023-05-01 21:28:20 ----A---- C:\Windows\NvContainerRecovery.bat
2023-05-01 21:28:18 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2023-05-01 21:28:18 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2023-05-01 21:28:18 ----A---- C:\Windows\system32\nvaudcap64v.dll
2023-05-01 21:26:51 ----A---- C:\Windows\system32\drivers\nvvhci.sys
2023-05-01 21:26:51 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2023-05-01 21:26:29 ----A---- C:\Windows\system32\nvml.dll
2023-05-01 21:26:29 ----A---- C:\Windows\system32\nvcpl.dll
2023-05-01 21:26:26 ----A---- C:\Windows\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2023-05-01 21:26:26 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2023-05-01 21:26:26 ----A---- C:\Windows\SYSWOW64\vulkan-1-999-0-0-0.dll
2023-05-01 21:26:26 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2023-05-01 21:26:26 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2023-05-01 21:26:26 ----A---- C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-05-01 21:26:26 ----A---- C:\Windows\system32\vulkaninfo.exe
2023-05-01 21:26:26 ----A---- C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-05-01 21:26:26 ----A---- C:\Windows\system32\vulkan-1.dll
2023-05-01 21:26:26 ----A---- C:\Windows\system32\OpenCL.dll
2023-05-01 21:26:18 ----A---- C:\Windows\SYSWOW64\nvofapi.dll
2023-05-01 21:26:18 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2023-05-01 21:26:18 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2023-05-01 21:26:18 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2023-05-01 21:26:18 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2023-05-01 21:26:18 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2023-05-01 21:26:18 ----A---- C:\Windows\system32\nvofapi64.dll
2023-05-01 21:26:18 ----A---- C:\Windows\system32\NvIFR64.dll
2023-05-01 21:26:18 ----A---- C:\Windows\system32\nvidia-smi.exe
2023-05-01 21:26:18 ----A---- C:\Windows\system32\NvFBC64.dll
2023-05-01 21:26:18 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2023-05-01 21:26:18 ----A---- C:\Windows\system32\nvdebugdump.exe
2023-05-01 21:26:18 ----A---- C:\Windows\system32\nvcuvid.dll
2023-05-01 21:26:18 ----A---- C:\Windows\system32\nvcudadebugger.dll
2023-05-01 21:26:18 ----A---- C:\Windows\system32\nvcuda.dll
2023-05-01 21:26:12 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2023-05-01 21:26:12 ----A---- C:\Windows\system32\MCU.exe
2023-05-01 21:22:02 ----D---- C:\ProgramData\LGHUB
2023-05-01 21:18:00 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2023-05-01 21:18:00 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2023-05-01 21:18:00 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2023-05-01 21:18:00 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\xinput1_3.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\XAudio2_7.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\D3DX9_43.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\d3dx11_43.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\d3dx10_43.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\d3dcsx_43.dll
2023-05-01 21:18:00 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2023-05-01 21:17:58 ----D---- C:\ProgramData\Package Cache
2023-05-01 21:16:58 ----D---- C:\Program Files (x86)\Epic Games
2023-05-01 21:16:48 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2023-05-01 21:16:48 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2023-05-01 21:16:48 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2023-05-01 21:16:48 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2023-05-01 21:16:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2023-05-01 21:16:45 ----D---- C:\ProgramData\Epic
2023-05-01 21:14:57 ----D---- C:\Users\Zordak\AppData\Roaming\WinRAR
2023-05-01 21:12:10 ----D---- C:\Users\Zordak\AppData\Roaming\NVIDIA
2023-05-01 21:12:03 ----D---- C:\Users\Zordak\AppData\Roaming\discord
2023-05-01 21:11:04 ----A---- C:\Windows\SYSWOW64\ssleay32.dll
2023-05-01 21:11:04 ----A---- C:\Windows\SYSWOW64\libeay32.dll
2023-05-01 21:06:31 ----D---- C:\ProgramData\Packages
2023-05-01 21:06:16 ----D---- C:\ProgramData\NVIDIA Corporation
2023-05-01 21:06:16 ----D---- C:\ProgramData\NVIDIA
2023-05-01 21:06:16 ----D---- C:\Program Files\NVIDIA Corporation
2023-05-01 21:06:15 ----D---- C:\Windows\system32\lxss
2023-05-01 21:06:15 ----D---- C:\Windows\system32\drivers\NVIDIA Corporation
2023-05-01 21:04:39 ----D---- C:\Windows\SYSWOW64\XPSViewer
2023-05-01 21:04:38 ----D---- C:\Program Files\Reference Assemblies
2023-05-01 21:04:38 ----D---- C:\Program Files\MSBuild
2023-05-01 21:04:38 ----D---- C:\Program Files (x86)\Reference Assemblies
2023-05-01 21:04:38 ----D---- C:\Program Files (x86)\MSBuild
2023-05-01 21:04:23 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2023-05-01 21:04:23 ----A---- C:\Windows\SYSWOW64\PresentationNative_v0300.dll
2023-05-01 21:04:22 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2023-05-01 21:04:21 ----A---- C:\Windows\system32\TsWpfWrp.exe
2023-05-01 21:04:21 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2023-05-01 21:04:21 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2023-05-01 20:58:38 ----D---- C:\ProgramData\Yandex
2023-05-01 20:58:38 ----D---- C:\Program Files (x86)\Yandex
2023-05-01 20:58:23 ----D---- C:\Users\Zordak\AppData\Roaming\Yandex
2023-05-01 20:57:42 ----D---- C:\Users\Zordak\AppData\Roaming\Adobe
2023-05-01 20:57:20 ----SD---- C:\Users\Zordak\AppData\Roaming\Microsoft
2023-05-01 20:54:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2023-05-01 20:52:46 ----A---- C:\Windows\SYSWOW64\PrintConfig.dll
2023-05-01 20:51:17 ----AS---- C:\Windows\bootstat.dat

====== Список файлов и папок, измененных за последние 3 месяца ======

2023-05-02 11:28:45 ----D---- C:\Windows\Temp
2023-05-02 11:26:55 ----D---- C:\Windows\system32\sru
2023-05-02 11:26:55 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2023-05-02 11:23:37 ----D---- C:\Windows\INF
2023-05-02 11:23:04 ----D---- C:\Windows\Tasks
2023-05-02 11:22:34 ----D---- C:\Windows\system32\catroot2
2023-05-02 09:48:14 ----D---- C:\Windows\system32\drivers
2023-05-02 09:43:49 ----D---- C:\Windows\System32
2023-05-02 09:27:20 ----D---- C:\Windows\system32\CatRoot
2023-05-02 09:25:48 ----D---- C:\Windows\system32\config
2023-05-02 09:25:47 ----RD---- C:\Windows\Microsoft.NET
2023-05-02 09:25:47 ----D---- C:\Windows\WinSxS
2023-05-02 09:25:42 ----D---- C:\Windows\system32\DriverStore
2023-05-02 07:25:40 ----D---- C:\Windows\system32\WDI
2023-05-02 07:25:32 ----D---- C:\Windows\system32\SecureBootUpdates
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\zh-TW
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\zh-CN
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\uk-UA
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\tr-TR
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\th-TH
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\sv-SE
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\sr-Latn-RS
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\sl-SI
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\sk-SK
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\ru-RU
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\ro-RO
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\pt-PT
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\pt-BR
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\nl-NL
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\nb-NO
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\migration
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\lv-LV
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\lt-LT
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\ko-KR
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\ja-JP
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\it-IT
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\hu-HU
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\hr-HR
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\he-IL
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\fr-FR
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\fr-CA
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\fi-FI
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\et-EE
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\es-MX
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\es-ES
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\en-US
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\en-GB
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\el-GR
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\Dism
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\de-DE
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\da-DK
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\cs-CZ
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\bg-BG
2023-05-02 07:25:31 ----D---- C:\Windows\SYSWOW64\ar-SA
2023-05-02 07:25:31 ----D---- C:\Windows\SysWOW64
2023-05-02 07:25:31 ----D---- C:\Windows\system32\zh-TW
2023-05-02 07:25:31 ----D---- C:\Windows\system32\zh-CN
2023-05-02 07:25:31 ----D---- C:\Windows\system32\wbem
2023-05-02 07:25:31 ----D---- C:\Windows\system32\uk-UA
2023-05-02 07:25:31 ----D---- C:\Windows\system32\tr-TR
2023-05-02 07:25:31 ----D---- C:\Windows\system32\th-TH
2023-05-02 07:25:31 ----D---- C:\Windows\system32\sv-SE
2023-05-02 07:25:31 ----D---- C:\Windows\system32\sr-Latn-RS
2023-05-02 07:25:31 ----D---- C:\Windows\system32\sl-SI
2023-05-02 07:25:31 ----D---- C:\Windows\system32\sk-SK
2023-05-02 07:25:31 ----D---- C:\Windows\system32\setup
2023-05-02 07:25:31 ----D---- C:\Windows\system32\ru-RU
2023-05-02 07:25:31 ----D---- C:\Windows\system32\ro-RO
2023-05-02 07:25:31 ----D---- C:\Windows\system32\pt-PT
2023-05-02 07:25:31 ----D---- C:\Windows\system32\pt-BR
2023-05-02 07:25:31 ----D---- C:\Windows\system32\pl-PL
2023-05-02 07:25:31 ----D---- C:\Windows\system32\oobe
2023-05-02 07:25:31 ----D---- C:\Windows\system32\nl-NL
2023-05-02 07:25:31 ----D---- C:\Windows\system32\nb-NO
2023-05-02 07:25:31 ----D---- C:\Windows\system32\migration
2023-05-02 07:25:31 ----D---- C:\Windows\system32\lv-LV
2023-05-02 07:25:31 ----D---- C:\Windows\system32\lt-LT
2023-05-02 07:25:31 ----D---- C:\Windows\system32\ko-KR
2023-05-02 07:25:31 ----D---- C:\Windows\system32\ja-jp
2023-05-02 07:25:31 ----D---- C:\Windows\system32\it-IT
2023-05-02 07:25:31 ----D---- C:\Windows\system32\hu-HU
2023-05-02 07:25:30 ----RD---- C:\Windows\ImmersiveControlPanel
2023-05-02 07:25:30 ----D---- C:\Windows\system32\hr-HR
2023-05-02 07:25:30 ----D---- C:\Windows\system32\he-IL
2023-05-02 07:25:30 ----D---- C:\Windows\system32\fr-FR
2023-05-02 07:25:30 ----D---- C:\Windows\system32\fr-CA
2023-05-02 07:25:30 ----D---- C:\Windows\system32\fi-FI
2023-05-02 07:25:30 ----D---- C:\Windows\system32\et-EE
2023-05-02 07:25:30 ----D---- C:\Windows\system32\es-MX
2023-05-02 07:25:30 ----D---- C:\Windows\system32\es-ES
2023-05-02 07:25:30 ----D---- C:\Windows\system32\en-US
2023-05-02 07:25:30 ----D---- C:\Windows\system32\en-GB
2023-05-02 07:25:30 ----D---- C:\Windows\system32\el-GR
2023-05-02 07:25:30 ----D---- C:\Windows\system32\Dism
2023-05-02 07:25:30 ----D---- C:\Windows\system32\de-DE
2023-05-02 07:25:30 ----D---- C:\Windows\system32\da-DK
2023-05-02 07:25:30 ----D---- C:\Windows\system32\cs-CZ
2023-05-02 07:25:30 ----D---- C:\Windows\system32\Boot
2023-05-02 07:25:30 ----D---- C:\Windows\system32\bg-BG
2023-05-02 07:25:30 ----D---- C:\Windows\system32\ar-SA
2023-05-02 07:25:30 ----D---- C:\Windows\ShellExperiences
2023-05-02 07:25:30 ----D---- C:\Windows\PolicyDefinitions
2023-05-02 07:25:30 ----D---- C:\Windows\bcastdvr
2023-05-02 07:25:30 ----D---- C:\Windows\apppatch
2023-05-02 07:25:30 ----D---- C:\Windows
2023-05-02 07:25:30 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2023-05-02 07:25:29 ----D---- C:\Windows\system32\CodeIntegrity
2023-05-02 07:25:28 ----D---- C:\Windows\system32\drivers\UMDF
2023-05-02 03:19:20 ----RD---- C:\Program Files
2023-05-02 03:18:04 ----D---- C:\Windows\appcompat
2023-05-02 01:41:50 ----D---- C:\Windows\debug
2023-05-02 01:41:47 ----D---- C:\Windows\CbsTemp
2023-05-02 01:40:00 ----D---- C:\Windows\servicing
2023-05-02 01:25:52 ----HD---- C:\Program Files\WindowsApps
2023-05-02 00:50:22 ----SD---- C:\ProgramData\Microsoft
2023-05-02 00:50:20 ----D---- C:\Program Files\windows nt
2023-05-02 00:49:45 ----RD---- C:\Windows\PrintDialog
2023-05-02 00:49:45 ----D---- C:\Windows\system32\Recovery
2023-05-02 00:49:38 ----D---- C:\Windows\ServiceState
2023-05-01 23:44:41 ----RD---- C:\Program Files\Windows Defender
2023-05-01 23:12:34 ----RSD---- C:\Windows\assembly
2023-05-01 23:10:32 ----RD---- C:\Program Files (x86)
2023-05-01 23:10:32 ----HD---- C:\ProgramData
2023-05-01 22:00:01 ----D---- C:\Windows\system32\LogFiles
2023-05-01 21:32:55 ----D---- C:\Windows\system32\Tasks
2023-05-01 21:31:58 ----D---- C:\Windows\LiveKernelReports
2023-05-01 21:28:17 ----D---- C:\Windows\AppReadiness
2023-05-01 21:22:00 ----SHD---- C:\Windows\Installer
2023-05-01 21:19:17 ----D---- C:\Program Files (x86)\Common Files
2023-05-01 21:16:48 ----D---- C:\Windows\Logs
2023-05-01 21:04:39 ----D---- C:\Windows\SYSWOW64\MUI
2023-05-01 21:04:39 ----D---- C:\Windows\system32\MUI
2023-05-01 21:04:38 ----RSD---- C:\Windows\Fonts
2023-05-01 20:58:19 ----RD---- C:\Users
2023-05-01 20:57:20 ----D---- C:\Windows\system32\WinBioDatabase
2023-05-01 20:52:47 ----D---- C:\Windows\system32\spool
2023-05-01 20:52:47 ----D---- C:\Windows\system32\FxsTmp
2023-05-01 20:52:47 ----D---- C:\Windows\CSC
2023-05-01 20:52:47 ----D---- C:\ProgramData\USOPrivate
2023-04-14 15:31:10 ----A---- C:\Windows\system32\nvapi64.dll

File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed

====== Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено) ======

R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\Windows\system32\drivers\iorate.sys [2022-12-14 55632]
R0 MsSecCore;@%SystemRoot%\System32\Drivers\msseccore.sys,-1001; C:\Windows\system32\drivers\msseccore.sys [2023-05-02 26944]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\Windows\system32\drivers\SgrmAgent.sys [2022-12-14 88432]
R1 afunix;afunix; C:\Windows\system32\drivers\afunix.sys [2022-12-14 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\Windows\system32\drivers\bam.sys [2018-09-15 63288]
R1 HWiNFO_172;HWiNFO Kernel Driver (v172); \??\C:\Windows\system32\drivers\HWiNFO64A_172.SYS [2023-05-01 56888]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\Windows\system32\drivers\cldflt.sys [2022-12-14 457728]
R3 logi_audio_surround;@oem24.inf,%logi_audio_surround.SvcDesc%;Logitech USB Surround Filter Driver (G HUB); C:\Windows\system32\drivers\logi_audio_surround.sys [2023-05-01 52520]
R3 logi_joy_bus_enum;@oem23.inf,%LGBusEnum.SVCDESC%;Logitech G HUB Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [2023-05-01 44880]
R3 logi_joy_vir_hid;@oem21.inf,%LGVirHid.SVCDESC%;Logitech G HUB Virtual HID Device Driver; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [2023-05-01 32080]
R3 logi_joy_xlcore;@oem23.inf,%LGJoyXlCore.SVCDESC%;Logitech G HUB Translation Layer Driver; C:\Windows\system32\drivers\logi_joy_xlcore.sys [2023-05-01 73040]
R3 MpKsl40bf647a;MpKsl40bf647a; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{64D7A876-ABF3-47A1-A56A-83A3B9B7040A}\MpKslDrv.sys [2023-05-02 50432]
R3 NVHDA;@oem17.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2023-04-14 121880]
R3 nvlddmkm;nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8156678a4c5d0913\nvlddmkm.sys [2023-04-14 58249736]
R3 NvModuleTracker;@oem19.inf,%ServiceName%;NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [2023-04-14 45656]
R3 nvvad_WaveExtensible;@oem16.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2023-04-14 59928]
R3 nvvhci;@oem20.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\Windows\System32\drivers\nvvhci.sys [2023-04-14 60112]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\Windows\System32\drivers\rt640x64.sys [2018-09-15 605696]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\Windows\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\Windows\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\Windows\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\Windows\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 Ramdisk;Windows RAM Disk Driver; C:\Windows\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2022-12-14 137016]
S0 SmartSAMD;SmartSAMD; C:\Windows\System32\drivers\SmartSAMD.sys [2018-09-15 219960]
S3 ACE-BASE;ACE-BASE; \??\C:\Windows\system32\drivers\ACE-BASE.sys [2023-05-02 1869904]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2022-12-14 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\Windows\system32\drivers\AppvStrm.sys [2023-05-02 138624]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\Windows\system32\drivers\AppvVemgr.sys [2023-05-02 178192]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\Windows\system32\drivers\AppvVfs.sys [2023-05-02 157200]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\Windows\system32\drivers\bindflt.sys [2022-12-14 105296]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2023-05-02 111104]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2022-12-14 91136]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\Windows\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\drivers\BTHport.sys [2023-05-02 1245184]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\drivers\BTHUSB.sys [2023-05-02 92672]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\Windows\System32\drivers\CAD.sys [2018-09-15 63288]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\Windows\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2023-05-02 81792]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\Windows\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 HyperVideo;HyperVideo; C:\Windows\System32\drivers\HyperVideo.sys [2022-12-14 32256]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 IPT;IPT; C:\Windows\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\Windows\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\Windows\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\Windows\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\Windows\system32\drivers\MbbCx.sys [2022-12-14 290304]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\Windows\system32\drivers\mssecflt.sys [2023-05-02 326016]
S3 MsSecWfp;@%SystemRoot%\System32\Drivers\mssecwfp.sys,-1001; C:\Windows\system32\drivers\mssecwfp.sys [2023-05-02 28992]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 netvsc;netvsc; C:\Windows\System32\drivers\netvsc.sys [2022-12-14 287064]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\Windows\System32\drivers\nvdimm.sys [2022-12-14 148480]
S3 PktMon;Packet Monitor Driver; C:\Windows\system32\drivers\PktMon.sys [2022-12-14 130384]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\Windows\System32\drivers\pmem.sys [2022-12-14 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\Windows\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFS;ReFS; C:\Windows\system32\drivers\ReFS.sys [2023-05-02 1964416]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2018-09-15 202240]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\Windows\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\Windows\System32\drivers\SDFRd.sys [2018-09-15 33080]
S3 smbdirect;smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [2018-09-15 171520]
S4 hvcrash;hvcrash; C:\Windows\System32\drivers\hvcrash.sys [2022-12-14 33608]

====== Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено) ======

R2 CDPUserSvc_4e9c0;Служба пользователя платформы подключенных устройств_4e9c0; C:\Windows\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = 
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe [2021-06-16 628616]
R2 LGHUBUpdaterService;LGHUB Updater Service; C:\Program Files\LGHUB\lghub_updater.exe [2023-05-01 10196736]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe [2021-09-02 4064384]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_8156678a4c5d0913\Display.NvContainer\NVDisplay.Container.exe [2023-04-14 1015280]
R2 OneSyncSvc_4e9c0;Синхронизация узла_4e9c0; C:\Windows\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = 
R2 RtkAudioUniversalService;Realtek Audio Universal Service; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bc81681eb27bc1ae\RtkAudUService64.exe [2021-02-17 1231864]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\Windows\system32\SgrmBroker.exe [2022-12-14 255680]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\System32\BthAvctpSvc.dll
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; %SystemRoot%\system32\svchost.exe -k appmodel -p;"ServiceDll" = %SystemRoot%\system32\CapabilityAccessManager.dll
R3 cbdhsvc_4e9c0;Пользовательская служба буфера обмена_4e9c0; C:\Windows\system32\svchost.exe -k ClipboardSvcGroup -p;"ServiceDll" = 
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\Windows\system32\SecurityHealthService.exe [2022-12-14 913704]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 Intel(R) TPM Provisioning Service;@oem11.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe [2021-09-15 729944]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k AssignedAccessManagerSvc;"ServiceDll" = %SystemRoot%\System32\assignedaccessmanagersvc.dll
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; %SystemRoot%\system32\svchost.exe -k BcastDVRUserService;"ServiceDll" = %SystemRoot%\System32\BcastDVRUserService.dll
S3 BcastDVRUserService_4e9c0;Пользовательская служба DVR для игр и трансляции_4e9c0; C:\Windows\system32\svchost.exe -k BcastDVRUserService;"ServiceDll" = 
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; %SystemRoot%\system32\svchost.exe -k BthAppGroup -p;"ServiceDll" = %SystemRoot%\System32\Microsoft.Bluetooth.UserService.dll
S3 BluetoothUserService_4e9c0;Служба поддержки пользователей Bluetooth_4e9c0; C:\Windows\system32\svchost.exe -k BthAppGroup -p;"ServiceDll" = 
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\BTAGService.dll
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\System32\CaptureService.dll
S3 CaptureService_4e9c0;CaptureService_4e9c0; C:\Windows\system32\svchost.exe -k LocalService -p;"ServiceDll" = 
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k ClipboardSvcGroup -p;"ServiceDll" = %SystemRoot%\System32\cbdhsvc.dll
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\ConsentUxClient.dll
S3 ConsentUxUserSvc_4e9c0;ConsentUX_4e9c0; C:\Windows\system32\svchost.exe -k DevicesFlow;"ServiceDll" = 
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\Windows.Devices.Picker.dll
S3 DevicePickerUserSvc_4e9c0;DevicePicker_4e9c0; C:\Windows\system32\svchost.exe -k DevicesFlow;"ServiceDll" = 
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_4e9c0;DevicesFlow_4e9c0; C:\Windows\system32\svchost.exe -k DevicesFlow;"ServiceDll" = 
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k diagnostics;"ServiceDll" = %systemroot%\system32\DiagSvc.dll
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
S3 EasyAntiCheat_EOS;Easy Anti-Cheat (Epic Online Services); C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [2023-05-01 935344]
S3 EpicOnlineServices;Epic Online Services; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [2023-02-10 934352]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-09-09 43632]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 FvSvc;NVIDIA FrameView SDK service; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [2023-04-14 1081896]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k GraphicsPerfSvcGroup;"ServiceDll" = %SystemRoot%\System32\GraphicsPerfSvc.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\InstallService.dll
S3 Intel(R) Capability Licensing Service TCP IP Interface;@oem11.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe [2021-09-15 785240]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\LanguageOverlayServer.dll
S3 MessagingService_4e9c0;MessagingService_4e9c0; C:\Windows\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = 
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2023-04-14 1003128]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe [2022-12-14 79360]
S3 PimIndexMaintenanceSvc_4e9c0;Служба контактных данных_4e9c0; C:\Windows\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = 
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; %SystemRoot%\system32\svchost.exe -k PrintWorkflow;"ServiceDll" = %SystemRoot%\System32\PrintWorkflowService.dll
S3 PrintWorkflowUserSvc_4e9c0;PrintWorkflow_4e9c0; C:\Windows\system32\svchost.exe -k PrintWorkflow;"ServiceDll" = 
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\PushToInstall.dll
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 Rockstar Service;Rockstar Game Library Service; E:\Launcher\RockstarService.exe [2023-05-01 1846768]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2023-05-02 473664]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\System32\SharedRealitySvc.dll
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\Windows\system32\spectrum.exe [2022-12-14 983040]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\Windows\system32\AppVClient.exe [2023-05-02 854032]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------
