Результаты дополнительного сканирования Farbar Recovery Scan Tool (x64) Версия: 05-07-2023 Запущено с помощью dimon (08-07-2023 12:16:59) Запущено из C:\Users\dimon\Downloads Майкрософт Windows 10 Pro Версия 22H2 19045.3086 (X64) (2023-06-29 14:23:21) Режим загрузки: Normal ========================================================== ==================== Учетные записи: ============================= (Если запись включена в fixlist, она будет удалена) DefaultAccount (S-1-5-21-769043485-417774055-3436422106-503 - Limited - Disabled) dimon (S-1-5-21-769043485-417774055-3436422106-1001 - Administrator - Enabled) => C:\Users\dimon WDAGUtilityAccount (S-1-5-21-769043485-417774055-3436422106-504 - Limited - Disabled) Администратор (S-1-5-21-769043485-417774055-3436422106-500 - Administrator - Disabled) Гость (S-1-5-21-769043485-417774055-3436422106-501 - Limited - Disabled) ==================== Центр безопасности ======================== (Если запись включена в fixlist, она будет удалена) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: 360 Total Security (Enabled - Up to date) {FFDC234A-CE9B-08F9-406B-F876951CE066} ==================== Установленные программы ====================== (В fixlist можно добавлять только рекламные программы с флагом «Скрытый», чтобы отобразить их.) µTorrent (HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\uTorrent) (Version: 3.6.0.46828 - BitTorrent Inc.) 360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 11.0.0.1020 - 360 Security Center) Adobe Reader XI (11.0.20) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.20 - Adobe Systems Incorporated) AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.78 - ASUSTeK Computer Inc.) AIMP (HKLM\...\AIMP) (Version: 5.11.2432 - Artem Izmaylov) AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.11.26.106 - Advanced Micro Devices, Inc.) AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.111 - Advanced Micro Devices, Inc.) Hidden AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.81 - Advanced Micro Devices, Inc.) Hidden AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 4.13.0.0 - Advanced Micro Devices, Inc.) Hidden AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 6.0.0.9 - Advanced Micro Devices, Inc.) Hidden AMD SBxxx SMBus Driver Alpha (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden AMD_Chipset_Drivers (HKLM-x32\...\{ac726f18-c961-4fa1-a46d-6f0c644cd12b}) (Version: 2.11.26.106 - Advanced Micro Devices, Inc.) Hidden ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.031 - ASUSTek Computer Inc.) AURA RGB Lighting Control for Graphic card & XG-STATION (HKLM-x32\...\InstallShield_{3B47B9A9-82B9-4B7E-BB4A-C20948C2AA7D}) (Version: 0.0.6.6 - ASUSTek COMPUTER INC.) Bandicam (HKLM-x32\...\Bandicam) (Version: 3.1.1.1073 - Bandisoft.com) Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com) CPUID ASUS CPU-Z 1.95 (HKLM\...\CPUID ASUS CPU-Z_is1) (Version: 1.95 - CPUID, Inc.) CPUID HWMonitor 1.51 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.51 - CPUID, Inc.) Driver Booster 10 (HKLM-x32\...\Driver Booster_is1) (Version: 10.5.0 - IObit) FakinTheFunk? V4.1 (HKLM-x32\...\{9953F867-33F6-4666-A25E-DEB3A8AAAA87}_is1) (Version: - Ulrich Decker Software) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC) Hetman Partition Recovery (HKLM-x32\...\Hetman Partition Recovery) (Version: 4.7 - Hetman Software) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.67 - Корпорация Майкрософт) Microsoft OneDrive (HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\OneDriveSetup.exe) (Version: 23.127.0618.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD) NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation) NVIDIA Графический драйвер 536.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.40 - NVIDIA Corporation) NVIDIA Системное программное обеспечение PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9071.1 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.46.1231.2020 - Realtek) StarCraft II (HKLM-x32\...\StarCraft II_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm) Telegram Desktop (HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.8.3 - Telegram FZ-LLC) Turbo LAN 1.10.12 (HKLM\...\Turbo LAN) (Version: 1.10.12 - cFos Software GmbH, Bonn) Wargaming.net Game Center (HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\Wargaming.net Game Center) (Version: 23.2.2.2776 - Wargaming.net) WinRAR 5.91 (64-разрядная) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) World of Tanks EU (HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\2340765608) (Version: - Wargaming.net) Среда выполнения Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.67 - Корпорация Майкрософт) Packages: ========= DTS Custom for Asus -> C:\Program Files\WindowsApps\DTSInc.DTSCustomforAsus_2.1.1.0_x64__t5j2fzbtdg37r [2023-07-06] (DTS, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-07-05] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.20.238.0_x64__dt26b99r8h8gj [2023-07-06] (Realtek Semiconductor Corp) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-07-01] (Microsoft Studios) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0 [2023-06-29] (Spotify AB) [Startup Task] WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x64__8wekyb3d8bbwe [2023-07-01] (Microsoft Corporation) WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x86__8wekyb3d8bbwe [2023-07-01] (Microsoft Corporation) ==================== Пользовательские CLSID (В белом списке): ============== (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files\AIMP\System\aimp_menu64.dll [2023-07-05] (IP Izmaylov Artem Andreevich -> AIMP DevTeam) ContextMenuHandlers1: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files\AIMP\System\aimp_menu64.dll [2023-07-05] (IP Izmaylov Artem Andreevich -> AIMP DevTeam) ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> ) ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_5b6e4554b945d508\nvshext.dll [2023-07-05] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (В белом списке) ==================== (Если запись включена в fixlist, элемент реестра будет сброшен на значение по умолчанию или удалён. Файл не будет перемещён.) HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [25640 2013-08-05] (Bandisoft -> ) HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [70200 2013-08-05] (Bandisoft -> ) HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [70712 2013-08-05] (Bandisoft -> ) HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] (Bandisoft -> ) HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] (Bandisoft -> ) HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] (Bandisoft -> ) ==================== Ярлыки & WMI ======================== (Записи могут быть перечислены для восстановления или удаления.) Shortcut: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Новости в последней версии.lnk -> C:\Program Files\WinRAR\WhatsNew.txt () <==== Cyrillic Shortcut: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Руководство по консольной версии RAR.lnk -> C:\Program Files\WinRAR\Rar.txt () <==== Cyrillic Shortcut: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Справка WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm () <==== Cyrillic Shortcut: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop\Деинсталлировать Telegram.lnk -> C:\Users\dimon\AppData\Roaming\Telegram Desktop\unins000.exe (Telegram FZ-LLC ) <==== Cyrillic Shortcut: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Security Center\360 Total Security\Песочница.lnk -> C:\Program Files (x86)\360\Total Security\ipc\360boxmain.exe (Qihoo 360 Technology Co. Ltd.) <==== Cyrillic Shortcut: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\SendTo\Передача файлов через Bluetooth.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation) <==== Cyrillic ShortcutWithArgument: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net\World_of_Tanks_EU\Удалить World of Tanks EU.lnk -> W:\World_of_Tanks_EU\wgc_api.exe (Wargaming.net) -> --uninstall <==== Cyrillic ShortcutWithArgument: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Security Center\360 Total Security\Уязвимости.lnk -> C:\Program Files (x86)\360\Total Security\QHSafeMain.exe (Qihoo 360 Technology Co. Ltd.) -> /leakfix <==== Cyrillic ==================== Загруженные модули (В белом списке) ============= 2023-07-06 19:10 - 2020-12-23 10:03 - 000147456 _____ () [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll 2023-07-06 19:11 - 2021-03-11 16:35 - 001146368 _____ () [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIP4FanCalibration.dll 2023-07-06 19:11 - 2021-03-11 16:35 - 000886272 _____ () [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll 2023-07-06 19:11 - 2021-03-11 16:35 - 000996864 _____ () [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll 2023-07-06 19:11 - 2021-03-11 16:35 - 000990208 _____ () [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll 2023-07-06 19:11 - 2021-03-11 16:35 - 000952832 _____ () [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll 2023-07-06 19:11 - 2021-03-11 16:35 - 001065472 _____ () [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\FanInfofromProtocol.dll 2023-07-06 19:10 - 2020-03-31 09:32 - 001164800 _____ () [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll 2023-07-06 19:11 - 2021-03-11 11:35 - 006065152 ____R () [Файл не подписан] C:\Program Files (x86)\ASUS\AsusFanControlService\2.01.04\libprotobufd.dll 2023-04-03 01:48 - 2023-04-03 01:48 - 000232960 _____ () [Файл не подписан] C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2023-04-03 01:48 - 2023-04-03 01:48 - 000059392 _____ () [Файл не подписан] C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2023-04-03 01:49 - 2023-04-03 01:49 - 000699904 _____ () [Файл не подписан] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2023-04-03 01:48 - 2023-04-03 01:48 - 000074240 _____ () [Файл не подписан] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2023-04-03 01:48 - 2023-04-03 01:48 - 000371712 _____ () [Файл не подписан] C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2023-07-06 19:10 - 2020-12-23 10:03 - 000108544 _____ (ASUS) [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\AsAcpi.dll 2023-07-06 19:10 - 2020-12-23 10:03 - 000676864 _____ (ASUSTeK Computer Inc.) [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll 2023-07-06 19:10 - 2020-12-23 10:03 - 000221184 _____ (ASUSTeK Computer Inc.) [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll 2023-07-06 19:11 - 2021-03-11 16:35 - 000221184 _____ (ASUSTeK Computer Inc.) [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\AsMultiLang.dll 2023-07-06 19:11 - 2019-07-02 16:34 - 000221184 _____ (ASUSTeK Computer Inc.) [Файл не подписан] C:\Program Files (x86)\ASUS\AI Suite III\System Information\AsMultiLang.dll ==================== Alternate Data Streams (В белом списке) ======== (Если запись включена в fixlist, будет удален только ADS (альтернативный поток данных).) AlternateDataStreams: C:\Users\dimon\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394] AlternateDataStreams: C:\Users\dimon\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394] ==================== Безопасный режим (В белом списке) ================== ==================== Ассоциация (В белом списке) ================= ==================== Internet Explorer (В белом списке) ========== SearchScopes: HKU\S-1-5-21-769043485-417774055-3436422106-1001 -> DefaultScope {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.ru/search/?text={searchTerms}&clid=2233627 SearchScopes: HKU\S-1-5-21-769043485-417774055-3436422106-1001 -> {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.ru/search/?text={searchTerms}&clid=2233627 ==================== Hosts содержимое: ========================= (При необходимости, директива Hosts: может быть включена в fixlist для сброса файла Hosts) 2019-12-07 12:14 - 2023-06-29 17:56 - 000001025 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 api.kxvrqpr2.xyz 127.0.0.1 api.lywsrqs3.xyz 127.0.0.1 stats.itopupdate.com 127.0.0.1 sso.itopupdate.com 127.0.0.1 sso.itopvpn.com 127.0.0.1 api.itopvpn.com 127.0.0.1 stats.itopvpn.com ==================== Другие области =========================== (В настоящее время нет автоматического исправления для этого раздела.) HKU\S-1-5-21-769043485-417774055-3436422106-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper HKU\S-1-5-21-769043485-417774055-3436422106-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Брандмауэр Windows включён Network Binding: ============= Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled) ==================== MSCONFIG/TASK MANAGER отключённые элементы == (Если запись включена в fixlist, она будет удалена) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "Turbo LAN" HKLM\...\StartupApproved\Run: => "RtkAudUService" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run32: => "Adobe ARM" HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_C9CB6FE72FEEA58825172E9D91C053FA" HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\StartupApproved\Run: => "Wargaming.net Game Center" HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\StartupApproved\Run: => "ut" ==================== Правила Брандмауэра (В белом списке) ================ (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) FirewallRules: [{E043449E-695F-4D9A-865C-686D5AEFD2CE}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{25200766-ACC7-45EC-9771-4CE648BC08C7}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{14546C24-26C5-445C-88F5-5F354C2BB885}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{C4D15472-6FBA-4E6C-BA9F-5CB0135569B3}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{CF01A71B-82F7-441D-9F31-39E3AEC974C4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{F2F66BF7-687C-4B02-9DFC-4B125467EB24}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{2248D2FE-1921-42D1-A875-C269CF93452D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{A0A3551C-8E32-459E-94B5-EEB8F011200A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{9BB9FF44-3D35-4986-8968-2AE31C16230E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{E9444208-005B-4F21-96A6-E28B0FDB4E52}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{8179CC99-9F23-4D28-9A38-EC470AC12293}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{90F94EF0-6947-4083-8C9B-31EE32A34630}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{E6AEFB46-A919-403F-95A1-3DCEFE1DF7E5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{894CA3E4-19FF-479E-AE5D-999624BB9EC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{DDBCE568-C98A-41F6-9701-BBECACCD143F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{B3B8ACBB-297D-46DE-B7C3-D2A86EDC0A7D}] => (Allow) D:\steam\steam.exe => Нет файла FirewallRules: [{C35C8B26-466E-4B87-B3A4-83BD969EC624}] => (Allow) D:\steam\steam.exe => Нет файла FirewallRules: [{48D87F52-5BB6-415F-98AA-3F1B109FD2A8}] => (Allow) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe => Нет файла FirewallRules: [{8D2A08AC-BB64-4F7C-959C-5523CF5E8A51}] => (Allow) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe => Нет файла FirewallRules: [TCP Query User{0A6A76F9-AAB5-4EB0-8A4F-314FD2FC7A3C}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Нет файла FirewallRules: [UDP Query User{717CF860-B453-4BF6-A063-E7B2066DDB3E}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Нет файла FirewallRules: [TCP Query User{C857EFC6-432C-4484-A731-E1E7B9ACFE2C}D:\portal stories mel\portal2.exe] => (Allow) D:\portal stories mel\portal2.exe => Нет файла FirewallRules: [UDP Query User{D08FBD2B-B099-449A-8827-F5E03B024A54}D:\portal stories mel\portal2.exe] => (Allow) D:\portal stories mel\portal2.exe => Нет файла FirewallRules: [TCP Query User{D232E473-6130-44AF-827F-CCD5DEA783A0}W:\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) W:\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [UDP Query User{9DBA023D-5D7D-4708-BBDF-6BB3EFA3BB4C}W:\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) W:\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{40534DD2-FBF4-4083-ADF7-544A1E66B86D}] => (Allow) W:\steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{03E3ECA9-8A8E-448C-8132-8D378E8BB9DE}] => (Allow) W:\steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{C218DEF1-5390-4D7F-9D42-7B06265BD212}] => (Allow) W:\steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{597A3F4B-E200-4C88-8B73-D52BFCDF66F9}] => (Allow) W:\steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{3EBFA686-8E2F-4E84-BA06-B6DCA4684CE8}W:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) W:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (KRAFTON, Inc. -> KRAFTON, Inc.) FirewallRules: [UDP Query User{F96B74AC-F091-4C24-9C04-259975E6C089}W:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) W:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (KRAFTON, Inc. -> KRAFTON, Inc.) FirewallRules: [TCP Query User{9C954D94-6C15-4339-808F-6DDC8F354A63}W:\bfhd\bf2.exe] => (Allow) W:\bfhd\bf2.exe () [Файл не подписан] FirewallRules: [UDP Query User{B7FC0CF8-F4A3-451E-A1C8-3CEDC53D8E97}W:\bfhd\bf2.exe] => (Allow) W:\bfhd\bf2.exe () [Файл не подписан] FirewallRules: [TCP Query User{CB701828-595D-4427-B4C8-6A05FFEFB7E7}W:\max payne 3\maxpayne3.exe] => (Allow) W:\max payne 3\maxpayne3.exe (Take-Two Interactive Software, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{82E49B37-5B51-4F39-9377-E076F5A6602B}W:\max payne 3\maxpayne3.exe] => (Allow) W:\max payne 3\maxpayne3.exe (Take-Two Interactive Software, Inc. -> Rockstar Games) FirewallRules: [{806EB8F1-122B-447B-9B54-D990298BF2B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E48765AC-3746-4A76-9431-400E7A0406BF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{851CB37F-7472-4FDD-9A23-8D170DF1583B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{95D10F46-0DFB-4623-8806-82983701F637}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0ACA3E82-1738-4B19-BB43-E408307FB425}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{8FA21337-C4AC-4DC6-A8DF-6864C530941A}C:\users\dimon\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dimon\appdata\roaming\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{C05C065B-CD6C-4148-AF20-07A9B90C5B7C}C:\users\dimon\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dimon\appdata\roaming\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{B6B17820-D16D-46D4-AB85-8FAD4338BBD4}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net) FirewallRules: [UDP Query User{1FBD3FFA-CA79-4509-A518-E5F3835EEA69}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net) FirewallRules: [TCP Query User{F1E8AFA4-BB23-4ABF-ABAE-0CE0A4DF8867}W:\portal stories mel\portal2.exe] => (Block) W:\portal stories mel\portal2.exe () [Файл не подписан] FirewallRules: [UDP Query User{E33E74BE-F6BD-4810-9AEF-D125458009E7}W:\portal stories mel\portal2.exe] => (Block) W:\portal stories mel\portal2.exe () [Файл не подписан] FirewallRules: [{F567122B-3C33-4509-B7BA-024A15C7504B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7B81D390-F15D-4DD6-AA5E-EA349B6365F1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{6F82C49E-FD3B-4262-8F9D-35CF3DA319C0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E5A0535C-B475-48D4-ABC3-782A18BADF0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{F0E42DFE-1036-4E38-AE47-4613A5CA6985}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{4A0BF989-8230-46A7-BFA2-7B16B602EBF3}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{FE99F833-C884-4FEF-9A0A-E4A416C1B83E}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) ==================== Точки восстановления ========================= 01-07-2023 19:55:01 Установщик модулей Windows 02-07-2023 23:43:47 Установщик модулей Windows 05-07-2023 10:15:03 Driver Booster : NVIDIA GeForce GTX 1070 Ti 06-07-2023 12:13:18 Driver Booster : Realtek Bluetooth 5.0 Adapter ==================== Неисправное Устройство в Менеджере Устройств ============ Name: Универсальный USB-концентратор Description: Универсальный USB-концентратор Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Стандартные USB-концентраторы) Service: USBHUB3 Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Ошибки журнала событий: ======================== Ошибки приложения: ================== Error: (07/08/2023 11:20:53 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Центру обеспечения безопасности не удалось проверить вызывающий объект с ошибкой %1. Error: (07/08/2023 11:18:54 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: Сбой инициализации регистрации сертификата SCEP WORKGROUP\IT-BLOK$ через https://AMD-KeyId-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net/templates/Aik/scep: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Sat, 08 Jul 2023 08:18:53 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 443c74a8-0ac3-4b8f-8ece-11f09d2d7513 Метод: GET(656ms) Стадия: GetCACaps Не найдено (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (07/08/2023 09:49:52 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Модулю оптимизации дисков не удалось завершить повторная оптимизация на Локальный диск (F:) по следующей причине: Оборудование тома не поддерживает запрошенную операцию. (0x8900002A) Error: (07/08/2023 07:57:17 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Центру обеспечения безопасности не удалось проверить вызывающий объект с ошибкой %1. Error: (07/08/2023 07:55:18 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: Сбой инициализации регистрации сертификата SCEP WORKGROUP\IT-BLOK$ через https://AMD-KeyId-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net/templates/Aik/scep: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Sat, 08 Jul 2023 04:55:18 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 89190c83-f7bf-423a-b478-d8d3a7a3a39c Метод: GET(593ms) Стадия: GetCACaps Не найдено (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (07/07/2023 04:37:34 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Центру обеспечения безопасности не удалось проверить вызывающий объект с ошибкой %1. Error: (07/07/2023 03:30:51 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Центру обеспечения безопасности не удалось проверить вызывающий объект с ошибкой %1. Error: (07/07/2023 03:28:52 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: Сбой инициализации регистрации сертификата SCEP WORKGROUP\IT-BLOK$ через https://AMD-KeyId-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net/templates/Aik/scep: GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Fri, 07 Jul 2023 12:28:52 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: f40465bf-a4e3-4dae-acd8-817ea9d5856a Метод: GET(485ms) Стадия: GetCACaps Не найдено (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Системные ошибки: ============= Error: (07/08/2023 11:18:43 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY) Description: PBR_DRV\Device\HarddiskVolume23 Error: (07/08/2023 07:55:06 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY) Description: PBR_DRV\Device\HarddiskVolume23 Error: (07/08/2023 07:55:09 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Предыдущее завершение работы системы в 00:48:44 на ‎08.‎07.‎2023 было неожиданным. Error: (07/08/2023 07:54:59 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY) Description: 3221225684Произошла неустранимая ошибка при обработке данных восстановления. Error: (07/07/2023 03:41:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Служба "ASUS Com Service" неожиданно прервана. Это произошло (раз): 1. Error: (07/07/2023 03:39:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Служба "DTS APO3 Service" неожиданно прервана. Это произошло (раз): 1. Error: (07/07/2023 03:28:41 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY) Description: PBR_DRV\Device\HarddiskVolume23 Error: (07/07/2023 09:45:40 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY) Description: PBR_DRV\Device\HarddiskVolume23 CodeIntegrity: =============== Date: 2023-07-08 11:20:53 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\360\Total Security\safemon\WscReg.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\360\Total Security\360Base.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-07-07 16:32:35 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\oobe\UserOOBEBroker.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2023-07-07 16:32:35 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\SppExtComObj.Exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Информация о памяти =========================== BIOS: American Megatrends Inc. 3002 02/23/2023 Материнская плата: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS Процессор: AMD Ryzen 5 5600X 6-Core Processor Процент используемой памяти: 18% Общий объём физической RAM: 32677.25 MB Доступно физической RAM: 26744.07 MB Всего Виртуальной: 37541.25 MB Доступно Виртуальной: 29101.05 MB ==================== Диски ================================ Drive c: () (Fixed) (Total:238.36 GB) (Free:93.65 GB) (Model: NE-256 2280) NTFS Drive f: (Локальный диск) (Fixed) (Total:929.4 GB) (Free:1.24 GB) (Model: ST1000LM024 HN-M101MBB) NTFS Drive w: (Новый том) (Fixed) (Total:953.87 GB) (Free:12.77 GB) (Model: HS-SSD-G4000 1024G) NTFS \\?\Volume{8324b2eb-fcb7-42eb-bd04-65298f3e1fd5}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Таблица Разделов ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: D9FA2484) Partition 1: (Not Active) - (Size=1001 MB) - (Type=42) Partition 2: (Not Active) - (Size=1000 MB) - (Type=12) Partition 3: (Not Active) - (Size=929.6 GB) - (Type=42) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 953.9 GB) (Disk ID: 902EA4AE) Partition 1: (Not Active) - (Size=953.9 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (Size: 238.5 GB) (Disk ID: D750CC4E) Partition: GPT. ==================== Конец от Addition.txt =======================