Результат сканирования Farbar Recovery Scan Tool (FRST) (x64) Версия: 05-07-2023 Запущено с помощью dimon (Администратор) на IT-BLOK (ASUS System Product Name) (08-07-2023 12:15:24) Запущено из C:\Users\dimon\Downloads\FRST64.exe Загруженные профили: dimon & Платформа: Майкрософт Windows 10 Pro Версия 22H2 19045.3086 (X64) Язык: Русский (Россия) Браузер по умолчанию: Chrome Режим загрузки: Normal ==================== Процессы (В белом списке) ================= (Если запись включена в fixlist, процесс будет закрыт. Файл не будет перемещён.) (BattlEye Innovations e.K. -> BattlEye Innovations) W:\steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe (C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe (C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (explorer.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (explorer.exe ->) (CPUID -> CPUID) C:\Program Files\HWMonitor\HWMonitor.exe (explorer.exe ->) (fabi.me) [Файл не подписан] C:\Users\dimon\OneDrive\Рабочий стол\SpeedAutoClicker.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <26> (explorer.exe ->) (Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\dimon\AppData\Roaming\Telegram Desktop\Telegram.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) W:\steam\steam.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (KRAFTON, Inc. -> KRAFTON, Inc.) W:\steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame.exe <2> (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.01.04\AsusFanControlService.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.55\atkexComSvc.exe (services.exe ->) (BattlEye Innovations e.K. -> ) C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe (services.exe ->) (cFos Software GmbH -> cFos Software GmbH) C:\Program Files\ASUS\Turbo LAN\spd.exe (services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe (services.exe ->) (KRAFTON, Inc. -> KRAFTON, Inc) C:\Program Files\Common Files\PUBG\zksvc.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_5b6e4554b945d508\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c759ff49aef8a7cf\RtkAudUService64.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2304.2.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (W:\steam\steam.exe ->) (KRAFTON, Inc. -> KRAFTON, Inc.) W:\steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (W:\steam\steam.exe ->) (Valve Corp. -> Valve Corporation) W:\steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (W:\steam\steam.exe ->) (Valve Corp. -> Valve Corporation) W:\steam\GameOverlayUI.exe ==================== Реестр Windows (В белом списке) =================== (Если запись включена в fixlist, элемент реестра будет сброшен на значение по умолчанию или удалён. Файл не будет перемещён.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c759ff49aef8a7cf\RtkAudUService64.exe [1208560 2020-11-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Turbo LAN] => C:\Program Files\ASUS\Turbo LAN\cFosSpeed.exe [2494280 2020-05-26] (cFos Software GmbH -> cFos Software GmbH) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1923192 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation) HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1160408 2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ограничение <==== ВНИМАНИЕ HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ограничение <==== ВНИМАНИЕ HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\Run: [MicrosoftEdgeAutoLaunch_C9CB6FE72FEEA58825172E9D91C053FA] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-29] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2192152 2023-06-15] (Wargaming Group Limited -> Wargaming.net) HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\Run: [ut] => C:\Users\dimon\AppData\Roaming\utorrent\uTorrent.exe [2065928 2023-07-03] (Rainberry Inc -> BitTorrent Inc.) HKU\S-1-5-21-769043485-417774055-3436422106-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC) Startup: C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Telegram.lnk [2023-07-07] ShortcutTarget: Telegram.lnk -> C:\Users\dimon\AppData\Roaming\Telegram Desktop\Telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC) GroupPolicy: Ограничение ? <==== ВНИМАНИЕ Policies: C:\ProgramData\NTUSER.pol: Ограничение <==== ВНИМАНИЕ ==================== Запланированные задачи (В белом списке) ================= (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) Task: {00C2BFCF-BEAD-456D-B4C8-F18B95B5C34E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1552544 2015-05-18] (ASUSTeK Computer Inc. -> ) [Файл не подписан] Task: {051F0DC2-44FE-468B-95CC-64C69A34F72E} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files\google\chrome\application\chrome.exe [3233560 2023-06-24] (Google LLC -> Google LLC) -> "hxxps://www.cfos.de/ru/cfosspeed/documentation/status.htm?reg-10.51.2342-asus" Task: {19F1E87C-7787-4300-9EB1-9E40C0F33B88} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2122552 2021-01-06] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {1E2AE41D-8DB3-4702-8300-528B1CDB3CBB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651384 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1F489917-9CD9-406D-A341-F74E2A545F64} - System32\Tasks\iTopVPN_Scheduler_dimon => "C:\Program Files (x86)\iTop VPN\iTopVPN.exe" /autostart (Нет файла) Task: {20D04F8F-08B8-4FD7-9B2C-3101FBE787CF} - System32\Tasks\driver booster update => C:\Program Files (x86)\IObit\Driver Booster\10.5.0\AutoUpdate.exe [2516968 2023-05-08] (IObit CO., LTD -> IObit) Task: {332A4B9A-3FAE-47B8-A983-7B9B25DE0675} - System32\Tasks\driver booster scheduler => C:\Program Files (x86)\IObit\Driver Booster\10.5.0\Scheduler.exe [159208 2023-05-08] (IObit CO., LTD -> IObit) Task: {393C03CB-3749-4956-B4C4-2C7BC415E8E8} - System32\Tasks\iTopVPN_Update_dimon => "C:\Program Files (x86)\iTop VPN\atud.exe" /auto (Нет файла) Task: {48B7D290-9AD0-4C8D-8322-11B4D2C3E29F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler (Нет файла) Task: {49CE1620-C80A-44E1-8273-176024CA455D} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804312 2023-04-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {610964C5-838A-45F5-A9C5-3BC86CFABB76} - System32\Tasks\iTopVPN_SkipUAC_dimon => "C:\Program Files (x86)\iTop VPN\iTopVPN.exe" /SkipUac (Нет файла) Task: {706780A1-9EBC-4E43-88BD-6E2A78172E6E} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1469568 2021-03-18] (ASUSTeK Computer Inc. -> ) Task: {8BD2E716-8192-4795-ADBE-4681229C8114} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [723064 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8C0B8EEC-521F-4137-BB25-F98309409DDA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [513144 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {95327A19-BA8D-49E4-BC0F-A7C03BB6337E} - System32\Tasks\GoogleUpdateTaskMachineUA{ED4D5EB1-D499-488A-B260-CC9D21D50831} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-06-29] (Google LLC -> Google LLC) Task: {9D2B1E90-A1B0-4A44-80D9-39A1674B5E0F} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe -onlytray (Нет файла) Task: {ADEBF1AD-EA43-4744-A86A-E33C81348EDC} - System32\Tasks\driver booster skipuac (dimon) => C:\Program Files (x86)\IObit\Driver Booster\10.5.0\DriverBooster.exe [8966120 2023-06-08] (IObit CO., LTD -> IObit) Task: {BA140EF3-BFBE-4167-B232-A35B05DED62F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651384 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C7126785-3FC9-49C2-B68C-F9C03FAF7B58} - System32\Tasks\GoogleUpdateTaskMachineCore{FD1F8423-980F-43E4-BE34-929783130B99} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-06-29] (Google LLC -> Google LLC) Task: {D7DE9D8F-E017-4FDB-8D36-CD27469B934A} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [723064 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DB1B0394-1450-4BCA-A919-78092306BE9F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436344 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation) (Если запись включена в fixlist, файл задачи (.job) будет перемещён. Файл, выполняемый задачей, не будет перемещён.) ==================== Internet (В белом списке) ==================== (Если элемент включён в fixlist, если он является элементом реестра, он будет удалён или сброшен на значение по умолчанию.) Hosts: В Hosts файле более одной записи. Смотрите раздел Hosts Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{00d23f36-1148-412c-ba66-eb3866c429d3}: [DhcpNameServer] 192.168.0.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ограничение <==== ВНИМАНИЕ Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\dimon\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-08] Edge Extension: (Edge relevant text changes) - C:\Users\dimon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-29] FireFox: ======== FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\dimon\AppData\Local\Google\Chrome\User Data\Default [2023-07-08] CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.yandex.ua/" CHR Extension: (Video Downloader Professional) - C:\Users\dimon\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2023-06-29] CHR Extension: (Google Документы офлайн) - C:\Users\dimon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-29] CHR Extension: (AdBlock — лучший блокировщик рекламы) - C:\Users\dimon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-06-30] CHR Extension: (Платежная система Интернет-магазина Chrome) - C:\Users\dimon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-06-29] CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] ==================== Службы (В белом списке) =================== (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.55\atkexComSvc.exe [450096 2020-12-29] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.01.04\AsusFanControlService.exe [2085704 2021-03-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [845256 2023-07-08] (ASUSTeK Computer Inc. -> ) R3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9880840 2023-03-30] (BattlEye Innovations e.K. -> ) R2 cFosSpeedS; C:\Program Files\ASUS\Turbo LAN\spd.exe [927560 2020-05-26] (cFos Software GmbH -> cFos Software GmbH) R2 DTSAPO3Service; C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe [222104 2020-07-16] (DTS, Inc. -> ) R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-07-01] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5964328 2023-06-29] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12311392 2023-06-29] (KRAFTON, Inc. -> KRAFTON, Inc) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_5b6e4554b945d508\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_5b6e4554b945d508\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin" ===================== Драйверы (В белом списке) =================== (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) S3 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [199896 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [110800 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [110800 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [360664 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [58200 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S0 360elam64; C:\Windows\System32\DRIVERS\360elam64.sys [17000 2023-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn) R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [540416 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S4 360Hvm; C:\Windows\System32\Drivers\360Hvm64.sys [348384 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360安全中心) R1 360netmon; C:\Windows\System32\DRIVERS\360netmon.sys [96424 2023-03-15] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2023-06-29] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc) R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [34112 2019-07-02] (ASUSTeK Computer Inc. -> ) R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [35136 2020-05-25] (ASUSTeK Computer Inc. -> ) R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [238304 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3348752 2023-07-08] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1600352 2020-05-26] (cFos Software GmbH -> cFos Software GmbH) R3 cpuz157; C:\Windows\temp\cpuz157\cpuz157_x64.sys [43568 2023-07-08] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [34064 2020-12-23] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R3 navagio; C:\Program Files\Common Files\PUBG\navagio.sys [8108984 2023-07-08] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 xhunter1; C:\Windows\xhunter1.sys [1447240 2023-07-08] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 cpuz154; \??\C:\Windows\temp\cpuz154\cpuz154_x64.sys [X] ==================== NetSvcs (В белом списке) =================== (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) ==================== Один месяц (создан) (В белом списке) ========= (Если запись включена в лист исправлений, файл/папка будут перемещены.) 2023-07-08 12:15 - 2023-07-08 12:15 - 000022169 _____ C:\Users\dimon\Downloads\FRST.txt 2023-07-08 12:15 - 2023-07-08 12:15 - 000000000 ____D C:\FRST 2023-07-08 12:13 - 2023-07-08 12:13 - 002383360 _____ (Farbar) C:\Users\dimon\Downloads\FRST64.exe 2023-07-07 16:37 - 2023-07-07 16:37 - 000000556 __RSH C:\ProgramData\ntuser.pol 2023-07-07 16:03 - 2023-07-07 16:03 - 018243094 _____ C:\Users\dimon\Downloads\AutoLogger.zip 2023-07-07 16:03 - 2023-07-07 16:03 - 000000000 ____D C:\Users\dimon\Downloads\AutoLogger 2023-07-07 15:44 - 2023-07-07 15:44 - 000000000 ____D C:\Users\dimon\AppData\Roaming\BANDISOFT 2023-07-07 15:44 - 2023-07-07 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam 2023-07-07 15:44 - 2023-07-07 15:44 - 000000000 ____D C:\Program Files (x86)\BandiMPEG1 2023-07-07 15:44 - 2023-07-07 15:44 - 000000000 ____D C:\Program Files (x86)\Bandicam 2023-07-07 12:31 - 2023-07-07 12:31 - 000000000 ____D C:\Новая папка (2) 2023-07-07 09:41 - 2023-07-07 09:41 - 000000000 ____D C:\ProgramData\BSD 2023-07-06 22:29 - 2023-07-06 22:29 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\MAXON 2023-07-06 22:29 - 2023-07-06 22:29 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Maxon 2023-07-06 20:20 - 2023-07-06 20:20 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime 2023-07-06 19:46 - 2023-07-06 19:46 - 000000000 ____D C:\Users\dimon\AppData\LocalLow\Adobe 2023-07-06 19:46 - 2023-07-06 19:46 - 000000000 ____D C:\Users\dimon\AppData\Local\Adobe 2023-07-06 19:45 - 2023-07-06 20:20 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2023-07-06 19:45 - 2023-07-06 20:20 - 000000000 ____D C:\ProgramData\Adobe 2023-07-06 19:45 - 2023-07-06 19:45 - 000000000 ____D C:\Program Files (x86)\Adobe 2023-07-06 19:41 - 2023-07-06 19:41 - 000000000 ____D C:\Windows\Downloaded Installations 2023-07-06 19:37 - 2023-07-07 15:20 - 000003016 _____ C:\Windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-07-06 19:37 - 2023-07-07 15:20 - 000002898 _____ C:\Windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-07-06 19:37 - 2023-07-07 15:20 - 000002846 _____ C:\Windows\system32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-07-06 19:37 - 2023-07-06 19:49 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2023-07-06 19:37 - 2023-07-06 19:37 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-07-06 19:37 - 2023-07-06 19:37 - 000003994 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-07-06 19:37 - 2023-07-06 19:37 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-07-06 19:37 - 2023-07-06 19:37 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-07-06 19:37 - 2023-07-06 19:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2023-07-06 19:37 - 2017-08-18 07:35 - 001923192 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2023-07-06 19:37 - 2017-08-18 07:35 - 001755256 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2023-07-06 19:37 - 2017-08-18 07:35 - 001505912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2023-07-06 19:37 - 2017-08-18 07:35 - 001317496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2023-07-06 19:37 - 2017-08-18 07:35 - 000179320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2023-07-06 19:37 - 2017-08-18 07:35 - 000146552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2023-07-06 19:37 - 2017-08-18 07:35 - 000121464 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2023-07-06 19:37 - 2017-08-18 07:35 - 000057976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2023-07-06 19:32 - 2023-07-06 19:32 - 000000000 ____D C:\Users\dimon\AppData\Local\RadeonInstaller 2023-07-06 19:32 - 2023-07-06 19:32 - 000000000 ____D C:\Program Files\AMD 2023-07-06 19:27 - 2023-07-06 19:27 - 000438680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdtee_api.dll 2023-07-06 19:27 - 2023-07-06 19:27 - 000352192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdtee_api.dll 2023-07-06 19:27 - 2023-07-06 19:27 - 000052120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\Drivers\amdpsp.sys 2023-07-06 19:24 - 2023-07-06 19:24 - 000000000 ____D C:\Users\dimon\AppData\Local\setup 2023-07-06 19:21 - 2023-07-06 19:21 - 000000000 _____ C:\Windows\SysWOW64\Drivers\1043_ASUSTeK_TUF GAMING B550-PLUS.alu 2023-07-06 19:17 - 2023-07-06 19:17 - 000000000 ____D C:\Windows\system32\Tasks\cFos 2023-07-06 19:15 - 2023-07-06 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2023-07-06 19:15 - 2023-07-06 19:15 - 000000000 ____D C:\Program Files\CPUID 2023-07-06 19:13 - 2023-07-06 19:13 - 000019041 _____ C:\Windows\cFosSpeed_Setup_Log.txt 2023-07-06 19:13 - 2023-07-06 19:13 - 000000000 ____D C:\Users\dimon\AppData\Local\cFos 2023-07-06 19:13 - 2023-07-06 19:13 - 000000000 ____D C:\ProgramData\cFos 2023-07-06 19:13 - 2023-07-06 19:13 - 000000000 ____D C:\Program Files\ASUS 2023-07-06 19:13 - 2020-05-26 11:44 - 001600352 ____R (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys 2023-07-06 19:12 - 2020-12-23 10:03 - 000034064 ____N (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys 2023-07-06 19:11 - 2023-07-06 19:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS 2023-07-06 19:10 - 2023-07-06 19:43 - 000000000 ____D C:\Program Files (x86)\ASUS 2023-07-06 19:10 - 2023-07-06 19:37 - 000000000 ____D C:\Windows\system32\Tasks\ASUS 2023-07-06 19:10 - 2019-07-02 11:58 - 000034112 ____R C:\Windows\SysWOW64\Drivers\AsUpIO.sys 2023-07-06 19:06 - 2023-07-06 19:06 - 000000000 ____D C:\Program Files (x86)\AMD 2023-07-06 19:05 - 2023-07-06 19:13 - 000000000 ____D C:\ProgramData\UWP 2023-07-06 19:05 - 2023-07-06 19:05 - 000000000 ____D C:\Users\dimon\AppData\Roaming\AMD 2023-07-06 19:04 - 2023-07-06 19:04 - 000000000 ____D C:\Windows\system32\DTS 2023-07-06 19:04 - 2023-07-06 19:04 - 000000000 ____D C:\ProgramData\DTSAudio 2023-07-06 19:04 - 2020-11-25 18:16 - 000274672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll 2023-07-06 19:04 - 2020-11-25 18:16 - 000229616 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll 2023-07-06 19:03 - 2023-07-06 19:42 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2023-07-06 19:03 - 2023-07-06 19:07 - 000000000 ____D C:\Program Files (x86)\Realtek 2023-07-06 19:03 - 2023-07-06 19:04 - 000000000 ___HD C:\Program Files (x86)\Temp 2023-07-06 19:03 - 2019-12-19 10:07 - 002877104 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2023-07-06 18:44 - 2023-07-06 18:44 - 000000000 ____D C:\Program Files\WinRAR 2023-07-06 18:43 - 2023-07-06 19:16 - 000001173 _____ C:\Windows\Ascd_ProcessLog.ini 2023-07-06 18:43 - 2023-07-06 18:43 - 000021600 _____ C:\Windows\Ascd_tmp.ini 2023-07-06 18:43 - 2020-05-26 05:02 - 000120880 ____R C:\Windows\system32\AsIO2.dll 2023-07-06 18:43 - 2020-05-26 05:02 - 000095280 ____R C:\Windows\SysWOW64\AsIO2.dll 2023-07-06 18:43 - 2020-05-25 11:58 - 000035136 ____R C:\Windows\system32\Drivers\AsIO2.sys 2023-07-06 12:13 - 2023-07-06 12:13 - 000068264 _____ C:\Windows\rtl8822c_mp_chip_bt40_fw_asic_rom_patch_new 2023-07-06 12:13 - 2023-07-06 12:13 - 000063752 _____ C:\Windows\rtl8723d_mp_chip_bt40_fw_asic_rom_patch_new 2023-07-06 12:13 - 2023-07-06 12:13 - 000055460 _____ C:\Windows\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new 2023-07-06 12:13 - 2023-07-06 12:13 - 000050584 _____ C:\Windows\rtl8822b_mp_chip_bt40_fw_asic_rom_patch_new 2023-07-06 12:13 - 2023-07-06 12:13 - 000005780 _____ C:\Windows\PidVid_List 2023-07-05 21:19 - 2023-07-06 20:39 - 000000000 ____D C:\Users\dimon\AppData\Roaming\FakinTheFunk 2023-07-05 21:19 - 2023-07-06 16:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fakin' The Funk 2023-07-05 21:19 - 2023-07-05 21:22 - 000000000 ____D C:\Program Files (x86)\FakinTheFunk 2023-07-05 21:12 - 2023-07-05 21:12 - 000000000 ____D C:\Users\dimon\AppData\Roaming\SysInfoTool 2023-07-05 20:56 - 2023-07-06 08:55 - 000000000 ____D C:\Users\dimon\AppData\Roaming\AIMP 2023-07-05 20:56 - 2023-07-05 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP 2023-07-05 20:56 - 2023-07-05 20:56 - 000000000 ____D C:\Program Files\AIMP 2023-07-05 20:25 - 2023-07-05 20:25 - 037835341 _____ C:\Users\dimon\Downloads\DJ Energy Night - Exclusive Drum and Bass.flac 2023-07-05 10:18 - 2023-07-05 10:18 - 000000000 ____D C:\Windows\LastGood.Tmp 2023-07-05 10:16 - 2023-07-05 10:16 - 014520288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 012066272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 006190576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 005844496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 005550576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 003482592 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 002168304 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 001621520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 001538032 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 001487376 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 001227248 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 001195504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000992752 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000853008 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2023-07-05 10:16 - 2023-07-05 10:16 - 000848984 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2023-07-05 10:16 - 2023-07-05 10:16 - 000848984 _____ C:\Windows\system32\vulkaninfo.exe 2023-07-05 10:16 - 2023-07-05 10:16 - 000777200 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2023-07-05 10:16 - 2023-07-05 10:16 - 000769056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000713808 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-07-05 10:16 - 2023-07-05 10:16 - 000713808 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2023-07-05 10:16 - 2023-07-05 10:16 - 000669216 _____ C:\Windows\system32\nvofapi64.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000653400 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000653400 _____ C:\Windows\system32\vulkan-1.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000637008 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000637008 _____ C:\Windows\SysWOW64\vulkan-1.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000504352 _____ C:\Windows\SysWOW64\nvofapi.dll 2023-07-05 10:16 - 2023-07-05 10:16 - 000459232 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2023-07-05 10:16 - 2023-07-05 10:16 - 000107938 _____ C:\Windows\system32\nvinfo.pb 2023-07-04 19:12 - 2023-07-04 19:12 - 000000661 _____ C:\Users\dimon\AppData\Roaming\MPQEditor.ini 2023-07-03 16:31 - 2023-07-03 16:31 - 000000000 ____D C:\Program Files\crystaldiskmark-8-0-4c 2023-07-03 16:30 - 2023-07-03 16:30 - 000000000 ____D C:\Users\dimon\AppData\Local\Blizzard Entertainment 2023-07-03 16:25 - 2023-07-03 16:28 - 000000000 ____D C:\ProgramData\Blizzard Entertainment 2023-07-03 16:25 - 2023-07-03 16:25 - 000000000 ____D C:\Users\dimon\AppData\Roaming\StarCraft II 2023-07-03 16:25 - 2023-07-03 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics 2023-07-03 15:59 - 2023-07-03 15:59 - 000000000 ____D C:\Games 2023-07-03 15:41 - 2023-07-08 08:02 - 000003126 _____ C:\Windows\system32\Tasks\MSIAfterburner 2023-07-03 15:32 - 2023-07-07 15:20 - 000000000 ____D C:\Users\dimon\AppData\Roaming\utorrent 2023-07-03 15:32 - 2023-07-04 09:12 - 000000000 ____D C:\Users\dimon\AppData\Local\BitTorrentHelper 2023-07-03 15:32 - 2023-07-03 15:32 - 000000000 ____D C:\Users\dimon\AppData\LocalLow\uTorrent.WebView2 2023-07-03 13:27 - 2023-07-06 19:24 - 000000000 ____D C:\Users\dimon\AppData\Local\cache 2023-07-03 11:29 - 2023-07-07 15:18 - 000000000 ____D C:\Новая папка 2023-07-02 19:32 - 2023-07-02 19:32 - 000000000 ____D C:\ProgramData\Battle.net 2023-07-01 20:22 - 2023-07-01 20:22 - 000000000 ____D C:\Windows\system32\Drivers\mde 2023-07-01 19:56 - 2023-07-01 19:56 - 000000000 ___HD C:\$WinREAgent 2023-07-01 19:55 - 2023-07-01 19:55 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-07-01 09:31 - 2023-07-01 14:34 - 000000000 ____D C:\Windows\system32\MRT 2023-06-30 23:01 - 2023-06-30 23:01 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2023-06-30 22:35 - 2023-07-07 15:20 - 000000000 ____D C:\Users\dimon\AppData\Local\ElevatedDiagnostics 2023-06-30 21:29 - 2023-06-30 21:29 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Goldberg SteamEmu Saves 2023-06-30 21:29 - 2023-06-30 21:29 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Goldberg SocialClub Emu Saves 2023-06-30 18:10 - 2023-06-30 18:10 - 000000000 ____D C:\Users\dimon\AppData\Local\CoronaRenderer 2023-06-30 15:04 - 2023-07-08 11:19 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Telegram Desktop 2023-06-30 15:04 - 2023-06-30 15:04 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2023-06-30 13:28 - 2023-07-08 11:18 - 000000000 ____D C:\Users\defaultuser100000 2023-06-30 13:28 - 2023-06-30 13:28 - 000000020 ___SH C:\Users\defaultuser100000\ntuser.ini 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 _SHDL C:\Users\defaultuser100000\Шаблоны 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 _SHDL C:\Users\defaultuser100000\Мои документы 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 _SHDL C:\Users\defaultuser100000\главное меню 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Программы 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\SystemCertificates 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Protect 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Crypto 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ___SD C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Credentials 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Vault 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\VirtualStore 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\NVIDIA 2023-06-30 13:28 - 2023-06-30 13:28 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\ConnectedDevicesPlatform 2023-06-30 09:00 - 2023-07-07 15:45 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\Bandicam 2023-06-30 09:00 - 2023-06-30 21:29 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\Rockstar Games 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\My Games 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\EA Games 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\BioWare 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\BFH 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\BFBC2 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\Battlefield 4 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\Battlefield 3 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\Assassin's Creed III 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\4A Games 2023-06-30 09:00 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\2021-10-05 2023-06-30 08:36 - 2023-06-30 08:54 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Wargaming.net 2023-06-30 08:36 - 2023-06-30 08:53 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net 2023-06-30 08:36 - 2023-06-30 08:36 - 000000000 ____D C:\Users\dimon\AppData\Local\PeerDistRepub 2023-06-30 08:35 - 2023-06-30 08:35 - 000000000 ____D C:\ProgramData\Wargaming.net 2023-06-29 22:05 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\SpaceRangersHD 2023-06-29 21:50 - 2023-06-29 21:50 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\CPY_SAVES 2023-06-29 21:41 - 2023-06-29 21:41 - 000000000 ____D C:\ProgramData\Electronic Arts 2023-06-29 21:39 - 2023-07-05 09:06 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\StarCraft II 2023-06-29 21:29 - 2023-06-29 21:29 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll 2023-06-29 21:29 - 2023-06-29 21:29 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2023-06-29 21:29 - 2023-06-29 21:29 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll 2023-06-29 21:29 - 2023-06-29 21:29 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll 2023-06-29 21:29 - 2023-06-29 21:29 - 000000000 ____D C:\Program Files (x86)\OpenAL 2023-06-29 21:28 - 2023-06-29 21:28 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA 2023-06-29 21:26 - 2023-07-05 10:16 - 006736944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2023-06-29 21:19 - 2023-06-29 21:19 - 000000000 ____R C:\Windows\SysWOW64\version_IObitDel.dll 2023-06-29 21:18 - 2023-06-29 21:18 - 000000000 ____D C:\Users\dimon\AppData\Roaming\1337 2023-06-29 20:14 - 2023-07-05 20:56 - 000000000 ____D C:\Users\dimon\AppData\Roaming\AIMP3 2023-06-29 19:20 - 2023-06-30 09:00 - 000000000 ____D C:\Users\dimon\OneDrive\Documents\Battlefield 2 2023-06-29 19:10 - 2023-06-29 19:10 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\MMC 2023-06-29 18:53 - 2023-07-08 11:18 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2023-06-29 18:53 - 2023-06-29 18:53 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2023-06-29 18:25 - 2023-07-06 20:21 - 000000000 ____D C:\Users\dimon\AppData\Local\NVIDIA Corporation 2023-06-29 18:24 - 2023-07-08 11:25 - 001447240 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys 2023-06-29 18:24 - 2023-07-08 11:25 - 000000000 ____D C:\Program Files\Common Files\PUBG 2023-06-29 18:24 - 2023-06-29 18:24 - 000000000 ____D C:\Users\dimon\AppData\Local\WELLBIA 2023-06-29 18:24 - 2023-06-29 18:24 - 000000000 ____D C:\Users\dimon\AppData\Local\UnrealEngine 2023-06-29 18:24 - 2023-06-29 18:24 - 000000000 ____D C:\Users\dimon\AppData\Local\TslGame 2023-06-29 18:24 - 2023-06-29 18:24 - 000000000 ____D C:\Users\dimon\AppData\Local\BattlEye 2023-06-29 18:24 - 2023-06-29 18:24 - 000000000 ____D C:\Program Files\Common Files\Wellbia.com 2023-06-29 18:22 - 2023-06-29 21:29 - 000000000 ____D C:\ProgramData\Package Cache 2023-06-29 18:22 - 2023-06-29 18:22 - 000000000 ____D C:\Users\dimon\AppData\Local\Steam 2023-06-29 18:21 - 2023-06-29 18:21 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled 2023-06-29 18:20 - 2023-07-07 16:37 - 000000000 __SHD C:\$360Section 2023-06-29 18:19 - 2023-06-29 18:19 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B} 2023-06-29 18:19 - 2023-06-29 18:19 - 000000000 ____D C:\ProgramData\{7D4F950D-61ED-482D-A05D-43620B49B610} 2023-06-29 18:18 - 2023-06-29 18:21 - 000000000 ____D C:\Program Files (x86)\IObit 2023-06-29 18:18 - 2023-06-29 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 10 2023-06-29 18:16 - 2023-06-29 23:09 - 000000000 ____D C:\Program Files\HWMonitor 2023-06-29 18:16 - 2023-06-29 18:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWMonitor 2023-06-29 18:15 - 2023-07-07 18:20 - 000002808 _____ C:\Windows\system32\Tasks\driver booster skipuac (dimon) 2023-06-29 18:15 - 2023-07-07 18:20 - 000002630 _____ C:\Windows\system32\Tasks\driver booster scheduler 2023-06-29 18:15 - 2023-07-07 18:20 - 000002616 _____ C:\Windows\system32\Tasks\driver booster update 2023-06-29 18:05 - 2023-07-07 15:34 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2023-06-29 18:05 - 2023-06-29 21:25 - 006470488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2023-06-29 18:00 - 2023-07-05 10:16 - 000934432 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2023-06-29 17:59 - 2023-06-29 17:59 - 001151992 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys 2023-06-29 17:58 - 2023-06-29 17:58 - 000080968 _____ (Advanced Micro Devices, Inc) C:\Windows\system32\Drivers\amdi2c.sys 2023-06-29 17:58 - 2023-06-29 17:58 - 000056024 _____ (Advanced Micro Devices, Inc) C:\Windows\system32\Drivers\amdgpio2.sys 2023-06-29 17:58 - 2023-06-29 17:58 - 000039008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AMDPCIDev.sys 2023-06-29 17:57 - 2023-06-29 18:00 - 000000000 ____D C:\Users\dimon\AppData\Roaming\iTop Screen Recorder 2023-06-29 17:57 - 2023-06-29 17:59 - 000000000 ____D C:\ProgramData\iTop 2023-06-29 17:57 - 2023-06-29 17:57 - 000000000 ____D C:\Users\dimon\AppData\Roaming\NVIDIA 2023-06-29 17:57 - 2023-06-29 17:57 - 000000000 ____D C:\Users\dimon\AppData\LocalLow\iTop Screen Recorder 2023-06-29 17:56 - 2023-07-06 19:25 - 000000000 ____D C:\ProgramData\ProductData 2023-06-29 17:56 - 2023-06-29 18:21 - 000000000 ____D C:\Users\dimon\AppData\LocalLow\IObit 2023-06-29 17:56 - 2023-06-29 17:57 - 000000000 ____D C:\Users\dimon\AppData\Roaming\iTop VPN 2023-06-29 17:56 - 2023-06-29 17:57 - 000000000 ____D C:\ProgramData\iTop VPN 2023-06-29 17:56 - 2023-06-29 17:57 - 000000000 ____D C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15} 2023-06-29 17:56 - 2023-06-29 17:56 - 000003536 _____ C:\Windows\system32\Tasks\iTopVPN_Update_dimon 2023-06-29 17:56 - 2023-06-29 17:56 - 000003426 _____ C:\Windows\system32\Tasks\iTopVPN_Scheduler_dimon 2023-06-29 17:56 - 2023-06-29 17:56 - 000003400 _____ C:\Windows\system32\Tasks\iTopVPN_SkipUAC_dimon 2023-06-29 17:56 - 2023-06-29 17:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTop VPN 2023-06-29 17:55 - 2023-07-08 11:06 - 000000000 ____D C:\ProgramData\IObit 2023-06-29 17:55 - 2023-06-29 18:19 - 000000000 ____D C:\Users\dimon\AppData\Roaming\IObit 2023-06-29 17:51 - 2023-07-08 11:31 - 000000000 ____D C:\Program Files (x86)\Google 2023-06-29 17:51 - 2023-07-07 15:20 - 000003562 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{ED4D5EB1-D499-488A-B260-CC9D21D50831} 2023-06-29 17:51 - 2023-07-07 15:20 - 000003338 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{FD1F8423-980F-43E4-BE34-929783130B99} 2023-06-29 17:51 - 2023-06-29 17:51 - 000002315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-06-29 17:51 - 2023-06-29 17:51 - 000000000 ____D C:\Users\dimon\AppData\Local\Google 2023-06-29 17:51 - 2023-06-29 17:51 - 000000000 ____D C:\Program Files\Google 2023-06-29 17:48 - 2023-06-29 17:48 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hetman Software 2023-06-29 17:48 - 2023-06-29 17:48 - 000000000 ____D C:\Program Files\Hetman Software 2023-06-29 17:47 - 2023-07-06 18:44 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-06-29 17:47 - 2023-07-06 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-06-29 17:47 - 2023-06-29 17:47 - 000000000 ____D C:\Users\dimon\AppData\Roaming\WinRAR 2023-06-29 17:44 - 2023-06-29 17:44 - 000000000 ____D C:\Users\dimon\AppData\Local\Comms 2023-06-29 17:43 - 2023-07-07 15:44 - 000000000 ____D C:\Users\dimon\AppData\Local\D3DSCache 2023-06-29 17:38 - 2023-06-29 17:38 - 000000000 ____D C:\Users\dimon\AppData\Local\fabi.me 2023-06-29 17:35 - 2023-06-29 17:35 - 000000000 ____D C:\ProgramData\360sd 2023-06-29 17:34 - 2023-06-29 17:34 - 000000000 ____D C:\Windows\system32\CleanLog 2023-06-29 17:33 - 2023-07-07 16:37 - 000000000 ____D C:\ProgramData\360Quarant 2023-06-29 17:33 - 2023-06-29 17:33 - 000000000 __SHD C:\Users\dimon\AppData\Roaming\360Quarant 2023-06-29 17:33 - 2023-06-29 17:33 - 000000000 ____D C:\Windows\Tasks\360Disabled 2023-06-29 17:33 - 2023-06-29 17:33 - 000000000 ____D C:\Users\dimon\AppData\Local\CEF 2023-06-29 17:32 - 2023-07-08 11:30 - 000000000 ____D C:\Users\dimon\AppData\LocalLow\360WD 2023-06-29 17:32 - 2023-07-08 11:18 - 000000000 _RSHD C:\360SANDBOX 2023-06-29 17:32 - 2023-07-03 08:05 - 000000000 ____D C:\ProgramData\360TotalSecurity 2023-06-29 17:32 - 2023-06-29 17:34 - 000000000 ____D C:\Users\dimon\AppData\Roaming\360safe 2023-06-29 17:32 - 2023-06-29 17:33 - 000000000 ____D C:\ProgramData\360safe 2023-06-29 17:32 - 2023-06-29 17:32 - 000000001 _____ C:\Windows\system32\Drivers\360Hvm64.dat 2023-06-29 17:32 - 2023-06-29 17:32 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Security Center 2023-06-29 17:32 - 2023-06-29 17:32 - 000000000 ____D C:\Users\dimon\AppData\Roaming\360TotalSecurity 2023-06-29 17:32 - 2023-06-29 17:32 - 000000000 ____D C:\Users\dimon\AppData\Roaming\360DesktopLite 2023-06-29 17:32 - 2023-06-29 17:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center 2023-06-29 17:32 - 2023-06-29 17:32 - 000000000 ____D C:\Program Files (x86)\360 2023-06-29 17:32 - 2023-03-15 11:02 - 000540416 _____ (360.cn) C:\Windows\system32\Drivers\360FsFlt.sys 2023-06-29 17:32 - 2023-03-15 11:02 - 000360664 _____ (360.cn) C:\Windows\system32\Drivers\360Box64.sys 2023-06-29 17:32 - 2023-03-15 11:02 - 000348384 _____ (360安全中心) C:\Windows\system32\Drivers\360Hvm64.sys 2023-06-29 17:32 - 2023-03-15 11:02 - 000238304 _____ (360.cn) C:\Windows\system32\Drivers\BAPIDRV64.sys 2023-06-29 17:32 - 2023-03-15 11:02 - 000199896 _____ (360.cn) C:\Windows\system32\Drivers\360AntiHacker64.sys 2023-06-29 17:32 - 2023-03-15 11:02 - 000110800 _____ (360.cn) C:\Windows\SysWOW64\Drivers\360AvFlt.sys 2023-06-29 17:32 - 2023-03-15 11:02 - 000110800 _____ (360.cn) C:\Windows\system32\Drivers\360AvFlt.sys 2023-06-29 17:32 - 2023-03-15 11:02 - 000096424 _____ (360.cn) C:\Windows\system32\Drivers\360netmon.sys 2023-06-29 17:32 - 2023-03-15 11:02 - 000058200 _____ (360.cn) C:\Windows\system32\Drivers\360Camera64.sys 2023-06-29 17:30 - 2023-06-29 17:44 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Spelling 2023-06-29 17:30 - 2023-06-29 17:30 - 000000000 ____D C:\Users\dimon\AppData\Local\OneDrive 2023-06-29 17:29 - 2023-07-08 11:23 - 001663222 _____ C:\Windows\system32\PerfStringBackup.INI 2023-06-29 17:29 - 2023-07-07 21:57 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-769043485-417774055-3436422106-1001 2023-06-29 17:29 - 2023-07-07 21:57 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-769043485-417774055-3436422106-1001 2023-06-29 17:29 - 2023-07-02 12:31 - 000000000 ____D C:\Users\dimon\AppData\Local\PlaceholderTileLogoFolder 2023-06-29 17:29 - 2023-06-29 17:29 - 000000000 ___RD C:\Users\dimon\OneDrive 2023-06-29 17:29 - 2023-06-29 17:29 - 000000000 ___HD C:\OneDriveTemp 2023-06-29 17:29 - 2023-06-29 17:29 - 000000000 ____D C:\Users\dimon\AppData\Local\DBG 2023-06-29 17:29 - 2023-06-29 17:29 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2023-06-29 17:28 - 2023-07-08 11:25 - 000000000 ____D C:\ProgramData\NVIDIA 2023-06-29 17:28 - 2023-07-06 19:46 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Adobe 2023-06-29 17:28 - 2023-07-06 19:39 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2023-06-29 17:28 - 2023-07-06 19:38 - 000000000 ____D C:\Users\dimon\AppData\Local\NVIDIA 2023-06-29 17:28 - 2023-07-06 19:37 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2023-06-29 17:28 - 2023-07-06 19:04 - 000000000 ____D C:\Users\dimon\AppData\Local\Packages 2023-06-29 17:28 - 2023-07-05 10:16 - 007858072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2023-06-29 17:28 - 2023-07-01 09:37 - 000000000 ____D C:\ProgramData\Packages 2023-06-29 17:28 - 2023-06-30 08:26 - 000000000 ____D C:\Users\dimon\AppData\Local\ConnectedDevicesPlatform 2023-06-29 17:28 - 2023-06-29 18:00 - 000121880 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2023-06-29 17:28 - 2023-06-29 17:29 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-06-29 17:28 - 2023-06-29 17:28 - 000000000 ___SD C:\Users\dimon\AppData\Roaming\Microsoft\Crypto 2023-06-29 17:28 - 2023-06-29 17:28 - 000000000 ___RD C:\Users\dimon\3D Objects 2023-06-29 17:28 - 2023-06-29 17:28 - 000000000 ____D C:\Windows\system32\lxss 2023-06-29 17:28 - 2023-06-29 17:28 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation 2023-06-29 17:28 - 2023-06-29 17:28 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Vault 2023-06-29 17:28 - 2023-06-29 17:28 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Network 2023-06-29 17:28 - 2023-06-29 17:28 - 000000000 ____D C:\Users\dimon\AppData\Local\VirtualStore 2023-06-29 17:28 - 2023-06-29 17:28 - 000000000 ____D C:\Users\dimon\AppData\Local\Publishers 2023-06-29 17:28 - 2022-08-23 23:22 - 000052208 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2023-06-29 17:27 - 2023-07-06 19:13 - 000000000 ____D C:\ProgramData\Realtek 2023-06-29 17:27 - 2023-06-29 17:28 - 000000000 ____D C:\Program Files (x86)\Razer 2023-06-29 17:27 - 2023-06-29 17:27 - 000000000 ___SD C:\Users\dimon\AppData\Roaming\Microsoft\SystemCertificates 2023-06-29 17:27 - 2023-06-29 17:27 - 000000000 ____D C:\ProgramData\Razer 2023-06-29 17:27 - 2022-12-18 18:35 - 000161928 _____ (Razer Inc) C:\Windows\system32\RazerS3CoinstallerEx.dll 2023-06-29 17:26 - 2023-07-07 21:57 - 000002427 _____ C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-06-29 17:26 - 2023-07-03 00:17 - 000000000 ____D C:\Users\dimon 2023-06-29 17:26 - 2023-06-29 19:05 - 000000000 ____D C:\Users\dimon\AppData\Roaming\Microsoft\Windows 2023-06-29 17:26 - 2023-06-29 17:28 - 000338040 _____ () C:\Windows\system32\AsusDownLoadLicense.exe 2023-06-29 17:26 - 2023-06-29 17:26 - 000000020 ___SH C:\Users\dimon\ntuser.ini 2023-06-29 17:26 - 2023-06-29 17:26 - 000000000 _SHDL C:\Users\dimon\Шаблоны 2023-06-29 17:26 - 2023-06-29 17:26 - 000000000 _SHDL C:\Users\dimon\Мои документы 2023-06-29 17:26 - 2023-06-29 17:26 - 000000000 _SHDL C:\Users\dimon\главное меню 2023-06-29 17:26 - 2023-06-29 17:26 - 000000000 _SHDL C:\Users\dimon\AppData\Roaming\Microsoft\Windows\Start Menu\Программы 2023-06-29 17:26 - 2023-06-29 17:26 - 000000000 ___SD C:\Users\dimon\AppData\Roaming\Microsoft\Protect 2023-06-29 17:26 - 2023-06-29 17:26 - 000000000 ___SD C:\Users\dimon\AppData\Roaming\Microsoft\Credentials 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\Users\Все пользователи 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\Users\Default\Шаблоны 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\Users\Default\Мои документы 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\Users\Default\главное меню 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Программы 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\ProgramData\Шаблоны 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\ProgramData\Рабочий стол 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\ProgramData\Документы 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\ProgramData\главное меню 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Программы 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 _SHDL C:\Documents and Settings 2023-06-29 17:23 - 2023-06-29 17:23 - 000000000 ____D C:\Windows\CSC 2023-06-29 17:21 - 2023-07-08 11:18 - 000901328 _____ () C:\Windows\system32\wpbbin.exe 2023-06-29 17:21 - 2023-07-08 11:18 - 000845256 _____ C:\Windows\system32\AsusUpdateCheck.exe 2023-06-29 17:21 - 2023-07-08 11:18 - 000008192 ___SH C:\DumpStack.log.tmp 2023-06-29 17:21 - 2023-07-08 11:18 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-06-29 17:21 - 2023-07-08 10:27 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-06-29 17:21 - 2023-07-07 15:20 - 000000000 ____D C:\Windows\Panther 2023-06-29 17:21 - 2023-07-06 20:19 - 000000000 ____D C:\ProgramData\ASUS 2023-06-29 17:21 - 2023-07-06 08:40 - 000003536 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-06-29 17:21 - 2023-07-06 08:40 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-06-29 17:21 - 2023-07-01 20:23 - 000258432 _____ C:\Windows\system32\FNTCACHE.DAT 2023-06-29 17:21 - 2023-07-01 19:40 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-06-29 17:21 - 2023-06-29 17:21 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2023-06-29 17:21 - 2023-06-29 17:21 - 000000000 ____D C:\Windows\system32\Drivers\wd 2023-06-29 17:21 - 2023-06-29 17:21 - 000000000 ____D C:\Windows\ServiceProfiles ==================== Один месяц (изменён) ================== (Если запись включена в лист исправлений, файл/папка будут перемещены.) 2023-07-08 12:06 - 2019-12-07 12:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-07-08 11:31 - 2022-09-08 06:15 - 000000000 ____D C:\Windows\SystemTemp 2023-07-08 11:23 - 2019-12-07 17:34 - 000733856 _____ C:\Windows\system32\perfh019.dat 2023-07-08 11:23 - 2019-12-07 17:34 - 000143868 _____ C:\Windows\system32\perfc019.dat 2023-07-08 11:23 - 2019-12-07 12:13 - 000000000 ____D C:\Windows\INF 2023-07-08 11:18 - 2019-12-07 12:03 - 000524288 _____ C:\Windows\system32\config\BBI 2023-07-07 09:41 - 2019-12-07 12:14 - 000000155 _____ C:\Windows\win.ini 2023-07-06 21:25 - 2019-12-07 12:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-07-06 21:25 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\AppReadiness 2023-07-06 12:13 - 2021-04-01 02:32 - 000834280 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\Drivers\RtkBtfilter.sys 2023-07-06 12:13 - 2021-04-01 02:32 - 000765936 _____ (Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe 2023-07-03 11:42 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\LiveKernelReports 2023-07-03 07:54 - 2019-12-07 12:14 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2023-07-02 23:43 - 2019-12-07 12:10 - 000383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2023-07-02 23:43 - 2019-12-07 12:10 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll 2023-07-02 23:43 - 2019-12-07 12:10 - 000060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll 2023-07-02 23:43 - 2019-12-07 12:10 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll 2023-07-02 23:43 - 2019-12-07 12:10 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll 2023-07-02 23:43 - 2019-12-07 12:10 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe 2023-07-02 23:43 - 2019-12-07 12:10 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe 2023-07-02 23:43 - 2019-12-07 12:10 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll 2023-07-02 23:43 - 2019-12-07 12:10 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll 2023-07-02 23:43 - 2019-12-07 12:10 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll 2023-07-02 23:43 - 2019-12-07 12:10 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2023-07-02 23:43 - 2019-12-07 12:09 - 000494592 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2023-07-02 23:43 - 2019-12-07 12:09 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll 2023-07-02 23:43 - 2019-12-07 12:09 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe 2023-07-02 23:43 - 2019-12-07 12:09 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll 2023-07-02 23:43 - 2019-12-07 12:09 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll 2023-07-02 23:43 - 2019-12-07 12:09 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll 2023-07-02 23:43 - 2019-12-07 12:09 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2023-07-02 23:43 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\CbsTemp 2023-07-01 20:22 - 2019-12-07 17:37 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-07-01 20:22 - 2019-12-07 17:34 - 000000000 ____D C:\Windows\SysWOW64\ru 2023-07-01 20:22 - 2019-12-07 17:34 - 000000000 ____D C:\Windows\system32\ru 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ___SD C:\Windows\system32\UNP 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SystemResources 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\SystemApps 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\setup 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\oobe 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\migwiz 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\lv-LV 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\lt-LT 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\et-EE 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\es-MX 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\Dism 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\DDFs 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\ShellExperiences 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\Provisioning 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\bcastdvr 2023-07-01 20:22 - 2019-12-07 12:14 - 000000000 ____D C:\Program Files\Common Files\System 2023-07-01 20:03 - 2019-12-07 12:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll 2023-07-01 20:03 - 2019-12-07 12:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll 2023-07-01 20:03 - 2019-12-07 12:03 - 000000000 ____D C:\Windows\servicing 2023-06-30 22:46 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\NDF 2023-06-30 08:30 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\appcompat 2023-06-29 18:53 - 2019-12-07 12:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2023-06-29 17:58 - 2016-08-12 22:04 - 000036928 _____ (Advanced Micro Devices, Inc) C:\Windows\system32\Drivers\amdgpio3.sys 2023-06-29 17:44 - 2019-12-07 12:14 - 000000000 ___RD C:\Windows\PrintDialog 2023-06-29 17:44 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\ServiceState 2023-06-29 17:32 - 2019-12-07 12:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2023-06-29 17:27 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2023-06-29 17:23 - 2019-12-07 17:35 - 000000000 ____D C:\Windows\system32\FxsTmp 2023-06-29 17:23 - 2019-12-07 12:14 - 000000000 ____D C:\Windows\system32\spool 2023-06-29 17:23 - 2019-12-07 12:14 - 000000000 ____D C:\ProgramData\USOPrivate 2023-06-29 17:23 - 2019-12-07 12:14 - 000000000 ____D C:\Program Files\Windows NT 2023-06-29 17:21 - 2019-12-07 12:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2023-06-29 17:21 - 2019-12-07 12:03 - 000032768 _____ C:\Windows\system32\config\ELAM ==================== Файлы в корне каталогов ======== 2023-07-04 19:12 - 2023-07-04 19:12 - 000000661 _____ () C:\Users\dimon\AppData\Roaming\MPQEditor.ini ==================== SigCheckExt ========================= 2023-06-29 21:19 - 2023-06-29 21:19 - 000000000 ____R C:\Windows\SysWOW64\version_IObitDel.dll 2023-07-08 12:13 - 2023-07-08 12:13 - 002383360 _____ (Farbar) C:\Users\dimon\Downloads\FRST64.exe ==================== FCheck ================================ (Если запись включена в лист исправлений, файл/папка будут перемещены.) FCheck: C:\Windows\SysWOW64\version_IObitDel.dll [2023-06-29] <==== ВНИМАНИЕ (нулевой байт Файл/Папка) ==================== SigCheck ============================ (Нет автоматического исправления файлов, которые не проходят проверку.) ==================== BCD ================================ Диспетчер загрузки микропрограмм --------------------- идентификатор {fwbootmgr} displayorder {bootmgr} {056346ab-1688-11ee-aea3-e3eddbd22905} {df8af817-1c17-11ee-ab5d-806e6f6e6963} {df8af818-1c17-11ee-ab5d-806e6f6e6963} {df8af819-1c17-11ee-ab5d-806e6f6e6963} timeout 1 Диспетчер загрузки Windows -------------------- идентификатор {bootmgr} device partition=\Device\HarddiskVolume3 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale ru-RU inherit {globalsettings} flightsigning Yes default {current} resumeobject {056346b0-1688-11ee-aea3-e3eddbd22905} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Приложение микропрограммы (101fffff) ------------------------------- идентификатор {056346aa-1688-11ee-aea3-e3eddbd22905} description CD/DVD Drive Приложение микропрограммы (101fffff) ------------------------------- идентификатор {056346ab-1688-11ee-aea3-e3eddbd22905} device partition=\Device\HarddiskVolume2 path \EFI\BOOT\BOOTX64.EFI description UEFI OS Приложение микропрограммы (101fffff) ------------------------------- идентификатор {df8af817-1c17-11ee-ab5d-806e6f6e6963} description UEFI:CD/DVD Drive Приложение микропрограммы (101fffff) ------------------------------- идентификатор {df8af818-1c17-11ee-ab5d-806e6f6e6963} description UEFI:Removable Device Приложение микропрограммы (101fffff) ------------------------------- идентификатор {df8af819-1c17-11ee-ab5d-806e6f6e6963} description UEFI:Network Device Загрузка Windows ------------------- идентификатор {current} device partition=C: path \Windows\system32\winload.efi description Windows 10 locale ru-RU inherit {bootloadersettings} recoverysequence {056346b2-1688-11ee-aea3-e3eddbd22905} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes flightsigning Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {056346b0-1688-11ee-aea3-e3eddbd22905} nx OptIn bootmenupolicy Standard useplatformclock No Загрузка Windows ------------------- идентификатор {056346b2-1688-11ee-aea3-e3eddbd22905} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{056346b3-1688-11ee-aea3-e3eddbd22905} path \windows\system32\winload.efi description Windows Recovery Environment locale ru-ru inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{056346b3-1688-11ee-aea3-e3eddbd22905} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Выход из режима гибернации -------------------------- идентификатор {056346b0-1688-11ee-aea3-e3eddbd22905} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale ru-RU inherit {resumeloadersettings} recoverysequence {056346b2-1688-11ee-aea3-e3eddbd22905} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Проверка памяти Windows --------------------- идентификатор {memdiag} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\memtest.efi description Диагностика памяти locale ru-RU inherit {globalsettings} badmemoryaccess Yes Параметры EMS ------------- идентификатор {emssettings} bootems No Параметры отладчика ------------------- идентификатор {dbgsettings} debugtype Local Дефекты ОЗУ ----------- идентификатор {badmemory} Глобальные параметры -------------------- идентификатор {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Параметры загрузчика -------------------- идентификатор {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Параметры гипервизора ------------------- идентификатор {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Параметры загрузчика восстановления ----------------------------------- идентификатор {resumeloadersettings} inherit {globalsettings} Параметры устройств ------------------- идентификатор {056346b3-1688-11ee-aea3-e3eddbd22905} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Конец от FRST.txt ========================