Результат сканирования Farbar Recovery Scan Tool (FRST) (x64) Версия: 16-09-2024
Запущено с помощью Saymon (Администратор) на SAYMONPC (Gigabyte Technology Co., Ltd. Z690 AORUS ELITE DDR4) (29-09-2024 12:31:45)
Запущено из C:\Users\mrbro\Desktop\FRST64.exe
Загруженные профили: Saymon
Платформа: Майкрософт Windows 11 Pro Версия 23H2 22631.4169 (X64) Язык: Русский (Россия)
Браузер по умолчанию: Brave
Режим загрузки: Normal

==================== Процессы (В белом списке) =================

(Если запись включена в fixlist, процесс будет закрыт. Файл не будет перемещён.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Citrix\ICA Client\concentr.exe ->) (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
(C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe ->) (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\SelfServicePlugin\SelfServicePlugin.exe
(C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe ->) (Thales DIS CPL USA, Inc. -> Thales Group) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplmv.exe
(C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) [Файл не подписан] C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe
(C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(C:\Program Files (x86)\Yandex\Punto Switcher\punto.exe ->) (ООО Яндекс) [Файл не подписан] C:\Program Files (x86)\Yandex\Punto Switcher\ps64ldr.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.65\msedgewebview2.exe <12>
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> com.logitech) C:\Program Files\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(C:\Program Files\PostgreSQL\12\bin\pg_ctl.exe ->) (PostgreSQL Global Development Group) [Файл не подписан] C:\Program Files\PostgreSQL\12\bin\postgres.exe <8>
(C:\Windows\SysWOW64\cmd.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <25>
(explorer.exe ->) (Crystal Rich Ltd -> Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSafelyRemove.exe
(explorer.exe ->) (IP Pekshev Alexander Aleksandrovich -> mpAutoUpdater) C:\Users\mrbro\AppData\Roaming\ModPlus\mpAutoUpdater.exe
(explorer.exe ->) (Konstantin Polyakov -> Chemtable Software) C:\Program Files\Reg Organizer\RegOrganizer.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (ООО Яндекс) [Файл не подписан] C:\Program Files (x86)\Yandex\Punto Switcher\punto.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (AO AKTIV-SOFT -> Aktiv Co.) C:\NormCAD\Net\7\GLDS.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\13.0.0.8122\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (Crystal Rich Ltd -> Crystal Rich Ltd) C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Файл не подписан] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Konstantin Polyakov -> Chemtable Software) C:\Program Files\Reg Organizer\StartupCheckingService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_dcf94619172aceb0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PostgreSQL Global Development Group) [Файл не подписан] C:\Program Files\PostgreSQL\12\bin\pg_ctl.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe <2>
(services.exe ->) (Thales DIS CPL USA, Inc. -> Thales Group) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe
(services.exe ->) (Trimble Solutions Corporation -> Trimble) C:\Program Files (x86)\Tekla Warehouse\Tekla.Warehouse.WindowsService.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24082.53.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2437.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Genuine Service\x64\GenuineService.exe
(svchost.exe ->) (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(svchost.exe ->) (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(svchost.exe ->) (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.5.0.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe

==================== Реестр Windows (В белом списке) ===================

(Если запись включена в fixlist, элемент реестра будет сброшен на значение по умолчанию или удалён. Файл не будет перемещён.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe [3495808 2022-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe [18677024 2023-09-24] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-01-10] (Adobe Inc. -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\x64\GenuineService.exe [3741704 2022-09-27] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [2945664 2023-10-30] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [573056 2023-10-30] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
HKLM\...\RunOnce: [f96a3d65-3a15-4cb7-ba5c-ba9923de7f29] => "C:\Users\mrbro\AppData\Local\Temp\{cdca138e-b96a-46ec-a783-68deea8913f0}\f96a3d65-3a15-4cb7-ba5c-ba9923de7f29.cmd" (Нет файла) <==== ВНИМАНИЕ
HKLM\Software\Policies\...\system: [PublishUserActivities] 0
HKLM\Software\Policies\...\system: [EnableActivityFeed] 0
HKLM\Software\Policies\...\system: [UploadUserActivities] 0
HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46525336 2024-09-28] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\...\Run: [Lesta Game Center] => C:\ProgramData\Lesta\GameCenter\lgc.exe [1934488 2024-06-14] (LESTA LLC -> ©2022-2024 Lesta Games Agency, LLC)
HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\...\Run: [USB Safely Remove] => C:\Program Files (x86)\USB Safely Remove\USBSafelyRemove.exe [7088640 2021-04-28] (Crystal Rich Ltd -> Crystal Rich Ltd)
HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\...\Run: [G-Menu] => C:\G-Menu\G-Menu.exe [110791592 2023-08-03] (TOP VICTORY ELECTRONICS (TAIWAN) CO., LTD. -> AOC)
HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\...\Run: [ModPlusAutoUpdater] => C:\Users\mrbro\AppData\Roaming\ModPlus\mpAutoUpdater.exe [1031824 2024-07-30] (IP Pekshev Alexander Aleksandrovich -> mpAutoUpdater)
HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\...\Run: [Microsoft Edge Update] => "C:\Users\mrbro\AppData\Local\Microsoft\EdgeUpdate\1.3.195.21\MicrosoftEdgeUpdateCore.exe" (Нет файла)
HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\...\Policies\Explorer: [] 
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [999056 2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
HKLM\...\Print\Monitors\PDF-XChange Standard Port Monitor: C:\Windows\system32\pxcpm.dll [991888 2023-09-05] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> "C:\Program Files (x86)\Microsoft\Edge\Application\129.0.2792.65\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\129.1.70.119\Installer\chrmstp.exe [2024-09-25] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\mrbro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Punto Switcher.lnk [2024-09-29]
ShortcutTarget: Punto Switcher.lnk -> C:\Program Files (x86)\Yandex\Punto Switcher\punto.exe (ООО Яндекс) [Файл не подписан]
GroupPolicy\User: Ограничение - Edge <==== ВНИМАНИЕ
HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\SOFTWARE\Policies\Microsoft\Edge: Ограничение <==== ВНИМАНИЕ

==================== Запланированные задачи (В белом списке) =================

(Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.)

Task: {1B96669B-2DB7-4B26-A1C4-B322CC46DD84} - \DelayedItemsByChemtableSoftware\Autodesk Genuine Service  -> Нет файла <==== ВНИМАНИЕ
Task: {58FA4F7C-599F-47B8-926F-76233A864DFC} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{C1B9B8E0-B04F-45F6-BB4D-040A2E0E09B6} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-30] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {EA8D2106-D5B4-4D46-BC47-5FF007CAD929} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{61BA0D4F-6DA7-4B9F-BB5C-43201029DB8F} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-30] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {C3A372B3-76BC-4EAC-80A9-EBB76768F658} - System32\Tasks\DelayedItemsByChemtableSoftware\Adobe CCXProcess => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-01-10] (Adobe Inc. -> )
Task: {D52A2A6B-9312-496D-9F89-4EE694BC835B} - System32\Tasks\DelayedItemsByChemtableSoftware\ConnectionCenter => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [2945664 2023-10-30] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Task: {6BDC5167-FCAA-44CF-BD53-447300CA5999} - System32\Tasks\DelayedItemsByChemtableSoftware\Redirector => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [573056 2023-10-30] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Task: {0360CEEF-1CEF-4F18-8C23-D159DBB73BC3} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2064744 2021-01-19] (Intel(R) Production Software -> Intel Corporation)
Task: {0394D5B4-823D-4463-B48B-9B8E7E1EC74A} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2022-12-14] () [Файл не подписан]
Task: {E43ECD6C-F496-4835-AF47-835C6B09110C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {31D1DB39-653C-4D71-B969-056C589D856D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B29C868-4F36-413C-9BDF-3058AA750BED} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {977A9CDA-F0D6-4DEF-8597-D0BF8D5E1B09} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED034253-6FBC-4420-8EE5-B0D87220875D} - System32\Tasks\Microsoft\Windows\Autodesk\Autodesk => C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\Service.exe [230799 2022-04-30] () [Файл не подписан]
Task: {57088B5D-F759-40DF-9A08-B9C5B62CBD3A} - System32\Tasks\Microsoft\Windows\MUI\RPRemove => C:\Users\mrbro\AppData\Roaming\Microsoft\Crypto\CRC\runtime.exe [4411015 2024-07-30] (Ikarus, Inc.) [Файл не подписан] <==== ВНИМАНИЕ
Task: {A7551272-3AB0-4A4B-B754-8479EBD11EE7} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresherTask => C:\Users\mrbro\AppData\Local\Microsoft\Edge\System\update.exe  (Нет файла)
Task: {206E523D-8E50-445F-A515-37FFA40F46F0} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentUpdateTask => C:\Users\mrbro\AppData\Roaming\Microsoft\Protect\Boot\runtime.exe [4411015 2024-07-30] (Ikarus, Inc.) [Файл не подписан] <==== ВНИМАНИЕ
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Нет файла)
Task: {F0894612-39EB-4B5C-B0D5-0406D3D88F4B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {14AEB940-1E9F-47FD-B613-8AFAD90DA11B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3AF2B3E6-7E6E-4488-B47E-3B3E6A620775} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {072C3CFB-D329-4163-AFC2-101CB5FE5C8F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BA53571C-AC60-4CC3-ABF6-92B6B0413037} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463600 2021-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {A79D0601-AB21-4932-BFBE-6B3379713DB6} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938792 2021-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {793CA8A6-8F7F-43FC-A32B-9600B105E6C3} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2335600 2021-09-08] (Microsoft Corporation -> Microsoft)
Task: {B42A399C-36DA-4FED-9478-D917A4C5BECF} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\CEIP.exe [32632 2021-09-08] (Microsoft Corporation -> Microsoft)
Task: {BE63DB97-5850-4988-A811-EA5600A5EAA6} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463600 2021-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD81CEFE-EE06-4231-A7E7-CF4897F81C55} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938792 2021-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6D5A4F0-07A4-4F76-86DD-B007CA129B8E} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3544170380-3361306395-4105615869-1001Core{A57CDA70-3817-4CC1-9111-276FFCA0D828} => C:\Users\mrbro\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe  /c (Нет файла)
Task: {5FD6A45F-6715-41E3-94C2-2AEF2865C3D9} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3544170380-3361306395-4105615869-1001UA{3AF66EF4-38E3-4F78-8210-940CAD9D8FDF} => C:\Users\mrbro\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe  /ua /installsource scheduler (Нет файла)
Task: {327B2833-4652-440D-AC4D-82E5C0057265} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804312 2023-04-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {5933BE41-DE3E-4242-BFDA-A53CDF1F875F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5CDDA5E3-A74F-4C38-A3F6-67E190713956} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0EA3F3D1-08A6-4AB8-A518-4175CF769FB7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {91AD4F95-E0A0-4281-9C21-CF9192BE16B4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82257CFE-F80D-4B0E-AD14-58A24E829ECA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A4C1C11E-2FA7-4954-ACAA-CDDFBABAC1C6} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA8CD141-5235-4A92-93EC-2F64E9AD08DC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BB9D9BD0-4DFF-40DD-A7F8-40CE5C443CAE} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1A0AA18C-C96E-4CE5-A17A-1AFED4866E4F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4241FC81-E41F-49F8-A05B-96FD7F46951B} - System32\Tasks\Reg Organizer => C:\Program Files\Reg Organizer\RegOrganizer.exe [35756024 2023-10-16] (Konstantin Polyakov -> Chemtable Software) -> -Minimize

(Если запись включена в fixlist, файл задачи (.job) будет перемещён. Файл, выполняемый задачей, не будет перемещён.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (В белом списке) ====================

(Если элемент включён в fixlist, если он является элементом реестра, он будет удалён или сброшен на значение по умолчанию.)

Hosts: В Hosts файле более одной записи. Смотрите раздел Hosts Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{18f4bbec-7821-4a3c-b7c1-1ba3ea8c5df4}: [DhcpNameServer] 192.168.1.254
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ограничение <==== ВНИМАНИЕ

FireFox:
========
FF ProfilePath: C:\Users\mrbro\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default [2023-06-22]
FF Homepage: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxps://www.ya.ru/?win=587&clid=2416141-4
FF SearchPlugin: C:\Users\mrbro\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\yandex.ru-20230402.xml [2023-04-02]
FF Plugin: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3544170380-3361306395-4105615869-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3544170380-3361306395-4105615869-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3544170380-3361306395-4105615869-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2023-09-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [blgipgnbmnikbdecnjmgckmndlkebhid]
CHR HKU\S-1-5-21-3544170380-3361306395-4105615869-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fhkbfkkohcdgpckffakhbllifkakihmh]
CHR HKLM-x32\...\Chrome\Extension: [blgipgnbmnikbdecnjmgckmndlkebhid]

Brave: 
=======
BRA Profile: C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-09-29]
BRA NewTab: Default ->  Active:"chrome-extension://llaficoajjainaijghjlofdfmbjpebpa/newtab.html"
BRA DefaultSearchURL: Default -> hxxps://yandex.ru/search/?clid=2353835&text={searchTerms}
BRA DefaultSearchKeyword: Default -> yandex.com
BRA DefaultSuggestURL: Default -> hxxps://suggest.yandex.ru/suggest-ff.cgi?part={searchTerms}&v=3&sn=5&srv=brave_desktop
BRA Extension: (Phantom) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bfnaelmomeimhlpmgjnjophhpkkoljpa [2024-09-25]
BRA Extension: (PDF-XChange) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\blgipgnbmnikbdecnjmgckmndlkebhid [2023-09-08]
BRA Extension: (S3.Переводчик) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\debnnjfbneojbmioajinefnflopdohjk [2023-01-01]
BRA Extension: (Keplr) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dmkamcknogkgcdfhhbddcghachkejeap [2024-09-28]
BRA Extension: (Trust Wallet) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\egjidjbpglichdcondbcbdnbeeppgdph [2024-09-27]
BRA Extension: (Yoroi) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ffnbelfdoeiohenkjibnmadjiehjhajb [2024-09-21]
BRA Extension: (MyTonWallet · My TON Wallet) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fldfpgipfncgndfolcbkdeeknbbbnhcc [2024-09-27]
BRA Extension: (PDF Mage) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gknphemhpcknkhegndlihchfonpdcben [2024-08-07]
BRA Extension: (EverSync - Sync bookmarks, backup favorites) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\iohcojnlgnfbmjfjfkbhahhmppcggdog [2024-06-23]
BRA Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2024-08-12]
BRA Extension: (Nami) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lpfcbjknijpeeillifnkikgncikgfhdo [2024-09-25]
BRA Extension: (MetaMask) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2024-09-18]
BRA Extension: (Обход блокировок Рунета) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\npgcnondjocldhldegnakemclmfkngch [2024-04-01]
BRA Extension: (TON Wallet) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nphplpgoakhhjchkkhmiggakijnkhfnd [2024-02-14]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-09-24]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-09-27]
BRA Extension: (Brave NTP background images) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-09-11]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-09-29]
BRA Extension: (Wallet Data Files Updater) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-23]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-09-29]
BRA Extension: (Brave NTP sponsored images) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\ecpljfnmcepaelhgnakodhnhhmognpch [2024-02-28]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-09-19]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-09-29]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-08-29]
BRA Extension: (Brave Ad Block Updater (Brave Twitch Adblock Rules (plaintext))) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\mhccgcegedfkhdbfbgllfkkcjhgkoinc [2024-09-19]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-25]
BRA Extension: (Brave Ad Block Updater (RU AdList Дополнительная региональная подписка (plaintext))) - C:\Users\mrbro\AppData\Local\BraveSoftware\Brave-Browser\User Data\phmomndefejccjmpiehbogokakkmnmgb [2024-09-29]

==================== Службы (В белом списке) ===================

(Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.)

R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [15280648 2022-11-23] (Autodesk, Inc. -> Autodesk)
S2 AutoCad_2020-2024; C:\Autodesk\Network License Manager\lmgrd.exe [1368872 2023-09-12] (Flexera Software LLC -> Flexera)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [10659104 2023-10-04] (Autodesk, Inc. -> Autodesk, Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-30] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\129.1.70.119\elevation_service.exe [2656280 2024-09-25] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-30] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 Chemtable Startup Checking; C:\Program Files\Reg Organizer\StartupCheckingService.exe [ ]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042808 2024-09-08] (Microsoft Corporation -> Microsoft Corporation)
S4 CWAUpdaterService; C:\Program Files (x86)\Citrix\ICA Client\Receiver\UpdaterService.exe [64072 2023-09-28] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [9966696 2022-12-13] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-07-26] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-02-25] (Epic Games Inc. -> Epic Games, Inc.)
R2 GLDS; C:\NormCAD\Net\7\GLDS.exe [6357720 2021-08-03] (AO AKTIV-SOFT -> Aktiv Co.)
S2 Graitec License Server; C:\Program Files (x86)\Graitec\License Server\Bin\lmgrd.exe [1554928 2023-05-23] (GRAITEC INNOVATION SAS -> Flexera Software LLC)
R2 hasplms; C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe [8383992 2021-10-26] (Thales DIS CPL USA, Inc. -> Thales Group)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2023-08-07] (Huawei Technologies Co., Ltd. -> ) [Файл не подписан]
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11335576 2024-09-28] (Logitech Inc -> Logitech, Inc.)
R2 logi_lamparray_service; C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray_service.exe [10150392 2024-09-23] (Logitech Inc -> Logitech, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_dcf94619172aceb0\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19287448 2024-09-11] (Logitech Inc -> Logitech, Inc.)
R2 postgresql-12; C:\Program Files\PostgreSQL\12\bin\pg_ctl.exe [112640 2020-11-18] (PostgreSQL Global Development Group) [Файл не подписан]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [6537200 2024-08-10] (Rockstar Games, Inc. -> Rockstar Games)
S2 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530448 2024-08-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Tekla Warehouse; C:\Program Files (x86)\Tekla Warehouse\Tekla.Warehouse.WindowsService.exe [23824 2023-08-11] (Trimble Solutions Corporation -> Trimble)
R2 USBSafelyRemoveService; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [1401856 2021-04-28] (Crystal Rich Ltd -> Crystal Rich Ltd)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\Windows\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\Windows\system32\GigabyteUpdateService.exe [1161976 2024-09-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 grdsrv; C:\NormCAD\Net\grdsrv.exe [X]
S3 MicrosoftEdgeElevationService; "C:\Program Files (x86)\Microsoft\Edge\Application\129.0.2792.65\elevation_service.exe" [X]

===================== Драйверы (В белом списке) ===================

(Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.)

R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-12-09] (Microsoft Corporation) [Файл не подписан]
R2 ctxusbm; C:\Windows\system32\DRIVERS\ctxusbmon.sys [136680 2023-10-30] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2023-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 gdrv3; C:\Windows\system32\drivers\gdrv3.sys [45248 2022-12-31] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 GrdUsb; C:\Windows\system32\DRIVERS\grdusb.sys [864984 2018-07-13] (ZAO AKTIV-SOFT -> Aktiv Co.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2023-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-06-22] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_1ebed6f33a1c1014\iaLPSS2_I2C_ADL.sys [210600 2022-06-22] (Intel Corporation -> Intel Corporation)
R3 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [41536 2022-08-17] (Microsoft Windows Hardware Compatibility Publisher -> IObit Information Technology)
R3 logi_audio_surround; C:\Windows\System32\DriverStore\FileRepository\logi_audio.inf_amd64_affafe6e263c4f51\logi_audio_surround.sys [44112 2024-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2024-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-12-30] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2024-09-23] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_98f357adcde2292d\logi_lamparray.sys [89192 2024-09-23] (Logitech Inc -> Logitech, Inc.)
R2 mi2c; C:\Windows\system32\drivers\mi2c.sys [20784 2023-01-04] (AOC International (Europe) GmbH -> Nicomsoft Ltd.)
R3 MpKslbde2a937; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7B7B4010-E905-44BB-9025-951CD3F85053}\MpKslDrv.sys [267552 2024-09-29] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2022-12-31] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 multikey; C:\Windows\System32\drivers\multikey.sys [67584 2023-11-17] (Karl Sabo -> Chingachguk & Denger2k (Elite & SP edition))
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [82344 2024-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
R3 rt25cx21; C:\Windows\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_44eaf8324075f31c\rt25cx21x64.sys [779736 2023-12-05] (Realtek Semiconductor Corp. -> Realtek)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S1 rtf64; C:\Windows\system32\DRIVERS\rtf64x64.sys [70712 2021-09-29] (Realtek Semiconductor Corp. -> Realtek)
R3 rtucx22x64; C:\Windows\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_a6eb3abe5befec7d\rtucx22x64.sys [1876424 2024-04-24] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 rtux64w10; C:\Windows\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
R1 vbdenum; C:\Windows\System32\drivers\vbdenum.sys [119432 2023-02-02] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-09-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602392 2024-09-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-17] (Microsoft Windows -> Microsoft Corporation)
S3 GrdKey; \SystemRoot\system32\DRIVERS\grdkey.sys [X]
S3 MpKsl18a74f08; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A42254F7-BE20-47A2-AD90-DBBD789BF45B}\MpKslDrv.sys [X]
S3 semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [X]
R4 WinRing0_1_2_0; \??\C:\Users\mrbro\AppData\Local\Microsoft\Edge\System\WinRing0x64.sys [X]

==================== NetSvcs (В белом списке) ===================

(Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.)


==================== Один месяц (создан) (В белом списке) =========

(Если запись включена в лист исправлений, файл/папка будут перемещены.)

2024-09-29 12:31 - 2024-09-29 12:32 - 000047677 _____ C:\Users\mrbro\Desktop\FRST.txt
2024-09-29 12:31 - 2024-04-06 15:19 - 000000000 ____D C:\Users\mrbro\Desktop\MalwarebytesPremium-RSLOAD.NET-
2024-09-29 12:26 - 2024-09-29 12:26 - 000001257 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2024-09-29 12:26 - 2024-09-29 12:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2024-09-29 12:26 - 2024-09-29 12:26 - 000000000 ____D C:\ProgramData\IObit
2024-09-29 12:26 - 2024-09-29 12:26 - 000000000 ____D C:\Program Files (x86)\IObit
2024-09-29 12:26 - 2022-08-18 14:59 - 002248928 _____ (IObit ) C:\Users\mrbro\Desktop\unlocker-setup.exe
2024-09-29 12:25 - 2024-09-29 12:25 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2024-09-29 12:25 - 2024-09-29 12:25 - 000000000 ____D C:\Program Files\Unlocker
2024-09-29 12:24 - 2013-05-17 09:34 - 000000000 ____D C:\Users\mrbro\Desktop\rsload.net.Unlocker.1.9.2.Final
2024-09-29 12:20 - 2024-09-29 12:21 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2024-09-29 12:16 - 2024-09-29 12:32 - 000000000 ____D C:\FRST
2024-09-29 12:16 - 2024-09-29 12:16 - 002397696 _____ (Farbar) C:\Users\mrbro\Desktop\FRST64.exe
2024-09-29 11:37 - 2024-09-29 11:37 - 000782106 _____ C:\Windows\system32\perfh019.dat
2024-09-29 11:37 - 2024-09-29 11:37 - 000157626 _____ C:\Windows\system32\perfc019.dat
2024-09-29 11:17 - 2024-09-29 12:21 - 000000000 ____D C:\KVRT2020_Data
2024-09-29 11:09 - 2024-09-29 11:09 - 000000000 ____D C:\Users\mrbro\Desktop\ProcessExplorer
2024-09-29 10:48 - 2024-09-29 12:29 - 000007647 _____ C:\Users\mrbro\AppData\Local\Resmon.ResmonCfg
2024-09-28 07:54 - 2024-09-28 07:54 - 000000856 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2024-09-28 07:54 - 2024-09-28 07:54 - 000000000 ____D C:\Program Files\LGHUB
2024-09-27 23:56 - 2024-09-28 00:24 - 000000000 ____D C:\Users\mrbro\Desktop\AutoLogger
2024-09-25 20:34 - 2024-09-25 20:34 - 000086982 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2054248.torrent
2024-09-24 23:07 - 2024-09-24 23:07 - 000047626 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2053311 (3).torrent
2024-09-24 23:06 - 2024-09-24 23:06 - 000047626 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2053311 (2).torrent
2024-09-24 23:05 - 2024-09-24 23:05 - 000047626 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2053311.torrent
2024-09-24 23:05 - 2024-09-24 23:05 - 000047626 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2053311 (1).torrent
2024-09-23 20:56 - 2024-09-23 20:56 - 000073040 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_xlcore.sys
2024-09-23 20:56 - 2024-09-23 20:56 - 000044880 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_bus_enum.sys
2024-09-21 15:21 - 2024-09-21 15:21 - 000180134 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2053539.torrent
2024-09-21 15:21 - 2024-09-21 15:21 - 000012382 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2053491.torrent
2024-09-21 15:21 - 2024-09-21 15:21 - 000011073 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2053428.torrent
2024-09-21 15:21 - 2024-09-21 15:21 - 000010195 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2053436.torrent
2024-09-18 20:30 - 2024-09-18 20:30 - 000000000 ____D C:\SYSTEM.SAV
2024-09-18 14:42 - 2024-09-18 14:42 - 000001859 _____ C:\Users\mrbro\Downloads\MDAwMUNUWFhEMC5NVFMtTVNLLVcxMC1QLU9GRklDRS0wMSAkUzEyMi0xMzA- (9).ica
2024-09-16 22:16 - 2024-09-16 22:16 - 000050263 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2052341.torrent
2024-09-16 21:14 - 2024-09-16 21:14 - 000000062 _____ C:\Users\mrbro\Downloads\README.md
2024-09-16 21:07 - 2024-09-16 21:19 - 000001235 _____ C:\Users\mrbro\Downloads\hosts.txt
2024-09-15 20:36 - 2024-09-15 20:36 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\NVIDIA
2024-09-15 13:36 - 2024-09-18 20:30 - 000000000 ____D C:\Users\mrbro\AppData\Local\HPOmenServices
2024-09-15 13:36 - 2024-09-18 20:29 - 000000000 ____D C:\Users\mrbro\AppData\Local\HPOMEN
2024-09-15 13:36 - 2024-09-18 20:29 - 000000000 ____D C:\Users\mrbro\AppData\Local\HP_Inc
2024-09-15 09:34 - 2024-09-29 11:27 - 000000008 _____ C:\ProgramData\ntuser.pol
2024-09-15 09:34 - 2023-11-16 21:01 - 000001242 _____ C:\Windows\system32\Drivers\etc\hosts (Original)
2024-09-15 09:32 - 2024-09-29 11:27 - 000000000 __SHD C:\Users\mrbro\AppData\Roaming\DriversUpdate
2024-09-15 09:32 - 2024-09-15 09:32 - 010121273 _____ (Xrist&Com. ) C:\Users\mrbro\Downloads\Setup_W10NT.exe
2024-09-15 09:19 - 2024-09-15 09:29 - 000000000 ____D C:\Users\mrbro\AppData\Local\NVIDIA Corporation
2024-09-15 09:19 - 2024-09-15 09:19 - 000000000 ____D C:\Users\mrbro\AppData\Local\NVIDIA
2024-09-15 09:18 - 2024-09-29 12:25 - 000000000 ____D C:\ProgramData\NVIDIA
2024-09-15 09:18 - 2024-09-15 11:27 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-09-15 09:18 - 2024-09-15 09:19 - 000003656 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-09-15 09:18 - 2024-09-15 09:18 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2024-09-15 09:18 - 2024-09-15 09:18 - 000000000 ____D C:\Windows\LastGood.Tmp
2024-09-15 09:18 - 2024-09-15 09:18 - 000000000 ____D C:\Users\mrbro\AppData\LocalLow\NVIDIA
2024-09-15 09:18 - 2024-09-15 09:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-09-15 09:18 - 2024-09-15 09:18 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-09-15 09:18 - 2024-06-11 23:19 - 002900520 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-09-15 09:18 - 2024-06-11 23:19 - 002231336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-09-15 09:18 - 2024-06-11 23:18 - 001296936 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2024-09-15 09:18 - 2024-03-26 22:11 - 000180760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2024-09-15 09:18 - 2024-03-26 22:11 - 000159768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2024-09-15 09:17 - 2024-09-29 12:08 - 000000000 ____D C:\Users\mrbro\AppData\Local\D3DSCache
2024-09-15 09:16 - 2024-09-15 09:35 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-09-15 09:16 - 2024-09-06 15:59 - 025312776 _____ C:\Windows\system32\nvidia-pcc.exe
2024-09-15 09:16 - 2024-09-06 15:59 - 002040680 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-09-15 09:16 - 2024-09-06 15:59 - 002040680 _____ C:\Windows\system32\vulkaninfo.exe
2024-09-15 09:16 - 2024-09-06 15:59 - 001584008 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-09-15 09:16 - 2024-09-06 15:59 - 001584008 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-09-15 09:16 - 2024-09-06 15:59 - 001446760 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-09-15 09:16 - 2024-09-06 15:59 - 001446760 _____ C:\Windows\system32\vulkan-1.dll
2024-09-15 09:16 - 2024-09-06 15:59 - 001296744 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-09-15 09:16 - 2024-09-06 15:59 - 001296744 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-09-15 09:16 - 2024-09-06 15:59 - 000477840 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-09-15 09:16 - 2024-09-06 15:59 - 000374280 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-09-15 09:16 - 2024-09-06 15:56 - 001079432 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-09-15 09:16 - 2024-09-06 15:56 - 000669816 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-09-15 09:16 - 2024-09-06 15:56 - 000505992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-09-15 09:16 - 2024-09-06 15:55 - 002178728 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-09-15 09:16 - 2024-09-06 15:55 - 001629304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-09-15 09:16 - 2024-09-06 15:55 - 001546896 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-09-15 09:16 - 2024-09-06 15:55 - 001202800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-09-15 09:16 - 2024-09-06 15:55 - 001034888 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-09-15 09:16 - 2024-09-06 15:55 - 000856696 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-09-15 09:16 - 2024-09-06 15:55 - 000797216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-09-15 09:16 - 2024-09-06 15:54 - 016199824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-09-15 09:16 - 2024-09-06 15:54 - 014270496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-09-15 09:16 - 2024-09-06 15:54 - 006914056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-09-15 09:16 - 2024-09-06 15:54 - 005349512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-09-15 09:16 - 2024-09-06 15:54 - 003788960 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-09-15 09:16 - 2024-09-06 15:54 - 000461456 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-09-15 09:16 - 2024-09-06 15:53 - 005910136 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-09-15 09:16 - 2024-09-06 15:53 - 000853536 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-09-15 09:16 - 2024-09-06 15:52 - 007133648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-09-15 09:16 - 2024-09-06 15:52 - 006212848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-09-15 09:16 - 2024-09-06 06:43 - 000127247 _____ C:\Windows\system32\nvinfo.pb
2024-09-15 09:16 - 2024-09-06 06:43 - 000121872 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2024-09-15 09:16 - 2024-03-26 22:11 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-09-15 09:16 - 2024-03-26 20:21 - 000060240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2024-09-15 09:00 - 2024-09-15 09:01 - 000000000 ____D C:\Users\mrbro\Desktop\DDU v18.0.8.1
2024-09-15 09:00 - 2024-09-15 09:00 - 001242224 _____ (Igor Pavlov) C:\Users\mrbro\Downloads\DDU v18.0.8.1.exe
2024-09-15 08:59 - 2024-09-15 09:00 - 691044472 _____ (NVIDIA Corporation) C:\Users\mrbro\Downloads\561.09-desktop-win10-win11-64bit-international-dch-whql.exe
2024-09-15 08:42 - 2024-09-15 08:42 - 000000000 ____D C:\Users\mrbro\Downloads\Каста - Новинки зарубежного рэпа (2024)
2024-09-15 08:36 - 2024-09-15 08:36 - 000020851 _____ C:\Users\mrbro\Downloads\(Hip-Hop, Rap) Каста - Новинки зарубежного рэпа - 2024, MP3, 320 kbps [rutracker-6570586] (1).torrent
2024-09-15 08:31 - 2024-09-15 08:31 - 000020851 _____ C:\Users\mrbro\Downloads\(Hip-Hop, Rap) Каста - Новинки зарубежного рэпа - 2024, MP3, 320 kbps [rutracker-6570586].torrent
2024-09-14 11:11 - 2024-09-14 11:11 - 000203954 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2052120.torrent
2024-09-13 21:58 - 2024-09-13 21:58 - 000119414 _____ C:\Users\mrbro\Downloads\[NNMClub.to]_Ostrov bessmertnyih.torrent
2024-09-12 21:12 - 2024-09-12 21:12 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-09-11 20:00 - 2024-09-11 20:00 - 014076089 _____ (LeBwa team ) C:\Users\mrbro\Downloads\lebwa_modpack_2.2.19.exe
2024-09-08 19:54 - 2024-09-08 19:54 - 000198512 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2051798.torrent
2024-09-08 19:49 - 2024-09-08 19:49 - 000021222 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id1795379.torrent
2024-09-08 19:49 - 2024-09-08 19:49 - 000021222 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id1795379 (1).torrent
2024-09-08 19:48 - 2024-09-08 19:48 - 000145891 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2044756.torrent
2024-09-08 19:40 - 2024-09-08 19:40 - 000196184 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2050929.torrent
2024-09-08 19:40 - 2024-09-08 19:40 - 000041078 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2051854.torrent
2024-09-08 07:56 - 2024-09-08 07:56 - 009977520 _____ C:\Users\mrbro\Downloads\mb_bios_z690-aorus-elite-ddr4_8aadl007_f30e.zip
2024-09-07 17:11 - 2024-09-07 17:11 - 000085465 _____ C:\Users\mrbro\Downloads\[kinozal.tv]id2051706.torrent
2024-09-03 22:52 - 2024-09-03 22:52 - 039821968 _____ C:\Users\mrbro\Downloads\Неподтверждено 688791.crdownload
2024-09-03 22:52 - 2024-09-03 22:52 - 000000000 ____D C:\Users\mrbro\AppData\Local\OneDrive
2024-09-01 09:40 - 2024-09-01 09:40 - 000000223 _____ C:\Users\mrbro\Desktop\Counter-Strike 2 Soundtrack.url

==================== Один месяц (изменён) ==================

(Если запись включена в лист исправлений, файл/папка будут перемещены.)

2024-09-29 12:30 - 2022-05-07 08:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-29 12:26 - 2022-05-07 08:24 - 000000000 ____D C:\Windows\SystemTemp
2024-09-29 12:13 - 2023-11-15 23:28 - 015501338 _____ C:\ProgramData\glds_log.txt
2024-09-29 12:12 - 2024-07-27 22:45 - 000026174 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-09-29 12:07 - 2022-12-31 03:26 - 000000000 ____D C:\ProgramData\Packages
2024-09-29 12:07 - 2022-12-30 22:34 - 000000000 ____D C:\Users\mrbro\AppData\Local\Packages
2024-09-29 12:07 - 2022-05-07 08:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-29 12:07 - 2022-05-07 08:24 - 000000000 ____D C:\Windows\AppReadiness
2024-09-29 11:42 - 2023-01-11 17:43 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-09-29 11:37 - 2022-12-30 22:33 - 001780064 _____ C:\Windows\system32\PerfStringBackup.INI
2024-09-29 11:37 - 2022-05-07 08:22 - 000000000 ____D C:\Windows\INF
2024-09-29 11:29 - 2022-12-31 00:13 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\USBSafelyRemove
2024-09-29 11:29 - 2022-12-30 23:50 - 000000000 ____D C:\Users\mrbro\AppData\Local\LGHUB
2024-09-29 11:28 - 2023-11-06 15:22 - 000000000 ____D C:\Users\mrbro\AppData\Local\LogiOptionsPlus
2024-09-29 11:27 - 2023-01-03 15:44 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2024-09-29 11:27 - 2023-01-03 10:37 - 001161976 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteUpdateService.exe
2024-09-29 11:27 - 2023-01-03 10:37 - 000089336 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteDownloadAssistant.exe
2024-09-29 11:27 - 2022-12-31 03:24 - 001189712 _____ C:\Windows\system32\wpbbin.exe
2024-09-29 11:27 - 2022-12-31 03:24 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-29 11:27 - 2022-12-31 03:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-09-29 11:27 - 2022-05-07 08:24 - 000000000 ____D C:\Windows\ServiceState
2024-09-29 11:26 - 2023-01-03 15:27 - 000002434 _____ C:\Windows\system32\Tasks\MSIAfterburner
2024-09-29 11:26 - 2022-05-07 08:17 - 000524288 _____ C:\Windows\system32\config\BBI
2024-09-29 11:22 - 2022-05-07 08:24 - 000000000 ____D C:\Windows\system32\AppLocker
2024-09-29 11:07 - 2023-01-03 15:44 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2024-09-29 09:44 - 2023-09-02 07:19 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\G HUB
2024-09-29 08:27 - 2024-03-23 19:51 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\iMe
2024-09-28 21:18 - 2023-11-09 22:29 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\discord
2024-09-28 21:01 - 2023-11-09 22:29 - 000000000 ____D C:\Users\mrbro\AppData\Local\Discord
2024-09-28 11:34 - 2022-12-31 03:24 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-09-28 07:54 - 2023-10-30 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-09-27 22:02 - 2023-01-02 22:32 - 000000000 ____D C:\Users\mrbro\AppData\Local\CrashDumps
2024-09-27 21:04 - 2023-01-01 18:18 - 000004008 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3544170380-3361306395-4105615869-1001UA{3AF66EF4-38E3-4F78-8210-940CAD9D8FDF}
2024-09-27 21:04 - 2023-01-01 18:18 - 000003946 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-3544170380-3361306395-4105615869-1001Core{A57CDA70-3817-4CC1-9111-276FFCA0D828}
2024-09-27 06:44 - 2024-05-06 08:43 - 000000000 ____D C:\Users\mrbro\AppData\Local\Citrix
2024-09-26 20:23 - 2022-05-07 08:24 - 000000000 ____D C:\Windows\LiveKernelReports
2024-09-25 20:41 - 2023-09-01 20:24 - 000000000 ____D C:\Users\mrbro\Desktop\utorrent_HE_edition_with_universal_very_usable_settings
2024-09-25 20:05 - 2022-12-30 22:38 - 000002360 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-09-23 19:45 - 2023-01-11 16:45 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\AIMP
2024-09-18 23:23 - 2022-12-30 22:32 - 000000000 ____D C:\Users\mrbro
2024-09-17 20:22 - 2022-12-31 03:24 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-09-16 21:24 - 2024-03-23 20:10 - 000000000 ____D C:\Users\mrbro\Downloads\iMe Desktop
2024-09-15 21:57 - 2022-12-31 00:51 - 000000000 ____D C:\Program Files (x86)\Steam
2024-09-15 09:41 - 2023-01-14 18:24 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\MPC-HC
2024-09-15 09:37 - 2023-07-26 20:02 - 000000000 ____D C:\Windows\system32\Tasks\DelayedItemsByChemtableSoftware
2024-09-15 09:36 - 2023-09-27 16:45 - 000000000 ____D C:\Windows\Minidump
2024-09-15 09:32 - 2022-12-30 22:34 - 000000000 ___SD C:\Users\mrbro\AppData\Roaming\Microsoft\Crypto
2024-09-15 09:32 - 2022-12-30 22:32 - 000000000 ___SD C:\Users\mrbro\AppData\Roaming\Microsoft\Protect
2024-09-15 09:13 - 2023-09-09 23:15 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2024-09-13 23:10 - 2022-12-31 03:24 - 000662792 _____ C:\Windows\system32\FNTCACHE.DAT
2024-09-13 23:02 - 2023-09-26 22:31 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-09-13 23:02 - 2022-05-07 08:24 - 000000000 ____D C:\Windows\SystemResources
2024-09-13 23:02 - 2022-05-07 08:24 - 000000000 ____D C:\Windows\bcastdvr
2024-09-13 22:25 - 2022-05-07 08:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-09-13 22:16 - 2022-12-30 22:37 - 000000000 ____D C:\Windows\system32\MRT
2024-09-13 22:13 - 2022-12-30 22:37 - 199688632 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-09-13 22:13 - 2022-05-07 08:17 - 000000000 ____D C:\Windows\CbsTemp
2024-09-13 21:59 - 2023-01-20 20:12 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-09-09 19:05 - 2023-01-10 23:36 - 000003668 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-09 19:05 - 2023-01-10 23:36 - 000003544 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-08 21:42 - 2022-12-30 22:40 - 000000000 ____D C:\Users\mrbro\AppData\Local\Publishers
2024-09-08 21:42 - 2022-12-30 22:35 - 000000000 ____D C:\Users\mrbro\AppData\Local\PlaceholderTileLogoFolder
2024-09-05 21:47 - 2024-02-16 17:34 - 000284224 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy_4.dll
2024-09-05 21:47 - 2023-01-21 20:06 - 002799144 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2024-09-05 21:47 - 2023-01-21 20:06 - 000783912 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2024-09-05 21:47 - 2023-01-21 20:06 - 000243240 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2024-09-05 21:47 - 2023-01-21 20:06 - 000210360 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2024-09-05 21:47 - 2023-01-21 20:06 - 000149032 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2024-09-05 21:47 - 2023-01-21 20:06 - 000124344 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2024-09-05 21:47 - 2023-01-21 20:06 - 000075192 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2024-09-03 23:29 - 2022-12-30 22:35 - 000000000 ___RD C:\Users\mrbro\OneDrive
2024-09-01 09:40 - 2023-01-15 21:01 - 000000000 ____D C:\Users\mrbro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

==================== Файлы в корне каталогов ========

2023-06-11 20:22 - 2023-07-21 19:08 - 000028672 _____ () C:\Users\mrbro\AppData\Roaming\crash.bin
2023-02-04 13:17 - 2023-02-05 10:33 - 000012288 _____ () C:\Users\mrbro\AppData\Roaming\emp.bin
2023-09-09 23:27 - 2023-09-09 23:27 - 000000044 _____ () C:\Users\mrbro\AppData\Roaming\Screen+.data
2023-07-10 21:21 - 2023-07-10 21:40 - 000000687 _____ () C:\Users\mrbro\AppData\Local\GraitecAdvance2020.data
2023-07-10 19:14 - 2023-07-10 19:22 - 000000415 _____ () C:\Users\mrbro\AppData\Local\GraitecAdvanceCAD2020.data
2023-10-13 18:46 - 2023-10-13 18:46 - 000000415 _____ () C:\Users\mrbro\AppData\Local\GraitecAdvanceCAD2024.data
2023-06-30 23:41 - 2023-10-21 22:17 - 000000417 _____ () C:\Users\mrbro\AppData\Local\GraitecAdvancePPAS2024.data
2024-09-29 10:48 - 2024-09-29 12:29 - 000007647 _____ () C:\Users\mrbro\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Нет автоматического исправления файлов, которые не проходят проверку.)

==================== Конец от FRST.txt ========================