Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-10-2020
Ran by dojik (administrator) on DESKTOP-GSBD1CF (Micro-Star International Co., Ltd. MS-7A38) (29-10-2020 14:18:37)
Running from C:\Users\dojik\Desktop
Loaded Profiles: dojik
Platform: Windows 10 Education Version 2004 19041.388 (X64) Language: Русский (Россия)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Users\dojik\Downloads\AutoLogger-test\AutoLogger\AV\av_z.exe
(Chris Andriessen) [File not signed] C:\Program Files\TaskbarX\TaskbarX.exe
(Discord Inc. -> Discord Inc.) C:\Users\dojik\AppData\Local\Discord\app-0.0.307\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Kristjan Skutta -> ) D:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(Kristjan Skutta -> ) D:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2009.4.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12010.1001.3.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20092.10311.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvgbdi.inf_amd64_4df27ee1e2afee02\Display.NvContainer\NVDisplay.Container.exe <2>
(Opera Software AS -> Opera Software) C:\Users\dojik\AppData\Local\Programs\Opera GX\71.0.3770.302\opera.exe <21>
(Opera Software AS -> Opera Software) C:\Users\dojik\AppData\Local\Programs\Opera GX\71.0.3770.302\opera_crashreporter.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1082160 2020-05-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353784 2020-10-07] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [Realtek HD Audio] => C:\ProgramData\RealtekHD\taskhostw.exe <==== ATTENTION
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Run: [Spotify] => C:\Users\dojik\AppData\Roaming\Spotify\Spotify.exe [23306984 2020-10-13] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3416352 2020-10-24] (Valve -> Valve Corporation)
HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Run: [Discord] => C:\Users\dojik\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Run: [Python version updater] => "C:\ProgramData\IronPython-2.7.5\ipyw64.exe" "C:\ProgramData\IronPython-2.7.5\updater.py"
HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Run: [Rainmeter] => C:\Program Files\Rainmeter\Rainmeter.exe [475536 2019-09-22] (Firebit OU -> Rainmeter)
HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Run: [TaskbarX] => C:\Program Files\TaskbarX\TaskbarX.exe [166912 2020-08-31] (Chris Andriessen) [File not signed]
HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952568 2020-10-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-913620400-203814966-1364314930-1001\...\Policies\Explorer: [DisallowRun] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.111\Installer\chrmstp.exe [2020-10-20] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0032161D-90F2-4D7F-BD29-D40A5D213008} - System32\Tasks\Microsoft\Windows\Wininet\Cleaner => C:\Programdata\WindowsTask\winlogon.exe <==== ATTENTION
Task: {00D13E39-9FDB-4482-AD26-77EB655B1679} - System32\Tasks\Microsoft\Windows\Wininet\Taskhostw => C:\Programdata\RealtekHD\taskhostw.exe <==== ATTENTION
Task: {1236D711-26CB-44F4-BAF3-45F18C83FC16} - System32\Tasks\Microsoft\Windows\Wininet\RealtekHDControl => C:\Programdata\RealtekHD\taskhost.exe <==== ATTENTION
Task: {37EF7AFB-C102-44EE-8305-9B3832B2194E} - System32\Tasks\Microsoft\Windows\Wininet\RealtekHDStartUP => C:\Programdata\RealtekHD\taskhost.exe <==== ATTENTION
Task: {4DD7E016-8DCE-454C-8186-C22C995A210F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe
Task: {8FEC1E13-3021-4A05-9F78-DED67D5B115D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe
Task: {9BA1F7AA-3887-4255-8504-0E99EB3B8265} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {E2C2E130-3061-416C-816D-C39C82596ABE} - System32\Tasks\KMSAuto => C:\WINDOWS\KMSAuto.exe [6625912 2015-11-25] (WZT -> ) [File not signed]
Task: {F4692F95-1DA8-41CA-BBC7-F78FA9320397} - System32\Tasks\Microsoft\Windows\Wininet\Taskhost => C:\Programdata\RealtekHD\taskhostw.exe <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a4c82196-606e-48b8-82bc-5c9df1becaac}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR Profile: C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default [2020-10-28]
CHR StartupUrls: Default -> "hxxp://rusearch.co"
CHR Extension: (Презентации) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-22]
CHR Extension: (Документы) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-22]
CHR Extension: (Диск Google) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (Таблицы) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-22]
CHR Extension: (Скачать музыку c VK) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfjocjagfinihkkaahliainflifnlnfc [2020-08-02]
CHR Extension: (Google Документы офлайн) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-25]
CHR Extension: (MeddleMonkey) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\moihledlmchhofenpacbhphnbnpakgmo [2020-10-28]
CHR Extension: (Платежная система Интернет-магазина Chrome) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-22]
CHR Extension: (Автоматическое применение купонов) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\onbkopaoemachfglhlpomhbpofepfpom [2020-10-25]
CHR Extension: (Gmail) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\dojik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-25]
CHR HKU\S-1-5-21-913620400-203814966-1364314930-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [moihledlmchhofenpacbhphnbnpakgmo]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-10-09] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2020-09-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [18575712 2020-10-23] (FACE IT LIMITED -> )
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1677384 2020-07-20] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-07-20] (GOG Sp. z o.o. -> GOG.com)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2520376 2020-10-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474240 2020-10-08] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-13] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4956856 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13109776 2020-07-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S2 TermService; C:\WINDOWS\System32\svchost.exe [57368 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL) <==== ATTENTION (no ServiceDLL)
S2 TermService; C:\WINDOWS\SysWOW64\svchost.exe [47232 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL) <==== ATTENTION (no ServiceDLL)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9912616 2020-10-07] (Riot Games, Inc. -> Riot Games, Inc.)
R2 Wallpaper Engine Service; D:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [514552 2020-10-08] (Kristjan Skutta -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvgbdi.inf_amd64_4df27ee1e2afee02\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvgbdi.inf_amd64_4df27ee1e2afee02\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [11952512 2020-10-29] (FACE IT LIMITED -> )
S3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2020-07-22] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [124608 2020-06-25] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5463560 2020-10-07] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 MDA_NTDRV; \??\C:\WINDOWS\system32\MDA_NTDRV.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-29 14:18 - 2020-10-29 14:18 - 000016031 _____ C:\Users\dojik\Desktop\FRST.txt
2020-10-29 14:18 - 2020-10-29 14:18 - 000000000 ____D C:\FRST
2020-10-29 14:16 - 2020-10-29 14:16 - 002299904 _____ (Farbar) C:\Users\dojik\Desktop\FRST64.exe
2020-10-29 14:05 - 2020-08-10 22:34 - 000005228 _____ C:\WINDOWS\system32\Drivers\etc\2020-10-29_14-05_hosts.bak
2020-10-29 12:31 - 2020-10-29 13:34 - 000000000 ____D C:\Program Files\trend micro
2020-10-29 12:28 - 2020-10-29 13:32 - 000000000 ____D C:\Users\dojik\Downloads\AutoLogger-test
2020-10-29 03:13 - 2020-10-29 03:13 - 000000000 ____D C:\Users\dojik\Downloads\ProcessExplorer
2020-10-28 11:57 - 2020-10-29 03:46 - 000000000 ____D C:\Program Files (x86)\AIDA64
2020-10-28 11:57 - 2020-10-28 11:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIDA64
2020-10-27 16:52 - 2020-10-27 16:52 - 000466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2020-10-27 16:52 - 2020-10-27 16:52 - 000444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2020-10-27 16:52 - 2020-10-27 16:52 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2020-10-27 16:52 - 2020-10-27 16:52 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2020-10-27 16:52 - 2020-10-27 16:52 - 000000000 ____D C:\Program Files (x86)\OpenAL
2020-10-27 14:19 - 2020-10-27 14:19 - 000000000 ____D C:\Users\dojik\Desktop\Новая папка
2020-10-27 13:49 - 2020-10-28 22:24 - 000000400 __RSH C:\Users\Все пользователи\ntuser.pol
2020-10-27 13:49 - 2020-10-28 22:24 - 000000400 __RSH C:\ProgramData\ntuser.pol
2020-10-27 13:49 - 2020-10-27 13:51 - 000000065 _____ C:\Users\dojik\Desktop\rufus.ini
2020-10-27 13:49 - 2020-10-27 13:49 - 001153592 _____ (Akeo Consulting) C:\Users\dojik\Desktop\rufus-3.12p.exe
2020-10-27 13:48 - 2020-10-27 13:48 - 001473751 _____ C:\Users\dojik\Downloads\Victoria528.zip
2020-10-27 12:23 - 2018-11-06 19:14 - 000002802 _____ C:\Users\dojik\Desktop\Безымянный.txt
2020-10-27 10:57 - 2020-10-27 10:57 - 014654684 _____ C:\Users\dojik\Downloads\7A38vB7.zip
2020-10-27 00:33 - 2020-10-27 11:04 - 000007602 _____ C:\Users\dojik\AppData\Local\Resmon.ResmonCfg
2020-10-26 02:27 - 2020-10-26 02:27 - 001061734 _____ C:\Users\dojik\Downloads\pixel_resource_v96.res
2020-10-24 22:47 - 2020-10-24 22:47 - 000626276 _____ C:\WINDOWS\Minidump\102420-16640-01.dmp
2020-10-24 21:18 - 2020-10-24 21:18 - 000000000 ____D C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-10-24 21:18 - 2020-10-24 21:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-10-24 21:17 - 2020-10-24 21:18 - 000000000 ____D C:\Program Files (x86)\WinRAR
2020-10-24 21:16 - 2020-10-24 21:16 - 006268753 _____ C:\Users\dojik\Downloads\WinRAR_5_91_key.zip
2020-10-24 21:16 - 2020-10-24 21:16 - 000000000 ____D C:\Users\dojik\Downloads\WinRAR_5_91_key
2020-10-24 20:51 - 2020-10-24 20:52 - 016384138 _____ C:\Users\dojik\Documents\BMP.bmp
2020-10-24 20:51 - 2020-10-24 20:52 - 016384138 _____ C:\Users\dojik\Desktop\BMP.bmp
2020-10-24 20:41 - 2020-10-24 20:41 - 009417984 _____ C:\Users\dojik\Downloads\df2e40_d29dfc36f915405daa3795e2f5192b2a.pdf
2020-10-24 18:35 - 2020-10-24 18:35 - 000000000 ____D C:\WINDOWS\LastGood
2020-10-24 18:34 - 2020-10-01 10:14 - 000038632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-10-24 18:33 - 2020-10-02 02:48 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-10-24 18:33 - 2020-10-02 02:48 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-10-24 18:33 - 2020-10-02 02:48 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-10-24 18:33 - 2020-10-02 02:48 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-10-24 18:33 - 2020-10-02 02:48 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-10-24 18:33 - 2020-10-02 02:48 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-10-24 18:33 - 2020-10-02 02:48 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-10-24 18:33 - 2020-10-02 02:48 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-10-24 18:33 - 2020-10-02 02:48 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-10-24 18:33 - 2020-10-02 02:48 - 000351128 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-10-24 18:33 - 2020-10-02 02:46 - 001023216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-10-24 18:33 - 2020-10-02 02:46 - 000816368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-10-24 18:33 - 2020-10-02 02:46 - 000673520 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-10-24 18:33 - 2020-10-02 02:46 - 000543128 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-10-24 18:33 - 2020-10-02 02:45 - 002098072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-10-24 18:33 - 2020-10-02 02:45 - 001585560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-10-24 18:33 - 2020-10-02 02:45 - 001507224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-10-24 18:33 - 2020-10-02 02:45 - 001161112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-10-24 18:33 - 2020-10-02 02:45 - 000813464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-10-24 18:33 - 2020-10-02 02:45 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-10-24 18:33 - 2020-10-02 02:45 - 000589208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-10-24 18:33 - 2020-10-02 02:45 - 000555248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-10-24 18:33 - 2020-10-02 02:44 - 007707544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-10-24 18:33 - 2020-10-02 02:44 - 006860184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-10-24 18:33 - 2020-10-02 02:44 - 004174064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-10-24 18:33 - 2020-10-02 02:44 - 002508528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-10-24 18:33 - 2020-10-02 02:44 - 000849648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-10-24 18:33 - 2020-10-02 02:44 - 000445848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-10-24 18:33 - 2020-10-01 10:14 - 000080930 _____ C:\WINDOWS\system32\nvinfo.pb
2020-10-24 14:08 - 2020-10-24 14:08 - 002965112 _____ C:\Users\dojik\Downloads\в.pdf
2020-10-24 14:08 - 2020-10-24 14:08 - 001969573 _____ C:\Users\dojik\Downloads\Twitch.pdf
2020-10-24 12:34 - 2020-10-24 12:34 - 000001059 _____ C:\Users\Public\Desktop\Splinter Cell - Pandora Tomorrow.lnk
2020-10-24 12:34 - 2020-10-24 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Splinter Cell - Pandora Tomorrow
2020-10-24 12:30 - 2020-10-24 12:30 - 000019504 _____ C:\Users\dojik\Downloads\tom-clancys-splinter-cell-pandora-tomorrow.torrent
2020-10-24 11:55 - 2020-10-24 11:55 - 000000000 ____D C:\Users\dojik\Documents\Klei
2020-10-22 22:29 - 2020-10-22 22:29 - 000000000 ____D C:\Users\dojik\AppData\LocalLow\Rebuilt Games
2020-10-21 21:29 - 2020-10-21 21:29 - 000000000 ____D C:\Users\dojik\AppData\Local\ElevatedDiagnostics
2020-10-21 11:22 - 2020-10-21 11:22 - 000021685 _____ C:\Users\dojik\Downloads\тест 9кл (2).odt
2020-10-21 11:19 - 2020-10-21 11:19 - 000021685 _____ C:\Users\dojik\Downloads\тест 9кл (1).odt
2020-10-21 11:17 - 2020-10-21 11:17 - 004569524 _____ C:\WINDOWS\Minidump\102120-12593-01.dmp
2020-10-21 11:15 - 2020-10-21 11:15 - 000021685 _____ C:\Users\dojik\Downloads\тест 9кл.odt
2020-10-21 08:51 - 2020-10-21 08:51 - 000000000 ____D C:\Users\dojik\AppData\Roaming\Skype
2020-10-21 08:51 - 2020-10-21 08:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-10-21 08:41 - 2020-10-21 08:41 - 075248584 _____ (Skype Technologies S.A.) C:\Users\dojik\Downloads\Skype-8.65.0.78.exe
2020-10-20 23:20 - 2020-10-29 10:55 - 000000000 ____D C:\Users\dojik\AppData\Roaming\vlc
2020-10-20 23:19 - 2020-10-20 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-10-20 23:19 - 2020-10-20 23:19 - 000000000 ____D C:\Program Files\VideoLAN
2020-10-20 23:18 - 2020-10-20 23:18 - 041824168 _____ C:\Users\dojik\Downloads\vlc-media-player-3-0-11.exe
2020-10-20 23:17 - 2020-10-20 23:17 - 040732864 _____ C:\Users\dojik\Downloads\vlc-3.0.11-win32.exe
2020-10-20 15:34 - 2020-10-20 15:34 - 000290506 _____ C:\Users\dojik\Downloads\the-sims-4-by-xatab.torrent
2020-10-20 09:43 - 2020-10-20 09:43 - 009702912 _____ C:\Users\dojik\Downloads\!!Истоки таланта.Островский.ppt
2020-10-20 09:43 - 2020-10-20 09:43 - 002564096 _____ C:\Users\dojik\Downloads\!!!А.Н.Островский ГРОЗА.ppt
2020-10-20 09:43 - 2020-10-20 09:43 - 000454656 _____ C:\Users\dojik\Downloads\Презентация биография гоголя.ppt
2020-10-20 09:15 - 2020-10-20 09:15 - 000000000 ____D C:\Users\dojik\AppData\Roaming\FastStone
2020-10-20 09:13 - 2020-10-20 09:13 - 007172711 _____ (FastStone Soft) C:\Users\dojik\Downloads\faststone-image-viewer-7-5.exe
2020-10-20 09:13 - 2020-10-20 09:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2020-10-20 09:13 - 2020-10-20 09:13 - 000000000 ____D C:\Program Files (x86)\FastStone Image Viewer
2020-10-19 15:14 - 2020-10-19 15:14 - 000861403 _____ C:\Users\dojik\Downloads\memtest86-4.3.7-usb.img.zip
2020-10-19 15:14 - 2020-10-19 15:14 - 000000000 ____D C:\Users\dojik\Downloads\memtest86-4.3.7-usb.img
2020-10-19 14:57 - 2020-10-19 14:57 - 001060698 _____ C:\Users\dojik\Downloads\Universal-USB-Installer_1.9.6.2.zip
2020-10-19 14:57 - 2020-10-19 14:57 - 000000000 ____D C:\Users\dojik\Downloads\Universal-USB-Installer_1.9.6.2
2020-10-19 14:54 - 2020-10-19 14:54 - 000147334 _____ C:\Users\dojik\Downloads\Memtest86+ USB Installer.exe
2020-10-19 14:51 - 2020-10-19 14:51 - 000127860 _____ C:\Users\dojik\Downloads\clip-2017-01-21-21-11-16-80127930.zip
2020-10-19 14:51 - 2020-10-19 14:51 - 000000000 ____D C:\Users\dojik\Downloads\clip-2017-01-21-21-11-16-80127930
2020-10-17 20:16 - 2020-10-17 20:16 - 000344631 _____ C:\Users\dojik\Downloads\Formatter_SiliconPower.zip
2020-10-17 20:16 - 2020-10-17 20:16 - 000000000 ____D C:\Users\dojik\Downloads\Formatter_SiliconPower
2020-10-17 19:30 - 2020-10-17 19:32 - 500462418 _____ C:\Users\dojik\Downloads\bandicam 2017-12-15 07-34-03-711.mp4
2020-10-16 22:41 - 2020-10-16 22:41 - 000000000 ____D C:\Users\dojik\AppData\LocalLow\Pixelpointer Studios
2020-10-15 21:54 - 2020-10-15 21:54 - 004613604 _____ C:\WINDOWS\Minidump\101520-12781-01.dmp
2020-10-15 19:54 - 2020-10-15 19:54 - 000846819 _____ C:\Users\dojik\Desktop\InstallWiseCalculator.exe
2020-10-15 19:11 - 2020-10-20 00:16 - 000000000 ____D C:\Program Files\Recuva
2020-10-15 19:11 - 2020-10-15 19:11 - 000001699 _____ C:\Users\Public\Desktop\Recuva.lnk
2020-10-15 19:11 - 2020-10-15 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2020-10-15 19:10 - 2020-10-15 19:10 - 005473600 _____ (Piriform Ltd) C:\Users\dojik\Desktop\recuva-1-53-1087.exe
2020-10-14 20:46 - 2020-10-27 11:14 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2020-10-14 18:02 - 2020-10-14 18:02 - 000000000 ____D C:\Users\Все пользователи\Riot Games
2020-10-14 18:02 - 2020-10-14 18:02 - 000000000 ____D C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-10-14 18:02 - 2020-10-14 18:02 - 000000000 ____D C:\Users\dojik\AppData\Local\Riot Games
2020-10-14 18:02 - 2020-10-14 18:02 - 000000000 ____D C:\ProgramData\Riot Games
2020-10-14 18:02 - 2020-10-14 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-10-14 18:02 - 2020-10-14 18:02 - 000000000 ____D C:\Program Files\Riot Vanguard
2020-10-14 17:59 - 2020-10-14 17:59 - 068746408 _____ (Riot Games, Inc.) C:\Users\dojik\Downloads\Install VALORANT.exe
2020-10-13 19:59 - 2020-10-13 20:00 - 000000000 ____D C:\Users\dojik\Downloads\TaskbarX
2020-10-12 19:00 - 2020-10-12 19:00 - 000000000 ____D C:\Users\dojik\AppData\Local\Zerebos
2020-10-12 18:59 - 2020-10-12 18:59 - 000114688 _____ (Zerebos) C:\Users\dojik\Downloads\BandagedBD_Windows.exe
2020-10-12 18:59 - 2020-10-12 18:59 - 000114688 _____ (Zerebos) C:\Users\dojik\Downloads\BandagedBD.exe
2020-10-12 18:52 - 2020-10-12 18:52 - 000003130 _____ C:\Users\dojik\Downloads\Black-Hole.theme.css
2020-10-12 18:45 - 2020-10-12 18:45 - 000134031 _____ C:\Users\dojik\Downloads\Material_Design_Cursors.zip
2020-10-12 18:45 - 2020-10-12 18:45 - 000000000 ____D C:\Users\dojik\Downloads\Material_Design_Cursors
2020-10-12 18:34 - 2020-10-12 18:35 - 000352393 _____ C:\Users\dojik\Downloads\Old New Explorer.zip
2020-10-12 18:34 - 2020-10-12 18:34 - 002318655 _____ C:\Users\dojik\Downloads\TaskbarX.zip
2020-10-12 18:24 - 2020-10-12 18:24 - 000033917 _____ C:\Users\dojik\Downloads\Скины Rainmeter.zip
2020-10-12 18:22 - 2020-10-12 18:22 - 002484088 _____ (Rainmeter) C:\Users\dojik\Downloads\Rainmeter-4.3.1.exe
2020-10-12 18:22 - 2020-10-12 18:22 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2020-10-12 18:22 - 2020-10-12 18:22 - 000000000 ____D C:\Users\dojik\Documents\Rainmeter
2020-10-12 18:22 - 2020-10-12 18:22 - 000000000 ____D C:\Users\dojik\AppData\Roaming\Rainmeter
2020-10-12 18:22 - 2020-10-12 18:22 - 000000000 ____D C:\Program Files\Rainmeter
2020-10-06 20:41 - 2020-10-06 20:41 - 004521988 _____ C:\WINDOWS\Minidump\100620-9265-01.dmp
2020-10-05 04:42 - 2020-10-05 04:42 - 000000517 _____ C:\Users\dojik\Downloads\70295.txt
2020-10-05 03:59 - 2020-10-05 03:59 - 004456668 _____ C:\WINDOWS\Minidump\100520-8515-01.dmp
2020-10-04 19:54 - 2020-10-04 19:54 - 000000000 ____D C:\$WINDOWS.~BT
2020-10-04 19:02 - 2020-10-04 19:02 - 000000000 ____D C:\Users\dojik\Documents\MAXON
2020-10-04 18:58 - 2020-10-04 18:58 - 000000000 ____D C:\Users\dojik\Downloads\CinebenchR20
2020-10-04 18:55 - 2020-10-04 18:55 - 000000000 ____D C:\Users\dojik\AppData\Roaming\MAXON
2020-10-04 18:54 - 2020-10-04 18:57 - 233251748 _____ C:\Users\dojik\Downloads\CinebenchR20.zip
2020-10-04 18:54 - 2020-10-04 18:54 - 000000000 ____D C:\Users\dojik\Downloads\CINEBENCHR15.038
2020-10-04 18:52 - 2020-10-04 18:54 - 085916232 _____ C:\Users\dojik\Downloads\CINEBENCHR15.038.zip
2020-10-03 21:38 - 2020-10-03 21:38 - 000000000 ____D C:\Users\dojik\Downloads\aida64extreme6_key_rus
2020-10-03 21:34 - 2020-10-03 21:35 - 073691147 _____ C:\Users\dojik\Downloads\aida64extreme6_key_rus.rar
2020-10-01 21:47 - 2020-10-01 21:47 - 000000000 ____D C:\Users\dojik\AppData\LocalLow\House House
2020-10-01 21:45 - 2020-10-01 21:45 - 000000000 ____D C:\Users\dojik\AppData\Local\IE
2020-10-01 21:45 - 2020-10-01 21:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Untitled Goose Game
2020-10-01 21:43 - 2020-10-01 21:43 - 000097907 _____ C:\Users\dojik\Downloads\untitled_goose_game.torrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-29 14:12 - 2020-07-22 19:20 - 001752884 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-29 14:12 - 2019-12-07 17:34 - 000770542 _____ C:\WINDOWS\system32\perfh019.dat
2020-10-29 14:12 - 2019-12-07 17:34 - 000151788 _____ C:\WINDOWS\system32\perfc019.dat
2020-10-29 14:12 - 2019-12-07 12:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-29 14:09 - 2019-12-07 12:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-29 14:07 - 2020-07-22 19:22 - 000000000 ____D C:\Users\dojik\AppData\Local\LogMeIn Hamachi
2020-10-29 14:07 - 2020-07-22 17:48 - 000000000 ____D C:\Users\dojik\AppData\Local\Spotify
2020-10-29 14:06 - 2020-07-22 23:26 - 000000000 ____D C:\Users\dojik\AppData\Roaming\discord
2020-10-29 14:06 - 2020-07-22 18:19 - 000000000 ____D C:\Users\Все пользователи\NVIDIA
2020-10-29 14:06 - 2020-07-22 18:19 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-29 14:06 - 2020-07-22 18:11 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-29 14:06 - 2020-07-22 17:48 - 000000000 ____D C:\Users\dojik\AppData\Roaming\Spotify
2020-10-29 14:05 - 2020-08-03 19:46 - 000000000 __SHD C:\Users\Все пользователи\Windows
2020-10-29 14:05 - 2020-08-03 19:46 - 000000000 __SHD C:\ProgramData\Windows
2020-10-29 14:05 - 2020-08-03 19:46 - 000000000 ___HD C:\Program Files\RDP Wrapper
2020-10-29 14:05 - 2020-08-03 19:35 - 000000000 __SHD C:\Users\Все пользователи\WindowsTask
2020-10-29 14:05 - 2020-08-03 19:35 - 000000000 __SHD C:\Users\Все пользователи\RealtekHD
2020-10-29 14:05 - 2020-08-03 19:35 - 000000000 __SHD C:\ProgramData\WindowsTask
2020-10-29 14:05 - 2020-08-03 19:35 - 000000000 __SHD C:\ProgramData\RealtekHD
2020-10-29 14:05 - 2020-07-22 19:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-29 14:05 - 2020-07-22 19:16 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-29 14:05 - 2020-07-22 18:23 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-10-29 14:05 - 2019-12-07 12:14 - 000000000 ____D C:\Users\Все пользователи\regid.1991-06.com.microsoft
2020-10-29 14:05 - 2019-12-07 12:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-29 14:05 - 2019-12-07 12:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2020-10-29 13:56 - 2020-07-22 19:17 - 000000000 ____D C:\Users\dojik
2020-10-29 12:52 - 2020-07-21 17:38 - 000000000 ____D C:\Users\dojik\AppData\Local\Packages
2020-10-29 12:21 - 2020-07-22 19:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-29 02:58 - 2020-07-22 18:02 - 000000000 ____D C:\Users\dojik\AppData\Local\D3DSCache
2020-10-29 02:34 - 2020-07-22 18:18 - 000000000 ____D C:\Users\dojik\AppData\Roaming\FACEIT
2020-10-29 01:56 - 2020-07-22 18:18 - 000000000 ____D C:\Program Files\FACEIT AC
2020-10-29 01:55 - 2020-07-22 21:34 - 011952512 _____ C:\WINDOWS\system32\Drivers\FACEIT.sys
2020-10-28 11:50 - 2020-07-22 17:39 - 000001422 _____ C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Браузер Opera GX.lnk
2020-10-27 23:56 - 2020-07-22 18:11 - 000000000 ____D C:\Users\Все пользователи\Origin
2020-10-27 23:56 - 2020-07-22 18:11 - 000000000 ____D C:\Users\dojik\AppData\Roaming\Origin
2020-10-27 23:56 - 2020-07-22 18:11 - 000000000 ____D C:\ProgramData\Origin
2020-10-27 23:54 - 2020-07-22 18:23 - 000000000 ____D C:\Users\dojik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-10-27 23:54 - 2020-07-22 18:23 - 000000000 ____D C:\Users\dojik\AppData\Local\Ubisoft Game Launcher
2020-10-27 23:53 - 2020-07-22 21:45 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-10-27 23:53 - 2020-07-22 18:11 - 000000000 ____D C:\Users\dojik\AppData\Local\Origin
2020-10-27 16:53 - 2020-07-22 18:47 - 000000000 ____D C:\Users\dojik\Documents\My Games
2020-10-27 13:49 - 2019-12-07 12:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-10-27 09:31 - 2019-12-07 12:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-26 12:15 - 2020-07-22 23:23 - 000000000 ____D C:\Users\dojik\AppData\Roaming\Factorio
2020-10-24 22:47 - 2020-08-23 17:45 - 1063689932 _____ C:\WINDOWS\MEMORY.DMP
2020-10-24 22:47 - 2020-08-23 17:45 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-24 22:47 - 2020-07-22 17:51 - 000000000 ____D C:\Program Files\WinRAR
2020-10-24 22:47 - 2019-12-07 12:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-24 21:18 - 2020-07-22 17:51 - 000000000 ____D C:\Users\dojik\AppData\Roaming\WinRAR
2020-10-24 19:25 - 2020-07-22 18:19 - 000000000 ____D C:\Users\dojik\AppData\Local\NVIDIA
2020-10-24 18:36 - 2020-07-24 18:45 - 000000000 ____D C:\Users\dojik\Desktop\Games
2020-10-24 18:35 - 2020-07-21 17:35 - 000000000 ____D C:\Users\Все пользователи\NVIDIA Corporation
2020-10-24 18:35 - 2020-07-21 17:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-10-24 18:32 - 2020-09-04 23:18 - 000000000 ____D C:\Users\dojik\AppData\LocalLow\uTorrent
2020-10-24 18:32 - 2020-07-22 18:13 - 000000000 ____D C:\Users\dojik\AppData\Roaming\uTorrent
2020-10-24 18:30 - 2020-07-25 14:51 - 000000000 ____D C:\Users\dojik\AppData\Local\BitTorrentHelper
2020-10-23 19:52 - 2020-07-22 18:17 - 000000000 ____D C:\Users\dojik\AppData\Local\FACEITApp
2020-10-21 21:44 - 2020-07-22 21:30 - 000000000 ___RD C:\Users\dojik\Desktop\RB
2020-10-21 11:23 - 2020-07-22 19:16 - 000354352 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-21 11:21 - 2020-07-22 17:51 - 000002668 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-10-21 11:15 - 2019-12-07 12:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-10-20 23:34 - 2020-07-22 18:18 - 000002297 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-10-20 22:48 - 2020-07-22 18:11 - 000000000 ____D C:\Program Files (x86)\Origin
2020-10-17 20:15 - 2019-03-19 07:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-10-17 17:36 - 2020-07-22 18:28 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-10-13 20:12 - 2020-09-27 19:47 - 000000000 ____D C:\Program Files\TaskbarX
2020-10-12 18:47 - 2019-12-07 12:14 - 000000000 ____D C:\WINDOWS\Cursors
2020-10-12 18:35 - 2020-09-27 19:14 - 000000000 ____D C:\Program Files (x86)\Old New Explorer
2020-10-12 17:26 - 2020-08-20 22:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2020-10-04 19:54 - 2020-07-22 19:20 - 000001890 _____ C:\WINDOWS\diagwrn.xml
2020-10-04 19:54 - 2020-07-22 19:20 - 000001890 _____ C:\WINDOWS\diagerr.xml
2020-10-02 02:45 - 2020-07-21 17:35 - 000657304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-10-02 02:43 - 2020-07-28 02:37 - 005972824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-10-02 02:43 - 2020-07-21 17:35 - 007001536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-10-01 21:37 - 2020-07-22 21:07 - 000000000 ____D C:\Users\dojik\Documents\The Witcher 3
2020-10-01 10:14 - 2020-07-21 17:35 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys

==================== Files in the root of some directories ========

2020-05-08 17:52 - 2017-12-27 20:20 - 001460224 _____ (Stas'M Corp.) C:\ProgramData\RDPWinst.exe
2020-05-08 17:52 - 2017-12-27 20:20 - 001460224 _____ (Stas'M Corp.) C:\Users\Все пользователи\RDPWinst.exe
2020-10-27 00:33 - 2020-10-27 11:04 - 000007602 _____ () C:\Users\dojik\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================