Результат сканирования Farbar Recovery Scan Tool (FRST) (x64) Версия: 14-07-2022 Запущено с помощью bl1nk (Администратор) на BL1NK-PC (0) (15-07-2022 14:12:03) Запущено из C:\Users\bl1nk\Desktop Загруженные профили: bl1nk Платформа: Windows 7 Ultimate Service Pack 1 (X64) Язык: Русский (Россия) Браузер по умолчанию: Chrome Режим загрузки: Normal ==================== Процессы (В белом списке) ================= (Если запись включена в fixlist, процесс будет закрыт. Файл не будет перемещён.) (C:\Program Files (x86)\AnVir Task Manager\AnVir.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\bl1nk\AppData\Local\FluxSoftware\Flux\flux.exe (C:\Program Files (x86)\AnVir Task Manager\AnVir.exe ->) (YANDEX LLC -> ООО Яндекс) C:\Program Files (x86)\Yandex\Punto Switcher\punto.exe (C:\Program Files (x86)\Yandex\Punto Switcher\punto.exe ->) (YANDEX LLC -> ООО Яндекс) C:\Program Files (x86)\Yandex\Punto Switcher\ps64ldr.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (explorer.exe ->) (AnVir Software -> Ilya Kheyfets hxxp://www.anvir.net) C:\Program Files (x86)\AnVir Task Manager\AnVir.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (explorer.exe ->) (Vitalii Mikhalko -> VITSOFT ®) C:\Program Files (x86)\VITSOFT\Vit Registry Fix\Vit Uninstall Manager.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15> (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) () [Файл не подписан] C:\Windows\SysWOW64\ASGT.exe (services.exe ->) (ASUSTeK Computer Inc. -> ) [Файл не подписан] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe (services.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel(R) Intel Network Drivers -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (services.exe ->) (Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (OnMoon Company LLC -> ) C:\Program Files (x86)\GameGuard\acsvc.exe (services.exe ->) (philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe ==================== Реестр Windows (В белом списке) =================== (Если запись включена в fixlist, элемент реестра будет сброшен на значение по умолчанию или удалён. Файл не будет перемещён.) HKLM\...\Run: [COMODO Internet Security] => "C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --cistrayUI (Нет файла) HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> ) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843784 2016-08-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-06-15] (Intel Corporation - Software and Firmware Products -> Intel Corporation) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.) HKLM-x32\...\Run: [vdcss] => "C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe" -tray (Нет файла) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ВНИМАНИЕ HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ВНИМАНИЕ HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ограничение <==== ВНИМАНИЕ HKU\S-1-5-21-2442365622-3793877334-711968231-1000\...\Run: [AnVir Task Manager] => C:\Program Files (x86)\AnVir Task Manager\anvir.exe [5807800 2012-01-29] (AnVir Software -> Ilya Kheyfets hxxp://www.anvir.net) HKU\S-1-5-21-2442365622-3793877334-711968231-1000\...\Run: [f.lux] => C:\Users\bl1nk\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-2442365622-3793877334-711968231-1000\...\Policies\Explorer: [DisallowRun] 1 HKU\S-1-5-21-2442365622-3793877334-711968231-1000\...\Policies\Explorer\DisallowRun: [1] flashplayer30_ka_install.exe HKU\S-1-5-21-2442365622-3793877334-711968231-1000\...\Policies\Explorer\DisallowRun: [2] flashplayer31_ka_install.exe HKU\S-1-5-21-2442365622-3793877334-711968231-1000\...\Policies\Explorer\DisallowRun: [3] flashplayer*.exe HKLM\...\Windows x64\Print Processors\ssm4mPC: C:\Windows\System32\spool\prtprocs\x64\ssm4mpc.dll [43520 2017-07-10] (Windows (R) Codename Longhorn DDK provider) [Файл не подписан] HKLM\...\Print\Monitors\CPCA Language Monitor3: C:\Windows\system32\CnAS0MMK.DLL [32768 2006-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Canon Inc.) HKLM\...\Print\Monitors\ssm4m Langmon: C:\Windows\system32\ssm4mlm.dll [22528 2017-07-10] () [Файл не подписан] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.114\Installer\chrmstp.exe [2022-07-07] (Google LLC -> Google LLC) HKLM\Software\...\Winlogon\GPExtensions: [{C631DF4C-088F-4156-B058-4375F0853CD8}] -> C:\Windows\System32\cscobj.dll [2010-11-21] (Microsoft Windows -> Корпорация Майкрософт) Startup: C:\Users\bl1nk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Punto Switcher.lnk [2022-07-15] ShortcutTarget: Punto Switcher.lnk -> C:\Program Files (x86)\Yandex\Punto Switcher\punto.exe (YANDEX LLC -> ООО Яндекс) Policies: C:\ProgramData\NTUSER.pol: Ограничение <==== ВНИМАНИЕ ==================== Запланированные задачи (В белом списке) ============ (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) Task: {00A700AE-9877-4614-BBC3-1272452D9B65} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {00E9FBDE-4921-4574-97C4-6B9195976015} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {024CE589-BBA6-4CCC-A5F3-58C171A296D6} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0393C094-8CD4-4528-B646-CF91D60D2522} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe --telemetry (Нет файла) Task: {101CC2BF-A3A1-4A50-9143-0E7162054A2C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {23BB03F9-22BE-4BAE-8E6D-757D8CECD50B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2646BF8F-E09B-471F-A3C7-3D2AE981161E} - \KMSAuto -> Нет файла <==== ВНИМАНИЕ Task: {3872BB34-7C66-42B8-8578-7ED32E728A13} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {472BE1BC-7A12-4F00-8021-417C50984AA0} - System32\Tasks\ASUS Live Update Task Schedule => C:\Program Files (x86)\ASUS\GPU Tweak\ASUSLiveUpdate.exe (Нет файла) Task: {520F110E-10BC-443C-85AD-0A5C3FC75930} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {55075F79-8DD9-4F0F-87F3-6E542F55802A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {65890155-557B-46E6-8C1F-12BE7F4B4519} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {A6D52E4F-569B-4756-B3D8-DF217313DA85} (Нет файла) Task: {816E6350-1BD5-42BD-952B-EDAB739F453D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {98B50CE9-9673-4507-AC3C-BB10FCF80E9C} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4107248 2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Task: {AD77E363-F083-480A-AB46-5B331F7E58DB} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {F140D794-60B6-4F00-9235-D6457AA25B22} (Нет файла) Task: {B7068EDC-74AE-4FF5-AED4-D17471D807D9} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1290200 2016-11-28] (ASUSTeK Computer Inc. -> ) Task: {BB6BF491-03FE-4B90-84C0-279E71F09553} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BEE408F8-7BB4-430E-BF9C-C82E3037D343} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1957848 2016-11-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {C8E6C344-50AB-4546-B4FF-F3F532DB048D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-04] (Google LLC -> Google LLC) Task: {D0420093-783A-407B-98AD-F700C84F2264} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D8DE8152-82D4-42FC-AF88-01F41C72F197} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {DB17E4A3-30F7-4505-A137-E1BE65898973} - System32\Tasks\update-S-1-5-21-2442365622-3793877334-711968231-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {DE4E614C-C46A-461B-BCD4-3F7F1A1BE02F} - System32\Tasks\{4EECA059-520F-4FF9-8ECA-54378C6B883D} => c:\program files (x86)\comodo\dragon\dragon.exe https://ui.skype.com/ui/0/7.32.0.104/ru/go/help.faq.installer?LastError=1618 (Нет файла) Task: {E2A068FB-BC78-4E4E-9542-0323FC54DDEE} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {06A09C0F-DD9C-4191-A670-71115CD78627} (Нет файла) Task: {E4B1F8ED-D5AF-4D00-9A39-55E316A1AF36} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4068864 2016-09-20] (TODO: ) [Файл не подписан] Task: {E98B9C3A-539F-4975-8931-886019AB2554} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-04] (Google LLC -> Google LLC) Task: {F105DC04-CA70-402E-97AB-6DA6520CDBD1} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe --cistrayUI (Нет файла) Task: {F695C72B-0A49-424E-86C7-0373C0CD73AC} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe --launchSchedule {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} (Нет файла) (Если запись включена в fixlist, файл задачи (.job) будет перемещён. Файл, выполняемый задачей, не будет перемещён.) Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee Task: C:\Windows\Tasks\update-S-1-5-21-2442365622-3793877334-711968231-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (В белом списке) ==================== (Если элемент включён в fixlist, если он является элементом реестра, он будет удалён или сброшен на значение по умолчанию.) Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => Нет файла Hosts: В Hosts файле более одной записи. Смотрите раздел Hosts Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{298DB62B-336C-4953-B658-BC99B26E2FAC}: [DhcpNameServer] 192.168.83.206 Tcpip\..\Interfaces\{419D9145-075B-4817-AA34-4A5127520C24}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{73D8D2E8-CF43-40A9-8C7C-2701C69C71DC}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{7C8FA2E5-CF2C-4D4D-8E8C-E07B6917FEE2}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{9F397136-2BCF-4508-87F9-4BE535E0BF0F}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{9F397136-2BCF-4508-87F9-4BE535E0BF0F}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{C02536D5-A9BC-4327-A137-A07C1652AE5B}: [DhcpNameServer] 192.168.183.219 FireFox: ======== FF DefaultProfile: r3n6njlt.default FF ProfilePath: C:\Users\bl1nk\AppData\Roaming\Mozilla\Firefox\Profiles\r3n6njlt.default [2022-07-13] FF DownloadDir: C:\Users\bl1nk\Downloads FF Homepage: Mozilla\Firefox\Profiles\r3n6njlt.default -> hxxp://yandex.ru/?clid=2051417 FF Extension: (Browsec VPN - Free VPN for Firefox) - C:\Users\bl1nk\AppData\Roaming\Mozilla\Firefox\Profiles\r3n6njlt.default\Extensions\browsec@browsec.com.xpi [2022-07-09] FF SearchPlugin: C:\Users\bl1nk\AppData\Roaming\Mozilla\Firefox\Profiles\r3n6njlt.default\searchplugins\AdTrustMediaComodo Dragon.xml [2019-05-29] FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-11-06] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-11-06] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-11-06] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-11-06] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-09] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-09] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-2442365622-3793877334-711968231-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR Profile: C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default [2022-07-15] CHR DownloadDir: D:\Setup!!!!!!!!!!!!!\Downloads CHR StartupUrls: Default -> "hxxp://yandex.ru/?clid=2051417" CHR Extension: (Touch VPN - Secure and unlimited VPN proxy) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2022-01-06] CHR Extension: (Блокировка рекламы для Youtube™) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2022-07-14] CHR Extension: (LostFilm.TV - официальный плагин) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhccaifficimfjcpbapjockkipmmlkab [2022-01-06] CHR Extension: (Dark Theme v3) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\djlgdeklopcjagknhlchbdjekgpgenad [2022-01-06] CHR Extension: (РуТрекер - официальный плагин (доступ и пр.)) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\fddjpichkajmnkjhcmpbbjdmmcodnkej [2022-01-06] CHR Extension: (Return YouTube Dislike) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2022-05-16] CHR Extension: (Google Документы офлайн) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-16] CHR Extension: (AdBlock — лучший блокировщик рекламы) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-02] CHR Extension: (Скачать музыку с ВК - VKloader) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjkpcgpldidionkojinpkmdglclfdccc [2022-07-14] CHR Extension: (Earth VPN - Your Secured VPN Point) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nabbmpekekjknlbkgpodfndbodhijjem [2022-04-22] CHR Extension: (Платежная система Интернет-магазина Chrome) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-06] CHR Extension: (Lunar Reader - Dark Theme & Night Shift Mode) - C:\Users\bl1nk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pifalnbglchfojkfmechjalgbjoodlpg [2022-01-06] CHR HKU\S-1-5-21-2442365622-3793877334-711968231-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hcjjaajflhellmcfcecojihhmdbjmmlm] ==================== Службы (В белом списке) =================== (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3743984 2021-10-09] (philandro Software GmbH -> philandro Software GmbH) S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-24] (Apple Inc. -> Apple Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] (ASUSTeK Computer Inc. -> ) R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-29] () [Файл не подписан] R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe [963544 2016-08-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] (ASUSTeK Computer Inc. -> ) [Файл не подписан] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-11-10] (BattlEye Innovations e.K. -> ) S4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2014-03-21] (Microsoft Corporation -> Microsoft Corporation) S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [124024 2017-08-30] (Microsoft Dynamic Code Publisher -> Microsoft Corporation) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-02-09] (EasyAntiCheat Oy -> Epic Games, Inc) S4 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8163392 2017-08-13] (GOG Limited -> GOG.com) R2 ggsvc; C:\Program Files (x86)\GameGuard\acsvc.exe [5150064 2020-11-26] (OnMoon Company LLC -> ) S3 MEmuSVC; D:\Games\123\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> ) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) S2 Avira.ServiceHost; отсутствует ImagePath S4 Bonjour Service; "C:\Program Files\Bonjour\mDNSResponder.exe" [X] S2 CmdAgent; "C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe" [X] S3 cmdvirth; "C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe" [X] S2 csssrv; "C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe" -service [X] S4 GalaxyClientService; отсутствует ImagePath ===================== Драйверы (В белом списке) =================== (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) S3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [48624 2018-03-06] (AnchorFree Inc -> The OpenVPN Project) S3 ArvoFltr; C:\Windows\System32\drivers\ArvoFltr.sys [15872 2009-05-06] (Microsoft Windows Hardware Compatibility Publisher -> ROCCAT Development, Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] (ASUSTeK Computer Inc. -> ) S3 busenum; C:\Windows\System32\DRIVERS\SteelBus64.sys [146944 2014-10-08] (SteelSeries Corporation) [Файл не подписан] R1 cmdcss; C:\Windows\system32\drivers\cmdcss.sys [112656 2018-03-06] (Comodo Security Solutions, Inc. -> COMODO) R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [29088 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [861592 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [53808 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-01-04] (Disc Soft Ltd -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [46392 2016-01-04] (Disc Soft Ltd -> Disc Soft Ltd) S3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [60928 2018-03-15] (Microsoft Windows Hardware Compatibility Publisher -> GenesysLogic) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-03-15] (Martin Malik - REALiX -> REALiX(tm)) R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [121488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) S3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [67736 2017-10-20] (Logitech Inc -> Logitech Inc.) R1 MEmuDrv; C:\Windows\System32\DRIVERS\MEmuDrv.sys [309904 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [94440 2019-06-12] (Microsoft Windows -> Корпорация Майкрософт) S3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [39168 2014-10-08] (SteelSeries Corporation) [Файл не подписан] R3 sssmbus; C:\Windows\System32\DRIVERS\sssmbus.sys [32520 2018-03-15] (SteelSeries ApS -> SteelSeries ApS) S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> ) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-09-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [207840 2018-05-09] (Oracle Corporation -> Oracle Corporation) R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [363752 2017-07-07] (Microsoft Windows -> Корпорация Майкрософт) S3 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X] ==================== NetSvcs (В белом списке) =================== (Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.) ==================== Один месяц (создан) (В белом списке) ========= (Если запись включена в лист исправлений, файл/папка будут перемещены.) 2022-07-15 14:12 - 2022-07-15 14:12 - 000029680 _____ C:\Users\bl1nk\Desktop\FRST.txt 2022-07-15 14:11 - 2022-07-15 14:12 - 000000000 ____D C:\FRST 2022-07-15 14:11 - 2022-07-15 14:11 - 002369536 _____ (Farbar) C:\Users\bl1nk\Desktop\FRST64.exe 2022-07-15 11:32 - 2022-07-15 11:48 - 000425762 _____ C:\Windows\ntbtlog.txt 2022-07-15 11:26 - 2022-07-15 11:26 - 000000000 ____D C:\ProgramData\Comodo Downloader 2022-07-14 15:01 - 2016-04-11 13:38 - 002838232 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2022-07-14 14:58 - 2022-07-14 15:00 - 000000000 ____D C:\ProgramData\ASUS 2022-07-14 14:57 - 2021-06-03 16:56 - 000043408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys 2022-07-14 14:57 - 2021-06-02 17:03 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2022-07-14 14:57 - 2021-06-02 16:17 - 000069856 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2022-07-14 14:55 - 2022-07-14 14:55 - 000000876 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2022-07-14 14:55 - 2022-07-14 14:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2022-07-14 14:55 - 2022-07-14 14:55 - 000000000 ____D C:\Program Files\CPUID 2022-07-14 14:51 - 2022-07-14 14:51 - 000000000 ____D C:\Users\bl1nk\AppData\Roaming\Auslogics 2022-07-14 14:47 - 2022-07-14 14:49 - 000000000 ____D C:\Program Files\Reg Organizer 2022-07-14 14:46 - 2022-07-14 14:46 - 000000000 ____D C:\Users\bl1nk\AppData\Local\mbam 2022-07-14 14:43 - 2022-07-14 14:43 - 002369536 _____ (Farbar) C:\Users\bl1nk\Downloads\FRSTEnglish.exe 2022-07-14 14:43 - 2022-07-14 14:43 - 000000000 ____D C:\ProgramData\mb3migration 2022-07-14 14:18 - 2022-07-14 14:18 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700} 2022-07-07 10:28 - 2022-07-15 11:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2022-06-20 10:37 - 2022-06-20 10:37 - 000166786 _____ C:\Users\bl1nk\Downloads\Документ-2022-06-20-10 36 38.pdf 2022-06-20 10:19 - 2022-06-20 10:19 - 000167339 _____ C:\Users\bl1nk\Downloads\Документ-2022-06-01-19 15 37.pdf 2022-06-20 10:18 - 2022-06-20 10:18 - 000166066 _____ C:\Users\bl1nk\Downloads\Документ-2022-06-05-15 42 06.pdf ==================== Один месяц (изменён) ================== (Если запись включена в лист исправлений, файл/папка будут перемещены.) 2022-07-15 14:03 - 2016-01-03 00:11 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-15 13:51 - 2009-07-14 07:45 - 000026240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2022-07-15 13:51 - 2009-07-14 07:45 - 000026240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2022-07-15 13:44 - 2017-12-29 17:32 - 000000258 __RSH C:\ProgramData\ntuser.pol 2022-07-15 12:25 - 2016-08-07 21:56 - 000000000 ____D C:\ProgramData\NVIDIA 2022-07-15 12:24 - 2016-01-04 01:48 - 000000000 ____D C:\ProgramData\Riot Games 2022-07-15 11:56 - 2011-04-12 16:26 - 000894272 _____ C:\Windows\system32\perfh019.dat 2022-07-15 11:56 - 2011-04-12 16:26 - 000211194 _____ C:\Windows\system32\perfc019.dat 2022-07-15 11:56 - 2009-07-14 08:13 - 001902760 _____ C:\Windows\system32\PerfStringBackup.INI 2022-07-15 11:56 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\inf 2022-07-15 11:49 - 2009-07-14 08:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-07-15 11:46 - 2015-10-07 21:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo 2022-07-15 11:43 - 2019-01-31 00:26 - 000169212 _____ C:\Windows\system32\Drivers\fvstore.dat 2022-07-15 11:40 - 2019-06-12 14:38 - 000000388 _____ C:\Windows\Tasks\update-sys.job 2022-07-15 11:23 - 2016-11-16 12:22 - 000000000 ____D C:\Users\bl1nk\AppData\LocalLow\Mozilla 2022-07-15 11:13 - 2015-10-07 21:18 - 000000000 ____D C:\Users\bl1nk 2022-07-14 22:47 - 2019-06-12 14:38 - 000000388 _____ C:\Windows\Tasks\update-S-1-5-21-2442365622-3793877334-711968231-1000.job 2022-07-14 20:18 - 2016-01-31 03:06 - 000000000 ____D C:\Users\bl1nk\AppData\Local\CrashDumps 2022-07-14 19:46 - 2017-10-26 13:04 - 000000000 ____D C:\Users\bl1nk\AppData\Roaming\discord 2022-07-14 19:44 - 2020-01-11 19:29 - 000000000 ____D C:\Users\bl1nk\AppData\Local\Discord 2022-07-14 18:56 - 2016-01-04 00:10 - 000000000 ____D C:\Users\bl1nk\Desktop\  2022-07-14 17:21 - 2009-07-14 08:08 - 000032536 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2022-07-14 17:10 - 2015-10-07 21:22 - 000000000 ___HD C:\Program Files (x86)\Temp 2022-07-14 17:10 - 2015-10-07 21:22 - 000000000 ____D C:\ProgramData\Package Cache 2022-07-14 17:09 - 2018-06-17 19:19 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2022-07-14 17:08 - 2015-10-07 21:22 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-07-14 15:00 - 2015-10-07 21:41 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-07-14 14:59 - 2020-03-06 21:46 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:59 - 2020-03-06 21:46 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:59 - 2015-10-07 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS 2022-07-14 14:59 - 2015-10-07 21:32 - 000000000 ____D C:\Windows\system32\Tasks\ASUS 2022-07-14 14:58 - 2020-03-06 21:46 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:58 - 2020-03-06 21:46 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:58 - 2020-03-06 21:46 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:58 - 2020-03-06 21:46 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:58 - 2020-03-06 21:46 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:58 - 2020-03-06 21:46 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:58 - 2015-10-07 21:41 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2022-07-14 14:58 - 2015-10-07 21:38 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2022-07-14 14:58 - 2015-10-07 21:19 - 000000000 ____D C:\Program Files (x86)\ASUS 2022-07-14 14:57 - 2020-03-06 21:44 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:57 - 2020-03-06 21:44 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-14 14:49 - 2009-07-14 07:45 - 000409208 _____ C:\Windows\system32\FNTCACHE.DAT 2022-07-14 14:48 - 2018-04-15 17:50 - 000000000 ____D C:\Users\bl1nk\AppData\Local\ChemTable Software 2022-07-14 14:48 - 2015-10-07 21:34 - 000109600 _____ C:\Users\bl1nk\AppData\Local\GDIPFONTCACHEV1.DAT 2022-07-14 14:47 - 2016-01-15 08:57 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2022-07-14 14:21 - 2018-06-17 19:19 - 000000000 ____D C:\Program Files (x86)\Realtek 2022-07-14 14:10 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\system32\NDF 2022-07-13 13:58 - 2022-02-09 10:58 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-07-09 16:21 - 2016-01-03 21:04 - 000000000 ____D C:\Users\bl1nk\AppData\Local\ElevatedDiagnostics 2022-07-07 19:48 - 2016-01-04 00:35 - 000000000 ____D C:\Program Files\Common Files\logishrd 2022-07-07 10:39 - 2022-01-06 22:25 - 000002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-07-04 11:54 - 2016-01-04 00:46 - 000000000 ____D C:\Users\bl1nk\AppData\Roaming\uTorrent 2022-06-22 23:36 - 2019-04-23 19:44 - 000000000 ____D C:\Users\bl1nk\.MemuHyperv 2022-06-22 23:36 - 2018-07-07 11:07 - 000000000 ____D C:\Users\bl1nk\Downloads\MEmu Download ==================== Файлы в корне каталогов ======== 2019-11-06 21:06 - 2019-11-06 21:06 - 000000001 _____ () C:\Users\bl1nk\AppData\Local\llftool.4.40.agreement 2016-01-04 19:11 - 2016-01-04 19:14 - 000007600 _____ () C:\Users\bl1nk\AppData\Local\Resmon.ResmonCfg 2019-06-12 14:38 - 2019-06-12 14:38 - 000000003 _____ () C:\Users\bl1nk\AppData\Local\updater.log 2019-06-12 14:38 - 2022-03-05 22:40 - 000000424 _____ () C:\Users\bl1nk\AppData\Local\UserProducts.xml ==================== FLock ============================== 2021-09-12 18:08 C:\Windows\Minidump\091321-7066-01.dmp 2020-11-28 21:17 C:\Windows\Minidump\112920-7503-01.dmp 2016-02-28 16:58 C:\ProgramData\Info ==================== SigCheck ============================ (Нет автоматического исправления файлов, которые не проходят проверку.) LastRegBack: 2022-07-06 12:54 ==================== Конец от FRST.txt ========================