Результат сканирования Farbar Recovery Scan Tool (FRST) (x64) Версия: 26-01-2023
Запущено с помощью MOHCTP (Администратор) на HEKTO (Gigabyte Technology Co., Ltd. B450 AORUS ELITE V2) (28-01-2023 13:05:15)
Запущено из D:\_Work
Загруженные профили: MOHCTP
Платформа: Microsoft Windows 7 Professional  Service Pack 1 (X64) Язык: Русский (Россия)
Браузер по умолчанию: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Режим загрузки: Normal

==================== Процессы (В белом списке) =================

(Если запись включена в fixlist, процесс будет закрыт. Файл не будет перемещён.)

(Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(C:\Program Files (x86)\360\Total Security\QHSafeMain.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\PromoUtil.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\QHSafeMain.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\softmgr\SML\SoftMgrLite.exe
(C:\Program Files (x86)\UnHackMe\hackmon.exe ->) (Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\UnHackMe\Unhackme.exe
(explorer.exe ->) (DVDFab Software Inc. -> ) C:\Program Files\DVDFab\Photo Enhancer AI\liveUpdate.exe
(explorer.exe ->) (FastPCTools -> FastPCTools) C:\Program Files (x86)\FastPCTools\Fast VD\FastVD.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(taskeng.exe ->) (Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\UnHackMe\hackmon.exe
(taskeng.exe ->) (Janos Mathe -> H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
(taskeng.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe

==================== Реестр Windows (В белом списке) ===================

(Если запись включена в fixlist, элемент реестра будет сброшен на значение по умолчанию или удалён. Файл не будет перемещён.)

HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [1919904 2022-11-24] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ограничение <==== ВНИМАНИЕ
HKU\S-1-5-19\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475072 2021-10-05] (Microsoft Corporation) [Файл не подписан]
HKU\S-1-5-20\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475072 2021-10-05] (Microsoft Corporation) [Файл не подписан]
HKU\S-1-5-21-3998227131-1028738202-2379393147-1000\...\Run: [FastVD] => C:\Program Files (x86)\FastPCTools\Fast VD\FastVD.exe [2433560 2022-01-31] (FastPCTools -> FastPCTools)
HKU\S-1-5-21-3998227131-1028738202-2379393147-1000\...\Run: [606ba22cbf04c325e033981c7c38631c] => C:\Program Files\DVDFab\Photo Enhancer AI\liveUpdate.exe [3040584 2023-01-17] (DVDFab Software Inc. -> )
HKU\S-1-5-21-3998227131-1028738202-2379393147-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3998227131-1028738202-2379393147-1000\...\MountPoints2: {4807352d-260c-11ec-9fe6-18c04d0fde2b} - L:\Setup.exe
HKLM\...\Print\Monitors\CutePDF Writer Monitor v4.0: C:\Windows\system32\cpwmon64_v40.dll [89584 2019-10-20] (Acro Software Inc -> )
HKLM\...\Print\Monitors\novaPDF 10 Port Monitor: C:\Windows\system32\novamn10.dll [18944 2021-07-28] (Softland) [Файл не подписан]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.121\Installer\chrmstp.exe [2022-11-25] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\107.0.19254.107\Installer\chrmstp.exe [2022-11-22] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\...\Winlogon\GPExtensions: [{C631DF4C-088F-4156-B058-4375F0853CD8}] -> C:\Windows\System32\cscobj.dll [2021-05-12] (Microsoft Windows -> Корпорация Майкрософт)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ограничение <==== ВНИМАНИЕ

==================== Запланированные задачи (В белом списке) ============

(Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.)

Task: {12692B97-8A19-4BC8-A119-BF397BF2AE9B} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3329096 2022-11-11] (Avast Software s.r.o. -> AVAST Software)
Task: {1F7B7221-AE8F-44F3-BA82-F7D260F51964} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855fec53-d2e4-4999-9e87-3414e9cf0ff4} C:\Windows\system32\wdc.dll [1362944 2021-10-05] (Microsoft Corporation) [Файл не подписан]
Task: {20E4DC18-61BE-49CD-BB65-39FF34343EB5} - \Microsoft\Windows\Setup\EOSNotify2 -> Нет файла <==== ВНИМАНИЕ
Task: {2C9E1F7C-0FCE-4658-812E-AD36D9B6C4AA} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2022-03-16] () [Файл не подписан]
Task: {2D855C05-2BC0-4FA0-A215-C7F8B61C75C3} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Нет файла)
Task: {306B7E5C-F2B2-4A6E-A697-469CCE7E0BE8} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [8315752 2018-10-17] (WZTeam -> MSFree Inc.)
Task: {335ED378-C0B0-4C59-8729-C961EA224B6C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3916F47B-B2F7-45F1-906E-90E16EC9BFA0} - \KMSAuto -> Нет файла <==== ВНИМАНИЕ
Task: {469E46B0-962D-4044-ACA7-2D4715E655C5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {515F97A6-661E-4766-A4A3-3660E5D9C1B3} - System32\Tasks\360ZipUpdater => C:\Program Files (x86)\360\360zip\360zipUpdate.exe [359488 2021-01-05] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
Task: {557E16CF-DA07-4177-991A-DB772529F4CE} - System32\Tasks\Soft Organizer Applications Updates Check => C:\Program Files\Soft Organizer\SoftOrganizer.exe [27467944 2022-01-11] (Konstantin Polyakov -> Chemtable Software)
Task: {55D96FC5-7746-488E-A994-825FDECC4810} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5AD91A2D-4DAC-4C6B-9099-B48F70D5D890} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} C:\Windows\System32\wpcumi.dll [195584 2021-10-05] (Корпорация Майкрософт) [Файл не подписан]
Task: {602C7117-014C-4C7F-8061-72CA68283F75} - System32\Tasks\Abelssoft\FileFusion_97 => C:\ProgramData\Abelssoft\FileFusion\Program\FileFusion.exe [2214144 2022-02-04] (Ascora GmbH -> )
Task: {6FB8F473-BBBD-490E-A2F9-568B2CDC84A7} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {749351EA-ADBF-40AD-8F49-2AA0500F9120} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-10-05] (Google LLC -> Google LLC)
Task: {76825D7F-AC1D-4E74-91F4-97D4603CFAA7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {7DCFC188-B2AD-434B-B993-8CCAA25F81FD} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3329096 2022-11-11] (Avast Software s.r.o. -> AVAST Software)
Task: {7E6A903C-0A90-4BCC-9B54-3643919F7171} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [5080416 2021-12-17] (Greatis Software LLC -> Greatis Software)
Task: {81F1AA23-6A2D-4C6B-8C29-0D3D214086CE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8F4A6378-3762-4CFB-B27E-700A64E69B8C} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [227328 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [Файл не подписан]
Task: {9D93AEA9-E1CE-4F05-B299-4A7EEF5CD00D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2FAEDBE-0986-4FBC-8593-14E0396E44AB} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe [128000 2021-10-16] (Softdeluxe) [Файл не подписан]
Task: {A3685BA1-B4BC-450B-ABE2-7C53E58B46DE} - System32\Tasks\novaPDF 10 Update => C:\Program Files\Softland\novaPDF 10\Driver\UpdateApplication.exe [98112 2021-07-28] (Softland SRL -> )
Task: {B1EF0A8E-3926-4CD8-A493-1C4058B79669} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B4491D93-7732-435C-9DE9-2F87067EB3C9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B8D313A9-FD4E-4FE3-BD1F-D3E6AFA8B703} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2021-10-11] (Avast Software s.r.o. -> AVAST Software)
Task: {D04FF2D8-4B29-479E-8A9B-ABCAE9819729} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_MOHCTP => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5629976 2020-03-12] (Janos Mathe -> H.D.S. Hungary)
Task: {DE265BCE-F556-4B2D-8A1D-3557D4937074} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2021-10-11] (Avast Software s.r.o. -> AVAST Software)
Task: {E26A710B-7CCE-4857-B2C5-CF86B3A01470} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe [29305736 ] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {ED34DFB0-55A3-4C31-AF24-AC117437BC79} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA4A2784-0BF1-4F17-8918-B19422558DC1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FAA3BB6D-2BA7-4746-85EE-56D517DD04EE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-10-05] (Google LLC -> Google LLC)
Task: {FC1F81CC-0ACC-4FF0-831F-33C1CCCF3F58} - System32\Tasks\novaPDF 10 Telemetry => C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe [51008 2021-07-28] (Softland SRL -> )
Task: {FD5B23F2-301A-49A1-98F7-5EB6A034C7BF} - \Microsoft\Windows\Setup\EOSNotify -> Нет файла <==== ВНИМАНИЕ
Task: {FEB651D8-D547-4AC5-95CC-F12B7679AEF6} - System32\Tasks\wufuc.{72EEE38B-9997-42BD-85D3-2DD96DA17307} => "C:\Windows\System32\rundll32.exe" "G:\Distrib\wufuc_v1.0.1.201-a52637d4\wufuc\wufuc64.dll",RUNDLL32_Start

(Если запись включена в fixlist, файл задачи (.job) будет перемещён. Файл, выполняемый задачей, не будет перемещён.)


==================== Internet (В белом списке) ====================

(Если элемент включён в fixlist, если он является элементом реестра, он будет удалён или сброшен на значение по умолчанию.)

Hosts: В Hosts файле более одной записи. Смотрите раздел Hosts Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1BEFCC91-1FC6-4250-8F77-E41D26174DB0}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8860FF98-44CD-4ABE-B983-82EC2662B06A}: [NameServer] 10.100.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ограничение <==== ВНИМАНИЕ

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\MOHCTP\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-27]

FireFox:
========
FF DefaultProfile: l4vxyrgx.default
FF ProfilePath: D:\D:\Firefox Plus\Profiles\l4vxyrgx.default [не найдено] <==== ВНИМАНИЕ
FF ProfilePath: D:\Firefox Plus\Profiles\l4vxyrgx.default [2023-01-28]
FF DownloadDir: D:\Zagruzki
FF Extension: (AdGuard Антибаннер) - D:\Firefox Plus\Profiles\l4vxyrgx.default\Extensions\adguardadblocker@adguard.com.xpi [2022-12-25]
FF Extension: (Кнопка Google Академии) - D:\Firefox Plus\Profiles\l4vxyrgx.default\Extensions\button@scholar.google.com.xpi [2022-06-11]
FF Extension: (Советник Яндекс.Маркета) - D:\Firefox Plus\Profiles\l4vxyrgx.default\Extensions\sovetnik@metabar.ru.xpi [2023-01-14]
FF Extension: (Менеджер паролей Sticky Password) - D:\Firefox Plus\Profiles\l4vxyrgx.default\Extensions\{ecb80162-dfbd-4d91-a8da-17b35ba4707a}.xpi [2022-06-01]
FF ProfilePath: D:\Firefox Plus\Profiles\qo4733vi.default-release [2023-01-14]
FF Plugin: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll [2022-10-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2022-10-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Нет файла]
FF Plugin-x32: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll [2022-10-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2022-10-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Нет файла]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\npAvastBrowserUpdate3.dll [2021-10-11] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\npAvastBrowserUpdate3.dll [2021-10-11] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\MOHCTP\AppData\Local\Google\Chrome\User Data\Default [2023-01-14]
CHR DefaultSearchURL: Default -> hxxps://yandex.ru/search/?__PARAM__from=chromesearch&text={searchTerms}
CHR DefaultSearchKeyword: Default -> yandex.ru
CHR DefaultSuggestURL: Default -> hxxps://suggest.yandex.net/suggest-ff.cgi?uil=ru&part={searchTerms}
CHR Extension: (Защита от веб-угроз 360) - C:\Users\MOHCTP\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2022-12-02]
CHR Extension: (Яндекс) - C:\Users\MOHCTP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibknafobnmndicojahlppolcaaibngjf [2022-10-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\MOHCTP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-31]
CHR HKLM-x32\...\Chrome\Extension: [dhancbnhabhandieicagelcddkdfgoif] - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.24.7.8183\BVDChromeExt.crx [2022-06-13]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh]

==================== Службы (В белом списке) ===================

(Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S4 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2021-10-11] (Avast Software s.r.o. -> AVAST Software)
S4 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2021-10-11] (Avast Software s.r.o. -> AVAST Software)
S4 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\107.0.19254.107\elevation_service.exe [2321328 2022-11-11] (Avast Software s.r.o. -> AVAST Software)
S4 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.9.0\ABService.exe [1092656 2022-02-28] (AOMEI International Network Limited -> AOMEI International Network Limited)
S2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [143072 2020-07-01] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S4 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Файл не подписан]
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
R2 NovaPdf10Server; C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe [52032 2021-07-28] (Softland SRL -> Microsoft)
S4 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [122464 2022-04-12] (Proton Technologies AG -> )
S4 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [65632 2022-04-12] (Proton Technologies AG -> )
S4 ProtonVPN WireGuard; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.WireGuardService.exe [50784 2022-04-12] (Proton Technologies AG -> )
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2022-11-24] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S4 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [6018112 2022-06-16] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
S4 SEVPNSERVER; C:\Program Files\SoftEther VPN Server\vpnserver_x64.exe [6038080 2022-06-16] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2021-10-05] (Microsoft Corporation) [Файл не подписан]
S4 VPNUnlimitedService; C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe [47128 2021-10-26] (KeepSolid Inc. -> KeepSolid Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-05-19] (Microsoft Windows -> Microsoft Corporation)
S4 WireGuardTunnel$VPNUWireguard; C:\Program Files (x86)\VPN Unlimited\WireVPNUImpl.exe [26648 2021-10-26] (KeepSolid Inc. -> )

===================== Драйверы (В белом списке) ===================

(Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.)

R3 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [191272 2022-11-24] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [86248 2022-11-24] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [86248 2022-11-24] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [350984 2022-11-24] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [49584 2022-11-24] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [530696 2022-11-24] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S4 360Hvm; C:\Windows\System32\Drivers\360Hvm64.sys [338696 2022-11-24] (Beijing Qihu Technology Co., Ltd. -> 360安全中心)
R1 360netmon; C:\Windows\System32\DRIVERS\360netmon.sys [87672 2022-11-24] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [225576 2022-11-24] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R2 BlueStacksDrv_msi2; C:\Program Files\BlueStacks_msi2\BstkDrv_msi2.sys [315768 2021-10-26] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 gdrv2; C:\Windows\gdrv2.sys [32600 2021-10-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [319376 2022-07-05] (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation)
R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [94440 2021-05-12] (Microsoft Windows -> Корпорация Майкрософт)
R3 Neo_SoftEthernet_VPN; C:\Windows\System32\DRIVERS\Neo_0070.sys [38088 2022-06-16] (SoftEther Corporation -> SoftEther Corporation)
R3 NVHDA; C:\Windows\System32\drivers\nvhda64v.sys [129960 2021-09-14] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 nvlddmkm; C:\Windows\System32\DRIVERS\nvlddmkm.sys [36946840 2022-01-25] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win7\ProtonVPN.CalloutDriver.sys [25824 2022-04-01] (Proton Technologies AG -> Proton Technologies AG)
S3 pxwfp; C:\Windows\system32\drivers\pxwfp.sys [33992 2022-06-16] (SoftEther Corporation -> SoftEther Corporation)
S1 rtf62; C:\Windows\System32\DRIVERS\rtf62x64.sys [60904 2017-09-26] (Realtek Semiconductor Corp. -> Realtek)
S3 SEE; C:\Windows\System32\drivers\see.sys [52424 2022-06-16] (SoftEther Corporation -> SoftEther Corporation)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapoas; C:\Windows\System32\DRIVERS\tapoas.sys [30720 2012-07-15] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapprotonvpn; C:\Windows\System32\DRIVERS\tapprotonvpn.sys [39696 2022-04-01] (Proton Technologies AG -> The OpenVPN Project)
S3 tapwindscribe0901; C:\Windows\System32\DRIVERS\tapwindscribe0901.sys [48544 2022-05-06] (Windscribe Limited -> The OpenVPN Project)
S3 UASPStor; C:\Windows\system32\drivers\uaspstor.sys [101832 2012-07-26] (Edgard Roberto Viera -> Microsoft Corporation)
R3 UCX01000; C:\Windows\System32\DRIVERS\ucx01000.sys [216520 2018-05-02] (Edgard Roberto Viera -> Microsoft Corporation)
R3 USBHUB3; C:\Windows\System32\DRIVERS\UsbHub3.sys [452040 2014-07-24] (Edgard Roberto Viera -> Microsoft Corporation)
R3 USBXHCI; C:\Windows\System32\DRIVERS\USBXHCI.SYS [342472 2017-02-13] (Edgard Roberto Viera -> Microsoft Corporation)
R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [363752 2021-05-12] (Microsoft Windows -> Корпорация Майкрософт)
S3 windtun420; C:\Windows\System32\DRIVERS\windtun420.sys [38312 2022-05-06] (Windscribe Limited -> WireGuard LLC)
R3 wintun; C:\Windows\System32\DRIVERS\wintun.sys [29680 2022-05-06] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\Windows\System32\DRIVERS\wireguard.sys [489368 2022-05-06] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 bntap; system32\DRIVERS\bntap.sys [X]
U0 Partizan; system32\drivers\Partizan.sys [X]
U3 SARPSvc; отсутствует ImagePath

==================== NetSvcs (В белом списке) ===================

(Если запись включена в fixlist, она будет удалена из реестра. Файл не будет удалён, если он не указан отдельно.)


==================== Один месяц (создан) (В белом списке) =========

(Если запись включена в лист исправлений, файл/папка будут перемещены.)

2023-01-28 13:04 - 2023-01-28 13:07 - 000000000 ____D C:\FRST
2023-01-28 12:55 - 2023-01-28 12:55 - 000000000 ____D C:\Windows\ABR
2023-01-28 12:36 - 2023-01-28 12:37 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\Trio
2023-01-28 12:36 - 2023-01-28 12:36 - 000000603 _____ C:\Users\MOHCTP\Desktop\Trio.lnk
2023-01-28 04:10 - 2023-01-28 04:10 - 016335297 _____ C:\Users\MOHCTP\Documents\На поле танки грохотали_2023 01 28_04 09 45_1_627.mp4
2023-01-27 21:06 - 2023-01-27 21:06 - 000000922 _____ C:\Users\MOHCTP\Desktop\Halloween Stories 6. Mark on the Bone (CE) (RUS).lnk
2023-01-27 21:06 - 2023-01-27 21:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Halloween Stories 6. Mark on the Bone (CE) (RUS)
2023-01-27 13:36 - 2023-01-27 13:36 - 000004024 _____ C:\Users\MOHCTP\Documents\ESET.txt
2023-01-27 12:13 - 2023-01-27 18:19 - 000001197 _____ C:\Users\MOHCTP\Desktop\ESET Online Scanner.lnk
2023-01-26 21:56 - 2023-01-26 21:56 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\RenPy
2023-01-26 21:10 - 2023-01-26 21:10 - 000001130 _____ C:\Users\MOHCTP\Desktop\Книжные Странники - Викторианская история КИ.lnk
2023-01-26 18:14 - 2023-01-26 21:05 - 000000000 ____D C:\ProgramData\F-Secure
2023-01-26 18:12 - 2023-01-26 18:12 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cleaner One Pro.lnk
2023-01-26 18:12 - 2023-01-26 18:12 - 000001093 _____ C:\Users\Public\Desktop\Cleaner One Pro.lnk
2023-01-26 18:12 - 2023-01-26 18:12 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\CleanerOnePro
2023-01-26 18:12 - 2023-01-26 18:12 - 000000000 ____D C:\ProgramData\Trend Micro
2023-01-26 18:11 - 2023-01-26 18:11 - 000000000 ____D C:\Program Files (x86)\Cleaner One Pro
2023-01-26 17:26 - 2023-01-26 17:27 - 000000000 ____D C:\Program Files\Trend Micro
2023-01-26 17:22 - 2023-01-27 11:57 - 000317110 _____ C:\Windows\ntbtlog.txt
2023-01-25 14:51 - 2023-01-25 14:51 - 322391906 _____ C:\Users\MOHCTP\Documents\Bel Suono - В пещере горного короля  In the Hall of the Mountain King_2023 01 25_14 50 49_1_761.webm
2023-01-24 21:00 - 2023-01-24 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files 20. Black Crown (CE) (RUS)
2023-01-23 18:04 - 2023-01-23 18:04 - 014305024 _____ C:\Users\MOHCTP\Documents\В руках автомат_2023 01 23_18 04 16_1_223.mp4
2023-01-23 18:03 - 2023-01-23 18:03 - 084491858 _____ C:\Users\MOHCTP\Documents\Shaka Ponk  Smells Like Teen Spirit live @Alcaline (France 2)_2023 01 23_18 03 14_1_461.mp4
2023-01-23 16:44 - 2023-01-23 16:44 - 007839210 _____ C:\Users\MOHCTP\Documents\Trombone, guitare et compagnie, Michel Legrand (1964)_2023 01 23_16 44 33_1_322.mp4
2023-01-23 15:56 - 2023-01-23 15:56 - 085198090 _____ C:\Users\MOHCTP\Documents\В поле рожь не сжата... (Ультралевый марш)_2023 01 23_15 56 06_1_82.mp4
2023-01-23 00:26 - 2023-01-23 00:26 - 019984376 _____ C:\Users\MOHCTP\Documents\The Weather Girls - It's Raining Men (Video)_2023 01 23_00 25 59_1_664.mp4
2023-01-22 00:56 - 2023-01-22 00:56 - 028780195 _____ C:\Users\MOHCTP\Documents\Ameno von Red Army Choir & Vincent Niclo_2023 01 22_00 56 18_1_46.mp4
2023-01-21 23:22 - 2023-01-21 23:22 - 000000885 _____ C:\Users\MOHCTP\Desktop\Mystery Case Files 22. Crossfade (CE) (RUS).lnk
2023-01-21 23:22 - 2023-01-21 23:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files 22. Crossfade (CE) (RUS)
2023-01-21 22:42 - 2023-01-21 22:42 - 065060818 _____ C:\Users\MOHCTP\Documents\Elektrizitatea. Zea Mays   Euskadiko Orkestra_2023 01 21_22 42 27_1_855.mp4
2023-01-21 22:33 - 2023-01-21 22:33 - 006426333 _____ C:\Users\MOHCTP\Documents\Vincent Niclo  O fortuna  _2023 01 21_22 33 27_1_650.mp4
2023-01-20 22:43 - 2023-01-20 22:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fatal Evidence 3 Art of Murder CE RuSN
2023-01-20 14:38 - 2023-01-20 14:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fatal Evidence 2 The Missing CE RuSN
2023-01-19 21:56 - 2023-01-19 22:14 - 000000000 ____D C:\Users\MOHCTP\.mucommander
2023-01-19 21:55 - 2023-01-19 21:55 - 000001869 _____ C:\Users\Public\Desktop\muCommander.lnk
2023-01-19 21:55 - 2023-01-19 21:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unknown
2023-01-19 21:55 - 2023-01-19 21:55 - 000000000 ____D C:\Program Files\muCommander
2023-01-19 20:23 - 2023-01-19 20:23 - 067835063 _____ C:\Users\MOHCTP\Downloads\amd-chipset-drivers_18.10_0830 (1).zip
2023-01-19 13:59 - 2023-01-19 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fatal Evidence The Cursed Island CE_RuSN
2023-01-19 13:13 - 2023-01-19 13:13 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\StreamUpdate
2023-01-19 11:48 - 2023-01-19 11:48 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\LiveUpdate
2023-01-19 11:47 - 2023-01-19 11:48 - 000000000 ____D C:\Users\MOHCTP\Documents\LiveUpdate
2023-01-19 11:47 - 2023-01-19 11:48 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\DVDFab
2023-01-19 11:46 - 2023-01-19 11:46 - 000002074 _____ C:\Users\MOHCTP\Desktop\DVDFab Photo Enhancer AI.lnk
2023-01-19 11:46 - 2023-01-19 11:46 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab Photo Enhancer AI
2023-01-19 11:46 - 2023-01-19 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab Photo Enhancer AI
2023-01-19 11:39 - 2023-01-19 11:39 - 000000000 ____D C:\Users\MOHCTP\Downloads\DVDFab
2023-01-19 11:39 - 2023-01-19 11:39 - 000000000 ____D C:\Program Files\DVDFab
2023-01-19 11:38 - 2023-01-28 13:02 - 000000000 ____D C:\Users\MOHCTP\Documents\DVDFab
2023-01-18 20:59 - 2023-01-18 21:00 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\Q-Dir
2023-01-18 20:59 - 2023-01-18 20:59 - 000001490 _____ C:\Users\Public\Desktop\Q-Dir.lnk
2023-01-18 20:59 - 2023-01-18 20:59 - 000001490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Q-Dir.lnk
2023-01-18 20:59 - 2023-01-18 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q-Dir
2023-01-18 20:59 - 2023-01-18 20:59 - 000000000 ____D C:\Program Files\Q-Dir
2023-01-18 20:52 - 2023-01-18 21:00 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\Fileside
2023-01-18 20:52 - 2023-01-18 20:52 - 000002327 _____ C:\Users\MOHCTP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fileside.lnk
2023-01-18 18:26 - 2023-01-18 18:26 - 000000927 _____ C:\Users\MOHCTP\Desktop\Mystery Case Files 24. The Last Resort (CE) (RUS).lnk
2023-01-18 18:26 - 2023-01-18 18:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files 24. The Last Resort (CE) (RUS)
2023-01-18 00:22 - 2023-01-18 00:22 - 000000000 ____D C:\Windows\pss
2023-01-17 23:12 - 2023-01-18 13:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-01-17 17:20 - 2023-01-17 17:20 - 006410809 _____ C:\Users\MOHCTP\Documents\Вечно молодой_2023 01 17_17 20 14_1_895.mp4
2023-01-17 16:35 - 2023-01-17 16:35 - 011498590 _____ C:\Users\MOHCTP\Documents\Those Were The Days (Remastered)_2023 01 17_16 35 08_1_230.mp4
2023-01-17 15:54 - 2023-01-17 15:54 - 020147642 _____ C:\Users\MOHCTP\Documents\Madness - In The Hall Of The Mountain King (Taken from - Forever Young The Ska Collection)_2023 01 17_15 54 31_1_489.mp4
2023-01-17 15:31 - 2023-01-17 15:31 - 007806836 _____ C:\Users\MOHCTP\Documents\Blackmore's Night~ Gone With The Wind_2023 01 17_15 31 42_1_739.mp4
2023-01-17 15:18 - 2023-01-17 15:18 - 044025125 _____ C:\Users\MOHCTP\Documents\Blackmore's Night   Toast To Tomorrow  -- legendado em português_2023 01 17_15 18 18_1_355.mp4
2023-01-17 15:15 - 2023-01-17 15:15 - 035951929 _____ C:\Users\MOHCTP\Documents\Blackmore’s Night - Writing On The Wall (1997)_2023 01 17_15 14 55_1_435.mp4
2023-01-16 23:21 - 2023-01-16 23:21 - 118657471 _____ C:\Users\MOHCTP\Documents\Tatar song Тала-тала_2023 01 16_23 21 10_1_446.mp4
2023-01-16 16:33 - 2023-01-16 16:33 - 041780996 _____ C:\Users\MOHCTP\Documents\HUNTZA- Buruz Behera (Official video)_2023 01 16_16 33 16_1_626.mp4
2023-01-16 16:29 - 2023-01-16 16:29 - 045921659 _____ C:\Users\MOHCTP\Documents\Huntza - Aldapan Gora (Bideoklip ofiziala - Official video)_2023 01 16_16 29 40_1_55.mp4
2023-01-16 16:12 - 2023-01-16 16:13 - 077298055 _____ C:\Users\MOHCTP\Documents\Vanilla Sky - Pesenka O Medvedyakh (Песенка о Медведях)_2023 01 16_16 12 44_1_135.mp4
2023-01-16 15:53 - 2023-01-16 15:54 - 066419477 _____ C:\Users\MOHCTP\Documents\Vanilla Sky - Zvenit Yanvarskaya Viuga Official Video  Звенит январская вьюга_2023 01 16_15 53 36_1_977.mp4
2023-01-15 20:21 - 2023-01-27 09:20 - 000002194 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-01-15 14:49 - 2023-01-15 14:49 - 022478351 _____ C:\Users\MOHCTP\Documents\فيروز - كانوا يا حبيبي  Fairouz - Kanou ya habibi_2023 01 15_14 49 11_1_974.mp4
2023-01-15 14:41 - 2023-01-15 14:41 - 005368091 _____ C:\Users\MOHCTP\Documents\Leningrad Cowboys - Kasakka HQ_2023 01 15_14 41 39_1_225.mp4
2023-01-15 14:36 - 2023-01-15 14:36 - 036932819 _____ C:\Users\MOHCTP\Documents\Полюшко-поле_2023 01 15_14 36 46_1_556.mp4
2023-01-15 14:33 - 2023-01-15 14:33 - 004759603 _____ C:\Users\MOHCTP\Documents\The Spotnicks - The Rocket Man (1962)_2023 01 15_14 33 53_1_550.mp4
2023-01-15 14:29 - 2023-01-15 14:30 - 020329232 _____ C:\Users\MOHCTP\Documents\Поющие гитары - Полюшко-поле_2023 01 15_14 29 51_1_829.mp4
2023-01-15 11:07 - 2023-01-15 11:07 - 000115560 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2023-01-14 22:47 - 2023-01-14 22:47 - 046394766 _____ C:\Users\MOHCTP\Documents\Garbage & Screaming Females - Because The Night (Official Video)_2023 01 14_22 47 14_1_824.mp4
2023-01-14 11:27 - 2023-01-14 11:27 - 000115560 _____ C:\Windows\SysWOW64\GDIPFONTCACHEV1.DAT
2023-01-14 00:43 - 2023-01-14 00:43 - 000000000 ____D C:\Windows\system32\appmgmt
2023-01-14 00:06 - 2023-01-14 00:06 - 009182174 _____ C:\Users\MOHCTP\Documents\House Of The Rising Sun_2023 01 14_00 06 18_1_885.mp4
2023-01-13 23:59 - 2023-01-14 00:00 - 036093159 _____ C:\Users\MOHCTP\Documents\Joan Baez - Diamonds and Rust (With Lyrics)_2023 01 13_23 59 39_1_886.mp4
2023-01-11 17:41 - 2023-01-11 17:43 - 432026842 _____ C:\Users\MOHCTP\Documents\Отава Ё - Добрый вечер (Otava Yo - Good evening)_2023 01 11_17 39 44_1_800.mp4
2023-01-10 18:31 - 2023-01-10 18:31 - 015413952 _____ C:\Users\MOHCTP\Documents\L'homme et le chat (Человек и Кошка - Группа Ноль - кавер)_2023 01 10_18 31 08_1_476.mp4
2023-01-09 01:21 - 2023-01-09 01:21 - 011268562 _____ C:\Users\MOHCTP\Documents\Аукцыон - Дорога_2023 01 09_01 21 09_1_148.mp4
2023-01-08 15:02 - 2023-01-08 15:02 - 000000796 _____ C:\Users\MOHCTP\Desktop\New Yankee in Santa's Service.lnk
2023-01-07 14:51 - 2023-01-07 14:51 - 000001167 _____ C:\Users\MOHCTP\Desktop\SoftOrbits Photo Retoucher.lnk
2023-01-07 14:51 - 2023-01-07 14:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftOrbits Photo Retoucher
2023-01-07 14:51 - 2023-01-07 14:51 - 000000000 ____D C:\Program Files (x86)\SoftOrbits Photo Retoucher
2023-01-02 00:38 - 2023-01-02 00:38 - 017762269 _____ C:\Users\MOHCTP\Documents\R.E.M. - Losing My Religion (Official Music Video)_2023 01 02_00 37 57_1_645.mp4
2023-01-01 14:26 - 2023-01-01 14:26 - 103653688 _____ C:\Users\MOHCTP\Documents\ГРАЙ - В объятиях Мары (Official video)_2023 01 01_14 26 13_1_366.mp4
2023-01-01 01:25 - 2023-01-01 01:25 - 036621916 _____ C:\Users\MOHCTP\Documents\ELUVEITIE - The Call Of The Mountains (OFFICIAL MUSIC VIDEO)_2023 01 01_01 25 07_1_366.mp4
2023-01-01 00:50 - 2023-01-01 00:50 - 031283989 _____ C:\Users\MOHCTP\Documents\The SIDH - Khan ft. Marcin Ruminski [EPILEPSY WARNING]_2023 01 01_00 50 27_1_290.mp4
2023-01-01 00:49 - 2023-01-01 00:49 - 038680068 _____ C:\Users\MOHCTP\Documents\The SIDH - Iridium_2023 01 01_00 49 35_1_191.mp4
2023-01-01 00:25 - 2023-01-01 00:25 - 056472790 _____ C:\Users\MOHCTP\Documents\Сонце-Хмари&Эдмунд Шклярский - Сонце заховалось_2023 01 01_00 25 24_1_394.mp4
2023-01-01 00:19 - 2023-01-01 00:19 - 044305617 _____ C:\Users\MOHCTP\Documents\Сонце-ХмариТаБу - Иероглиф_2023 01 01_00 19 05_1_425.mp4
2022-12-31 22:07 - 2022-12-31 22:07 - 000000894 _____ C:\Users\MOHCTP\Desktop\Solitaire Jack Frost - Winter Adventures 3.lnk
2022-12-31 21:22 - 2022-12-31 21:22 - 011055392 _____ C:\Users\MOHCTP\Documents\Did Ya Mama Ever Tell Ya_2022 12 31_21 22 05_1_514.mp4
2022-12-30 16:00 - 2023-01-10 01:41 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\Sylpheed
2022-12-30 15:59 - 2022-12-30 15:59 - 000001011 _____ C:\Users\MOHCTP\Desktop\Sylpheed.lnk
2022-12-30 15:59 - 2022-12-30 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sylpheed
2022-12-30 15:59 - 2022-12-30 15:59 - 000000000 ____D C:\Program Files (x86)\Sylpheed

==================== Один месяц (изменён) ==================

(Если запись включена в лист исправлений, файл/папка будут перемещены.)

2023-01-28 13:03 - 2021-10-05 21:35 - 000000000 ____D C:\ProgramData\NVIDIA
2023-01-28 13:02 - 2022-11-24 19:29 - 000000000 ____D C:\Users\MOHCTP\AppData\LocalLow\360WD
2023-01-28 13:01 - 2009-07-14 08:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-01-28 13:00 - 2009-07-14 07:45 - 000040224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2023-01-28 13:00 - 2009-07-14 07:45 - 000040224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2023-01-28 12:36 - 2021-12-06 06:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ToomkyGames
2023-01-28 12:35 - 2022-11-25 15:50 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\360zip
2023-01-28 11:18 - 2021-12-22 12:27 - 000000000 ____D C:\Program Files (x86)\UnHackMe
2023-01-28 11:16 - 2022-06-01 11:31 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-28 11:15 - 2022-06-01 11:31 - 000000000 ____D C:\Users\MOHCTP\AppData\LocalLow\Mozilla
2023-01-28 11:13 - 2021-12-22 12:28 - 000000000 ____D C:\Users\Public\Documents\RegRunInfo
2023-01-28 03:09 - 2022-03-04 22:51 - 000000836 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2023-01-28 03:09 - 2022-03-04 22:51 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\Notepad++
2023-01-27 21:06 - 2021-12-25 22:50 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\Elephant Games
2023-01-27 21:03 - 2021-10-05 22:10 - 000000000 ___RD C:\Unreal Commander
2023-01-27 14:13 - 2022-11-24 19:31 - 000000000 ____D C:\ProgramData\360Quarant
2023-01-27 12:37 - 2022-03-01 14:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultimate Systems
2023-01-27 12:37 - 2022-03-01 14:08 - 000000000 ____D C:\Program Files\WinSysClean X10 PRO
2023-01-27 09:20 - 2021-12-26 08:16 - 000002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-01-27 08:34 - 2021-10-05 22:32 - 000003700 _____ C:\Windows\system32\Tasks\wufuc.{72EEE38B-9997-42BD-85D3-2DD96DA17307}
2023-01-27 08:31 - 2022-11-26 21:35 - 000000000 ____D C:\ProgramData\360zip
2023-01-27 02:18 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\inf
2023-01-26 13:02 - 2021-12-23 12:15 - 000000248 _____ C:\Windows\SysWOW64\PARTIZAN.TXT
2023-01-24 21:00 - 2022-06-25 12:02 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\Eipix
2023-01-22 12:32 - 2009-07-14 08:08 - 000032600 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2023-01-21 23:22 - 2021-12-26 20:36 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\GrandMA Studios
2023-01-21 10:05 - 2022-11-24 19:53 - 000000000 __SHD C:\$360Section
2023-01-21 10:05 - 2021-10-05 21:58 - 000000000 ____D C:\ProgramData\KMSAutoS
2023-01-20 22:43 - 2021-10-06 12:29 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\DominiGames
2023-01-20 22:27 - 2022-11-24 19:29 - 000000000 ____D C:\ProgramData\360Safe
2023-01-19 21:59 - 2021-10-05 20:19 - 000000000 ____D C:\W7P_Backups
2023-01-19 21:56 - 2021-10-05 20:20 - 000000000 ____D C:\Users\MOHCTP
2023-01-19 20:28 - 2021-10-05 22:27 - 000004234 _____ C:\Windows\system32\Tasks\AMD Updater
2023-01-19 20:28 - 2011-04-12 16:26 - 000723936 _____ C:\Windows\system32\perfh019.dat
2023-01-19 20:28 - 2011-04-12 16:26 - 000150252 _____ C:\Windows\system32\perfc019.dat
2023-01-19 20:28 - 2009-07-14 08:13 - 001647438 _____ C:\Windows\system32\PerfStringBackup.INI
2023-01-19 20:22 - 2022-11-24 19:29 - 000000001 _____ C:\Windows\system32\Drivers\360Hvm64.dat
2023-01-19 20:21 - 2021-10-05 22:15 - 000000000 ____D C:\Program Files (x86)\Driver Magician
2023-01-19 11:30 - 2021-10-24 19:38 - 000000000 ____D C:\ProgramData\TEMP
2023-01-18 13:26 - 2022-06-01 11:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-01-18 01:12 - 2022-06-16 22:26 - 000000000 ____D C:\Program Files\SoftEther VPN Server
2023-01-17 13:50 - 2022-06-16 19:49 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2023-01-16 14:01 - 2022-02-27 13:39 - 000000000 ____D C:\Program Files (x86)\Hard Disk Sentinel
2023-01-11 16:54 - 2021-10-15 10:13 - 000000000 ____D C:\Windows\system32\MRT
2023-01-11 16:43 - 2021-10-15 10:13 - 150199536 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-01-11 16:25 - 2022-03-20 09:04 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2023-01-11 16:25 - 2022-03-20 09:03 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2023-01-08 15:02 - 2021-10-06 18:11 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\AlawarEntertainment
2023-01-07 14:51 - 2022-11-26 21:35 - 000000000 ____D C:\Program Files (x86)\SoftOrbits
2023-01-07 14:51 - 2022-04-01 06:28 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\softorbits
2023-01-05 10:12 - 2021-12-26 08:16 - 000003568 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-01-05 10:12 - 2021-12-26 08:16 - 000003440 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-12-31 22:07 - 2021-11-18 17:24 - 000000000 ____D C:\Users\MOHCTP\AppData\Roaming\8floor

==================== Файлы в корне каталогов ========

2022-07-05 19:49 - 2022-07-05 19:49 - 000000068 _____ () C:\Users\MOHCTP\AppData\Roaming\changzhi_leidian.data
2022-07-05 19:49 - 2022-07-05 19:49 - 000000180 _____ () C:\Users\MOHCTP\AppData\Roaming\changzhi_leidianmac.data
2023-01-26 18:08 - 2023-01-26 18:08 - 000427562 _____ () C:\Users\MOHCTP\AppData\Local\ars.cache
2023-01-26 18:09 - 2023-01-26 18:09 - 000552585 _____ () C:\Users\MOHCTP\AppData\Local\census.cache
2023-01-26 17:26 - 2023-01-26 17:26 - 000000036 _____ () C:\Users\MOHCTP\AppData\Local\housecall.guid.cache
2022-12-30 16:01 - 2022-12-30 16:01 - 000000712 _____ () C:\Users\MOHCTP\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(Нет автоматического исправления файлов, которые не проходят проверку.)


LastRegBack: 2022-03-18 05:49
==================== Конец от FRST.txt ========================