Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola logu-blue screen

V tomto fóru se řeší problematika modré smrti - BSOD

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Odpovědět
Zpráva
Autor
Nabuchodonozor671
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 29 zář 2013 17:47

Kontrola logu-blue screen

#1 Příspěvek od Nabuchodonozor671 »

Dobrý deň.Poprosím o kontrolu logu môjho PC,z dôvodu denného pádu systému "BlueScreen".Tu je výpis logu:Logfile of random's system information tool 1.10 (written by random/random)
Run by Roman67 at 2017-12-27 08:41:52
Microsoft Windows 10 Pro
System drive C: has 180 GB (76%) free of 237 GB
Total RAM: 8183 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:41:56, on 27.12.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0098)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.6\kpm.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.6\plugin-nm-server.exe
C:\Program Files\trend micro\Roman67.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O3 - Toolbar: Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_960c1f056a541068\AESTSr64.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Bitdefender RedLine Service (bdredline) - Bitdefender - C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Bitdefender Product Agent Service (ProductAgentService) - Bitdefender - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_960c1f056a541068\STacSV64.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
O23 - Service: @oem2.inf,%WBFService_SvcDesc%;Validity WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
O23 - Service: Bitdefender Protected Service (vsservp) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\vsservp.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WindscribeService - Windscribe Limited - C:\Program Files (x86)\Windscribe\WindscribeService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 9109 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-ece0a2f5-666f-4a20-ba24-29ec898c47f7 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-293ff168-3ff8-4a19-9b46-780da11d0346 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-44a690c1-afdb-49e5-8102-217f8bff3ee5 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9b62c764-5253-482f-b135-d6c1a1b6e493 -LifetimeId:ccb0622c-7dd8-46c5-b77b-67bbc90dad69 -DeviceGroupId:
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
"C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe" /service
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem

c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
dashost.exe {6553298e-94f4-47ce-82e79fe4e3aa9391}
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-2b242a8d-c7c9-4351-8b2f-83325343b3ef -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a094cf9c-6c94-42cf-8a33-eb5abdda5643 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-c36fd627-db4b-48b0-9fc0-95e171699109 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f9c7f6fe-ba58-40e9-a586-33efae1a3523 -LifetimeId:2b63e20d-732b-488e-8c0c-43c75fde148d -DeviceGroupId:WpdFsGroup
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_960c1f056a541068\AESTSr64.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
C:\WINDOWS\system32\valWBFPolicyService.exe
"C:\Program Files\Bitdefender Agent\ProductAgentService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe" /service

c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\Windscribe\WindscribeService.exe"

c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NgcSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k unistacksvcgroup
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe"
"C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
C:\Windows\System32\smartscreen.exe -Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" /rep_new
"C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe"
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe"
"C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.6\kpm.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Roman67\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Roman67\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Roman67\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=63.0.3239.108 --initial-client-data=0x1dc,0x1e0,0x1e4,0x1d8,0x1e8,0x7ffe23635720,0x7ffe23635760,0x7ffe23635738
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=8972 --on-initialized-event-handle=640 --parent-handle=644 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1460,5677713496262758916,686230457011096192,131072 --gpu-vendor-id=0x10de --gpu-device-id=0x0a28 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.4201 --gpu-driver-date=11-14-2016 --service-request-channel-token=D856FE7BEBE22F0CFC2D2DC9A7B91DA5 --mojo-platform-channel-handle=1456 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1460,5677713496262758916,686230457011096192,131072 --service-pipe-token=626488CB2870B03ED592F9D3942625CE --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=626488CB2870B03ED592F9D3942625CE --renderer-client-id=10 --mojo-platform-channel-handle=5072 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.6\plugin-nm-server.exe" chrome-extension://mkaoblbjfmcalcjjaifickaoccjmhlal/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.3e783a3e26c1f83e > \\.\pipe\chrome.nativeMessaging.out.3e783a3e26c1f83e
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.6\plugin-nm-server.exe" chrome-extension://mkaoblbjfmcalcjjaifickaoccjmhlal/ --parent-window=0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1460,5677713496262758916,686230457011096192,131072 --service-pipe-token=85997A1B0598820A5825D58522C9280F --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=85997A1B0598820A5825D58522C9280F --renderer-client-id=22 --mojo-platform-channel-handle=7788 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1460,5677713496262758916,686230457011096192,131072 --service-pipe-token=F74510B5FB896080222A5D9D07283094 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=F74510B5FB896080222A5D9D07283094 --renderer-client-id=32 --mojo-platform-channel-handle=6660 /prefetch:1
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x5cc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\Roman67\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}]
Bitdefender - Portmonka - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2017-12-04 534720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}]
Bitdefender - Portmonka - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2017-12-04 469760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Bitdefender - Portmonka - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2017-12-04 534720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Bitdefender - Portmonka - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2017-12-04 469760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-29 1794888]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2016-10-13 3942864]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-03-23 487424]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-03-30 3954352]
"Acronis Scheduler2 Service"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2016-12-15 497824]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AcronisTibMounterMonitor"=C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2015-11-10 651560]
"TrueImageMonitor.exe"=C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2016-12-15 6813680]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-12-27 08:41:52 ----D---- C:\rsit
2017-12-27 08:41:52 ----D---- C:\Program Files\trend micro
2017-12-27 08:31:23 ----D---- C:\Users\Roman67\AppData\Roaming\NVIDIA
2017-12-27 08:31:18 ----D---- C:\Users\Roman67\AppData\Roaming\Acronis
2017-12-27 08:31:04 ----A---- C:\WINDOWS\system32\drivers\file_tracker.sys
2017-12-27 08:31:03 ----A---- C:\WINDOWS\system32\drivers\virtual_file.sys
2017-12-27 08:31:02 ----A---- C:\WINDOWS\system32\drivers\tnd.sys
2017-12-27 08:31:02 ----A---- C:\WINDOWS\system32\drivers\tib_mounter.sys
2017-12-27 08:31:02 ----A---- C:\WINDOWS\system32\drivers\tib.sys
2017-12-27 08:31:01 ----A---- C:\WINDOWS\system32\drivers\snapman.sys
2017-12-27 08:31:00 ----A---- C:\WINDOWS\system32\drivers\fltsrv.sys
2017-12-27 08:30:57 ----D---- C:\ProgramData\Acronis
2017-12-27 08:30:53 ----D---- C:\Program Files (x86)\Acronis
2017-12-27 08:10:09 ----D---- C:\WINDOWS\Minidump
2017-12-26 18:47:26 ----A---- C:\bdlog.txt
2017-12-26 18:44:44 ----D---- C:\ProgramData\Atc
2017-12-26 18:44:29 ----D---- C:\ProgramData\BDLogging
2017-12-26 18:44:20 ----A---- C:\WINDOWS\system32\drivers\bdelam.sys
2017-12-26 18:44:20 ----A---- C:\WINDOWS\capicom.dll
2017-12-26 18:44:15 ----A---- C:\WINDOWS\system32\drivers\bdvedisk.sys
2017-12-26 18:44:14 ----A---- C:\WINDOWS\system32\drivers\bdprivmon.sys
2017-12-26 18:44:14 ----A---- C:\WINDOWS\system32\drivers\avc3.sys
2017-12-26 18:44:14 ----A---- C:\WINDOWS\system32\drivers\atc.sys
2017-12-26 18:44:12 ----A---- C:\WINDOWS\system32\drivers\ignis.sys
2017-12-26 18:44:09 ----D---- C:\Users\Roman67\AppData\Roaming\Bitdefender
2017-12-26 18:43:33 ----D---- C:\Users\Roman67\AppData\Roaming\QuickScan
2017-12-26 18:43:30 ----D---- C:\ProgramData\Bitdefender
2017-12-26 18:43:30 ----A---- C:\WINDOWS\system32\drivers\gzflt.sys
2017-12-26 18:43:26 ----D---- C:\Program Files\Bitdefender
2017-12-26 18:43:26 ----A---- C:\WINDOWS\system32\drivers\trufos.sys
2017-12-26 18:43:11 ----D---- C:\Program Files\Common Files\Bitdefender
2017-12-26 18:42:16 ----D---- C:\ProgramData\Bitdefender Agent
2017-12-26 18:42:16 ----D---- C:\Program Files\Bitdefender Agent
2017-12-26 18:41:40 ----D---- C:\Program Files (x86)\Google
2017-12-26 15:20:10 ----D---- C:\AdwCleaner
2017-12-26 10:31:04 ----D---- C:\WINDOWS\system32\appmgmt
2017-12-26 10:29:42 ----ASH---- C:\hiberfil.sys
2017-12-26 10:23:33 ----D---- C:\Program Files (x86)\Raxco
2017-12-26 08:55:37 ----ASH---- C:\pagefile.sys
2017-12-24 08:58:10 ----D---- C:\Users\Roman67\AppData\Roaming\WinRAR
2017-12-24 08:57:21 ----D---- C:\Users\Roman67\AppData\Roaming\YoWindow
2017-12-24 08:57:19 ----D---- C:\ProgramData\YoWindow
2017-12-24 08:57:10 ----D---- C:\Program Files (x86)\YoWindow
2017-12-24 08:54:49 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2017-12-24 08:52:02 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-24 08:50:26 ----A---- C:\WINDOWS\system32\drivers\tapwindscribe0901.sys
2017-12-24 08:50:23 ----D---- C:\Program Files (x86)\Windscribe
2017-12-24 08:48:44 ----D---- C:\Program Files\LibreOffice 5
2017-12-24 08:46:32 ----D---- C:\Program Files\WinRAR
2017-12-24 08:45:19 ----D---- C:\Program Files (x86)\Send Anywhere
2017-12-24 08:42:12 ----D---- C:\Program Files\2BrightSparks
2017-12-24 08:42:12 ----A---- C:\WINDOWS\system32\SNU64.dll
2017-12-24 08:41:31 ----D---- C:\ProgramData\2BrightSparks
2017-12-24 08:41:31 ----D---- C:\Program Files (x86)\2BrightSparks
2017-12-23 19:49:01 ----D---- C:\ProgramData\Teorex
2017-12-23 19:49:00 ----D---- C:\Program Files\FolderIco
2017-12-23 19:47:32 ----D---- C:\Program Files\Inpaint
2017-12-23 18:35:16 ----D---- C:\ProgramData\Kaspersky Lab
2017-12-23 18:35:16 ----D---- C:\Program Files (x86)\Kaspersky Lab
2017-12-23 18:35:09 ----D---- C:\ProgramData\Package Cache
2017-12-23 12:52:29 ----D---- C:\ProgramData\USOShared
2017-12-23 12:51:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-23 12:50:27 ----D---- C:\ProgramData\Microsoft OneDrive
2017-12-23 12:48:26 ----SHD---- C:\Recovery
2017-12-23 12:46:46 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2017-12-23 12:44:03 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2017-12-23 12:43:04 ----SD---- C:\Users\Roman67\AppData\Roaming\Microsoft
2017-12-23 12:42:33 ----AS---- C:\WINDOWS\bootstat.dat
2017-12-23 12:42:31 ----HD---- C:\Program Files (x86)\Uninstall Information
2017-12-23 12:42:02 ----D---- C:\WINDOWS\Prefetch
2017-12-23 12:41:42 ----D---- C:\WINDOWS\system32\SleepStudy
2017-12-23 12:41:41 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-23 12:38:23 ----D---- C:\Windows.old
2017-12-23 12:27:34 ----D---- C:\WINDOWS\system32\Microsoft
2017-12-23 12:27:34 ----D---- C:\WINDOWS\ServiceProfiles
2017-12-23 12:26:36 ----D---- C:\WINDOWS\containers
2017-12-23 12:25:33 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-12-23 12:25:33 ----A---- C:\WINDOWS\system32\wmp.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-12-23 12:25:31 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-12-23 12:25:30 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-12-23 12:25:30 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-12-23 12:25:30 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-12-23 12:25:30 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-12-23 12:25:30 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-12-23 12:25:30 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-12-23 12:25:30 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-12-23 12:25:30 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-12-23 12:25:20 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-12-23 12:25:20 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-12-23 12:25:20 ----A---- C:\WINDOWS\system32\evr.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\jscript.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-12-23 12:25:19 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-12-23 12:25:18 ----A---- C:\WINDOWS\SYSWOW64\KeyboardFilterShim.dll
2017-12-23 12:25:18 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2017-12-23 12:25:18 ----A---- C:\WINDOWS\system32\HolographicRuntimes.dll
2017-12-23 12:25:18 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2017-12-23 12:25:18 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2017-12-23 12:25:18 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\wscript.exe
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\msvcrt.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\batmeter.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2017-12-23 12:25:17 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2017-12-23 12:25:16 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-12-23 12:25:16 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2017-12-23 12:25:16 ----A---- C:\WINDOWS\SYSWOW64\mswstr10.dll
2017-12-23 12:25:16 ----A---- C:\WINDOWS\SYSWOW64\msjint40.dll
2017-12-23 12:25:16 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-12-23 12:25:16 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-12-23 12:25:16 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\msdtcVSp1res.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2017-12-23 12:25:15 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-12-23 12:25:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-12-23 12:25:14 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-12-23 12:25:14 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-12-23 12:25:14 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2017-12-23 12:25:14 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2017-12-23 12:25:11 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-12-23 12:25:11 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-12-23 12:25:11 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-12-23 12:25:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2017-12-23 12:25:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-23 12:25:11 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2017-12-23 12:25:11 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2017-12-23 12:25:11 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\gamingtcui.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2017-12-23 12:25:10 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\wininet.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\Spectrum.exe
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\provtool.exe
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\provhandlers.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\provengine.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\msIso.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\edgeIso.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\batmeter.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-12-23 12:25:09 ----A---- C:\WINDOWS\explorer.exe
2017-12-23 12:25:08 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\t2embed.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\sspicli.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\msvcrt.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\itss.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\d3d9.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2017-12-23 12:25:08 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\winresume.exe
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\winload.exe
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\SRH.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\msdtcVSp1res.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\hal.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\devinv.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\apphelp.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\acppage.dll
2017-12-23 12:25:07 ----A---- C:\WINDOWS\system32\aadjcsp.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\wow64win.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\wow64.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\twinui.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\schedsvc.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\drivers\bam.sys
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\DictationManager.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\AcLayers.dll
2017-12-23 12:25:06 ----A---- C:\WINDOWS\system32\AcGenral.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\wscript.exe
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\sppwinob.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\sppsvc.exe
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\sppcext.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\slcext.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\shell32.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\services.exe
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\scrobj.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\msctf.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\mispace.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\cscript.exe
2017-12-23 12:25:05 ----A---- C:\WINDOWS\system32\comdlg32.dll
2017-12-23 12:25:04 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-12-23 12:25:04 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-12-23 12:25:04 ----A---- C:\WINDOWS\system32\reseteng.dll
2017-12-23 12:25:04 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-12-23 12:25:04 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-12-23 12:25:04 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-12-23 12:25:04 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-12-23 12:25:04 ----A---- C:\WINDOWS\system32\DeviceUpdateAgent.dll
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\user32.dll
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\hascsp.dll
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\FaceProcessorCore.dll
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\FaceProcessor.dll
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\drivers\urscx01000.sys
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-12-23 12:25:01 ----A---- C:\WINDOWS\system32\BioIso.exe
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\PushToInstall.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\ISM.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\InstallService.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\cryptngc.dll
2017-12-23 12:25:00 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\gamingtcui.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\FSClient.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\dxgi.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2017-12-23 12:24:59 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\vac.exe
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-12-23 12:24:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\SYSWOW64\rdrleakdiag.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\usocore.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\runexehelper.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\rdrleakdiag.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-12-23 12:24:57 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\winmde.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\umpo.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\tzres.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\ci.dll
2017-12-23 12:24:56 ----A---- C:\WINDOWS\system32\bcrypt.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-12-23 12:24:55 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-12-23 12:24:54 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-12-23 11:37:16 ----DC---- C:\WINDOWS\Panther
2017-12-23 11:29:02 ----SD---- C:\WINDOWS\UpdateAssistantV2
2017-12-23 11:23:49 ----D---- C:\Program Files (x86)\JMicron
2017-12-23 11:23:42 ----D---- C:\WINDOWS\SYSWOW64\SDA
2017-12-23 11:21:09 ----D---- C:\Users\Roman67\AppData\Roaming\WinBatch
2017-12-23 11:17:54 ----A---- C:\WINDOWS\system32\MpSigStub.exe
2017-12-23 11:14:48 ----D---- C:\WINDOWS\system32\MRT
2017-12-23 11:14:45 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-23 11:14:41 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-12-23 11:00:22 ----D---- C:\ProgramData\NVIDIA
2017-12-23 10:57:26 ----A---- C:\WINDOWS\system32\drivers\Smb_driver_Intel.sys
2017-12-23 10:57:26 ----A---- C:\WINDOWS\system32\drivers\Smb_driver_AMDASF.sys
2017-12-23 10:57:23 ----D---- C:\Program Files\Synaptics
2017-12-23 10:56:55 ----D---- C:\ProgramData\Validity
2017-12-23 10:56:54 ----D---- C:\Program Files\Validity Sensors
2017-12-23 10:56:13 ----D---- C:\WINDOWS\system32\SRSLabs
2017-12-23 10:56:13 ----D---- C:\Program Files\IDT
2017-12-23 10:56:13 ----A---- C:\WINDOWS\system32\stlang64.dll
2017-12-23 10:56:13 ----A---- C:\WINDOWS\system32\idt64mp1.exe
2017-12-23 10:56:13 ----A---- C:\WINDOWS\system32\AESTEC64.dll
2017-12-23 10:56:13 ----A---- C:\WINDOWS\system32\AESTCo64.dll
2017-12-23 10:56:13 ----A---- C:\WINDOWS\system32\AESTAR64.dll
2017-12-23 10:56:13 ----A---- C:\WINDOWS\system32\AESTAC64.dll
2017-12-23 10:56:13 ----A---- C:\WINDOWS\sttray64.exe
2017-12-23 10:52:46 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-12-23 10:52:40 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2017-12-23 10:52:40 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-12-23 10:52:40 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-12-23 10:52:40 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-12-23 10:52:40 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-12-23 10:52:40 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-12-23 10:52:00 ----D---- C:\ProgramData\NVIDIA Corporation
2017-12-23 10:51:44 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-23 10:49:33 ----D---- C:\Users\Roman67\AppData\Roaming\Adobe
2017-12-23 10:46:32 ----D---- C:\WINDOWS\CSC
2017-12-23 10:46:08 ----D---- C:\WINDOWS\SoftwareDistribution
2017-12-23 10:44:18 ----HD---- C:\Program Files\Uninstall Information
2017-12-23 10:43:57 ----ASH---- C:\swapfile.sys
2017-12-23 10:43:56 ----SHD---- C:\System Volume Information
2017-12-13 06:11:28 ----A---- C:\WINDOWS\system32\vcruntime140.dll
2017-12-13 06:11:28 ----A---- C:\WINDOWS\system32\vccorlib140.dll
2017-12-13 06:11:28 ----A---- C:\WINDOWS\system32\msvcp140.dll
2017-12-13 06:11:28 ----A---- C:\WINDOWS\system32\concrt140.dll

======List of files/folders modified in the last 1 month======

2017-12-27 08:41:52 ----RD---- C:\Program Files
2017-12-27 08:31:15 ----D---- C:\WINDOWS\Temp
2017-12-27 08:31:09 ----SHD---- C:\WINDOWS\Installer
2017-12-27 08:31:04 ----D---- C:\WINDOWS\system32\drivers
2017-12-27 08:31:00 ----D---- C:\WINDOWS\system32\catroot2
2017-12-27 08:30:58 ----D---- C:\WINDOWS\SysWOW64
2017-12-27 08:30:57 ----HD---- C:\ProgramData
2017-12-27 08:30:53 ----RD---- C:\Program Files (x86)
2017-12-27 08:30:53 ----D---- C:\Program Files (x86)\Common Files
2017-12-27 08:30:06 ----D---- C:\Windows
2017-12-27 08:25:16 ----D---- C:\WINDOWS\system32\drivers\etc
2017-12-27 08:14:40 ----D---- C:\WINDOWS\System32
2017-12-27 08:10:23 ----D---- C:\WINDOWS\INF
2017-12-27 07:12:00 ----D---- C:\WINDOWS\system32\sru
2017-12-26 18:47:39 ----D---- C:\WINDOWS\system32\Tasks
2017-12-26 18:44:28 ----D---- C:\WINDOWS\system32\DriverStore
2017-12-26 18:43:11 ----D---- C:\Program Files\Common Files
2017-12-26 18:41:03 ----D---- C:\WINDOWS\AppReadiness
2017-12-26 16:22:58 ----D---- C:\WINDOWS\rescache
2017-12-26 16:22:34 ----RD---- C:\WINDOWS\Microsoft.NET
2017-12-26 13:12:22 ----D---- C:\WINDOWS\Logs
2017-12-26 10:12:59 ----D---- C:\WINDOWS\system32\config
2017-12-26 09:12:42 ----D---- C:\WINDOWS\system32\LogFiles
2017-12-26 08:58:29 ----D---- C:\WINDOWS\DeliveryOptimization
2017-12-26 08:54:35 ----D---- C:\WINDOWS\system32\MsDtc
2017-12-24 13:27:51 ----HD---- C:\Program Files\WindowsApps
2017-12-24 08:49:21 ----RD---- C:\WINDOWS\assembly
2017-12-24 08:49:00 ----RSD---- C:\WINDOWS\Fonts
2017-12-24 08:37:45 ----SD---- C:\ProgramData\Microsoft
2017-12-24 08:28:06 ----D---- C:\WINDOWS\appcompat
2017-12-23 18:01:28 ----D---- C:\WINDOWS\CbsTemp
2017-12-23 18:01:27 ----D---- C:\WINDOWS\WinSxS
2017-12-23 17:58:03 ----D---- C:\WINDOWS\system32\WDI
2017-12-23 14:26:59 ----SHD---- C:\$Recycle.Bin
2017-12-23 14:26:48 ----RD---- C:\Users
2017-12-23 13:04:57 ----RD---- C:\WINDOWS\PrintDialog
2017-12-23 12:56:16 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-12-23 12:49:47 ----D---- C:\WINDOWS\system32\restore
2017-12-23 12:48:33 ----D---- C:\ProgramData\USOPrivate
2017-12-23 12:47:51 ----D---- C:\WINDOWS\system32\WinBioDatabase
2017-12-23 12:47:48 ----D---- C:\WINDOWS\Registration
2017-12-23 12:47:39 ----D---- C:\WINDOWS\debug
2017-12-23 12:47:29 ----D---- C:\WINDOWS\Tasks
2017-12-23 12:46:41 ----D---- C:\WINDOWS\system32\wbem
2017-12-23 12:43:49 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-12-23 12:42:46 ----D---- C:\WINDOWS\system32\Sysprep
2017-12-23 12:42:42 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-12-23 12:42:42 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-12-23 12:38:24 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2017-12-23 12:38:24 ----D---- C:\WINDOWS\system32\spool
2017-12-23 12:38:24 ----D---- C:\WINDOWS\system32\Recovery
2017-12-23 12:38:24 ----D---- C:\WINDOWS\Help
2017-12-23 12:38:22 ----D---- C:\WINDOWS\Setup
2017-12-23 12:28:49 ----D---- C:\Program Files (x86)\Windows Mail
2017-12-23 12:28:48 ----D---- C:\Program Files\Windows Mail
2017-12-23 12:26:38 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-12-23 12:26:38 ----D---- C:\WINDOWS\TextInput
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\vi-VN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ur-PK
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ug-CN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\tt-RU
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\tk-TM
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\te-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ta-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\sw-KE
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\sq-AL
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\si-LK
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\quz-PE
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\prs-AF
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\pa-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\or-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\nn-NO
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ne-NP
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\mt-MT
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ms-MY
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\mr-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\mn-MN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ml-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\mk-MK
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\mi-NZ
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\lo-LA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\lb-LU
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ky-KG
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\kok-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\kn-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\km-KH
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\kk-KZ
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ka-GE
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\is-IS
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\id-ID
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\hy-AM
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\gu-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\gd-GB
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ga-IE
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\fil-PH
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\fa-IR
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\cy-GB
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\bn-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\bn-BD
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\be-BY
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\as-IN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\am-ET
2017-12-23 12:26:38 ----D---- C:\WINDOWS\SYSWOW64\af-ZA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\system32\zu-ZA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\system32\yo-NG
2017-12-23 12:26:38 ----D---- C:\WINDOWS\system32\xh-ZA
2017-12-23 12:26:38 ----D---- C:\WINDOWS\system32\wo-SN
2017-12-23 12:26:38 ----D---- C:\WINDOWS\system32\WinMetadata
2017-12-23 12:26:37 ----SD---- C:\WINDOWS\system32\F12
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\vi-VN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ur-PK
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ug-CN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\tt-RU
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\tn-ZA
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\tk-TM
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ti-ET
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\te-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ta-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\sw-KE
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\sq-AL
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\sk-SK
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\si-LK
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\rw-RW
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\quz-PE
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\prs-AF
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\pa-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\or-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\oobe
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\nso-ZA
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\nn-NO
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ne-NP
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\mt-MT
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ms-MY
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\mr-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\mn-MN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ml-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\mk-MK
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\mi-NZ
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\migration
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\lo-LA
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\lb-LU
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ky-KG
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\kok-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\kn-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\km-KH
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\kk-KZ
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ka-GE
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\is-IS
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ig-NG
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\id-ID
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\chr-CHER-US
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\hy-AM
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\gu-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\gd-GB
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ga-IE
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\fil-PH
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\fa-IR
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\Dism
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\cy-GB
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\Boot
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\bn-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\bn-BD
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\be-BY
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\as-IN
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\appraiser
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\am-ET
2017-12-23 12:26:37 ----D---- C:\WINDOWS\system32\af-ZA
2017-12-23 12:26:37 ----D---- C:\WINDOWS\ShellExperiences
2017-12-23 12:26:37 ----D---- C:\WINDOWS\Provisioning
2017-12-23 12:26:37 ----D---- C:\WINDOWS\apppatch
2017-12-23 12:26:37 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2017-12-23 12:26:37 ----D---- C:\Program Files\Windows Defender
2017-12-23 12:26:37 ----D---- C:\Program Files\internet explorer
2017-12-23 12:26:37 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-23 12:26:36 ----D---- C:\PerfLogs
2017-12-23 12:20:02 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-12-11 17:58:32 ----D---- C:\WINDOWS\ELAMBKUP
2017-12-03 23:38:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 avc3;avc3; C:\WINDOWS\system32\DRIVERS\avc3.sys [2017-08-23 1763744]
R0 file_tracker;file_tracker; C:\WINDOWS\system32\DRIVERS\file_tracker.sys [2017-12-27 339808]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2017-12-27 160600]
R0 gzflt;gzflt; C:\WINDOWS\system32\DRIVERS\gzflt.sys [2017-05-11 187688]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-09-30 293272]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2017-12-27 339288]
R1 atc;atc; C:\WINDOWS\system32\DRIVERS\atc.sys [2017-09-14 1019880]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2017-12-23 59800]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2017-06-06 133088]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-09-29 8192]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-09-29 384000]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2017-09-29 79872]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2017-09-29 105472]
R3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Microsoft Bluetooth Protocol Support Driver; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 enecir;@oem10.inf,%enecir.SVCDESC%;ENE CIR Receiver; C:\WINDOWS\System32\drivers\enecir.sys [2015-05-12 79872]
R3 JMCR;JMCR; C:\WINDOWS\System32\drivers\jmcr.sys [2012-10-15 175928]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\System32\drivers\NETwNs64.sys [2017-09-29 8604672]
R3 NVHDA;@oem0.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2016-12-09 206776]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-12-09 12914360]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-09-29 604160]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2016-03-30 52904]
R3 SynTP;@oem7.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\System32\drivers\SynTP.sys [2016-03-30 622784]
R3 tapwindscribe0901;@oem15.inf,%DeviceDescription%;Windscribe VPN; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [2017-09-13 54896]
S0 bdelam;bdelam; C:\WINDOWS\system32\drivers\bdelam.sys [2016-03-14 23672]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2017-12-23 45464]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-09-30 126872]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-09-30 158616]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-09-30 143768]
S3 bdprivmon;bdprivmon; C:\WINDOWS\system32\DRIVERS\bdprivmon.sys [2017-10-09 47376]
S3 BDVEDISK;BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [2015-12-04 87912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2017-12-23 1015296]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 enecirhid;@oem10.inf,%enecirhid.SVDESC%;ENE CIR HID Receiver; C:\WINDOWS\System32\drivers\enecirhid.sys [2015-05-12 32768]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 Ignis;Ignis Service; C:\WINDOWS\system32\DRIVERS\ignis.sys [2017-08-10 362664]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 NvStUSB;@oem4.inf,%NvStUSB.SvcDesc%;NVIDIA Stereoscopic 3D USB driver; C:\WINDOWS\System32\drivers\nvstusb.sys [2016-12-09 461424]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2016-03-30 52400]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]
S3 STHDA;@oem14.inf,%ST.DeviceDesc%;IDT High Definition Audio CODEC; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2010-03-23 505344]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2016-12-15 1135600]
R2 AESTFilters;Andrea ST Filters Service; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_960c1f056a541068\AESTSr64.exe [2009-03-02 89600]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2017-12-27 4463960]
R2 bdredline;Bitdefender RedLine Service; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2017-09-26 2119184]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_66c63;Connected Devices Platform User Service_66c63; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-11-14 932728]
R2 OneSyncSvc_66c63;Sync Host_66c63; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 ProductAgentService;Bitdefender Product Agent Service; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [2017-06-21 1269824]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-12-23 519152]
R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2015-11-06 7637744]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-03-30 253960]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 PimIndexMaintenanceSvc_66c63;Kontaktné údaje_66c63; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-26 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 STacSV;Audio Service; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_960c1f056a541068\STacSV64.exe [2010-03-23 247808]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_66c63;DevicesFlow_66c63; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 85504]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-26 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_66c63;MessagingService_66c63; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-12-07 194000]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_66c63;PrintWorkflow_66c63; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-12-23 4329952]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-12-23 956416]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-12-23 819096]
S4 mmsminisrv;Acronis Managed Machine Service Mini; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [2015-08-11 4884064]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]

-----------------EOF-----------------

Nabuchodonozor671
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 29 zář 2013 17:47

Re: Kontrola logu-blue screen

#2 Příspěvek od Nabuchodonozor671 »

Ešte pripájam výpis z programu bluescreenview-x64:==================================================
Dump súbor : 122717-8203-01.dmp
Čas pádu : 27.12.2017 7:54:37
Kontrolný reťazec chyby:
Kontrolný kód chyby: 0x00000139
Parameter 1 : 00000000`00000003
Parameter 2 : fffffb0a`be0d1660
Parameter 3 : fffffb0a`be0d15b8
Parameter 4 : 00000000`00000000
Zapríčinené ovládačom: ntoskrnl.exe
Zapríčinené adresou: ntoskrnl.exe+1640e0
Popis súboru : NT Kernel & System
Názov produktu : Microsoft® Windows® Operating System
Spoločnosť : Microsoft Corporation
Verzia súboru : 10.0.16299.125 (WinBuild.160101.0800)
Procesor : x64
Adresa pádu : ntoskrnl.exe+1640e0
Adresa zásobníku 1:
Adresa zásobníku 2:
Adresa zásobníku 3:
Názov počítača :
Úplná cesta : C:\WINDOWS\Minidump\122717-8203-01.dmp
Počet procesorov : 8
Hlavná verzia : 15
Vedľajšia verzia : 16299
Veľkosť Dump súboru: 1 710 724
Čas Dump súboru : 27.12.2017 8:10:17
==================================================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Kontrola logu-blue screen

#3 Příspěvek od Rudy »

Zdravím!
Toto nemá s malware nic spločného. Návod na odstranění najdete zde: https://support.microsoft.com/cs-cz/hel ... -windows-s . Přesouvám vlákno do správné sekce.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Nabuchodonozor671
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 29 zář 2013 17:47

Re: Kontrola logu-blue screen

#4 Příspěvek od Nabuchodonozor671 »

Zdravím!Tak prečo sa potom všade uvádza,že i "malware"môže byť jednou z príčin bluescreen?Keby som to nevedel,tak Vás nežiadam o pomoc...Apropo,tú stránku na ktorú ste mi dal odkaz,som skúšal,je to však možné riešenie pre Win8.Ja používam Win10 pro.Len som chcel pomôcťĎakujem a pekný deň.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Kontrola logu-blue screen

#5 Příspěvek od Rudy »

Samozřejmě může mít něco společného s malware, ale je to jen zcela vyjímečně. Blue screen z 99% je problém hardwaru a nekompatiblního sw. Pro win 10 je to velmi podobné jako pro win 8, ale chcete-li, můžeme zkontrolovat váš PC na malware. Chtěl jsem si jen ušetřit čas na řešení. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Nabuchodonozor671
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 29 zář 2013 17:47

Re: Kontrola logu-blue screen

#6 Příspěvek od Nabuchodonozor671 »

Dobrý deň.Ďakujem za ochotu.Trocha som laboroval-nainštaloval Windows 7 zo zálohy,no bluescreen sa taktiež objavila!Momentálne fungujem (zatiaľ),na čistej inštalácii Windows 10,tak uvidím.Vírus skôr vylučujem,nakoľko bolo PC skenované viacerími antivírmi (teraz Bitdefender Antivirus Plus),takže ste mal nakoniec asi pravdu.Uvidíme!Apropo...Všetko najlepšie do nového roku Vám prajem!S pozdravom "Nabuchodonozor". :thumbsup:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Kontrola logu-blue screen

#7 Příspěvek od Rudy »

Také přeji šťesný a veselý nový rok. Pokud se opět vytvoří BSOD, otevřte adresář windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu. Analýzou minidumpu se snad dovím víc.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět