Dobrý den, mám takový problém, kopiroval jsem asi 9GB z archivu ZIP do disku D, vvše proběhlo vpořadku, s tím rozdílem, že se mi něco stalo v C: zmizelo mi z ničeho nic asi 9GB a nejde se toho niajk zbavit ani ccleanerem, ani vycistením disku ani restartem PC, proto prosím o kontrolu. děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Stanislav at 2018-11-24 20:08:35
Microsoft Windows 10 Pro
System drive C: has 20 GB (13%) free of 149 GB
Total RAM: 8084 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:08:39, on 24.11.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files\trend micro\Stanislav.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Discord] C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 10156 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s gpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s CscService
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
atieclxx
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe"
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
C:\WINDOWS\system32\mqsvc.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\AUDIODG.EXE 0x614
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\wbem\wmiprvse.exe
dashost.exe {c1f5d0e2-060f-4c95-bcc43a7f8c2ec29f}
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
igfxEM.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
"C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.AppX6an27ssxm1kq22j0wm54a996rsgjh8an.mca
C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe"
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe" --type=gpu-process --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,19,20,23,26,40,71 --gpu-vendor-id=0x1002 --gpu-device-id=0x67df --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=25.20.14007.1000 --gpu-driver-date=10-19-2018 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0412 --service-request-channel-token=C708C6E495BF7C2296EC28A6A4FA0F15 --mojo-platform-channel-handle=1580 /prefetch:2
"C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
"C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=8EDF2C59A3366F8A534FDF912BE5B436 --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --app-path="C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\resources\app.asar" --node-integration=false --preload="C:\Users\Stanislav\AppData\Roaming\discord\0.0.301\modules\discord_desktop_core\core.asar\app\mainScreenPreload.js" --background-color=#2f3136 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=8EDF2C59A3366F8A534FDF912BE5B436 --renderer-client-id=6 --mojo-platform-channel-handle=2468 /prefetch:1
"C:\Program Files\AMD\CNext\CNext\amddvr.exe"
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 7972
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Steam\Steam.exe"
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\Stanislav\AppData\Local\Steam\htmlcache" "-steampid=10052" "-buildid=1541819448" "-steamid=0" "-steamuniverse=Dev" "-clientui=C:\Program Files (x86)\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --disable-features=TouchpadAndWheelScrollLatching,AsyncWheelEvents --enable-media-stream --disable-smooth-scrolling --num-raster-threads=4 --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Stanislav\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1541819448 --initial-client-data=0x2f0,0x2f4,0x2f8,0x2ec,0x2fc,0x7ffb812f1f78,0x7ffb812f1f88,0x7ffb812f1f98
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --lang=cs-CZ --buildid=1541819448 --steamid=0 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --lang=cs-CZ --buildid=1541819448 --steamid=0 --service-request-channel-token=3CF71CC24B02F11AF2AEEDF5018ACBB2 --mojo-platform-channel-handle=1268 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --service-pipe-token=D725D0EBA9754610B1269579657934A9 --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --disable-spell-checking --buildid=1541819448 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=D725D0EBA9754610B1269579657934A9 --renderer-client-id=4 --mojo-platform-channel-handle=1908 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --service-pipe-token=E5A0DB7F5C8AE3362A2E86714EC7AF5F --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --disable-spell-checking --buildid=1541819448 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=E5A0DB7F5C8AE3362A2E86714EC7AF5F --renderer-client-id=5 --mojo-platform-channel-handle=2408 /prefetch:1
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3752.0.1849747935\2064124813" -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - "C:\Users\Stanislav\AppData\LocalLow\Mozilla\Temp-{94354d10-596a-4701-a96c-0fad721a2000}" 3752 "\\.\pipe\gecko-crash-server-pipe.3752" 1432 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3752.3.257049064\728378758" -childID 1 -isForBrowser -prefsHandle 2588 -prefMapHandle 2584 -prefsLen 1 -prefMapSize 212380 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3752 "\\.\pipe\gecko-crash-server-pipe.3752" 2604 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3752.13.2024548115\1463717698" -childID 2 -isForBrowser -prefsHandle 3484 -prefMapHandle 3356 -prefsLen 82 -prefMapSize 212380 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3752 "\\.\pipe\gecko-crash-server-pipe.3752" 3284 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3752.20.993690346\1488416385" -childID 3 -isForBrowser -prefsHandle 3824 -prefMapHandle 3748 -prefsLen 4146 -prefMapSize 212380 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3752 "\\.\pipe\gecko-crash-server-pipe.3752" 3848 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="3752.27.1336328624\875809523" -childID 4 -isForBrowser -prefsHandle 5424 -prefMapHandle 5428 -prefsLen 5005 -prefMapSize 212380 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 3752 "\\.\pipe\gecko-crash-server-pipe.3752" 5440 tab
"C:\Users\Stanislav\Downloads\RSITx64(1).exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
======Scheduled tasks folder======
C:\WINDOWS\tasks\update-S-1-5-21-3391450833-3303722570-559582778-1000.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\tasks\update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
=========Mozilla firefox=========
ProfilePath - C:\Users\Stanislav\AppData\Roaming\Mozilla\Firefox\Profiles\rel0zp6h.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 31.0.0.153 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_153.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 31.0.0.153 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_153.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-09-20 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-09-20 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2018-11-03 177928]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2017-10-20 17987704]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-01-27 16418560]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2018-11-10 3131680]
"Discord"=C:\Users\Stanislav\AppData\Local\Discord\app-0.0.301\Discord.exe [2018-04-30 57816920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-04-11 36352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay]
C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2018-11-10 3131680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB3MON]
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2017-04-11 225944]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.FPS1"=frapsv64.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-11-24 19:51:05 ----D---- C:\Program Files (x86)\GUMFAFA.tmp
2018-11-24 19:51:05 ----A---- C:\Program Files (x86)\GUTFB0B.tmp
2018-11-11 11:11:38 ----D---- C:\Users\Stanislav\AppData\Roaming\Five-BN Games
2018-11-10 10:29:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-11-10 10:29:01 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-11-10 10:29:00 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-11-10 10:28:59 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-11-10 10:28:55 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-11-10 10:28:54 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-11-10 10:28:54 ----A---- C:\WINDOWS\system32\wininet.dll
2018-11-10 10:28:54 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-11-10 10:28:53 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-11-10 10:28:53 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-11-10 10:28:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-11-10 10:28:52 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-11-10 10:28:51 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-11-10 10:28:50 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2018-11-10 10:28:50 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-11-10 10:28:49 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-11-10 10:28:49 ----A---- C:\WINDOWS\system32\twinui.dll
2018-11-10 10:28:49 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-11-10 10:28:48 ----A---- C:\WINDOWS\system32\wmp.dll
2018-11-10 10:28:48 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-11-10 10:28:47 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-11-10 10:28:47 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-11-10 10:28:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-11-10 10:28:46 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-11-10 10:28:46 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-11-10 10:28:45 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-11-10 10:28:45 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-11-10 10:28:45 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-11-10 10:28:45 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-11-10 10:28:45 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-11-10 10:28:44 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-11-10 10:28:44 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-11-10 10:28:44 ----A---- C:\WINDOWS\system32\usocore.dll
2018-11-10 10:28:44 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-11-10 10:28:44 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-11-10 10:28:43 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-11-10 10:28:43 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-11-10 10:28:43 ----A---- C:\WINDOWS\system32\msxml3.dll
2018-11-10 10:28:43 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-11-10 10:28:42 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2018-11-10 10:28:42 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-11-10 10:28:42 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2018-11-10 10:28:42 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-11-10 10:28:42 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-11-10 10:28:41 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2018-11-10 10:28:41 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2018-11-10 10:28:41 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-11-10 10:28:41 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-11-10 10:28:41 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-11-10 10:28:41 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-11-10 10:28:41 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2018-11-10 10:28:41 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-11-10 10:28:41 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-11-10 10:28:41 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-11-10 10:28:41 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\themeui.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-11-10 10:28:40 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2018-11-10 10:28:39 ----A---- C:\WINDOWS\system32\wmpshell.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\system32\utcutil.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\system32\rdpshell.exe
2018-11-10 10:28:39 ----A---- C:\WINDOWS\system32\rdpinit.exe
2018-11-10 10:28:39 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-11-10 10:28:39 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-11-04 10:22:28 ----D---- C:\Program Files (x86)\AMD
2018-10-25 19:50:52 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\detoured.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\coinst_18.40.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2018-10-25 19:50:40 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2018-10-25 19:50:40 ----A---- C:\WINDOWS\system32\OpenCL.dll
2018-10-25 12:04:03 ----D---- C:\ProgramData\Epic
2018-10-25 12:04:03 ----D---- C:\Program Files (x86)\Epic Games
======List of files/folders modified in the last 1 month======
2018-11-24 20:08:38 ----D---- C:\Program Files\trend micro
2018-11-24 20:08:37 ----D---- C:\WINDOWS\Temp
2018-11-24 20:06:27 ----D---- C:\WINDOWS\System32
2018-11-24 20:06:27 ----D---- C:\WINDOWS\INF
2018-11-24 20:06:27 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-11-24 20:04:58 ----D---- C:\Program Files (x86)\Steam
2018-11-24 20:02:18 ----D---- C:\Users\Stanislav\AppData\Roaming\discord
2018-11-24 20:01:16 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-11-24 20:00:43 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-11-24 19:59:58 ----D---- C:\Windows
2018-11-24 19:59:45 ----D---- C:\ProgramData\NVIDIA
2018-11-24 19:59:38 ----D---- C:\WINDOWS\system32\SleepStudy
2018-11-24 19:56:44 ----RD---- C:\Program Files
2018-11-24 19:56:04 ----SHDC---- C:\WINDOWS\Installer
2018-11-24 19:56:04 ----SHD---- C:\Config.Msi
2018-11-24 19:56:04 ----D---- C:\WINDOWS\Tasks
2018-11-24 19:56:04 ----D---- C:\Program Files (x86)\Google
2018-11-24 19:55:30 ----D---- C:\Users\Stanislav\AppData\Roaming\TS3Client
2018-11-24 19:55:30 ----D---- C:\Users\Stanislav\AppData\Roaming\TeamViewer
2018-11-24 19:55:30 ----D---- C:\Program Files (x86)\TeamViewer
2018-11-24 19:53:53 ----DC---- C:\WINDOWS\Panther
2018-11-24 19:53:53 ----D---- C:\WINDOWS\LiveKernelReports
2018-11-24 19:53:53 ----D---- C:\WINDOWS\debug
2018-11-24 19:52:39 ----D---- C:\WINDOWS\system32\Tasks
2018-11-24 19:51:05 ----RD---- C:\Program Files (x86)
2018-11-24 19:26:00 ----D---- C:\WINDOWS\system32\sru
2018-11-24 14:56:35 ----AD---- C:\SpaceEngine
2018-11-24 12:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2018-11-23 21:15:25 ----RD---- C:\WINDOWS\Microsoft.NET
2018-11-23 15:29:18 ----D---- C:\WINDOWS\AppReadiness
2018-11-22 17:00:25 ----D---- C:\WINDOWS\Minidump
2018-11-22 16:59:42 ----HD---- C:\Program Files\WindowsApps
2018-11-21 20:55:06 ----AD---- C:\Program Files (x86)\Battle.net
2018-11-21 13:12:46 ----D---- C:\WINDOWS\system32\catroot2
2018-11-20 20:11:08 ----D---- C:\Users\Stanislav\AppData\Roaming\Origin
2018-11-20 20:10:47 ----D---- C:\ProgramData\Origin
2018-11-20 20:08:55 ----AD---- C:\Program Files (x86)\Origin
2018-11-20 15:09:06 ----D---- C:\WINDOWS\SysWOW64
2018-11-20 15:08:59 ----D---- C:\WINDOWS\system32\Macromed
2018-11-20 15:08:54 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-11-18 17:42:48 ----D---- C:\WINDOWS\Logs
2018-11-17 20:22:08 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-11-17 20:22:08 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-11-12 15:56:40 ----SHD---- C:\System Volume Information
2018-11-11 18:05:32 ----RD---- C:\WINDOWS\assembly
2018-11-11 12:04:41 ----D---- C:\WINDOWS\system32\config
2018-11-11 11:06:33 ----D---- C:\Spidla
2018-11-10 20:13:02 ----D---- C:\WINDOWS\WinSxS
2018-11-10 11:50:35 ----D---- C:\WINDOWS\TextInput
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-11-10 11:50:35 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\zu-ZA
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\yo-NG
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\xh-ZA
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\wo-SN
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\tn-ZA
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\ti-ET
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\rw-RW
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\nso-ZA
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\ig-NG
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\drivers
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-11-10 11:50:32 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-11-10 11:50:31 ----D---- C:\WINDOWS\bcastdvr
2018-11-10 11:50:31 ----D---- C:\Program Files\Windows Media Player
2018-11-10 11:50:31 ----D---- C:\Program Files (x86)\Windows Media Player
2018-11-10 11:50:30 ----D---- C:\WINDOWS\system32\DriverStore
2018-11-10 10:36:02 ----D---- C:\WINDOWS\CbsTemp
2018-11-10 10:34:13 ----D---- C:\WINDOWS\system32\MRT
2018-11-10 10:34:07 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-11-04 10:22:47 ----D---- C:\Program Files\AMD
2018-11-04 10:20:45 ----D---- C:\Program Files (x86)\VulkanRT
2018-11-04 10:19:34 ----D---- C:\ProgramData\Package Cache
2018-11-04 10:17:22 ----D---- C:\AMD
2018-10-25 19:50:52 ----A---- C:\WINDOWS\SYSWOW64\RapidFireServer.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\SYSWOW64\Rapidfire.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\SYSWOW64\GameManager32.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\RapidFireServer64.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\Rapidfire64.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\mantle64.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\GameManager64.dll
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2018-10-25 19:50:52 ----A---- C:\WINDOWS\system32\clinfo.exe
2018-10-25 19:50:44 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2018-10-25 19:50:44 ----A---- C:\WINDOWS\system32\atisamu64.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2018-10-25 19:50:42 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\SYSWOW64\amfrt32.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\atimuixx.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\atimpc64.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\atig6txx.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\atieclxx.exe
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\atieah64.exe
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\atidxx64.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\atidemgy.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\aticfx64.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\ati2erec.dll
2018-10-25 19:50:42 ----A---- C:\WINDOWS\system32\amfrt64.dll
2018-10-25 19:50:40 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2018-10-25 19:50:40 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2018-10-25 19:50:40 ----A---- C:\WINDOWS\system32\amdxc64.dll
2018-10-25 19:50:40 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\SYSWOW64\amdmcl32.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\system32\amdmcl64.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2018-10-25 19:50:36 ----A---- C:\WINDOWS\system32\amdave64.dll
2018-10-25 12:04:03 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2018-11-03 107896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-04-11 645480]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2018-04-12 304032]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2018-11-03 143448]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2018-11-03 188832]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2018-11-03 82304]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2018-11-03 109864]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-28 414720]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2018-11-03 50144]
R2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R2 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-04-12 178688]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atikmdag.sys [2018-10-25 47503976]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atikmpag.sys [2018-10-25 589920]
R3 AtiHDAudioService;@oem17.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2018-07-17 107496]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-10-20 7963632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-01-27 4779776]
R3 IntcDAud;@oem54.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
R3 ladfGSS;@oem48.inf,%ladfGSS.SvcDesc%;Logitech USB Surround Filter Driver (LGS); C:\WINDOWS\system32\drivers\ladfGSS.sys [2017-10-20 45192]
R3 LGBusEnum;@oem15.inf,%LGBusEnum.SVCDESC%;Logitech Gaming Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2017-10-20 36496]
R3 LGJoyXlCore;@oem15.inf,%LGJoyXlCore.SVCDESC%;Logitech Translation Layer Driver (LGS); C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [2017-10-20 67736]
R3 LGVirHid;@oem50.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2017-10-20 26008]
R3 MEIx64;@oem30.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-07-27 206496]
R3 rt640x64;@oem51.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-08-08 895256]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2018-02-19 15872]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-08-03 128920]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2018-04-12 127384]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2018-04-12 162712]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2018-04-12 143768]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-20 108800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-09-20 76088]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\WINDOWS\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\WINDOWS\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-07-28 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2015-05-27 13536]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0335076.inf_amd64_86bc242f42070102\B334840\atiesrxx.exe [2018-10-25 508000]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_7e7c9;CDPUserSvc_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-11-03 2302152]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-11 16232]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2017-10-20 365040]
R2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-07-06 223008]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-07-06 415520]
R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2017-10-20 225400]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2018-04-12 26112]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-09-13 937776]
R2 OneSyncSvc_7e7c9;OneSyncSvc_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2017-06-03 75064]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2017-06-03 189248]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-07-28 760888]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-07-28 43648]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_7e7c9;PimIndexMaintenanceSvc_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-04-12 136296]
S2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-03-17 464440]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2018-11-20 3130184]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-20 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_7e7c9;BcastDVRUserService_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2018-10-10 7361312]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_7e7c9;BluetoothUserService_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 CaptureService_7e7c9;CaptureService_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-10-20 494056]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_7e7c9;DevicePickerUserSvc_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_7e7c9;DevicesFlowUserSvc_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-08-03 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-10-27 802432]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-05-09 6541008]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_7e7c9;MessagingService_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-11-16 216528]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2018-11-20 2269504]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_7e7c9;PrintWorkflowUserSvc_7e7c9; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2018-07-28 4737448]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2018-07-28 826776]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-04-12 52832]
S4 Prime95 Service;Prime95 Service; C:\Program Files (x86)\Prime95\prime95.exe [2005-08-09 4333568]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Chybí mi asi 9GB mista na disku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Chybí mi asi 9GB mista na disku
Zdravím!
9GB místa se nemůže jen tak ztratit a už vůbec to nezpůsobuje malware. Zkuste použít některý z těchto programů: https://technet.idnes.cz/vycisteni-disk ... ftware_dvr .
9GB místa se nemůže jen tak ztratit a už vůbec to nezpůsobuje malware. Zkuste použít některý z těchto programů: https://technet.idnes.cz/vycisteni-disk ... ftware_dvr .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Chybí mi asi 9GB mista na disku
Uvolnilo se asi 20GB po hraní si s bodem obnovení vše funguje jak má tak jsem službu vypnul a opětovně zapnul, je možné aby se vytvořil bod obnoveni o velikosti 9GB? Jinak jaký s těchto programů doporučujete.
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Chybí mi asi 9GB mista na disku
Pokud vím, všechny dojdou k nějakému výsledku. Osobně jsem používal SequoiaWiew. Ty ostatní vám ale také dají uspokojivý výsledek. 1 bod obnovení určitě nemá 9GB, v adresáři je jich více.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Chybí mi asi 9GB mista na disku
tak jsem našel problém, z nějakého důvodu se mi z archivu zkopíroval soubor jak do D: tak do C: nechápu proč, konkrétně C/Users/Stanislav/AppData/Local/Temp http://prntscr.com/lmk208
Nevím jak to, ale produkt ktery jsem kopíroval byl legalní, žadný warez
Nevím jak to, ale produkt ktery jsem kopíroval byl legalní, žadný warez
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Chybí mi asi 9GB mista na disku
To je normální. V okamžiku otevření se zkopíruje do dočasného adresáře a pokud dáte uložení, potom tam, kam si zvolíte. Tempy se občas musí čistit.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?