Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
BSOD při otevření disku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
BSOD při otevření disku
Dobrý den,
nedávno jsem se koukal na film (který mám uložený na disku E) a dostal jsem BSOD. Pak jsem zjistil, že když pustím či se pokusím přesunout cokoliv z disku E, celý Windows zamrzne a potom dostanu BSOD. Nevím jestli je to diskem, nebo něčím jiným.
Logfile of random's system information tool 1.16 (written by random/random)
Run by Ondra at 2017-07-19 12:38:04
Microsoft Windows 10 Pro
System drive C: has 26 GB (26%) free of 99 GB
Total RAM: 8190 MB (66% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:38:08, on 19.07.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0000)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\Ondra\Desktop\vibranceGUI.exe
C:\Users\Ondra\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Genius\Gila\mousehid.exe
C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files\trend micro\Ondra_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Gila] C:\Program Files (x86)\Genius\Gila\mousehid.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Discord] C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe
O4 - HKCU\..\Run: [vibranceGUI] "C:\Users\Ondra\Desktop\vibranceGUI.exe" -minimized
O4 - HKCU\..\Run: [f.lux] "C:\Users\Ondra\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Arp Intelligent Protection Service (AIPS) - Arcai.com - C:\Program Files (x86)\netcut\services\AIPS.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\WINDOWS\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem8.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Service KMSELDI - @ByELDI - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @oem25.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\WINDOWS\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11212 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
C:\WINDOWS\system32\dwm.exe
c:\windows\system32\svchost.exe -k netsvcs -s gpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0a71e8f7-af96-43e1-8c27-bbbcb23c5dfe -SystemEventPortName:HostProcess-989db319-b1a1-4564-8fc3-eb40c152b4b4 -IoCancelEventPortName:HostProcess-824fe5f2-aabc-4fce-b323-07fde35c466d -NonStateChangingEventPortName:HostProcess-572ec14e-fc11-4282-a750-953e5b70d60d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3446cf32-e97c-4ed0-ba66-300a1cf6e519 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
c:\windows\system32\svchost.exe -k localservice -s EventSystem
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s lmhosts
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k localservice -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
c:\windows\system32\svchost.exe -k localservice -s netprofm
"C:\Program Files (x86)\netcut\services\AIPS.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\ibtsiva.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
"C:\Program Files\KMSpico\Service_KMS.exe"
"C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
c:\windows\system32\viakaraokesrv.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
c:\windows\system32\svchost.exe -k localservicenonetwork -s NcdAutoSetup
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
C:\WINDOWS\system32\svchost.exe -k LocalService
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s FDResPub
C:\WINDOWS\system32\AUDIODG.EXE 0x418
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s HomeGroupProvider
C:\WINDOWS\system32\dashost.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -s PolicyAgent
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
"C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
c:\windows\system32\taskhostw.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Users\Ondra\Desktop\vibranceGUI.exe" -minimized
"C:\Users\Ondra\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Genius\Gila\mousehid.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Ondra\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3071.115 --initial-client-data=0x1e8,0x1ec,0x1f0,0x1e4,0x1f4,0x7ffc38d419d0,0x7ffc38d419b8,0x7ffc38d419e8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=8544 --on-initialized-event-handle=648 --parent-handle=652 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1536 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,20,21,24,43,76 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1401 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8205 --gpu-driver-date=5-1-2017 --service-request-channel-token=3F524FD674A20C0FB775DBBE320DE3AF --mojo-platform-channel-handle=1552 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=DBB6B1F14F73309183B37E7D805628E2 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=DBB6B1F14F73309183B37E7D805628E2 --renderer-client-id=4 --mojo-platform-channel-handle=3712 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=F8497959427BEB572176488CBA1EF02C --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=F8497959427BEB572176488CBA1EF02C --renderer-client-id=5 --mojo-platform-channel-handle=3828 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=F10DF4CA2B4ADD71276F74EBDF9B6325 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=F10DF4CA2B4ADD71276F74EBDF9B6325 --renderer-client-id=6 --mojo-platform-channel-handle=3948 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=01DA3EF17C527487E2C981CE489DEE07 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=01DA3EF17C527487E2C981CE489DEE07 --renderer-client-id=7 --mojo-platform-channel-handle=3952 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=1316BEBBCE4DEAD583D968C7493C5756 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=1316BEBBCE4DEAD583D968C7493C5756 --renderer-client-id=8 --mojo-platform-channel-handle=3816 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=B11D1E560B12E715D94418619B0B26D4 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=B11D1E560B12E715D94418619B0B26D4 --renderer-client-id=9 --mojo-platform-channel-handle=3824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=8DDA710A88A43368D5918FAE4C72D335 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=8DDA710A88A43368D5918FAE4C72D335 --renderer-client-id=12 --mojo-platform-channel-handle=6800 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=AA130B12858B2BBE4903B12731BAE444 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=AA130B12858B2BBE4903B12731BAE444 --renderer-client-id=14 --mojo-platform-channel-handle=7272 /prefetch:1
"C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe" --type=gpu-process --channel="8512.0.2041743033\1503967147" --mojo-application-channel-token=B815BDAED51B20F783A329F6734B43E6 --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x1401 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8205 --gpu-driver-date=5-1-2017 --mojo-platform-channel-handle=1460 /prefetch:2
C:\Program Files\CCleaner\CCleaner64.exe
"C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=9205AB9154D1FF732C55A4747A30F540 --lang=en-US --app-user-model-id=com.squirrel.Discord.Discord --node-integration=true --background-color=#282b30 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=F8618415776F2B6FB94B36AEEC1E88DE --mojo-application-channel-token=9205AB9154D1FF732C55A4747A30F540 --channel="8512.2.1068198382\1746196650" --mojo-platform-channel-handle=2584 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Ondra\AppData\Local\Steam\htmlcache" "-steampid=8204" "-buildid=1500335472" "-steamid=0" "-clientui=C:\Program Files (x86)\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=A599402F121EDAA6F8291A82D89381EF --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=A599402F121EDAA6F8291A82D89381EF --renderer-client-id=23 --mojo-platform-channel-handle=8744 /prefetch:1
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k netsvcs -s wisvc
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
"E:\Downloads\RSITx64.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s WdiSystemHost
c:\windows\system32\svchost.exe -k netsvcs -s dmwappushservice
"C:\Program Files\Internet Explorer\IELowutil.exe" -PID:123
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SmsRouter
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.410_none_9e914f9d2d85dacb\TiWorker.exe -Embedding
====== Scheduled tasks folder ======
C:\WINDOWS\tasks\SlimCleaner Plus (Scheduled Scan - Ondra).job - C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe /doScheduledScan
C:\WINDOWS\system32\tasks\AutoPico Daily Restart - "C:\Program Files\KMSpico\AutoPico.exe" /silent
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Microsoft_Hardware_Launch_ipoint_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\WINDOWS\system32\tasks\Microsoft_Hardware_Launch_itype_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\WINDOWS\system32\tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
C:\WINDOWS\system32\tasks\Microsoft_MKC_Logon_Task_ipoint.exe - C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\WINDOWS\system32\tasks\Microsoft_MKC_Logon_Task_itype.exe - C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\WINDOWS\system32\tasks\MSIAfterburner - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s
C:\WINDOWS\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\WINDOWS\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\WINDOWS\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-261391004-168925671-1144472204-1001 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Shut down - C:\Windows\System32\shutdown.exe /s
C:\WINDOWS\system32\tasks\SlimCleaner Plus (Scheduled Scan - Ondra) - C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe /doScheduledScan
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{597372D7-C2D9-4593-BDB7-01FC4E3CAD01} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{778CE9FC-1E70-409F-B52A-50AEA6E5FF41} - C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\ASUS\WinFlash\WinFlash.exe" -d "c:\Program Files (x86)\ASUS\WinFlash\"
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\MpCmdRun.exe Scan -ScheduleJob -ScanTrigger 55
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install - %systemroot%\system32\usoclient.exe ScanInstallWait
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunCampaignManager - %windir%\System32\UNP\UNPCampaignManager.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Subscription Maintenance - C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon - C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\w5qprr98.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.101.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.101.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\w5qprr98.default\addons.json
C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\w5qprr98.default\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Firefox Screenshots - extension - screenshots@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\w5qprr98.default\pluginreg.dat
=========Google Chrome=========
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aabcgdmkeabbnleenpncegpcngjpnjkc 0 Easy Auto Refresh 4.6
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Google Slides 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Google Docs 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Google Drive 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bigefpfhnfcobdlfbedofhhaibnlghod 1 MEGA 3.13.5
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cgbhdenfmgbagncdmgbholejjpmmiank 0 Ratings Preview for YouTube™ 6.0.2
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ejifodhjoeeenihgfpjijjmpomaphmah 1 timeStats 3.0.10
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Google Sheets 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Google Docs Offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.13.0
Extension jfjnmganegfpajpgchndgfjbljnehink 1 Mauf - Custom Messenger Colors 1.0.8
Extension kbmfpngjjgdllneeigpgjifpgocmfgmb 1 Reddit Enhancement Suite 5.8.1
Extension kiodaajmphnkcajieajajinghpejdjai 1 Popup Blocker Pro 1.3.5
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.3
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Chrome Web Store Payments 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5917.424.0.7
Homepage:
default_search_provider.search_url:
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-06-22 149704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-10-18 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-15 2106048]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-10-18 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2017-04-06 17494136]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-07-18 3062560]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-04-11 9532120]
"Discord"=C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe [2017-01-04 64290304]
"vibranceGUI"=C:\Users\Ondra\Desktop\vibranceGUI.exe [2017-05-02 795136]
"f.lux"=C:\Users\Ondra\AppData\Local\FluxSoftware\Flux\flux.exe [2016-12-06 1024240]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-06-07 27742168]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Gila"=C:\Program Files (x86)\Genius\Gila\mousehid.exe [2014-11-04 309248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-07-19 12:38:04 ----D---- C:\rsit
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\system32\tquery.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-07-15 17:17:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-07-15 17:17:21 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-07-15 17:17:21 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-07-15 17:17:21 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-07-15 17:17:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-07-15 17:17:19 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-07-15 17:17:19 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-07-15 17:17:19 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-07-15 17:17:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-07-15 17:17:17 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-07-15 17:17:17 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2017-07-15 17:17:16 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-07-15 17:17:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-07-15 17:17:16 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-07-15 17:17:16 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-07-15 17:17:15 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-07-15 17:17:15 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-07-15 17:17:15 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2017-07-15 17:17:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-07-15 17:17:14 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2017-07-15 17:17:14 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\wininitext.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\Clipc.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\msasn1.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-07-15 17:17:09 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2017-07-15 17:17:09 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsExt.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.RetailInfo.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\wincredui.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\certca.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2017-07-15 17:17:06 ----A---- C:\WINDOWS\SYSWOW64\raschap.dll
2017-07-15 17:17:06 ----A---- C:\WINDOWS\SYSWOW64\edputil.dll
2017-07-15 17:17:06 ----A---- C:\WINDOWS\SYSWOW64\eapprovp.dll
2017-07-15 17:17:03 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-07-15 17:17:02 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-07-15 17:16:59 ----A---- C:\WINDOWS\system32\winmde.dll
2017-07-15 17:16:59 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-07-15 17:16:57 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\wmpmde.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
nedávno jsem se koukal na film (který mám uložený na disku E) a dostal jsem BSOD. Pak jsem zjistil, že když pustím či se pokusím přesunout cokoliv z disku E, celý Windows zamrzne a potom dostanu BSOD. Nevím jestli je to diskem, nebo něčím jiným.
Logfile of random's system information tool 1.16 (written by random/random)
Run by Ondra at 2017-07-19 12:38:04
Microsoft Windows 10 Pro
System drive C: has 26 GB (26%) free of 99 GB
Total RAM: 8190 MB (66% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:38:08, on 19.07.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0000)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\Ondra\Desktop\vibranceGUI.exe
C:\Users\Ondra\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Genius\Gila\mousehid.exe
C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files\trend micro\Ondra_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Gila] C:\Program Files (x86)\Genius\Gila\mousehid.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Discord] C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe
O4 - HKCU\..\Run: [vibranceGUI] "C:\Users\Ondra\Desktop\vibranceGUI.exe" -minimized
O4 - HKCU\..\Run: [f.lux] "C:\Users\Ondra\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Arp Intelligent Protection Service (AIPS) - Arcai.com - C:\Program Files (x86)\netcut\services\AIPS.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\WINDOWS\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem8.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Service KMSELDI - @ByELDI - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @oem25.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\WINDOWS\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11212 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
C:\WINDOWS\system32\dwm.exe
c:\windows\system32\svchost.exe -k netsvcs -s gpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0a71e8f7-af96-43e1-8c27-bbbcb23c5dfe -SystemEventPortName:HostProcess-989db319-b1a1-4564-8fc3-eb40c152b4b4 -IoCancelEventPortName:HostProcess-824fe5f2-aabc-4fce-b323-07fde35c466d -NonStateChangingEventPortName:HostProcess-572ec14e-fc11-4282-a750-953e5b70d60d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3446cf32-e97c-4ed0-ba66-300a1cf6e519 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
c:\windows\system32\svchost.exe -k localservice -s EventSystem
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s lmhosts
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k localservice -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
c:\windows\system32\svchost.exe -k localservice -s netprofm
"C:\Program Files (x86)\netcut\services\AIPS.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\ibtsiva.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
"C:\Program Files\KMSpico\Service_KMS.exe"
"C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
c:\windows\system32\viakaraokesrv.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
c:\windows\system32\svchost.exe -k localservicenonetwork -s NcdAutoSetup
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
C:\WINDOWS\system32\svchost.exe -k LocalService
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s FDResPub
C:\WINDOWS\system32\AUDIODG.EXE 0x418
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s HomeGroupProvider
C:\WINDOWS\system32\dashost.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -s PolicyAgent
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
"C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
c:\windows\system32\taskhostw.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Users\Ondra\Desktop\vibranceGUI.exe" -minimized
"C:\Users\Ondra\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Genius\Gila\mousehid.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Ondra\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3071.115 --initial-client-data=0x1e8,0x1ec,0x1f0,0x1e4,0x1f4,0x7ffc38d419d0,0x7ffc38d419b8,0x7ffc38d419e8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=8544 --on-initialized-event-handle=648 --parent-handle=652 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1536 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,20,21,24,43,76 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1401 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8205 --gpu-driver-date=5-1-2017 --service-request-channel-token=3F524FD674A20C0FB775DBBE320DE3AF --mojo-platform-channel-handle=1552 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=DBB6B1F14F73309183B37E7D805628E2 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=DBB6B1F14F73309183B37E7D805628E2 --renderer-client-id=4 --mojo-platform-channel-handle=3712 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=F8497959427BEB572176488CBA1EF02C --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=F8497959427BEB572176488CBA1EF02C --renderer-client-id=5 --mojo-platform-channel-handle=3828 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=F10DF4CA2B4ADD71276F74EBDF9B6325 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=F10DF4CA2B4ADD71276F74EBDF9B6325 --renderer-client-id=6 --mojo-platform-channel-handle=3948 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=01DA3EF17C527487E2C981CE489DEE07 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=01DA3EF17C527487E2C981CE489DEE07 --renderer-client-id=7 --mojo-platform-channel-handle=3952 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=1316BEBBCE4DEAD583D968C7493C5756 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=1316BEBBCE4DEAD583D968C7493C5756 --renderer-client-id=8 --mojo-platform-channel-handle=3816 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=B11D1E560B12E715D94418619B0B26D4 --lang=en-US --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=B11D1E560B12E715D94418619B0B26D4 --renderer-client-id=9 --mojo-platform-channel-handle=3824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=8DDA710A88A43368D5918FAE4C72D335 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=8DDA710A88A43368D5918FAE4C72D335 --renderer-client-id=12 --mojo-platform-channel-handle=6800 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=AA130B12858B2BBE4903B12731BAE444 --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=AA130B12858B2BBE4903B12731BAE444 --renderer-client-id=14 --mojo-platform-channel-handle=7272 /prefetch:1
"C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe" --type=gpu-process --channel="8512.0.2041743033\1503967147" --mojo-application-channel-token=B815BDAED51B20F783A329F6734B43E6 --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x1401 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8205 --gpu-driver-date=5-1-2017 --mojo-platform-channel-handle=1460 /prefetch:2
C:\Program Files\CCleaner\CCleaner64.exe
"C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=9205AB9154D1FF732C55A4747A30F540 --lang=en-US --app-user-model-id=com.squirrel.Discord.Discord --node-integration=true --background-color=#282b30 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=F8618415776F2B6FB94B36AEEC1E88DE --mojo-application-channel-token=9205AB9154D1FF732C55A4747A30F540 --channel="8512.2.1068198382\1746196650" --mojo-platform-channel-handle=2584 /prefetch:1
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Ondra\AppData\Local\Steam\htmlcache" "-steampid=8204" "-buildid=1500335472" "-steamid=0" "-clientui=C:\Program Files (x86)\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536 --primordial-pipe-token=A599402F121EDAA6F8291A82D89381EF --lang=en-US --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=A599402F121EDAA6F8291A82D89381EF --renderer-client-id=23 --mojo-platform-channel-handle=8744 /prefetch:1
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k netsvcs -s wisvc
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
"E:\Downloads\RSITx64.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s WdiSystemHost
c:\windows\system32\svchost.exe -k netsvcs -s dmwappushservice
"C:\Program Files\Internet Explorer\IELowutil.exe" -PID:123
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SmsRouter
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.410_none_9e914f9d2d85dacb\TiWorker.exe -Embedding
====== Scheduled tasks folder ======
C:\WINDOWS\tasks\SlimCleaner Plus (Scheduled Scan - Ondra).job - C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe /doScheduledScan
C:\WINDOWS\system32\tasks\AutoPico Daily Restart - "C:\Program Files\KMSpico\AutoPico.exe" /silent
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Microsoft_Hardware_Launch_ipoint_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\WINDOWS\system32\tasks\Microsoft_Hardware_Launch_itype_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\WINDOWS\system32\tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
C:\WINDOWS\system32\tasks\Microsoft_MKC_Logon_Task_ipoint.exe - C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\WINDOWS\system32\tasks\Microsoft_MKC_Logon_Task_itype.exe - C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\WINDOWS\system32\tasks\MSIAfterburner - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s
C:\WINDOWS\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\WINDOWS\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\WINDOWS\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-261391004-168925671-1144472204-1001 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Shut down - C:\Windows\System32\shutdown.exe /s
C:\WINDOWS\system32\tasks\SlimCleaner Plus (Scheduled Scan - Ondra) - C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe /doScheduledScan
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{597372D7-C2D9-4593-BDB7-01FC4E3CAD01} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{778CE9FC-1E70-409F-B52A-50AEA6E5FF41} - C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\ASUS\WinFlash\WinFlash.exe" -d "c:\Program Files (x86)\ASUS\WinFlash\"
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\MpCmdRun.exe Scan -ScheduleJob -ScanTrigger 55
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install - %systemroot%\system32\usoclient.exe ScanInstallWait
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunCampaignManager - %windir%\System32\UNP\UNPCampaignManager.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Subscription Maintenance - C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon - C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\w5qprr98.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.101.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.101.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\w5qprr98.default\addons.json
C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\w5qprr98.default\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Firefox Screenshots - extension - screenshots@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\w5qprr98.default\pluginreg.dat
=========Google Chrome=========
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aabcgdmkeabbnleenpncegpcngjpnjkc 0 Easy Auto Refresh 4.6
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Google Slides 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Google Docs 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Google Drive 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bigefpfhnfcobdlfbedofhhaibnlghod 1 MEGA 3.13.5
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cgbhdenfmgbagncdmgbholejjpmmiank 0 Ratings Preview for YouTube™ 6.0.2
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ejifodhjoeeenihgfpjijjmpomaphmah 1 timeStats 3.0.10
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Google Sheets 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Google Docs Offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.13.0
Extension jfjnmganegfpajpgchndgfjbljnehink 1 Mauf - Custom Messenger Colors 1.0.8
Extension kbmfpngjjgdllneeigpgjifpgocmfgmb 1 Reddit Enhancement Suite 5.8.1
Extension kiodaajmphnkcajieajajinghpejdjai 1 Popup Blocker Pro 1.3.5
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.3
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Chrome Web Store Payments 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5917.424.0.7
Homepage:
default_search_provider.search_url:
C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-06-22 149704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-10-18 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-15 2106048]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-10-18 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2017-04-06 17494136]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-07-18 3062560]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-04-11 9532120]
"Discord"=C:\Users\Ondra\AppData\Local\Discord\app-0.0.297\Discord.exe [2017-01-04 64290304]
"vibranceGUI"=C:\Users\Ondra\Desktop\vibranceGUI.exe [2017-05-02 795136]
"f.lux"=C:\Users\Ondra\AppData\Local\FluxSoftware\Flux\flux.exe [2016-12-06 1024240]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-06-07 27742168]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Gila"=C:\Program Files (x86)\Genius\Gila\mousehid.exe [2014-11-04 309248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-07-19 12:38:04 ----D---- C:\rsit
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\system32\tquery.dll
2017-07-15 17:17:23 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-07-15 17:17:22 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-07-15 17:17:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-07-15 17:17:21 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-07-15 17:17:21 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-07-15 17:17:21 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-07-15 17:17:20 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-07-15 17:17:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-07-15 17:17:19 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-07-15 17:17:19 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-07-15 17:17:19 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-07-15 17:17:18 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-07-15 17:17:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-07-15 17:17:17 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-07-15 17:17:17 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2017-07-15 17:17:16 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-07-15 17:17:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-07-15 17:17:16 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-07-15 17:17:16 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-07-15 17:17:15 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-07-15 17:17:15 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-07-15 17:17:15 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2017-07-15 17:17:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-07-15 17:17:14 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2017-07-15 17:17:14 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-07-15 17:17:13 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2017-07-15 17:17:12 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2017-07-15 17:17:11 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\wininitext.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\Clipc.dll
2017-07-15 17:17:10 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\msasn1.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2017-07-15 17:17:09 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-07-15 17:17:09 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2017-07-15 17:17:09 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsExt.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.RetailInfo.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\wincredui.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2017-07-15 17:17:08 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\certca.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2017-07-15 17:17:07 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2017-07-15 17:17:07 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2017-07-15 17:17:06 ----A---- C:\WINDOWS\SYSWOW64\raschap.dll
2017-07-15 17:17:06 ----A---- C:\WINDOWS\SYSWOW64\edputil.dll
2017-07-15 17:17:06 ----A---- C:\WINDOWS\SYSWOW64\eapprovp.dll
2017-07-15 17:17:03 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-07-15 17:17:02 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-07-15 17:16:59 ----A---- C:\WINDOWS\system32\winmde.dll
2017-07-15 17:16:59 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-07-15 17:16:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-07-15 17:16:57 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\wmpmde.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
Re: BSOD při otevření disku
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\SensorService.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-07-15 17:16:56 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2017-07-15 17:16:56 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-07-15 17:16:56 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-07-15 17:16:55 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-07-15 17:16:55 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-07-15 17:16:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-07-15 17:16:54 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-07-15 17:16:54 ----A---- C:\WINDOWS\system32\mfps.dll
2017-07-15 17:16:53 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-07-15 17:16:53 ----A---- C:\WINDOWS\system32\MapRouter.dll
2017-07-15 17:16:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-07-15 17:16:52 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-07-15 17:16:50 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-07-15 17:16:50 ----A---- C:\WINDOWS\system32\localspl.dll
2017-07-15 17:16:50 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-07-15 17:16:49 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-07-15 17:16:49 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-07-15 17:16:49 ----A---- C:\WINDOWS\system32\InputService.dll
2017-07-15 17:16:49 ----A---- C:\WINDOWS\system32\BingMaps.dll
2017-07-15 17:16:48 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-07-15 17:16:48 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-07-15 17:16:48 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-07-15 17:16:47 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-07-15 17:16:47 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-07-15 17:16:47 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-07-15 17:16:46 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-07-15 17:16:46 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-07-15 17:16:45 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-07-15 17:16:44 ----A---- C:\WINDOWS\system32\mos.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2017-07-15 17:16:42 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2017-07-15 17:16:41 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\prntvpt.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\Narrator.exe
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\lsass.exe
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-07-15 17:16:39 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\ole32.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\ieui.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-07-15 17:16:37 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2017-07-15 17:16:37 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-07-15 17:16:37 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-15 17:16:37 ----A---- C:\WINDOWS\explorer.exe
2017-07-15 17:16:36 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\scksp.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\basecsp.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\winresume.exe
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\winload.exe
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\wininitext.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\wininit.exe
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\aepic.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\Wldap32.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\wincredui.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\psmsrv.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\csrsrv.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\CredentialUIBroker.exe
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\certutil.exe
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\certprop.dll
2017-07-15 17:16:30 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-15 17:16:30 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2017-07-15 17:16:30 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-07-15 17:16:29 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-15 17:16:29 ----A---- C:\WINDOWS\system32\domgmt.dll
2017-07-15 17:16:29 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-07-15 17:16:29 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\twinui.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\fveapi.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\wininet.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2017-07-15 17:16:24 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-07-15 17:16:24 ----A---- C:\WINDOWS\system32\shell32.dll
2017-07-15 17:16:21 ----A---- C:\WINDOWS\system32\SRH.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\usocore.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\cldapi.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\provengine.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\policymanager.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\devinv.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\dcomp.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\audiodg.exe
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\msinfo32.exe
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\invagent.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\DolbyMATEnc.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\dataclen.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\Clipc.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\WFDSConMgrSvc.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\wdc.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\omadmclient.exe
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\officecsp.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\FrameServer.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\ClipboardServer.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\uDWM.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\aitstatic.exe
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\ActiveSyncCsp.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\themeui.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\sendmail.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\duser.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\WFDSConMgr.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\rastls.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\raschap.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\edputil.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\eapprovp.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\certcli.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\certca.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2017-07-15 17:03:29 ----AD---- C:\Program Files\Common Files\DESIGNER
2017-06-28 13:31:53 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2017-06-28 13:31:50 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2017-06-28 13:31:50 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2017-06-28 13:31:50 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2017-06-28 13:31:50 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2017-06-28 13:31:48 ----D---- C:\Program Files (x86)\VulkanRT
2017-06-26 22:27:59 ----D---- C:\Program Files (x86)\AGEIA Technologies
====== List of files/folders modified in the last 1 month ======
2017-07-19 12:38:06 ----D---- C:\Program Files\trend micro
2017-07-19 12:37:59 ----D---- C:\WINDOWS\Prefetch
2017-07-19 12:37:30 ----D---- C:\Users\Ondra\AppData\Roaming\Skype
2017-07-19 12:35:13 ----D---- C:\Program Files (x86)\Steam
2017-07-19 12:35:07 ----D---- C:\Users\Ondra\AppData\Roaming\discord
2017-07-19 12:33:57 ----D---- C:\WINDOWS\Temp
2017-07-19 12:33:40 ----D---- C:\WINDOWS\System32
2017-07-19 12:33:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-19 12:29:33 ----D---- C:\WINDOWS\system32\sru
2017-07-19 12:29:33 ----D---- C:\ProgramData\NVIDIA
2017-07-19 12:29:27 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-19 12:29:27 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-07-19 11:56:41 ----D---- C:\WINDOWS\system32\SleepStudy
2017-07-19 11:56:23 ----D---- C:\WINDOWS\AppReadiness
2017-07-18 16:37:51 ----D---- C:\WINDOWS\rescache
2017-07-18 16:35:23 ----RD---- C:\WINDOWS\Microsoft.NET
2017-07-18 15:19:24 ----HD---- C:\Program Files\WindowsApps
2017-07-17 19:02:51 ----D---- C:\Users\Ondra\AppData\Roaming\vlc
2017-07-16 12:44:39 ----D---- C:\WINDOWS\system32\drivers
2017-07-16 12:44:36 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-07-16 11:53:19 ----D---- C:\WINDOWS\INF
2017-07-15 20:43:27 ----D---- C:\WINDOWS\system32\config
2017-07-15 19:34:12 ----D---- C:\WINDOWS\system32\DriverStore
2017-07-15 19:34:10 ----D---- C:\WINDOWS\WinSxS
2017-07-15 19:32:31 ----D---- C:\WINDOWS\system32\catroot2
2017-07-15 19:24:09 ----RSD---- C:\WINDOWS\assembly
2017-07-15 18:32:32 ----SHDC---- C:\WINDOWS\Installer
2017-07-15 18:32:32 ----SHD---- C:\Config.Msi
2017-07-15 18:31:28 ----AD---- C:\Program Files\Microsoft Office
2017-07-15 18:11:07 ----SHD---- C:\Boot
2017-07-15 18:09:27 ----D---- C:\WINDOWS\system32\CatRoot
2017-07-15 18:08:28 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-07-15 18:08:28 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-07-15 18:08:28 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-07-15 18:08:28 ----D---- C:\WINDOWS\SysWOW64
2017-07-15 18:08:25 ----SD---- C:\WINDOWS\system32\F12
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\oobe
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\migwiz
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\migration
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\en-US
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\Boot
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\appraiser
2017-07-15 18:08:15 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-07-15 18:08:15 ----RD---- C:\Program Files\Windows Defender
2017-07-15 18:08:15 ----D---- C:\WINDOWS\ShellExperiences
2017-07-15 18:08:15 ----D---- C:\WINDOWS\AppPatch
2017-07-15 18:08:15 ----D---- C:\Windows
2017-07-15 18:08:15 ----D---- C:\Program Files\Windows Photo Viewer
2017-07-15 18:08:15 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-07-15 18:08:15 ----D---- C:\Program Files (x86)\Windows Defender
2017-07-15 17:19:21 ----D---- C:\WINDOWS\system32\MRT
2017-07-15 17:17:54 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-07-15 17:04:30 ----D---- C:\WINDOWS\CbsTemp
2017-07-15 17:03:44 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-07-15 17:03:29 ----D---- C:\Program Files\Common Files
2017-07-15 17:03:29 ----AD---- C:\Program Files\Common Files\microsoft shared
2017-07-11 23:06:25 ----D---- C:\Users\Ondra\AppData\Roaming\uTorrent
2017-07-09 18:10:20 ----D---- C:\WINDOWS\system32\Tasks
2017-07-09 18:08:58 ----D---- C:\WINDOWS\system32\WDI
2017-06-30 16:47:29 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-06-28 13:32:21 ----D---- C:\ProgramData\NVIDIA Corporation
2017-06-28 13:31:48 ----RD---- C:\Program Files (x86)
2017-06-28 13:30:32 ----D---- C:\Program Files\NVIDIA Corporation
2017-06-26 22:26:09 ----D---- C:\ProgramData\Skype
2017-06-26 22:26:01 ----RD---- C:\Program Files (x86)\Skype
2017-06-26 22:26:01 ----D---- C:\Program Files (x86)\Common Files
2017-06-26 21:37:09 ----D---- C:\Program Files (x86)\Rockstar Games
2017-06-26 21:36:57 ----D---- C:\Program Files\Rockstar Games
2017-06-26 20:17:06 ----D---- C:\Users\Ondra\AppData\Roaming\TS3Client
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R1 MpKsl15168eb7;MpKsl15168eb7; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3AAF69B0-7852-4712-8DE6-B609105ACA74}\MpKsl15168eb7.sys [2017-07-17 44928]
R1 MpKslef0f5463;MpKslef0f5463; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C7A01F8C-3ED2-4C0E-AEF7-26A07A22ABD3}\MpKslef0f5463.sys [2017-07-18 44928]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-03-18 85504]
R3 ibtusb;@oem8.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-01-13 231168]
R3 LGBusEnum;@oem37.inf,%LGBusEnum.SVCDESC%;Logitech Gaming Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2017-04-06 36496]
R3 LGJoyXlCore;@oem37.inf,%LGJoyXlCore.SVCDESC%;Logitech Translation Layer Driver (LGS); C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [2017-04-06 67736]
R3 LGVirHid;@oem38.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2017-04-06 26008]
R3 MTsensor;@oem23.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2016-06-10 17280]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2017-03-18 3485696]
R3 NVHDA;@oem43.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-05-19 226712]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_f9309145156afb40\nvlddmkm.sys [2017-05-19 14456912]
R3 rt640x64;@oem16.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2000-01-01 886528]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2000-01-01 33960]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S1 MpKslb2830a18;MpKslb2830a18; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6DEC6748-EE9E-4E33-A4E6-D30D09903F1E}\MpKslb2830a18.sys [2017-07-19 44928]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-03-19 127904]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-03-19 161696]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-03-19 143776]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2017-06-20 982016]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-03-18 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 iaStor;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-04-26 557848]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-03-19 230816]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2017-05-18 118784]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 nvvhci;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-02-23 57792]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-03-18 1735584]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-03-19 40352]
S3 ssudmdm;@oem0.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\WINDOWS\system32\drivers\tsusbhub.sys [2017-03-19 125952]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AIPS;Arp Intelligent Protection Service; C:\Program Files (x86)\netcut\services\AIPS.exe [2011-07-28 262144]
R2 CDPUserSvc_538a6;Connected Devices Platform User Service_538a6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-07-02 4411584]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 ibtsiva;@oem8.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2017-04-06 225400]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 OneSyncSvc_538a6;Sync Host_538a6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-07-07 336320]
R2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2014-10-10 966336]
R3 PimIndexMaintenanceSvc_538a6;Contact Data_538a6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-07-18 1608480]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\TokenBroker.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-03-20 1517576]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_538a6;DevicesFlow_538a6; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2017-01-31 392480]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_538a6;MessagingService_538a6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-07-19 175560]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-07-02 260288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-03-19 3913064]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 891904]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-07-07 846752]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\SensorService.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-07-15 17:16:57 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-07-15 17:16:56 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2017-07-15 17:16:56 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-07-15 17:16:56 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-07-15 17:16:55 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-07-15 17:16:55 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-07-15 17:16:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-07-15 17:16:54 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-07-15 17:16:54 ----A---- C:\WINDOWS\system32\mfps.dll
2017-07-15 17:16:53 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-07-15 17:16:53 ----A---- C:\WINDOWS\system32\MapRouter.dll
2017-07-15 17:16:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-07-15 17:16:52 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-07-15 17:16:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-07-15 17:16:50 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-07-15 17:16:50 ----A---- C:\WINDOWS\system32\localspl.dll
2017-07-15 17:16:50 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-07-15 17:16:49 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-07-15 17:16:49 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-07-15 17:16:49 ----A---- C:\WINDOWS\system32\InputService.dll
2017-07-15 17:16:49 ----A---- C:\WINDOWS\system32\BingMaps.dll
2017-07-15 17:16:48 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-07-15 17:16:48 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-07-15 17:16:48 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-07-15 17:16:47 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-07-15 17:16:47 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-07-15 17:16:47 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-07-15 17:16:46 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-07-15 17:16:46 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-07-15 17:16:45 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-07-15 17:16:44 ----A---- C:\WINDOWS\system32\mos.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2017-07-15 17:16:43 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2017-07-15 17:16:42 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2017-07-15 17:16:41 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\prntvpt.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\Narrator.exe
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\lsass.exe
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-07-15 17:16:40 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-07-15 17:16:39 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\ole32.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\ieui.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-07-15 17:16:39 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-15 17:16:38 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-07-15 17:16:37 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2017-07-15 17:16:37 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-07-15 17:16:37 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-15 17:16:37 ----A---- C:\WINDOWS\explorer.exe
2017-07-15 17:16:36 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-07-15 17:16:35 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-07-15 17:16:34 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\scksp.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-07-15 17:16:33 ----A---- C:\WINDOWS\system32\basecsp.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\winresume.exe
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\winload.exe
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\wininitext.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\wininit.exe
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-07-15 17:16:32 ----A---- C:\WINDOWS\system32\aepic.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\Wldap32.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\wincredui.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\psmsrv.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\csrsrv.dll
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\CredentialUIBroker.exe
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\certutil.exe
2017-07-15 17:16:31 ----A---- C:\WINDOWS\system32\certprop.dll
2017-07-15 17:16:30 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-15 17:16:30 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2017-07-15 17:16:30 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-07-15 17:16:29 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-15 17:16:29 ----A---- C:\WINDOWS\system32\domgmt.dll
2017-07-15 17:16:29 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-07-15 17:16:29 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-07-15 17:16:28 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\twinui.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\fveapi.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-07-15 17:16:27 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\wininet.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-07-15 17:16:26 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-07-15 17:16:25 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2017-07-15 17:16:24 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-07-15 17:16:24 ----A---- C:\WINDOWS\system32\shell32.dll
2017-07-15 17:16:21 ----A---- C:\WINDOWS\system32\SRH.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-07-15 17:16:20 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-07-15 17:16:19 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\usocore.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\cldapi.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-07-15 17:16:18 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\provengine.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-07-15 17:16:17 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2017-07-15 17:16:16 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\policymanager.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\devinv.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\dcomp.dll
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\audiodg.exe
2017-07-15 17:16:15 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\msinfo32.exe
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\invagent.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\DolbyMATEnc.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\dataclen.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\Clipc.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2017-07-15 17:16:14 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\WFDSConMgrSvc.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\wdc.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\omadmclient.exe
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-07-15 17:16:13 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\officecsp.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\FrameServer.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\ClipboardServer.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-07-15 17:16:12 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\uDWM.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\aitstatic.exe
2017-07-15 17:16:11 ----A---- C:\WINDOWS\system32\ActiveSyncCsp.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\themeui.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\sendmail.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\duser.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-07-15 17:16:10 ----A---- C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\WFDSConMgr.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\rastls.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\raschap.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\edputil.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\eapprovp.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\certcli.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\certca.dll
2017-07-15 17:16:09 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2017-07-15 17:03:29 ----AD---- C:\Program Files\Common Files\DESIGNER
2017-06-28 13:31:53 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2017-06-28 13:31:50 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2017-06-28 13:31:50 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2017-06-28 13:31:50 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2017-06-28 13:31:50 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2017-06-28 13:31:48 ----D---- C:\Program Files (x86)\VulkanRT
2017-06-26 22:27:59 ----D---- C:\Program Files (x86)\AGEIA Technologies
====== List of files/folders modified in the last 1 month ======
2017-07-19 12:38:06 ----D---- C:\Program Files\trend micro
2017-07-19 12:37:59 ----D---- C:\WINDOWS\Prefetch
2017-07-19 12:37:30 ----D---- C:\Users\Ondra\AppData\Roaming\Skype
2017-07-19 12:35:13 ----D---- C:\Program Files (x86)\Steam
2017-07-19 12:35:07 ----D---- C:\Users\Ondra\AppData\Roaming\discord
2017-07-19 12:33:57 ----D---- C:\WINDOWS\Temp
2017-07-19 12:33:40 ----D---- C:\WINDOWS\System32
2017-07-19 12:33:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-19 12:29:33 ----D---- C:\WINDOWS\system32\sru
2017-07-19 12:29:33 ----D---- C:\ProgramData\NVIDIA
2017-07-19 12:29:27 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-19 12:29:27 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-07-19 11:56:41 ----D---- C:\WINDOWS\system32\SleepStudy
2017-07-19 11:56:23 ----D---- C:\WINDOWS\AppReadiness
2017-07-18 16:37:51 ----D---- C:\WINDOWS\rescache
2017-07-18 16:35:23 ----RD---- C:\WINDOWS\Microsoft.NET
2017-07-18 15:19:24 ----HD---- C:\Program Files\WindowsApps
2017-07-17 19:02:51 ----D---- C:\Users\Ondra\AppData\Roaming\vlc
2017-07-16 12:44:39 ----D---- C:\WINDOWS\system32\drivers
2017-07-16 12:44:36 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-07-16 11:53:19 ----D---- C:\WINDOWS\INF
2017-07-15 20:43:27 ----D---- C:\WINDOWS\system32\config
2017-07-15 19:34:12 ----D---- C:\WINDOWS\system32\DriverStore
2017-07-15 19:34:10 ----D---- C:\WINDOWS\WinSxS
2017-07-15 19:32:31 ----D---- C:\WINDOWS\system32\catroot2
2017-07-15 19:24:09 ----RSD---- C:\WINDOWS\assembly
2017-07-15 18:32:32 ----SHDC---- C:\WINDOWS\Installer
2017-07-15 18:32:32 ----SHD---- C:\Config.Msi
2017-07-15 18:31:28 ----AD---- C:\Program Files\Microsoft Office
2017-07-15 18:11:07 ----SHD---- C:\Boot
2017-07-15 18:09:27 ----D---- C:\WINDOWS\system32\CatRoot
2017-07-15 18:08:28 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-07-15 18:08:28 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-07-15 18:08:28 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-07-15 18:08:28 ----D---- C:\WINDOWS\SysWOW64
2017-07-15 18:08:25 ----SD---- C:\WINDOWS\system32\F12
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\oobe
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\migwiz
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\migration
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\en-US
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\Boot
2017-07-15 18:08:25 ----D---- C:\WINDOWS\system32\appraiser
2017-07-15 18:08:15 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-07-15 18:08:15 ----RD---- C:\Program Files\Windows Defender
2017-07-15 18:08:15 ----D---- C:\WINDOWS\ShellExperiences
2017-07-15 18:08:15 ----D---- C:\WINDOWS\AppPatch
2017-07-15 18:08:15 ----D---- C:\Windows
2017-07-15 18:08:15 ----D---- C:\Program Files\Windows Photo Viewer
2017-07-15 18:08:15 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-07-15 18:08:15 ----D---- C:\Program Files (x86)\Windows Defender
2017-07-15 17:19:21 ----D---- C:\WINDOWS\system32\MRT
2017-07-15 17:17:54 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-07-15 17:04:30 ----D---- C:\WINDOWS\CbsTemp
2017-07-15 17:03:44 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-07-15 17:03:29 ----D---- C:\Program Files\Common Files
2017-07-15 17:03:29 ----AD---- C:\Program Files\Common Files\microsoft shared
2017-07-11 23:06:25 ----D---- C:\Users\Ondra\AppData\Roaming\uTorrent
2017-07-09 18:10:20 ----D---- C:\WINDOWS\system32\Tasks
2017-07-09 18:08:58 ----D---- C:\WINDOWS\system32\WDI
2017-06-30 16:47:29 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-06-28 13:32:21 ----D---- C:\ProgramData\NVIDIA Corporation
2017-06-28 13:31:48 ----RD---- C:\Program Files (x86)
2017-06-28 13:30:32 ----D---- C:\Program Files\NVIDIA Corporation
2017-06-26 22:26:09 ----D---- C:\ProgramData\Skype
2017-06-26 22:26:01 ----RD---- C:\Program Files (x86)\Skype
2017-06-26 22:26:01 ----D---- C:\Program Files (x86)\Common Files
2017-06-26 21:37:09 ----D---- C:\Program Files (x86)\Rockstar Games
2017-06-26 21:36:57 ----D---- C:\Program Files\Rockstar Games
2017-06-26 20:17:06 ----D---- C:\Users\Ondra\AppData\Roaming\TS3Client
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R1 MpKsl15168eb7;MpKsl15168eb7; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3AAF69B0-7852-4712-8DE6-B609105ACA74}\MpKsl15168eb7.sys [2017-07-17 44928]
R1 MpKslef0f5463;MpKslef0f5463; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C7A01F8C-3ED2-4C0E-AEF7-26A07A22ABD3}\MpKslef0f5463.sys [2017-07-18 44928]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-03-18 85504]
R3 ibtusb;@oem8.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-01-13 231168]
R3 LGBusEnum;@oem37.inf,%LGBusEnum.SVCDESC%;Logitech Gaming Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2017-04-06 36496]
R3 LGJoyXlCore;@oem37.inf,%LGJoyXlCore.SVCDESC%;Logitech Translation Layer Driver (LGS); C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [2017-04-06 67736]
R3 LGVirHid;@oem38.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2017-04-06 26008]
R3 MTsensor;@oem23.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2016-06-10 17280]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2017-03-18 3485696]
R3 NVHDA;@oem43.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-05-19 226712]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_f9309145156afb40\nvlddmkm.sys [2017-05-19 14456912]
R3 rt640x64;@oem16.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2000-01-01 886528]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2000-01-01 33960]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S1 MpKslb2830a18;MpKslb2830a18; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6DEC6748-EE9E-4E33-A4E6-D30D09903F1E}\MpKslb2830a18.sys [2017-07-19 44928]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-03-19 127904]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-03-19 161696]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-03-19 143776]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2017-06-20 982016]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-03-18 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 iaStor;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-04-26 557848]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-03-19 230816]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2017-05-18 118784]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 nvvhci;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-02-23 57792]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-03-18 1735584]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-03-19 40352]
S3 ssudmdm;@oem0.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\WINDOWS\system32\drivers\tsusbhub.sys [2017-03-19 125952]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AIPS;Arp Intelligent Protection Service; C:\Program Files (x86)\netcut\services\AIPS.exe [2011-07-28 262144]
R2 CDPUserSvc_538a6;Connected Devices Platform User Service_538a6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-07-02 4411584]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 ibtsiva;@oem8.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2017-04-06 225400]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 OneSyncSvc_538a6;Sync Host_538a6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-07-07 336320]
R2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2014-10-10 966336]
R3 PimIndexMaintenanceSvc_538a6;Contact Data_538a6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-07-18 1608480]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\TokenBroker.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-03-20 1517576]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_538a6;DevicesFlow_538a6; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2017-01-31 392480]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_538a6;MessagingService_538a6; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-07-19 175560]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-07-02 260288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-03-19 3913064]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 891904]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-07-07 846752]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: BSOD při otevření disku
Zdravím!
Otevřte adresář C:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu.
Otevřte adresář C:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: BSOD při otevření disku
Žádnou složku "Minidump" nemůžu najít
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: BSOD při otevření disku
Pokud není skrytá, minidump se nevytvořil, což je problém. Nezjistím proč PC padl. Disk je to jaký? Přenosný přes USB, nebo stabilní disk v PC?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: BSOD při otevření disku
Je to stabilní disk v PC, nejde nějak nastavit aby se minidump tvořil? BSOD můžu znova způsobit
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: BSOD při otevření disku
Defaultně by měl být nastaven, jen se občas stane, že to systém nestihne. Zkusíme disk zkontrolovat. Stáhněte, nainstalujte a spusťte CrystalDiskInfo: http://www.stahuj.centrum.cz/utility_a_ ... ldiskinfo/ a přes Úpravy>kopírovat sem dejte log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: BSOD při otevření disku
----------------------------------------------------------------------------
CrystalDiskInfo 7.0.5 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 Professional [10.0 Build 15063] (x64)
Date : 2017/07/20 17:27:03
-- Controller Map ----------------------------------------------------------
+ Standard SATA AHCI Controller [ATA]
- ST31000528AS
- HL-DT-ST DVDRAM GH22LS50
- ST31000528AS
- Microsoft Storage Spaces Controller [SCSI]
-- Disk List ---------------------------------------------------------------
(1) ST31000528AS : 1000,2 GB [0/0/0, pd1] - st
(2) ST31000528AS : 1000,2 GB [1/0/0, pd1] - st
----------------------------------------------------------------------------
(1) ST31000528AS
----------------------------------------------------------------------------
Model : ST31000528AS
Firmware : CC38
Serial Number : 9VP473Q3
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 11359 hod.
Power On Count : 2383 krát
Temperature : 40 C (104 F)
Health Status : Špatný
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : FE00h [ON]
Drive Letter : C: E:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 109 _80 __6 00000CCD49C3 Počet chyb čtení
03 _95 _92 __0 000000000000 Čas na roztočení ploten
04 _96 _96 _20 0000000012B0 Počet spuštění/zastavení
05 __8 __8 _36 000000000EBC Počet přemapovaných sektorů
07 _84 _60 _30 00000EFF4B06 Počet chybných hledání
09 _88 _88 __0 000000002C5F Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _98 _98 _20 00000000094F Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB __1 __1 __0 000000005865 Ohlášeno neopravitelných chyb
BC 100 _96 __0 000F000F005B Časový limit příkazu
BD _93 _93 __0 000000000007 Vysoká rychlost zápisu
BE _60 _52 _45 000028190028 Teplota toku vzduchu
C2 _40 _48 __0 000D00000028 Teplota
C3 _43 _22 __0 00000CCD49C3 Počet oprav chybného čtení
C5 _95 _92 __0 0000000000F2 Počet podezřelých sektorů
C6 _95 _92 __0 0000000000F2 Počet neopravitelných sektorů
C7 200 200 __0 000000000002 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 BE0400004557 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 000024445E92 Total Host Writes
F2 100 253 __0 0000451783AE Total Host Reads
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 3956 5034 3733 5133
020: 0000 0000 0004 4343 3338 2020 2020 5354 3331 3030
030: 3035 3238 4153 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0506 0000 0048 0040
080: 01F0 0029 346B 7F01 4163 3469 BE01 4163 007F 0056
090: 0056 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 0000 0000 5000 C500
110: 1F38 1F14 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 004F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3F00 9800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 48A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 6D 50 C3 49 CD 0C 00 00 00 03 03
010: 00 5F 5C 00 00 00 00 00 00 00 04 32 00 60 60 B0
020: 12 00 00 00 00 00 05 33 00 08 08 BC 0E 00 00 00
030: 00 00 07 0F 00 54 3C 06 4B FF 0E 00 00 00 09 32
040: 00 58 58 5F 2C 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 62 62 4F 09 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 01 01 65
080: 58 00 00 00 00 00 BC 32 00 64 60 5B 00 0F 00 0F
090: 00 00 BD 3A 00 5D 5D 07 00 00 00 00 00 00 BE 22
0A0: 00 3C 34 28 00 19 28 00 00 00 C2 22 00 28 30 28
0B0: 00 00 00 0D 00 00 C3 1A 00 2B 16 C3 49 CD 0C 00
0C0: 00 00 C5 12 00 5F 5C F2 00 00 00 00 00 00 C6 10
0D0: 00 5F 5C F2 00 00 00 00 00 00 C7 3E 00 C8 C8 02
0E0: 00 00 00 00 00 00 F0 00 00 64 FD 57 45 00 00 04
0F0: BE 00 F1 00 00 64 FD 92 5E 44 24 00 00 00 F2 00
100: 00 64 FD AE 83 17 45 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 61 02 00 7B
170: 03 00 01 00 01 B8 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 04 06 04 06 06 04 05 06
190: 05 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 18 00 B1 AA F4 31 37 25 00 00
1B0: 00 00 00 00 01 00 5E 22 92 5E 44 24 27 5D 01 00
1C0: AE 83 17 45 C1 E8 0F 00 00 00 00 00 05 D3 D9 02
1D0: 00 00 00 FF 0B 00 00 00 29 20 00 00 26 00 07 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 EF
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0B0: 00 00 00 00 00 00 C3 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 F0 00 00 00 00 00 00 00 00 00
0F0: 00 00 F1 00 00 00 00 00 00 00 00 00 00 00 F2 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60
----------------------------------------------------------------------------
(2) ST31000528AS
----------------------------------------------------------------------------
Model : ST31000528AS
Firmware : CC38
Serial Number : 9VP48FYQ
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 12589 hod.
Power On Count : 2430 krát
Temperature : 39 C (102 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : FE00h [ON]
Drive Letter : D:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 114 _99 __6 000004D094D2 Počet chyb čtení
03 _95 _94 __0 000000000000 Čas na roztočení ploten
04 _95 _95 _20 000000001756 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _68 _60 _30 0015090083EB Počet chybných hledání
09 _86 _86 __0 00000000312D Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _98 _37 _20 00000000097E Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _99 __0 000400040007 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _61 _57 _45 0000271A0027 Teplota toku vzduchu
C2 _39 _43 __0 000D00000027 Teplota
C3 _37 _22 __0 000004D094D2 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 28C800004A95 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 00009010B89C Total Host Writes
F2 100 253 __0 00007615078C Total Host Reads
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 3956 5034 3846 5951
020: 0000 0000 0004 4343 3338 2020 2020 5354 3331 3030
030: 3035 3238 4153 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0506 0000 0048 0040
080: 01F0 0029 346B 7F01 4163 3469 BE01 4163 007F 0055
090: 0055 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 0000 0000 5000 C500
110: 1F3A A14D 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 004F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3F00 9800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 53A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 72 63 D2 94 D0 04 00 00 00 03 03
010: 00 5F 5E 00 00 00 00 00 00 00 04 32 00 5F 5F 56
020: 17 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 44 3C EB 83 00 09 15 00 00 09 32
040: 00 56 56 2D 31 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 62 25 7E 09 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 63 07 00 04 00 04
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 3D 39 27 00 1A 27 00 00 00 C2 22 00 27 2B 27
0B0: 00 00 00 0D 00 00 C3 1A 00 25 16 D2 94 D0 04 00
0C0: 00 00 C5 12 00 64 64 00 00 00 00 00 00 00 C6 10
0D0: 00 64 64 00 00 00 00 00 00 00 C7 3E 00 C8 C8 00
0E0: 00 00 00 00 00 00 F0 00 00 64 FD 95 4A 00 00 C8
0F0: 28 07 F1 00 00 64 FD 9C B8 10 90 00 00 00 F2 00
100: 00 64 FD 8C 07 15 76 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 58 02 00 7B
170: 03 00 01 00 01 B7 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 05 05 06 04 06 06 04 05
190: 06 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 B0 E4 74 FD 40 29 00 00
1B0: 00 00 00 00 01 00 2E 0E 9C B8 10 90 3B FD 00 00
1C0: 8C 07 15 76 17 D3 03 00 00 00 00 00 0A 85 71 03
1D0: 00 00 00 02 00 00 00 00 F3 1A 00 00 2A 00 0A 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 29
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 C0
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0B0: 00 00 00 00 00 00 C3 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 F0 00 00 00 00 00 00 00 00 00
0F0: 00 00 F1 00 00 00 00 00 00 00 00 00 00 00 F2 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60
CrystalDiskInfo 7.0.5 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 Professional [10.0 Build 15063] (x64)
Date : 2017/07/20 17:27:03
-- Controller Map ----------------------------------------------------------
+ Standard SATA AHCI Controller [ATA]
- ST31000528AS
- HL-DT-ST DVDRAM GH22LS50
- ST31000528AS
- Microsoft Storage Spaces Controller [SCSI]
-- Disk List ---------------------------------------------------------------
(1) ST31000528AS : 1000,2 GB [0/0/0, pd1] - st
(2) ST31000528AS : 1000,2 GB [1/0/0, pd1] - st
----------------------------------------------------------------------------
(1) ST31000528AS
----------------------------------------------------------------------------
Model : ST31000528AS
Firmware : CC38
Serial Number : 9VP473Q3
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 11359 hod.
Power On Count : 2383 krát
Temperature : 40 C (104 F)
Health Status : Špatný
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : FE00h [ON]
Drive Letter : C: E:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 109 _80 __6 00000CCD49C3 Počet chyb čtení
03 _95 _92 __0 000000000000 Čas na roztočení ploten
04 _96 _96 _20 0000000012B0 Počet spuštění/zastavení
05 __8 __8 _36 000000000EBC Počet přemapovaných sektorů
07 _84 _60 _30 00000EFF4B06 Počet chybných hledání
09 _88 _88 __0 000000002C5F Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _98 _98 _20 00000000094F Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB __1 __1 __0 000000005865 Ohlášeno neopravitelných chyb
BC 100 _96 __0 000F000F005B Časový limit příkazu
BD _93 _93 __0 000000000007 Vysoká rychlost zápisu
BE _60 _52 _45 000028190028 Teplota toku vzduchu
C2 _40 _48 __0 000D00000028 Teplota
C3 _43 _22 __0 00000CCD49C3 Počet oprav chybného čtení
C5 _95 _92 __0 0000000000F2 Počet podezřelých sektorů
C6 _95 _92 __0 0000000000F2 Počet neopravitelných sektorů
C7 200 200 __0 000000000002 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 BE0400004557 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 000024445E92 Total Host Writes
F2 100 253 __0 0000451783AE Total Host Reads
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 3956 5034 3733 5133
020: 0000 0000 0004 4343 3338 2020 2020 5354 3331 3030
030: 3035 3238 4153 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0506 0000 0048 0040
080: 01F0 0029 346B 7F01 4163 3469 BE01 4163 007F 0056
090: 0056 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 0000 0000 5000 C500
110: 1F38 1F14 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 004F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3F00 9800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 48A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 6D 50 C3 49 CD 0C 00 00 00 03 03
010: 00 5F 5C 00 00 00 00 00 00 00 04 32 00 60 60 B0
020: 12 00 00 00 00 00 05 33 00 08 08 BC 0E 00 00 00
030: 00 00 07 0F 00 54 3C 06 4B FF 0E 00 00 00 09 32
040: 00 58 58 5F 2C 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 62 62 4F 09 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 01 01 65
080: 58 00 00 00 00 00 BC 32 00 64 60 5B 00 0F 00 0F
090: 00 00 BD 3A 00 5D 5D 07 00 00 00 00 00 00 BE 22
0A0: 00 3C 34 28 00 19 28 00 00 00 C2 22 00 28 30 28
0B0: 00 00 00 0D 00 00 C3 1A 00 2B 16 C3 49 CD 0C 00
0C0: 00 00 C5 12 00 5F 5C F2 00 00 00 00 00 00 C6 10
0D0: 00 5F 5C F2 00 00 00 00 00 00 C7 3E 00 C8 C8 02
0E0: 00 00 00 00 00 00 F0 00 00 64 FD 57 45 00 00 04
0F0: BE 00 F1 00 00 64 FD 92 5E 44 24 00 00 00 F2 00
100: 00 64 FD AE 83 17 45 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 61 02 00 7B
170: 03 00 01 00 01 B8 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 04 06 04 06 06 04 05 06
190: 05 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 18 00 B1 AA F4 31 37 25 00 00
1B0: 00 00 00 00 01 00 5E 22 92 5E 44 24 27 5D 01 00
1C0: AE 83 17 45 C1 E8 0F 00 00 00 00 00 05 D3 D9 02
1D0: 00 00 00 FF 0B 00 00 00 29 20 00 00 26 00 07 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 EF
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0B0: 00 00 00 00 00 00 C3 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 F0 00 00 00 00 00 00 00 00 00
0F0: 00 00 F1 00 00 00 00 00 00 00 00 00 00 00 F2 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60
----------------------------------------------------------------------------
(2) ST31000528AS
----------------------------------------------------------------------------
Model : ST31000528AS
Firmware : CC38
Serial Number : 9VP48FYQ
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 12589 hod.
Power On Count : 2430 krát
Temperature : 39 C (102 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : FE00h [ON]
Drive Letter : D:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 114 _99 __6 000004D094D2 Počet chyb čtení
03 _95 _94 __0 000000000000 Čas na roztočení ploten
04 _95 _95 _20 000000001756 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _68 _60 _30 0015090083EB Počet chybných hledání
09 _86 _86 __0 00000000312D Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _98 _37 _20 00000000097E Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _99 __0 000400040007 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _61 _57 _45 0000271A0027 Teplota toku vzduchu
C2 _39 _43 __0 000D00000027 Teplota
C3 _37 _22 __0 000004D094D2 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 28C800004A95 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 00009010B89C Total Host Writes
F2 100 253 __0 00007615078C Total Host Reads
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 3956 5034 3846 5951
020: 0000 0000 0004 4343 3338 2020 2020 5354 3331 3030
030: 3035 3238 4153 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0506 0000 0048 0040
080: 01F0 0029 346B 7F01 4163 3469 BE01 4163 007F 0055
090: 0055 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 0000 0000 5000 C500
110: 1F3A A14D 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 004F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3F00 9800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 53A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 72 63 D2 94 D0 04 00 00 00 03 03
010: 00 5F 5E 00 00 00 00 00 00 00 04 32 00 5F 5F 56
020: 17 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 44 3C EB 83 00 09 15 00 00 09 32
040: 00 56 56 2D 31 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 62 25 7E 09 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 63 07 00 04 00 04
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 3D 39 27 00 1A 27 00 00 00 C2 22 00 27 2B 27
0B0: 00 00 00 0D 00 00 C3 1A 00 25 16 D2 94 D0 04 00
0C0: 00 00 C5 12 00 64 64 00 00 00 00 00 00 00 C6 10
0D0: 00 64 64 00 00 00 00 00 00 00 C7 3E 00 C8 C8 00
0E0: 00 00 00 00 00 00 F0 00 00 64 FD 95 4A 00 00 C8
0F0: 28 07 F1 00 00 64 FD 9C B8 10 90 00 00 00 F2 00
100: 00 64 FD 8C 07 15 76 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 58 02 00 7B
170: 03 00 01 00 01 B7 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 05 05 06 04 06 06 04 05
190: 06 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 B0 E4 74 FD 40 29 00 00
1B0: 00 00 00 00 01 00 2E 0E 9C B8 10 90 3B FD 00 00
1C0: 8C 07 15 76 17 D3 03 00 00 00 00 00 0A 85 71 03
1D0: 00 00 00 02 00 00 00 00 F3 1A 00 00 2A 00 0A 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 29
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 C0
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0B0: 00 00 00 00 00 00 C3 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 F0 00 00 00 00 00 00 00 00 00
0F0: 00 00 F1 00 00 00 00 00 00 00 00 00 00 00 F2 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: BSOD při otevření disku
Disk č. 1 je vyloženě špatný, má kromě přemapovaných a podezřelých sektrů mnoho neopravitelných. V tom asi bude ten problém. Disk č. 2 je OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: BSOD při otevření disku
Dobře, děkuji
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: BSOD při otevření disku
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.