All of them came from the same exe in windows folder
Windows 11 [2021]
- Thread starter eastmen
- Start date
But if you look from task manager for each one separately it might give more information
svchost is used to host services. Most services are provided by Microsoft but there are also third party services. It's also possible a malware could install a fake service on the system although it's probably not common.
I'm too lazy for that. Windows defender pre boot scanner should function the same, right?
If not... Yeah.. Would need to pull the drive out.
open task manager, go to details, right click a column and select columns and scroll down to select command line.
Also Process Explorer may give you some insight
Process Explorer - Sysinternals
Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more.
learn.microsoft.com
those are the screenshot with comaand line tab shown.
anything looks sus?
as for cmd, i cant find cmd running in task manager.
Try looking with Process Explorer or maybe try Autoruns
ps: finding cmd.exe in HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\AlternateShell is normal
Autoruns - Sysinternals
See what programs are configured to startup automatically when your system boots and you login.
learn.microsoft.com
Try looking with Process Explorer or maybe try Autoruns
ps: finding cmd.exe in HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\AlternateShell is normalAutoruns - Sysinternals
See what programs are configured to startup automatically when your system boots and you login.learn.microsoft.com
yeah only got that one for cmd.exe
uh... guys... help me make this made sense
1. tried to run windows defender offline but nothing happen after the full screen security prompt.
2. tried to run it thru powershell, shows error 0x8000000a (dunno how many zeroes)
3. tried to run thru cmd, it works! it reboots and start scanning.
4. back to normal windows, chkdsk found disk error on startup and told me to reboot.
5. reboot. checked windows defender scan log : 0 detected. checked the detection log, no longer detecting any issues...
screenshot. offline scan was done around that last warning. 1 hour later. still no detection.
1. tried to run windows defender offline but nothing happen after the full screen security prompt.
2. tried to run it thru powershell, shows error 0x8000000a (dunno how many zeroes)
3. tried to run thru cmd, it works! it reboots and start scanning.
4. back to normal windows, chkdsk found disk error on startup and told me to reboot.
5. reboot. checked windows defender scan log : 0 detected. checked the detection log, no longer detecting any issues...
screenshot. offline scan was done around that last warning. 1 hour later. still no detection.
is this still cmd.exe? did you see what the actual command line was?
yes still cmd.exe, svchost, etc... the same thing i posted previously. the command lines are also the same as the one before (no cmd.exe in task manager too).
anyway, the detection doesnt increase at all. here's the screenshot, many hours after that one.
so... issues fixed?
oh and i forgot to mention that i also got a windows update. it should be between 1 and 2 in my previous reply., but the update failed.
try process monitor from sysinternals.com and try to have it log cmd.exe and match the times to see what trying to do
The problem is that the problem no longer occurs.
I'm actually not sure. Windows 10 and Windows 11 have some different security features enabled by default, so it depends on how they're set during the testing.
I stopped watching when the Witcher 3 was run with no RT...
????
Is that the bar for Linux to become a usable platform for games? The Witcher 3 with RT?
Similar threads
