info.txt logfile of random's system information tool 1.08 2021-12-20 01:11:24

======Uninstall list======

-->"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HDBox\Uninstaller.exe" --uninstall=1 --sapCode=ACR --productVersion=12.1 --productPlatform=win32 --productAdobeCode={ACR-12.1-32-ADBEADBEADBEADBEADBEADBE} --productName="Camera Raw" --mode=1
-->"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HDBox\Uninstaller.exe" --uninstall=1 --sapCode=CCXP --productVersion=3.4.0 --productPlatform=win32 --productAdobeCode={CCXP-3.4.0-32-ADBEADBEADBEADBEADBEAD} --productName="CCX Process" --mode=1
-->"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HDBox\Uninstaller.exe" --uninstall=1 --sapCode=COCM --productVersion=1.0 --productPlatform=win32 --productAdobeCode={COCM-1.0.4-ADBEADBEADBEADBEADBEADBEA} --productName="STI_Color_CommonSetCMYK_HD" --mode=1
-->"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HDBox\Uninstaller.exe" --uninstall=1 --sapCode=COPS --productVersion=1.0 --productPlatform=win32 --productAdobeCode={COPS-1.0.5-ADBEADBEADBEADBEADBEADBEA} --productName="STI_Color_Photoshop_HD" --mode=1
-->"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HDBox\Uninstaller.exe" --uninstall=1 --sapCode=CORE --productVersion=1.0 --productPlatform=win32 --productAdobeCode={CORE-1.0-32-ADBEADBEADBEADBEADBEADBE} --productName="STI_Color_HD" --mode=1
-->"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HDBox\Uninstaller.exe" --uninstall=1 --sapCode=CORG --productVersion=1.1 --productPlatform=win32 --productAdobeCode={CORG-1.1-32-ADBEADBEADBEADBEADBEADBE} --productName="STI_Color_CommonSetRGB_HD" --mode=1
Adobe Photoshop 2020-->"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HDBox\Uninstaller.exe" --uninstall=1 --sapCode=PHSP --productVersion=21.0.3 --productPlatform=win64 --productAdobeCode={PHSP-21.0.3-64-ADBEADBEADBEADBEADBEA} --productName="Photoshop" --mode=1
Age of Mythology Extended Edition Tale of the Dragon-->"D:\Hry\Age of Mythology Extended Edition Tale of the Dragon\unins000.exe"
AltServer-->MsiExec.exe /I{02C6BC9F-DB8B-4D6B-B991-B965D4193107}
Apple Software Update-->MsiExec.exe /I{A3985C05-7386-411F-A4BF-32A73F37EB44}
ASUS Echelon Laser  Gaming Mouse-->"C:\Windows\unins000.exe"
AxySnake version 1.07-->"C:\Program Files (x86)\AxySnake\unins000.exe"
Banished-->"D:\Hry\Banished\unins000.exe"
Battle.net-->"C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" --lang=enUS --uid=battle.net --displayname="Battle.net"
Company of Heroes 2 Master Collection-->"D:\Games\Company of Heroes 2 Master Collection\unins000.exe"
ENE RGB HAL-->"C:\ProgramData\Package Cache\{9f93601b-15ea-4e69-8d7c-dfa0f29ae04e}\AacSetup.exe"  /uninstall
Far Cry 4-->"D:\Hry\Far Cry 4\unins000.exe"
Microsoft Edge-->"C:\Program Files (x86)\Microsoft\Edge\Application\96.0.1054.62\Installer\setup.exe" --uninstall --msedge --channel=stable --system-level --verbose-logging
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030-->"C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe"  /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030-->"C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe"  /uninstall
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030-->MsiExec.exe /X{B175520C-86A2-35A7-8619-86DC379688B9}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660-->"C:\ProgramData\Package Cache\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}\vcredist_x64.exe"  /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660-->"C:\ProgramData\Package Cache\{61087a79-ac85-455c-934d-1fa22cc64f36}\vcredist_x86.exe"  /uninstall
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660-->MsiExec.exe /X{7DAD0258-515C-3DD4-8964-BD714199E0F7}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660-->MsiExec.exe /X{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821-->"C:\ProgramData\Package Cache\{6361b579-2795-4886-b2a8-53d5239b6452}\VC_redist.x64.exe"  /uninstall
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821-->"C:\ProgramData\Package Cache\{5bfc1380-fd35-4b85-9715-7351535d077e}\VC_redist.x86.exe"  /uninstall
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821-->MsiExec.exe /I{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821-->MsiExec.exe /I{1E6FC929-567E-4D22-9206-C5B83F0A21B9}
MSI Command Center-->"C:\Program Files (x86)\MSI\Command Center\unins000.exe"
MSI Display Kit(x64)-->"C:\Program Files (x86)\InstallShield Installation Information\{5A8E3E72-D260-4DB3-BCE3-AF47C364F275}\setup.exe" -runfromtemp -l0x0409 -removeonly
MSI Fast Boot-->"C:\Program Files (x86)\MSI\Fast Boot\unins000.exe"
MSI Gaming APP-->"C:\Program Files (x86)\MSI\Gaming APP\unins000.exe"
MSI Live Update 6-->"C:\Program Files (x86)\MSI\Live Update\unins000.exe"
MSI Smart Tool-->"C:\Program Files (x86)\MSI\Smart Tool\unins000.exe"
MSI Super Charger-->"C:\Program Files (x86)\MSI\Super Charger\unins000.exe"
MSI USB Speed Up-->"C:\MSI\MSI USB Speed Up\unins000.exe"
MSIRegister-->"C:\Program Files (x86)\MSI\MSIRegister\unins000.exe"
Podpora aplikac Apple (32bitov)-->MsiExec.exe /I{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe -r -m -nrg2709
Rockstar Games Launcher-->"D:\Hry\Launcher\uninstall.exe"
Rockstar Games Social Club-->C:\Program Files\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
Santa Claus in Trouble-->C:\PROGRA~2\SANTAC~1\UNINST~1\UNWISE.EXE C:\PROGRA~2\SANTAC~1\UNINST~1\INSTALL.LOG
Steam-->C:\Program Files (x86)\Steam\uninstall.exe
Warcraft III - Complete Edition verze 1.26a-->"D:\Hry\Warcraft III - Complete Edition\unins000.exe"
Warcraft III Reforged By Franz PC-->"D:\Hry\Warcraft III Reforged\unins000.exe"
Worms 4 Totln nez-->C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe /M{45E7C481-3EF4-4FCB-AF0B-19F70D618F0C} 
Worms Armageddon - New Edition CZ-->D:\Hry\Worms Armageddon CZ\Uninstal.exe
Worms Reloaded - Game of the Year Edition-->"D:\Hry\Worms Reloaded - GOTY\unins000.exe"
Worms W.M.D. All Stars Pack-->"D:\Hry\Worms W.M.D\unins001.exe"
Worms W.M.D.-->"D:\Hry\Worms W.M.D\unins000.exe"

======System event log======

Computer Name: WIN-756JA53QSB4
Event Code: 18
Message: V systmu je k dispozici nsledujc poet monost spoutn: 0x1.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20211002170754.594392-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-756JA53QSB4
Event Code: 153
Message: Zabezpeen zaloen na virtualizaci (zsady: 0) je disabled.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20211002170754.594332-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-756JA53QSB4
Event Code: 12
Message: Operan systm se spustil v systmovm ase ?2021?-?10?-?02T17:07:54.500000000Z.
Record Number: 3
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20211002170754.594261-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-756JA53QSB4
Event Code: 6005
Message: Sluba Event Log byla sputna.
Record Number: 2
Source Name: EventLog
Time Written: 20211002170816.831742-000
Event Type: Informace
User: 

Computer Name: WIN-756JA53QSB4
Event Code: 6009
Message: Microsoft (R) Windows (R) 10.00. 19042  Multiprocessor Free.
Record Number: 1
Source Name: EventLog
Time Written: 20211002170816.831742-000
Event Type: Informace
User: 

=====Application event log=====

Computer Name: WIN-756JA53QSB4
Event Code: 4097
Message: spn automatick aktualizace koenovho certifiktu jinho vrobce: Subjekt: <CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US> Kryptografick otisk SHA1: <3679CA35668772304D30A5FB873B0FA77BB70D54>.
Record Number: 5
Source Name: Microsoft-Windows-CAPI2
Time Written: 20211002170838.076783-000
Event Type: Informace
User: 

Computer Name: WIN-756JA53QSB4
Event Code: 5617
Message: Subsystmy sluby WMI (Windows Management Instrumentation) byly spn inicializovny.
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20211002170818.036562-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-756JA53QSB4
Event Code: 0
Message: Service stopped.
Record Number: 3
Source Name: edgeupdate
Time Written: 20211002170818.097069-000
Event Type: Informace
User: 

Computer Name: WIN-756JA53QSB4
Event Code: 5615
Message: Sluba WMI (Windows Management Instrumentation) byla spn sputna.
Record Number: 2
Source Name: Microsoft-Windows-WMI
Time Written: 20211002170817.310273-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-756JA53QSB4
Event Code: 1531
Message: Sluba Profil uivatele byla spn sputna.  


Record Number: 1
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20211002170816.896682-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Security event log=====

Computer Name: DESKTOP-40L3838
Event Code: 4624
Message: et byl spn pihlen.

Pedmt:
	ID zabezpeen:		S-1-5-18
	Nzev tu:		DESKTOP-40L3838$
	Domna tu:		WORKGROUP
	ID pihlen:		0x3E7

Informace o pihlen:
	Typ pihlen:		2
	Omezen reim sprvce:	-
	Virtuln et:		Ano
	Token se zvenm oprvnnm:		Ne

rove zosobnn:		Zosobnn

Nov pihlen:
	ID zabezpeen:		S-1-5-96-0-0
	Nzev tu:		UMFD-0
	Domna tu:		Font Driver Host
	ID pihlen:		0xD760
	ID propojenho pihlen:		0x0
	Nzev tu v sti:	-
	Domna tu v sti:	-
	GUID pihlen:		{00000000-0000-0000-0000-000000000000}

Informace o procesu:
	ID procesu:		0x2a4
	Nzev procesu:		C:\Windows\System32\wininit.exe

Informace o sti:
	Nzev pracovn stanice:	-
	Adresa zdrojov st:	-
	Zdrojov port:		-

Podrobn informace o oven:
	Proces pihlen:		Advapi  
	Balek oven:	Negotiate
	Penosov sluby:	-
	Nzev balku (jenom NTLM):	-
	Dlka kle:		0

Tato udlost je vygenerovna po vytvoen relace pihlen. Je generovna v potai, ke ktermu byl zskn pstup.

Pole pedmtu oznauj et v mstnm systmu, kter si vydal pihlen. Obvykle se jedn o slubu, napklad serverovou slubu, nebo o mstn proces, napklad Winlogon.exe nebo Services.exe.

Pole typu pihlen oznauje druh pihlen, kter probhlo. Nejastj typy jsou 2 (interaktivn) a 3 (sov).

Pole Nov pihlen oznauj et, pro kter bylo vytvoeno nov pihlen, tj. pihlenet.

Pole S oznauj pvod poadavku na vzdlen pihlen. Nzev pracovn stanice nen vdy k dispozici a v nkterch ppadech me bt toto pole przdn.

Pole rovn zosobnn oznauje rozsah, ve kterm me bt proces v pihlaovac relaci zosobnn.

Pole s informacemi o oven poskytuj podrobn informace o tomto konkrtnm poadavku na pihlen.
	- GUID pihlen je jednoznan identifiktor, kter je mon pout ke spojen tto udlosti s udlost KDC.
	- Penosov sluby oznauj pomocn sluby, kter se podlely na tomto poadavku na pihlen.
	- Nzev balku oznauje dl protokol z protokol NTLM, kterbyl pouit.
	- Dlka kle oznauje dlku generovanho kle relace. Tato hodnota bude 0, pokud nebyl poadovn dn kl relace.
Record Number: 16802
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20211105171616.273208-000
Event Type: spn audit
User: 

Computer Name: DESKTOP-40L3838
Event Code: 4648
Message: Dolo k pokusu o pihlen pomoc explicitnch pihlaovacch daj.

Pedmt:
	ID zabezpeen:		S-1-5-18
	Nzev tu:		DESKTOP-40L3838$
	Domna tu:		WORKGROUP
	ID pihlen:		0x3E7
	GUID pihlen:		{00000000-0000-0000-0000-000000000000}

et, jeho pihlaovac daje byly pouity:
	Nzev tu:		UMFD-1
	Domna tu:		Font Driver Host
	GUID pihlen:	{00000000-0000-0000-0000-000000000000}

Clov server:
	Nzev clovho serveru:	localhost
	Dal informace:	localhost

Informace o procesu:
	ID procesu:		0x310
	Nzev procesu:		C:\Windows\System32\winlogon.exe

Informace o sti:
	Sov adresa:	-
	Port:			-

Tato udlost je generovna, pokud se proces pokus pihlsit k tu explicitnm zadnm pihlaovacch daj tohoto tu. K tomu nejastji dochz v dvkovch konfiguracch, napklad naplnovanch lohch, nebo pi pouit pkazu RUNAS.
Record Number: 16801
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20211105171616.273193-000
Event Type: spn audit
User: 

Computer Name: DESKTOP-40L3838
Event Code: 4648
Message: Dolo k pokusu o pihlen pomoc explicitnch pihlaovacch daj.

Pedmt:
	ID zabezpeen:		S-1-5-18
	Nzev tu:		DESKTOP-40L3838$
	Domna tu:		WORKGROUP
	ID pihlen:		0x3E7
	GUID pihlen:		{00000000-0000-0000-0000-000000000000}

et, jeho pihlaovac daje byly pouity:
	Nzev tu:		UMFD-0
	Domna tu:		Font Driver Host
	GUID pihlen:	{00000000-0000-0000-0000-000000000000}

Clov server:
	Nzev clovho serveru:	localhost
	Dal informace:	localhost

Informace o procesu:
	ID procesu:		0x2a4
	Nzev procesu:		C:\Windows\System32\wininit.exe

Informace o sti:
	Sov adresa:	-
	Port:			-

Tato udlost je generovna, pokud se proces pokus pihlsit k tu explicitnm zadnm pihlaovacch daj tohoto tu. K tomu nejastji dochz v dvkovch konfiguracch, napklad naplnovanch lohch, nebo pi pouit pkazu RUNAS.
Record Number: 16800
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20211105171616.273193-000
Event Type: spn audit
User: 

Computer Name: DESKTOP-40L3838
Event Code: 4902
Message: Tabulka zsad auditu pro jednotliv uivatele byla vytvoena.

Poet prvk:	0
ID zsady:	0xD552
Record Number: 16799
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20211105171616.252147-000
Event Type: spn audit
User: 

Computer Name: DESKTOP-40L3838
Event Code: 4624
Message: et byl spn pihlen.

Pedmt:
	ID zabezpeen:		S-1-0-0
	Nzev tu:		-
	Domna tu:		-
	ID pihlen:		0x0

Informace o pihlen:
	Typ pihlen:		0
	Omezen reim sprvce:	-
	Virtuln et:		Ne
	Token se zvenm oprvnnm:		Ano

rove zosobnn:		-

Nov pihlen:
	ID zabezpeen:		S-1-5-18
	Nzev tu:		SYSTEM
	Domna tu:		NT AUTHORITY
	ID pihlen:		0x3E7
	ID propojenho pihlen:		0x0
	Nzev tu v sti:	-
	Domna tu v sti:	-
	GUID pihlen:		{00000000-0000-0000-0000-000000000000}

Informace o procesu:
	ID procesu:		0x4
	Nzev procesu:		

Informace o sti:
	Nzev pracovn stanice:	-
	Adresa zdrojov st:	-
	Zdrojov port:		-

Podrobn informace o oven:
	Proces pihlen:		-
	Balek oven:	-
	Penosov sluby:	-
	Nzev balku (jenom NTLM):	-
	Dlka kle:		0

Tato udlost je vygenerovna po vytvoen relace pihlen. Je generovna v potai, ke ktermu byl zskn pstup.

Pole pedmtu oznauj et v mstnm systmu, kter si vydal pihlen. Obvykle se jedn o slubu, napklad serverovou slubu, nebo o mstn proces, napklad Winlogon.exe nebo Services.exe.

Pole typu pihlen oznauje druh pihlen, kter probhlo. Nejastj typy jsou 2 (interaktivn) a 3 (sov).

Pole Nov pihlen oznauj et, pro kter bylo vytvoeno nov pihlen, tj. pihlenet.

Pole S oznauj pvod poadavku na vzdlen pihlen. Nzev pracovn stanice nen vdy k dispozici a v nkterch ppadech me bt toto pole przdn.

Pole rovn zosobnn oznauje rozsah, ve kterm me bt proces v pihlaovac relaci zosobnn.

Pole s informacemi o oven poskytuj podrobn informace o tomto konkrtnm poadavku na pihlen.
	- GUID pihlen je jednoznan identifiktor, kter je mon pout ke spojen tto udlosti s udlost KDC.
	- Penosov sluby oznauj pomocn sluby, kter se podlely na tomto poadavku na pihlen.
	- Nzev balku oznauje dl protokol z protokol NTLM, kterbyl pouit.
	- Dlka kle oznauje dlku generovanho kle relace. Tato hodnota bude 0, pokud nebyl poadovn dn kl relace.
Record Number: 16798
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20211105171616.103864-000
Event Type: spn audit
User: 

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"DriverData"=C:\Windows\System32\Drivers\DriverData
"OS"=Windows_NT
"Path"=C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"PSModulePath"=%ProgramFiles%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 94 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=5e03
"asl.log"=Destination=file

-----------------EOF-----------------
