vyskakují reklamy,nezůstává domovská stránka
Napsal: 26 úno 2017 16:39
Dobrý den,
prosím o kontrolu mého PC. V prohlížeči mi stále vyskakují reklamy a mění se nastavená domovská stránka.
Děkuji.
Vkládám log:
info.txt logfile of random's system information tool 1.15 2017-02-26 16:29:56
====== MBR ======
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
====== Uninstall list ======
Adobe Flash Player 24 NPAPI [2016/12/24 01:14:27]-->C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_186_Plugin.exe -maintain plugin
AIO Ultimate Patch v9.0.0 [20160627]-->"C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\unins000.exe"
Akamai NetSession Interface [2016/09/25 06:37:35]-->"C:\Users\lukykos\AppData\Local\Akamai\uninstall.exe"
Combat Arms EU [2016/09/25 06:39:57]-->"C:\Nexon\Combat Arms EU\uninstall.exe"
Counter-Strike Global Offensive WaRzOnE [2016/09/25 06:37:35]-->C:\Games\Counter-Strike Global Offensive\uninstall.exe
Don't Starve Together [2016/12/02 19:46:38]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/322330
Factorio [2017/02/11 10:11:42]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/427520
Fraps [2016/09/25 06:39:57]-->"C:\Fraps\uninstall.exe"
Frontier Launchpad version 1.0.2 [20161118]-->"C:\Users\lukykos\AppData\Local\Frontier Developments\Frontier Launchpad\unins000.exe"
Gaming Keyboard Driver [20160625]-->C:\Program Files (x86)\InstallShield Installation Information\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}\setup.exe -runfromtemp -l0x0009 -removeonly
gBurner [2016/12/12 15:25:03]-->"C:\Program Files (x86)\gBurner\uninstall.exe"
Google Chrome [20160705]-->"C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\Installer\setup.exe" --uninstall --system-level
Google Update Helper [20161223]-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Grand Theft Auto V [20160615]-->"C:\Program Files (x86)\InstallShield Installation Information\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}\Setup.exe" -runfromtemp -l0x0409 -removeonly
Cheat Engine 6.5.1 [20160719]-->"C:\Program Files (x86)\Cheat Engine 6.5.1\unins000.exe"
Intel Security True Key [2016/09/25 06:39:50]-->C:\Program Files\TrueKey\Mcafee.TrueKey.Uninstaller.Exe
Intel(R) Biometric and Context Agent [20160711]-->MsiExec.exe /X{C1424923-74F7-4399-B9D9-5F72FB1B9481}
Intel(R) Biometric and Context Agent Redistributables [20160711]-->MsiExec.exe /X{C3F24413-3E29-4979-A195-DEEB56F29B2A}
Intel® RealSense™ SDK 2014 Runtime (x64): Core [20160711]-->MsiExec.exe /X{37D41A97-6B02-4C30-8753-85107BE1D674}
Java 8 Update 91 [20160618]-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218091F0}
League of Legends [2017/02/24 12:34:16]-->msiexec.exe /x {6FEDADF5-40EC-4E18-A376-0FDBACE65338}
League of Legends [20170117]-->MsiExec.exe /X{6FEDADF5-40EC-4E18-A376-0FDBACE65338}
LogMeIn Hamachi [2016/12/25 17:42:31]-->C:\WINDOWS\SysWOW64\\msiexec.exe /i {91B5DF26-717A-4A5F-AB10-CD450FAD428C} REMOVE=ALL
LogMeIn Hamachi [20161225]-->MsiExec.exe /I{91B5DF26-717A-4A5F-AB10-CD450FAD428C}
McAfee Security Scan Plus [2016/09/25 06:39:57]-->"C:\Program Files (x86)\McAfee Security Scan\uninstall.exe"
Microsoft OneDrive [2017/01/27 15:16:46]-->C:\Users\lukykos\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\OneDriveSetup.exe /uninstall
Microsoft Visual C++ 2005 Redistributable (x64) [20160814]-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable [20160814]-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 [20160924]-->MsiExec.exe /X{02A39130-2CF3-30CA-8623-30F6071A4221}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [20160902]-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [20160902]-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [20160615]-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 [20160814]-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [20160814]-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 [2016/11/18 21:47:58]-->"C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 [2016/11/18 21:47:35]-->"C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 [20161118]-->MsiExec.exe /X{37B8F9C7-03FB-3253-8781-2517C99D7C00}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 [20161118]-->MsiExec.exe /X{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 [20161118]-->MsiExec.exe /X{B175520C-86A2-35A7-8619-86DC379688B9}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 [20161118]-->MsiExec.exe /X{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 [2016/09/25 06:39:58]-->"C:\ProgramData\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 [2016/09/25 06:39:59]-->"C:\ProgramData\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 [20160615]-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 [20160615]-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 [20160615]-->MsiExec.exe /X{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 [20160615]-->MsiExec.exe /X{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 [2016/11/18 21:50:21]-->"C:\ProgramData\Package Cache\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}\VC_redist.x64.exe" /uninstall
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 [2016/11/18 21:49:11]-->"C:\ProgramData\Package Cache\{23daf363-3020-4059-b3ae-dc4ad39fed19}\VC_redist.x86.exe" /uninstall
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23506 [20161118]-->MsiExec.exe /X{B0B194F8-E0CE-33FE-AA11-636428A4B73D}
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23506 [20161118]-->MsiExec.exe /X{A1C31BA5-5438-3A07-9EEE-A5FB2D0FDE36}
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23506 [20161118]-->MsiExec.exe /X{1045AB6F-6151-3634-8C2C-EE308AA1A6A7}
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23506 [20161118]-->MsiExec.exe /X{65AD78AD-D23D-3A1E-9305-3AE65CD522C2}
Microsoft XNA Framework Redistributable 4.0 Refresh [20160627]-->MsiExec.exe /I{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}
Minecraft [20160805]-->MsiExec.exe /X{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}
Mine-imator version 1.0.6 [20161004]-->"C:\Users\lukykos\Mine-imator\unins000.exe"
Mozilla Firefox 51.0.1 (x86 cs) [2017/02/06 20:13:04]-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service [2017/01/28 20:26:25]-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
MPC-HC 1.7.10 [20160711]-->"C:\Program Files (x86)\MPC-HC\unins000.exe"
MyPC Backup [2016/09/25 06:39:50]-->C:\Program Files (x86)\OLBPre\uninst.exe
Notepad++ [2016/09/25 06:39:57]-->C:\Program Files (x86)\Notepad++\uninstall.exe
Nox APP Player [2016/10/26 12:16:29]-->C:\Users\lukykos\AppData\Roaming\Nox\bin\Nox_unload.exe
NVIDIA GeForce Experience 2.5.15.54 [20160615]-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Ovladač 3D Vision 376.53 [20170210]-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA Ovladač HD audia 1.3.34.17 [20170210]-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA Ovladač řídící jednotky 3D Vision 364.44 [20160615]-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA Ovladače grafiky 376.53 [20170210]-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA Stereoscopic 3D Driver [2017/02/11 10:11:42]-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
NVIDIA Systémový software PhysX 9.16.0318 [20160615]-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
Open Broadcaster Software [2016/09/25 06:39:57]-->C:\Program Files (x86)\OBS\uninstall.exe
Pixelmon Launcher (Beta) [2016/11/13 17:52:37]-->C:\ProgramData\Caphyon\Advanced Installer\{796E1EEB-FEFA-4638-9EBB-0B1BD393C057}\PixelmonLauncherBeta-2.0.26.exe /x {796E1EEB-FEFA-4638-9EBB-0B1BD393C057}
Pixelmon Launcher (Beta) [20161113]-->MsiExec.exe /I{796E1EEB-FEFA-4638-9EBB-0B1BD393C057}
PokeCraft_GameTeam_1.7.10 [2016/09/25 06:39:57]-->C:\GameTeamPokeCraft\Uninstal.exe
PSPad editor [20161004]-->"C:\Program Files (x86)\PSPad editor\Uninst\unins000.exe"
ROBLOX Player for lukykos [20170221]-->"C:\Users\lukykos\AppData\Local\Roblox\Versions\version-d31f23e3f760404e\RobloxPlayerLauncher.exe" -uninstall
Rocket League [2017/02/24 12:34:16]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/252950
Rockstar Games Social Club [2016/12/23 16:06:21]-->C:\Program Files\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
Rust [2017/02/24 12:34:16]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/252490
Seznam Software [2016/09/25 06:37:35]-->"C:\Users\lukykos\AppData\Roaming\Seznam.cz\szninstall.exe" -X
Skype™ 7.31 [20170206]-->MsiExec.exe /X{FC965A47-4839-40CA-B618-18F486F042C6}
Slime Rancher [2016/12/12 20:07:00]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/433340
Steam [2016/12/27 19:15:57]-->C:\Program Files (x86)\Steam\uninstall.exe
Team Fortress 2 [2016/12/02 19:46:38]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/440
Terraria [20160627]-->"C:\GOG Games\Terraria\unins000.exe"
Unity Web Player [2016/09/25 06:37:35]-->C:\Users\lukykos\AppData\Local\Unity\WebPlayer\Uninstall.exe /CurrentUser
VLC media player [2016/09/25 06:39:58]-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Vulkan Run Time Libraries 1.0.26.0 [2017/02/10 17:48:33]-->C:\Program Files (x86)\VulkanRT\1.0.26.0\UninstallVulkanRT.exe
WarThunder [2016/09/25 06:39:58]-->cmd /c start /wait wscript "C:\Users\lukykos\AppData\Roaming\WarThunder\osutils.vbs" /df:"C:\Users\lukykos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder" /df:"C:\Users\lukykos\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk" /dt:"WarThunder0" /dt:"WarThunder1" /dt:"WarThunder2" /dt:"WarThunder3" /item:"C:\Users\lukykos\Desktop\WarThunder.lnk" /loc:"all" /path:"C:\Users\lukykos\AppData\Roaming\" /prod:"WarThunder" /run:"second"
Windows Driver Package - BigNox Corporation XQHDrv System (05/27/2016 4.3.12) [2016/10/26 12:15:55]-->C:\PROGRA~1\DIFX\1E5F57120B769A13\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\xqhdrv_F424A6671D4229C7B509653EF4E55CCBA8C240FC\xqhdrv.inf
Windows Driver Package - Oracle Corporation VBoxUSBMon System (05/27/2016 4.3.12) [2016/10/26 12:16:03]-->C:\PROGRA~1\DIFX\1E5F57120B769A13\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\vboxusbmon_6559BFE21C50916CAADBF1715348141A74B281A8\vboxusbmon.inf
WinRAR 5.31 (32-bit) [2016/09/25 06:39:58]-->C:\Program Files (x86)\WinRAR\uninstall.exe
XAMPP [1472844021]-->C:\xampp\uninstall.exe
====== System event log" ======
Computer Name: DESKTOP-98BA3HQ
Event Code: 27
Message: Typ spuštění byl 0x0.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20160925052759.644320-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 153
Message: Zabezpečení založené na virtualizaci (zásady: 0) je zakázáno se stavem STATUS_SUCCESS.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20160925052759.643952-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 3
Source Name: EventLog
Time Written: 20160925052931.564454-000
Event Type: Informace
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 6009
Message: Microsoft (R) Windows (R) 10.00. 14393 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20160925052931.564454-000
Event Type: Informace
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 12
Message: Operační systém se spustil v systémovém čase 2016-09-25T05:27:59.497329600Z.
Record Number: 1
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20160925052759.643864-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
===== Application event log" =====
Computer Name: DESKTOP-98BA3HQ
Event Code: 5
Message: Služba Windows Search úspěšně vytvořila výchozí konfiguraci pro nového uživatele DESKTOP-98BA3HQ\lukykos.
Record Number: 5
Source Name: Microsoft-Windows-Search-ProfileNotify
Time Written: 20160925053556.826692-000
Event Type: Informace
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 5617
Message: Subsystémy služby WMI (Windows Management Instrumentation) byly úspěšně inicializovány.
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20160925053043.725257-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20160925052938.829457-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20160925052932.624619-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20160925052931.970699-000
Event Type: Informace
User:
===== Security event log" =====
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\ko-KR\memtest.exe.mui
ID popisovače: 0x2b0
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29897
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.153267-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\ko-KR\bootmgr.exe.mui
ID popisovače: 0x2b0
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29896
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.151237-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\ja-JP\memtest.exe.mui
ID popisovače: 0x2b0
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29895
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.148392-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\ja-JP\bootmgr.exe.mui
ID popisovače: 0x364
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29894
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.146103-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\it-IT\memtest.exe.mui
ID popisovače: 0x364
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29893
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.143244-000
Event Type: Úspěšný audit
User:
====== Environment variables ======
"ComSpec" = %SystemRoot%\system32\cmd.exe
"OS" = Windows_NT
"PATHEXT" = .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE" = AMD64
"PSModulePath" = %ProgramFiles%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules
"TEMP" = %SystemRoot%\TEMP
"TMP" = %SystemRoot%\TEMP
"USERNAME" = SYSTEM
"windir" = %SystemRoot%
"NUMBER_OF_PROCESSORS" = 4
"PROCESSOR_LEVEL" = 16
"PROCESSOR_IDENTIFIER" = AMD64 Family 16 Model 5 Stepping 3, AuthenticAMD
"PROCESSOR_REVISION" = 0503
"Path" = C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
-----------------EOF-----------------
prosím o kontrolu mého PC. V prohlížeči mi stále vyskakují reklamy a mění se nastavená domovská stránka.
Děkuji.
Vkládám log:
info.txt logfile of random's system information tool 1.15 2017-02-26 16:29:56
====== MBR ======
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
====== Uninstall list ======
Adobe Flash Player 24 NPAPI [2016/12/24 01:14:27]-->C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_186_Plugin.exe -maintain plugin
AIO Ultimate Patch v9.0.0 [20160627]-->"C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\unins000.exe"
Akamai NetSession Interface [2016/09/25 06:37:35]-->"C:\Users\lukykos\AppData\Local\Akamai\uninstall.exe"
Combat Arms EU [2016/09/25 06:39:57]-->"C:\Nexon\Combat Arms EU\uninstall.exe"
Counter-Strike Global Offensive WaRzOnE [2016/09/25 06:37:35]-->C:\Games\Counter-Strike Global Offensive\uninstall.exe
Don't Starve Together [2016/12/02 19:46:38]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/322330
Factorio [2017/02/11 10:11:42]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/427520
Fraps [2016/09/25 06:39:57]-->"C:\Fraps\uninstall.exe"
Frontier Launchpad version 1.0.2 [20161118]-->"C:\Users\lukykos\AppData\Local\Frontier Developments\Frontier Launchpad\unins000.exe"
Gaming Keyboard Driver [20160625]-->C:\Program Files (x86)\InstallShield Installation Information\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}\setup.exe -runfromtemp -l0x0009 -removeonly
gBurner [2016/12/12 15:25:03]-->"C:\Program Files (x86)\gBurner\uninstall.exe"
Google Chrome [20160705]-->"C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\Installer\setup.exe" --uninstall --system-level
Google Update Helper [20161223]-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Grand Theft Auto V [20160615]-->"C:\Program Files (x86)\InstallShield Installation Information\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}\Setup.exe" -runfromtemp -l0x0409 -removeonly
Cheat Engine 6.5.1 [20160719]-->"C:\Program Files (x86)\Cheat Engine 6.5.1\unins000.exe"
Intel Security True Key [2016/09/25 06:39:50]-->C:\Program Files\TrueKey\Mcafee.TrueKey.Uninstaller.Exe
Intel(R) Biometric and Context Agent [20160711]-->MsiExec.exe /X{C1424923-74F7-4399-B9D9-5F72FB1B9481}
Intel(R) Biometric and Context Agent Redistributables [20160711]-->MsiExec.exe /X{C3F24413-3E29-4979-A195-DEEB56F29B2A}
Intel® RealSense™ SDK 2014 Runtime (x64): Core [20160711]-->MsiExec.exe /X{37D41A97-6B02-4C30-8753-85107BE1D674}
Java 8 Update 91 [20160618]-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218091F0}
League of Legends [2017/02/24 12:34:16]-->msiexec.exe /x {6FEDADF5-40EC-4E18-A376-0FDBACE65338}
League of Legends [20170117]-->MsiExec.exe /X{6FEDADF5-40EC-4E18-A376-0FDBACE65338}
LogMeIn Hamachi [2016/12/25 17:42:31]-->C:\WINDOWS\SysWOW64\\msiexec.exe /i {91B5DF26-717A-4A5F-AB10-CD450FAD428C} REMOVE=ALL
LogMeIn Hamachi [20161225]-->MsiExec.exe /I{91B5DF26-717A-4A5F-AB10-CD450FAD428C}
McAfee Security Scan Plus [2016/09/25 06:39:57]-->"C:\Program Files (x86)\McAfee Security Scan\uninstall.exe"
Microsoft OneDrive [2017/01/27 15:16:46]-->C:\Users\lukykos\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\OneDriveSetup.exe /uninstall
Microsoft Visual C++ 2005 Redistributable (x64) [20160814]-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable [20160814]-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 [20160924]-->MsiExec.exe /X{02A39130-2CF3-30CA-8623-30F6071A4221}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [20160902]-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [20160902]-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [20160615]-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 [20160814]-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [20160814]-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 [2016/11/18 21:47:58]-->"C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 [2016/11/18 21:47:35]-->"C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 [20161118]-->MsiExec.exe /X{37B8F9C7-03FB-3253-8781-2517C99D7C00}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 [20161118]-->MsiExec.exe /X{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 [20161118]-->MsiExec.exe /X{B175520C-86A2-35A7-8619-86DC379688B9}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 [20161118]-->MsiExec.exe /X{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 [2016/09/25 06:39:58]-->"C:\ProgramData\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 [2016/09/25 06:39:59]-->"C:\ProgramData\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 [20160615]-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 [20160615]-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 [20160615]-->MsiExec.exe /X{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 [20160615]-->MsiExec.exe /X{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 [2016/11/18 21:50:21]-->"C:\ProgramData\Package Cache\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}\VC_redist.x64.exe" /uninstall
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 [2016/11/18 21:49:11]-->"C:\ProgramData\Package Cache\{23daf363-3020-4059-b3ae-dc4ad39fed19}\VC_redist.x86.exe" /uninstall
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23506 [20161118]-->MsiExec.exe /X{B0B194F8-E0CE-33FE-AA11-636428A4B73D}
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23506 [20161118]-->MsiExec.exe /X{A1C31BA5-5438-3A07-9EEE-A5FB2D0FDE36}
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23506 [20161118]-->MsiExec.exe /X{1045AB6F-6151-3634-8C2C-EE308AA1A6A7}
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23506 [20161118]-->MsiExec.exe /X{65AD78AD-D23D-3A1E-9305-3AE65CD522C2}
Microsoft XNA Framework Redistributable 4.0 Refresh [20160627]-->MsiExec.exe /I{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}
Minecraft [20160805]-->MsiExec.exe /X{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}
Mine-imator version 1.0.6 [20161004]-->"C:\Users\lukykos\Mine-imator\unins000.exe"
Mozilla Firefox 51.0.1 (x86 cs) [2017/02/06 20:13:04]-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service [2017/01/28 20:26:25]-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
MPC-HC 1.7.10 [20160711]-->"C:\Program Files (x86)\MPC-HC\unins000.exe"
MyPC Backup [2016/09/25 06:39:50]-->C:\Program Files (x86)\OLBPre\uninst.exe
Notepad++ [2016/09/25 06:39:57]-->C:\Program Files (x86)\Notepad++\uninstall.exe
Nox APP Player [2016/10/26 12:16:29]-->C:\Users\lukykos\AppData\Roaming\Nox\bin\Nox_unload.exe
NVIDIA GeForce Experience 2.5.15.54 [20160615]-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Ovladač 3D Vision 376.53 [20170210]-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA Ovladač HD audia 1.3.34.17 [20170210]-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA Ovladač řídící jednotky 3D Vision 364.44 [20160615]-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA Ovladače grafiky 376.53 [20170210]-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA Stereoscopic 3D Driver [2017/02/11 10:11:42]-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
NVIDIA Systémový software PhysX 9.16.0318 [20160615]-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
Open Broadcaster Software [2016/09/25 06:39:57]-->C:\Program Files (x86)\OBS\uninstall.exe
Pixelmon Launcher (Beta) [2016/11/13 17:52:37]-->C:\ProgramData\Caphyon\Advanced Installer\{796E1EEB-FEFA-4638-9EBB-0B1BD393C057}\PixelmonLauncherBeta-2.0.26.exe /x {796E1EEB-FEFA-4638-9EBB-0B1BD393C057}
Pixelmon Launcher (Beta) [20161113]-->MsiExec.exe /I{796E1EEB-FEFA-4638-9EBB-0B1BD393C057}
PokeCraft_GameTeam_1.7.10 [2016/09/25 06:39:57]-->C:\GameTeamPokeCraft\Uninstal.exe
PSPad editor [20161004]-->"C:\Program Files (x86)\PSPad editor\Uninst\unins000.exe"
ROBLOX Player for lukykos [20170221]-->"C:\Users\lukykos\AppData\Local\Roblox\Versions\version-d31f23e3f760404e\RobloxPlayerLauncher.exe" -uninstall
Rocket League [2017/02/24 12:34:16]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/252950
Rockstar Games Social Club [2016/12/23 16:06:21]-->C:\Program Files\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
Rust [2017/02/24 12:34:16]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/252490
Seznam Software [2016/09/25 06:37:35]-->"C:\Users\lukykos\AppData\Roaming\Seznam.cz\szninstall.exe" -X
Skype™ 7.31 [20170206]-->MsiExec.exe /X{FC965A47-4839-40CA-B618-18F486F042C6}
Slime Rancher [2016/12/12 20:07:00]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/433340
Steam [2016/12/27 19:15:57]-->C:\Program Files (x86)\Steam\uninstall.exe
Team Fortress 2 [2016/12/02 19:46:38]-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/440
Terraria [20160627]-->"C:\GOG Games\Terraria\unins000.exe"
Unity Web Player [2016/09/25 06:37:35]-->C:\Users\lukykos\AppData\Local\Unity\WebPlayer\Uninstall.exe /CurrentUser
VLC media player [2016/09/25 06:39:58]-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Vulkan Run Time Libraries 1.0.26.0 [2017/02/10 17:48:33]-->C:\Program Files (x86)\VulkanRT\1.0.26.0\UninstallVulkanRT.exe
WarThunder [2016/09/25 06:39:58]-->cmd /c start /wait wscript "C:\Users\lukykos\AppData\Roaming\WarThunder\osutils.vbs" /df:"C:\Users\lukykos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder" /df:"C:\Users\lukykos\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk" /dt:"WarThunder0" /dt:"WarThunder1" /dt:"WarThunder2" /dt:"WarThunder3" /item:"C:\Users\lukykos\Desktop\WarThunder.lnk" /loc:"all" /path:"C:\Users\lukykos\AppData\Roaming\" /prod:"WarThunder" /run:"second"
Windows Driver Package - BigNox Corporation XQHDrv System (05/27/2016 4.3.12) [2016/10/26 12:15:55]-->C:\PROGRA~1\DIFX\1E5F57120B769A13\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\xqhdrv_F424A6671D4229C7B509653EF4E55CCBA8C240FC\xqhdrv.inf
Windows Driver Package - Oracle Corporation VBoxUSBMon System (05/27/2016 4.3.12) [2016/10/26 12:16:03]-->C:\PROGRA~1\DIFX\1E5F57120B769A13\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\vboxusbmon_6559BFE21C50916CAADBF1715348141A74B281A8\vboxusbmon.inf
WinRAR 5.31 (32-bit) [2016/09/25 06:39:58]-->C:\Program Files (x86)\WinRAR\uninstall.exe
XAMPP [1472844021]-->C:\xampp\uninstall.exe
====== System event log" ======
Computer Name: DESKTOP-98BA3HQ
Event Code: 27
Message: Typ spuštění byl 0x0.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20160925052759.644320-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 153
Message: Zabezpečení založené na virtualizaci (zásady: 0) je zakázáno se stavem STATUS_SUCCESS.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20160925052759.643952-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 3
Source Name: EventLog
Time Written: 20160925052931.564454-000
Event Type: Informace
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 6009
Message: Microsoft (R) Windows (R) 10.00. 14393 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20160925052931.564454-000
Event Type: Informace
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 12
Message: Operační systém se spustil v systémovém čase 2016-09-25T05:27:59.497329600Z.
Record Number: 1
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20160925052759.643864-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
===== Application event log" =====
Computer Name: DESKTOP-98BA3HQ
Event Code: 5
Message: Služba Windows Search úspěšně vytvořila výchozí konfiguraci pro nového uživatele DESKTOP-98BA3HQ\lukykos.
Record Number: 5
Source Name: Microsoft-Windows-Search-ProfileNotify
Time Written: 20160925053556.826692-000
Event Type: Informace
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 5617
Message: Subsystémy služby WMI (Windows Management Instrumentation) byly úspěšně inicializovány.
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20160925053043.725257-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20160925052938.829457-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20160925052932.624619-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: DESKTOP-98BA3HQ
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20160925052931.970699-000
Event Type: Informace
User:
===== Security event log" =====
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\ko-KR\memtest.exe.mui
ID popisovače: 0x2b0
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29897
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.153267-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\ko-KR\bootmgr.exe.mui
ID popisovače: 0x2b0
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29896
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.151237-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\ja-JP\memtest.exe.mui
ID popisovače: 0x2b0
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29895
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.148392-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\ja-JP\bootmgr.exe.mui
ID popisovače: 0x364
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29894
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.146103-000
Event Type: Úspěšný audit
User:
Computer Name: DESKTOP-98BA3HQ
Event Code: 4907
Message: Nastavení auditu objektu se změnila.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: DESKTOP-98BA3HQ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: \Device\HarddiskVolume1\Boot\it-IT\memtest.exe.mui
ID popisovače: 0x364
Informace o procesu:
ID procesu: 0x710
Název procesu: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 29893
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20161212184520.143244-000
Event Type: Úspěšný audit
User:
====== Environment variables ======
"ComSpec" = %SystemRoot%\system32\cmd.exe
"OS" = Windows_NT
"PATHEXT" = .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE" = AMD64
"PSModulePath" = %ProgramFiles%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules
"TEMP" = %SystemRoot%\TEMP
"TMP" = %SystemRoot%\TEMP
"USERNAME" = SYSTEM
"windir" = %SystemRoot%
"NUMBER_OF_PROCESSORS" = 4
"PROCESSOR_LEVEL" = 16
"PROCESSOR_IDENTIFIER" = AMD64 Family 16 Model 5 Stepping 3, AuthenticAMD
"PROCESSOR_REVISION" = 0503
"Path" = C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
-----------------EOF-----------------