Prosím o kontrolu logu Vyřešeno

[akiller]

Dobrý den
Prosím o kontrolu logu, počítač je znatelně pomalejší a při skoro každém spuštění musím měnit rozlišení obrazovky, anžto po startu je rozlišení 800x600. To možná ani virem nebude, krátce předtím jsem se pokoušel hrát The Longest Journey. Na jedno úspěšné spuštění připadlo dalších dvacet restartů PC a stejně jsem to raději odinstaloval v zájmu zachování duševního zdraví. Hra byla legálně koupená na GOG.com bez dalších modifikací a čehokoliv dalšího z mé strany.
Níže přikládám logy z HiJackThis, adwcleaneru a MBAM.
TFC a ATF Cleaner jsem použil

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:46:32, on 20.07.2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal

Running processes:
E:\Instalačky\Správa počítače\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.71\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O4 - HKCU\..\Run: [Vivaldi Update Notifier] "C:\Users\Armin Tamzarian\AppData\Local\Vivaldi\Application\update_notifier.exe"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [GogGalaxy] C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
O23 - Service: AVG Tools - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
O23 - Service: AvgWscReporter - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_200caf4 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files\Google\Chrome\Application\91.0.4472.164\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10236 bytes

[Reklama]

[akiller]

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-03-22.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 07-20-2021
# Duration: 00:00:13
# OS: Windows 10 Home
# Scanned: 31988
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [1833 octets] - [17/07/2021 21:02:41]
AdwCleaner[C00].txt - [1929 octets] - [17/07/2021 21:02:50]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

[akiller]

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 20.07.21
Čas skenování: 16:47
Logovací soubor: 5ad64d50-e969-11eb-bbc5-001d7daf29d4.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1130
Aktualizovat verzi balíku komponent: 1.0.43311
Licence: Bezplatná

-Systémová informace-
OS: Windows 10 (Build 19041.1110)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-0CPP79B\Armin Tamzarian

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 295553
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 5 min, 6 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

[jaro3]

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
https://downloads.malwarebytes.com/file/JRT-EOL
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.


Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/files/details ... _tool.html
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.
Pokud byly nalezeny viry , tak po skenu klikni na „Details…“ a potom na „View log file“. Zkopíruj celý log a vlož ho sem. Potom zavři „threat detail“ a klikni na „Start cleanup“.
Jinak se log nachází zde:
C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Stáhni si RogueKiller by Adlice Software
http://www.adlice.com/download/roguekiller/
http://www.bleepingcomputer.com/download/roguekiller/
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků


Stáhni si CrystalDiskInfo
https://www.stahuj.cz/utility_a_ostatni ... ldiskinfo/
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

[akiller]

----------------------------------------------------------------------------
CrystalDiskInfo 8.12.3 (C) 2008-2021 hiyohiyo
Crystal Dew World: https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 10 [10.0 Build 19043] (x64)
Date : 2021/07/21 18:19:05

-- Controller Map ----------------------------------------------------------
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
+ ATA Channel 0 (0)
- Patriot Pyro SSD ATA Device
- ST1000VT000 HN-M101MBB ATA Device
+ ATA Channel 1 (1)
- ST1000DL002-9TT153 ATA Device
- TSSTcorp CDDVDW SH-224DB ATA Device
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(01) ST1000DL002-9TT153 : 1000,2 GB [0/3/0, pd1]
(02) ST1000VT000 HN-M101MBB : 1000,2 GB [1/4/0, pd1]
(03) Patriot Pyro SSD : 240,0 GB [2/2/0, pd1] - sf

----------------------------------------------------------------------------
(01) ST1000DL002-9TT153
----------------------------------------------------------------------------
Model : ST1000DL002-9TT153
Firmware : CC32
Serial Number : W1V0BJ02
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953523055
Rotation Rate : 5900 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 21311 hod.
Power On Count : 4664 krát
Temperature : 34 C (93 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, NCQ
APM Level : ----
AAM Level : FE00h [ON]
Drive Letter : E:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 115 _99 __6 0000001A6820 Počet chyb čtení
03 _93 _92 __0 000000000000 Čas na roztočení ploten
04 _95 _95 _20 0000000014CF Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _78 _60 _30 000003D41238 Počet chybných hledání
09 _76 _76 __0 00000000533F Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _96 _96 _20 000000001238 Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _97 __0 00000000000B Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _66 _56 _45 000024160022 Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000087 Počet vypnutí disku
C1 _97 _97 __0 00000000180B Počet cyklů načítání/vymazání
C2 _34 _44 __0 000900000022 Teplota
C3 _34 _10 __0 0000001A6820 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 860800005307 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000CF552289 Total Host Writes
F2 100 253 __0 00004AD3A626 Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5731 5630 424A 3032
020: 0000 0000 0004 4343 3332 2020 2020 5354 3130 3030
030: 444C 3030 322D 3954 5431 3533 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0004 0048 0040
080: 01F0 0029 346B 7F01 4163 3469 BE01 4163 207F 0052
090: 0052 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 656F 7470 0000 0000 0000 0000 0000 0000 5000 C500
110: 386C 7F20 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 007F 0280 0000 0000
150: 000A 0000 0000 0000 0000 0000 0000 0000 4F00 8980
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 30B7 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 170C 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 1DA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 73 63 20 68 1A 00 00 00 00 03 03
010: 00 5D 5C 00 00 00 00 00 00 00 04 32 00 5F 5F CF
020: 14 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 4E 3C 38 12 D4 03 00 00 00 09 32
040: 00 4C 4C 3F 53 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 60 60 38 12 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 61 0B 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 42 38 22 00 16 24 00 00 00 BF 32 00 64 64 00
0B0: 00 00 00 00 00 00 C0 32 00 64 64 87 00 00 00 00
0C0: 00 00 C1 32 00 61 61 0B 18 00 00 00 00 00 C2 22
0D0: 00 22 2C 22 00 00 00 09 00 00 C3 1A 00 22 0A 20
0E0: 68 1A 00 00 00 00 C5 12 00 64 64 00 00 00 00 00
0F0: 00 00 C6 10 00 64 64 00 00 00 00 00 00 00 C7 3E
100: 00 C8 C8 00 00 00 00 00 00 00 F0 00 00 64 FD 07
110: 53 00 00 08 86 1C F1 00 00 64 FD 89 22 55 CF 00
120: 00 00 F2 00 00 64 FD 26 A6 D3 4A 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 6F 02 00 7B
170: 03 00 01 00 01 AA 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 40 00 00 00 07 08 08 08 08 07 08 08
190: 07 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 F8 2E 29 5C CA 45 00 00
1B0: 00 00 00 00 01 00 35 95 89 22 55 CF 46 00 00 00
1C0: 26 A6 D3 4A 69 08 00 00 00 00 00 00 96 9D 6B 02
1D0: 00 00 00 00 00 00 00 00 CE 00 00 00 4B 00 04 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 07
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7F

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
0B0: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
0C0: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0E0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0F0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
100: 00 00 00 00 00 00 00 00 00 00 F0 00 00 00 00 00
110: 00 00 00 00 00 00 F1 00 00 00 00 00 00 00 00 00
120: 00 00 F2 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20

----------------------------------------------------------------------------
(02) ST1000VT000 HN-M101MBB
----------------------------------------------------------------------------
Model : ST1000VT000 HN-M101MBB
Firmware : 2BA30004
Serial Number : S38BJ9GH905300
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1953523055
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 6047 hod.
Power On Count : 1972 krát
Temperature : 33 C (91 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, NCQ
APM Level : 0080h [OFF]
AAM Level : FE00h [OFF]
Drive Letter : D:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000000 Počet chyb čtení
02 252 252 __0 000000000000 Průchodnost disku
03 _92 _92 _25 0000000009F3 Čas na roztočení ploten
04 _93 _93 __0 000000001C2B Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 00000000179F Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 252 252 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 0000000007B4 Počet cyklů zapnutí zařízení
BF 252 252 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 00000000004A Počet vypnutí disku
C2 _33 _41 __0 000A00000021 Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 252 252 __0 000000000000 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000000 Počet chyb při zápisu sektorů
DF 252 252 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E1 100 100 __0 000000001BFA Počet cyklů načítání/vymazání

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5333 3842 4A39 4748 3930 3533 3030 2020 2020 2020
020: 0000 8000 0004 3242 4133 3030 3034 5354 3130 3030
030: 5654 3030 3020 484E 2D4D 3130 314D 4242 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1D0E 0004 004C 0040
080: 01FF 0028 746B 7F69 6133 7469 BC41 6123 207F 0063
090: 0063 0080 FFFE 0000 FE00 0008 0048 0437 2710 0000
100: 656F 7470 0000 0000 03EA 0000 6003 0000 5000 4CF2
110: 127F EACD 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 E3A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 64 00 00 00 00 00 00 00 02 26
010: 00 FC FC 00 00 00 00 00 00 00 03 23 00 5C 5C F3
020: 09 00 00 00 00 00 04 32 00 5D 5D 2B 1C 00 00 00
030: 00 00 05 33 00 FC FC 00 00 00 00 00 00 00 07 2E
040: 00 FC FC 00 00 00 00 00 00 00 08 24 00 FC FC 00
050: 00 00 00 00 00 00 09 32 00 64 64 9F 17 00 00 00
060: 00 00 0A 32 00 FC FC 00 00 00 00 00 00 00 0B 32
070: 00 FC FC 00 00 00 00 00 00 00 0C 32 00 63 63 B4
080: 07 00 00 00 00 00 BF 22 00 FC FC 00 00 00 00 00
090: 00 00 C0 22 00 64 64 4A 00 00 00 00 00 00 C2 02
0A0: 00 21 29 21 00 00 00 0A 00 00 C3 3A 00 64 64 00
0B0: 00 00 00 00 00 00 C4 32 00 FC FC 00 00 00 00 00
0C0: 00 00 C5 32 00 FC FC 00 00 00 00 00 00 00 C6 30
0D0: 00 FC FC 00 00 00 00 00 00 00 C7 36 00 C8 C8 00
0E0: 00 00 00 00 00 00 C8 2A 00 64 64 00 00 00 00 00
0F0: 00 00 DF 32 00 FC FC 00 00 00 00 00 00 00 E1 32
100: 00 64 64 FA 1B 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 84 30 00 5B
170: 03 00 01 00 02 CF 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 AB

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 02 00
010: 00 00 00 00 00 00 00 00 00 00 03 19 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 0A 00 00 00 00 00 00 00 00 00 00 07 33
040: 00 00 00 00 00 00 00 00 00 00 08 0F 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 33 00 00 00 00 00 00 00 00 00 00 0B 00
070: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
080: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
090: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0B0: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 C8 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E1 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3B

----------------------------------------------------------------------------
(03) Patriot Pyro SSD
----------------------------------------------------------------------------
Model : Patriot Pyro SSD
Firmware : 603ABBF0
Serial Number : PT160908100225C81
Disk Size : 240,0 GB (8,4/137,4/240,0/240,0)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 468860015
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ACS-2 Revision 3
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 8886 hod.
Power On Count : 1984 krát
Host Reads : 20573 GB
Host Writes : 12650 GB
Temperature : 40 C (104 F)
Health Status : Dobrý (96 %)
Features : S.M.A.R.T., APM, NCQ, TRIM
APM Level : 00FEh [ON]
AAM Level : ----
Drive Letter : C:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr Raw Values (7) Attribute Name
01 _95 _95 _50 00000004D8CBC3 Raw Read Error Rate
05 100 100 __3 00000000000000 Retired Block Count
09 _90 _90 __0 2ED65A000022B6 Power-on Hours
0C _99 _99 __0 000000000007C0 Power Cycle Count
AB 100 100 __0 00000000000000 Program Fail Count
AC 100 100 __0 00000000000000 Erase Fail Count
AE __0 __0 __0 0000000000004E Unexpected Power Loss Count
B1 __0 __0 __0 00000000000001 Wear Range Delta
B5 100 100 __0 00000000000000 Program Fail Count
B6 100 100 __0 00000000000000 Erase Fail Count
BB 100 100 __0 00000000000000 Reported Uncorrectable Errors
BE _40 _47 __0 000009002F0028 Specifický pro výrobce
C2 _40 _47 __0 000009002F0028 Temperature
C3 120 120 __0 00000004D8CBC3 On-the-Fly ECC Uncorrectable Error Count
C4 100 100 __3 00000000000000 Reallocation Event Count
C9 120 120 __0 00000004D8CBC3 Uncorrectable Soft Read Error Rate
CC 120 120 __0 00000004D8CBC3 Soft ECC Correction Rate
E6 100 100 __0 00000000000064 Life Curve Status
E7 _96 _96 _10 00000E00000001 SSD Life Left
E9 __0 __0 __0 00000000005FA3 Specifický pro výrobce
EA __0 __0 __0 0000000000316A Specifický pro výrobce
F1 __0 __0 __0 0000000000316A Lifetime Writes from Host
F2 __0 __0 __0 0000000000505D Lifetime Reads from Host

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5054 3136 3039 3038 3130 3032 3235 4338 3120 2020
020: 0000 0000 0004 3630 3341 4242 4630 5061 7472 696F
030: 7420 5079 726F 2053 5344 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8001 4000 2F00
050: 4001 0200 0200 0007 3FFF 0010 003F FC10 00FB 0101
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0F08
070: 0000 0000 0000 0000 0000 001F 950E 0004 004C 0040
080: 01FC 0110 746B 7569 6163 7429 B449 6163 207F 0002
090: 0002 00FE FFFE 0000 0000 0000 0000 0000 0000 0000
100: 3C6F 1BF2 0000 0000 0000 0001 4000 0000 5888 9141
110: 0022 5C81 0000 0000 0000 0000 0000 0000 0000 405A
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0025 0000 0000 4000
210: 0000 0000 0100 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 103F 0000 0000 0000 0000 0000 0000 0000
230: 3C6F 1BF2 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 D8A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 32 00 5F 5F C3 CB D8 04 00 00 00 05 33
010: 00 64 64 00 00 00 00 00 00 00 09 32 00 5A 5A B6
020: 22 00 00 5A D6 2E 0C 32 00 63 63 C0 07 00 00 00
030: 00 00 AB 0A 00 64 64 00 00 00 00 00 00 00 AC 32
040: 00 64 64 00 00 00 00 00 00 00 AE 30 00 00 00 4E
050: 00 00 00 00 00 00 B1 00 00 00 00 01 00 00 00 00
060: 00 00 B5 0A 00 64 64 00 00 00 00 00 00 00 B6 32
070: 00 64 64 00 00 00 00 00 00 00 BB 12 00 64 64 00
080: 00 00 00 00 00 00 BE 00 00 28 2F 28 00 2F 00 09
090: 00 00 C2 22 00 28 2F 28 00 2F 00 09 00 00 C3 1C
0A0: 00 78 78 C3 CB D8 04 00 00 00 C4 33 00 64 64 00
0B0: 00 00 00 00 00 00 C9 1C 00 78 78 C3 CB D8 04 00
0C0: 00 00 CC 1C 00 78 78 C3 CB D8 04 00 00 00 E6 13
0D0: 00 64 64 64 00 00 00 00 00 00 E7 13 00 60 60 01
0E0: 00 00 00 0E 00 00 E9 32 00 00 00 A3 5F 00 00 00
0F0: 00 00 EA 32 00 00 00 6A 31 00 00 00 00 00 F1 32
100: 00 00 00 6A 31 00 00 00 00 00 F2 32 00 00 00 5D
110: 50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7D
170: 03 00 01 00 01 30 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 32 00 00 00 00 00 00 00 00 00 00 05 03
010: 00 00 00 00 00 00 00 00 00 00 09 00 00 00 00 00
020: 00 00 00 00 00 00 0C 00 00 00 00 00 00 00 00 00
030: 00 00 AB 00 00 00 00 00 00 00 00 00 00 00 AC 00
040: 00 00 00 00 00 00 00 00 00 00 AE 00 00 00 00 00
050: 00 00 00 00 00 00 B1 00 00 00 00 00 00 00 00 00
060: 00 00 B5 00 00 00 00 00 00 00 00 00 00 00 B6 00
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BE 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C3 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 03 00 00 00 00
0B0: 00 00 00 00 00 00 C9 00 00 00 00 00 00 00 00 00
0C0: 00 00 CC 00 00 00 00 00 00 00 00 00 00 00 E6 00
0D0: 00 00 00 00 00 00 00 00 00 00 E7 0A 00 00 00 00
0E0: 00 00 00 00 00 00 E9 00 00 00 00 00 00 00 00 00
0F0: 00 00 EA 00 00 00 00 00 00 00 00 00 00 00 F1 00
100: 00 00 00 00 00 00 00 00 00 00 F2 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9E

[akiller]

Ahoj Jaroši
Sophos nic nenašel, a já jsem nenašel ani ten log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Armin Tamzarian (Administrator) on 21.07.2021 at 15:40:02,73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 21.07.2021 at 15:43:17,10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[akiller]

RogueKiller Anti-Malware V15.0.8.0 (x64) [Jul 13 2021] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.19043) 64-bit
Started in : Normal mode
User : Armin Tamzarian [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20210720_183440, Driver : Loaded
Mode : Quick Scan, Scan -- Date : 2021/07/21 18:09:07 (Duration : 00:00:23)
Switches : -minimize

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[jaro3]

Vypni antivir i firewall, RogueKiller, Malwarebytes Antimalware, windowsDefender
Stáhni Zoek.exe
http://download.bleepingcomputer.com/smeenk/zoek.exe
https://uloz.to/file/nFH1LwSrGioP/zoek1-rar

Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
-pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log Zkopíruj sem celý obsah toho logu.
Pokud budou problémy , spusť zoek v nouz. režimu.


Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Můžeš si zatrhnout i vytvoření bodu obnovy:
Klikni na ozubené kolečko , poté na „Skenování“ a zatrhni „vytvářet body obnovy“.
Vrať se zpět ( klikni na domeček).
Zavři všechny otevřené soubory, složky a prohlížeče
Neměň žádné nastavení. Klikni na „Skenovat“.
Po skenu lze vidět , zda jsou nějaké nákazy. Klikni na „Další“. Nákazy budou přemístěny do karantény.
Když je skenování dokončeno, objeví se tisková zpráva , zkopíruj sem celý obsah té zprávy.
Jinak můžeš zprávy vidět , když klikneš vpravo nahoře na „ zprávy“.

Stáhni si a nainstaluj WhoCrashed
otevři ho a klikni na Analyze.
Program vytvoří zprávu , zkopíruj celou a vlož prosím sem.

Vlož nový log z HJT + informuj o problémech

[akiller]

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Armin Tamzarian on 21.07.2021 at 19:48:25,62.
Microsoft Windows 10 Home 10.0.19043 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Armin Tamzarian\Desktop\zoek (1).exe [Scan all users] [Script inserted]

==== System Restore Info ======================

21.07.2021 19:50:32 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~3\Pendulo Studios deleted successfully
C:\Users\Armin Tamzarian\AppData\Local\CrashDumps deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\ARMINT~1\AppData\Roaming\Mozilla\Firefox\Profiles\u6a3z8r7.default-1605620673755\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz");
user_pref("browser.newtab.url", "about:newtab");

Added to C:\Users\ARMINT~1\AppData\Roaming\Mozilla\Firefox\Profiles\u6a3z8r7.default-1605620673755\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\Users\Armin Tamzarian\AppData\Roaming\BitTorrent deleted
C:\Users\Armin Tamzarian\AppData\Local\CrashRpt deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2768B.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM28FFB.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a3c9d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a78ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a78ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7900.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7902.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7904.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7916.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7918.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7929.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a792b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a792d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a793f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7941.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7953.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7955.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7957.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a7968.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a796a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11ac-47c-53a798b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-4865ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-4865ff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486601.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486612.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486614.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486626.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486628.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-48662a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-48663b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-48663d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-48664f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486651.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486663.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486665.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486676.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-486678.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-48668a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-48668c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ca4-2790-48669e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f1fffd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f2000e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f20010.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f20012.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f20024.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f20026.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f20038.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f2003a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f2003c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f2004d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f2004f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f20061.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f20063.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f20094.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f215f2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f215f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f21606.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f21608.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e84-258-14f2160a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c13e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c140.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c142.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c154.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c156.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c158.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c16a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c16c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c17d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c17f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c181.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c193.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c195.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c197.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c1a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c1aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c1ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c1be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e8c-1e80-9c1c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801bf9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801bfb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c0c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c0e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c20.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c22.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c33.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c35.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c4b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c5d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c84.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c96.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c98.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f8-42c-2801c9a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340cc2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340cd4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340cd6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340ce7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340cf9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340cfb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d0d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d1e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d20.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d32.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d34.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d45.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d67.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d78.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d7a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d8c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340d9e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340da0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2110-1264-340db1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445eb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445ec7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445ec9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445ecb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445edc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445ede.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445ef0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445ef2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445ef4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f06.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f08.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f19.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f2f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f31.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f43.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f45.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-2bc0-3445f47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663d5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663d81.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663d83.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663da4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663da6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663db8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663dba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663ddb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663ddd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663dee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e00.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e21.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e43.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e45.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e56.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e6a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-243c-23a0-4663e8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a9077a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a9078c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a9078e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a907af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a907b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a907c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a907c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a907c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a907e8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a90819.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a9081b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a9081d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a9083e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a90840.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a90842.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a90854.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a90856.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a90867.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26e8-1ddc-6a90869.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916e95.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916e97.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916ea8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916eaa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916eac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916eae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916ec0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916ec2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916ed4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916ed6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916ed8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916ee9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916eeb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916eed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916eff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916f01.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916f12.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916f14.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-284c-7b0-916f26.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214ee6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214ee8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214efa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214efc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214efe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f0f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f11.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f23.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f25.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f27.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f39.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f3b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f3d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f64.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-29a4-1120-5214f78.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431955.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431957.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431969.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-943196b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-943197c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-94319ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-94319af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-94319c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431a5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431a61.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431a73.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431a75.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431a86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431a98.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431a9a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431aac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431aae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431abf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-100c-9431ac1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1073.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1075.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1087.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1089.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a109b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a10cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a10dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a10df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a10f1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a10f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1104.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1106.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1128.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1139.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a113b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a114d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a116e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1170.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c8-1a70-65a1182.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dca6f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dca81.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dca83.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dca94.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dca96.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcab8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcaba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcacb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcacd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcafe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb1f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb41.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb43.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e64-2fac-c5dcb8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5533.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5535.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5546.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5548.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d554a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d555c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d555e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5570.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5572.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5574.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5585.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5587.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d5589.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d558b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d559d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d559f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d55a1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d55c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-40c-928-d55c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccd24.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccd36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccd57.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccd69.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccd6b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccd7c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccd8e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccd90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccda2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccda4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccdb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccdb7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccde8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccdea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccdfc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bccdfe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bcce0f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bcce11.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8e0-22fc-2bcce33.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c3a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c64.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322c9f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322ca1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322cb2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322cb4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322cb6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322cc8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322cca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9e4-2780-322cdb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a392d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a393f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3941.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3953.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3974.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3986.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3997.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a39a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a39ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a39bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a39be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a39e0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a39f1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3a03.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3a15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3a36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3a47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3a59.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-1254-a3a7a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e2a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e2c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e40.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e42.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e56.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e69.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e6b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e6d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e7f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97e93.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97ea4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97eb6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97eb8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97ec9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-ce4-bc4-97ecb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280b36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280b48.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280b78.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280c46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280c57.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280c78.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280c7a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280c8c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280cad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280caf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280cc1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280cc3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280cf4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280d15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280d36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280d58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280d79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280d8a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-dd8-2a10-280dac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a395.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a397.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3d1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3d3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3f9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a3fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a40c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a40e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a410.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a422.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a424.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-de8-8f8-9a436.tmp deleted
"C:\DumpStack.log.tmp" not deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\ARMINT~1\AppData\Roaming\Mozilla\Firefox\Profiles\u6a3z8r7.default-1605620673755
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\ARMINT~1\AppData\Roaming\Mozilla\Firefox\Profiles\u6a3z8r7.default-1605620673755
- \u010cesk\u00fd slovn\u00edk pro kontrolu pravopisu - %ProfilePath%\extensions\cs@dictionaries.addons.mozilla.org.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Armin Tamzarian\AppData\Roaming\Mozilla\Firefox\Profiles\u6a3z8r7.default-1605620673755
F202D5A6BB0570DD48226BBCDEC87DB3 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
472CB62C5FFFCF68E543B1B527B4E41F - C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL - Microsoft Office


==== Chromium Look ======================


Chrome Media Router - Armin Tamzarian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - Armin Tamzarian\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Chromium Startpages ======================

C:\Users\Armin Tamzarian\AppData\Local\Vivaldi\User Data\Default\Preferences
"homepage": "https://seznam.cz/",
"homepage_cache": "https://seznam.cz/",


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}

==== Reset Google Chrome ======================

C:\Users\Armin Tamzarian\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Armin Tamzarian\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Armin Tamzarian\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\Armin Tamzarian\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\Armin Tamzarian\AppData\Local\Vivaldi\User Data\Default\Preferences was reset successfully
C:\Users\Armin Tamzarian\AppData\Local\Vivaldi\User Data\Default\Secure Preferences was reset successfully
C:\Users\Armin Tamzarian\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Armin Tamzarian\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully
C:\Users\Armin Tamzarian\AppData\Local\Vivaldi\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Armin Tamzarian\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Armin Tamzarian\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Armin Tamzarian\AppData\Local\Mozilla\Firefox\Profiles\u6a3z8r7.default-1605620673755\cache2 emptied successfully

==== Empty Edge Cache ======================

Edge Cache Emptied Successfully

==== Empty Chrome Cache ======================

C:\Users\Armin Tamzarian\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Armin Tamzarian\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully
C:\Users\Armin Tamzarian\AppData\Local\Vivaldi\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=37 folders=411 24926433 bytes)

==== Empty Temp Folders ======================

C:\Users\Armin Tamzarian\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\defaultuser0\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\ARMINT~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\DumpStack.log.tmp" not deleted

==== EOF on 21.07.2021 at 21:15:35,50 ======================

[akiller]

Log ze Zemana jsem taky nenašel, ale zkopíroval jsem zprávu, která se zobrazila:

Informace o kontroly
Název produktu    :  Zemana AntiMalware
Stav kontroly    :  Dokončena
Datum kontroly    :  21.07.2021 21:19:37
Typ kontroly    :  Inteligentní kontrola
Čas trvání    :  00:01:08
Zkontrolované objekty    :  1786
Zjištěné objekty    :  0
Vyloučené objekty    :  0
Automatické odesílání    :  Ano
Operační systém    :  Windows 10 x64
Procesor    :  2X Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz
Režim systému BIOS    :  UEFI
Informace o doméně    :  WORKGROUP,False,NetSetupWorkgroupName
CUID    :  129CB9E17976E954870DB2

[akiller]

A taktéž z Whocrash jsem nenašel log, domnívám se, že se ani žádný nevytvořil, ale i tuto zprávu jsem zkopíroval:
System Information (local)
--------------------------------------------------------------------------------

Computer name DESKTOP-0CPP79B
Windows version Windows 10, 10.0, version 2009, build 19043
Windows dir CWINDOWS
Hardware EP35-DS3, Gigabyte Technology Co., Ltd.
CPU GenuineIntel Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz 8664, level 6
2 logical processors, active mask 3
RAM 6440865792 bytes (6,0GB)




--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dumps are enabled on your computer. This system is not configured for complete or automatic crash dumps. For best results, configure your system to write out complete or automatic crash dumps. Select Tools-Crash Dump Configuration from the main menu to configure your system to write out complete memory dumps.

Crash dump directories
CWINDOWS
CWINDOWSMinidump

No valid crash dumps have been found on your computer


--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

Crash dumps are enabled but no valid crash dumps have been found. In case you are experiencing system crashes, it may be that crash dumps are prevented from being written out. Check out the following article for possible causes If crash dumps are not written out.



Read the topic general suggestions for troubleshooting system crashes for more information.

Note that it's not always possible to state with certainty whether a reported driver is responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.

[akiller]

Log z HiJackThis jsem našel
Počítač je o poznání rychlejší, ale po restartu přetrvává problém s rozlišením obrazovky. Zhruba po pěti vteřinách se změnilo rozlišení opět na 600x800



Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:24:56, on 21.07.2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal

Running processes:
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe
C:\Program Files (x86)\VirtuaNES\VirtuaNES.exe
E:\Instalačky\Správa počítače\HijackThis.exe
C:\WINDOWS\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O4 - HKCU\..\Run: [Vivaldi Update Notifier] "C:\Users\Armin Tamzarian\AppData\Local\Vivaldi\Application\update_notifier.exe"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [GogGalaxy] C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
O23 - Service: AVG Tools - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
O23 - Service: AvgWscReporter - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_24579 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files\Google\Chrome\Application\91.0.4472.164\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: RogueKiller RTP (rkrtservice) - Unknown owner - C:\Program Files\RogueKiller\RogueKillerSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10729 bytes