Vírus

[martin1973]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-12-2024
Ran by marti (19-12-2024 07:59:50)
Running from C:\Users\marti\Downloads
Microsoft Windows 10 Home Version 22H2 19045.4291 (X64) (2024-03-30 22:30:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2635407922-3120242264-3776596203-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2635407922-3120242264-3776596203-503 - Limited - Disabled)
Guest (S-1-5-21-2635407922-3120242264-3776596203-501 - Limited - Disabled)
marti (S-1-5-21-2635407922-3120242264-3776596203-1001 - Administrator - Enabled) => C:\Users\marti
WDAGUtilityAccount (S-1-5-21-2635407922-3120242264-3776596203-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 24.001.20643 - Adobe)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.31.55 - Conexant)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.140 - Google LLC)
Malwarebytes version 5.2.3.156 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.3.156 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.99 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.99 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2635407922-3120242264-3776596203-1001\...\OneDriveSetup.exe) (Version: 24.226.1110.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden

Packages:
=========
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0 [2024-04-10] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2635407922-3120242264-3776596203-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2635407922-3120242264-3776596203-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-14] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxDTCM.dll [2018-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-14] (Malwarebytes Inc. -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\marti\Downloads\FRST64.exe:MBAM.Zone.Identifier [193]
AlternateDataStreams: C:\Users\marti\Downloads\HP Smart Installer.exe:MBAM.Zone.Identifier [63]
AlternateDataStreams: C:\Users\marti\Downloads\HP-Ink-Tank-Wireless-415-Full-Software-Solution-for-windows-11-10-8.1-8-7-Vista-XP-32-bit-and-64-bit.exe:MBAM.Zone.Identifier [290]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2024-03-30 22:43 - 2024-03-30 22:41 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2635407922-3120242264-3776596203-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\DesktopSpotlight\Assets\Images\image_1.jpg
DNS Servers: 88.212.8.8 - 88.212.8.88
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys
Sieťové pripojenie Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Wi-Fi: Intel(R) Dual Band Wireless-AC 3165 -> Netwtw04.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D7FFD3EF-F0B3-4AE2-9866-2EE2B5358EB5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.116.3213.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4588C0A8-74D3-43BF-A7D5-DE3C8EFADC9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.116.3213.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5F25F6A8-6668-4E8F-AE24-1A3FA41A0CE7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.116.3213.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0C772225-EAAA-4A8D-8B94-2DB268F8D20C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.116.3213.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E0BFBAEB-2E57-4353-B796-6586B88EBA06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E867A78E-BC86-4F6B-9ECB-293325140D6C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8AEFD9B9-9D0B-4AC7-9EB9-0A730BB1E899}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{752A9EDE-F333-45AD-9AE8-9E086EB56768}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3996CB9-68FD-46F0-A2A2-F07B0CFC362A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{88750218-CE9A-4E63-96D0-ABEB6419D68A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{608DA98B-713F-4D70-8F9B-66CAAD498941}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{659AEF4C-8FE6-43AA-AA3C-C5FAFB986B33}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{132D8BB0-D67C-4D8F-BE22-C7A8A9E8C520}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6C460B69-4CA8-45E4-9FD4-CCD384E13326}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BAC1AED4-BDF5-4E32-981C-E5726506EDDB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F9626C39-E1E7-4A5E-94DE-E01A8B41EF58}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.99\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

26-11-2024 20:43:16 Inštalátor modulov systému Windows
27-11-2024 20:59:12 Inštalátor modulov systému Windows
28-11-2024 21:09:15 Inštalátor modulov systému Windows
29-11-2024 21:24:20 Inštalátor modulov systému Windows
30-11-2024 21:39:50 Inštalátor modulov systému Windows
01-12-2024 21:42:08 Inštalátor modulov systému Windows
02-12-2024 22:01:06 Inštalátor modulov systému Windows
03-12-2024 22:03:04 Inštalátor modulov systému Windows
05-12-2024 16:27:23 Inštalátor modulov systému Windows
06-12-2024 16:33:59 Inštalátor modulov systému Windows
07-12-2024 16:51:08 Inštalátor modulov systému Windows
08-12-2024 16:52:10 Inštalátor modulov systému Windows
09-12-2024 16:55:28 Inštalátor modulov systému Windows
10-12-2024 17:01:34 Inštalátor modulov systému Windows
11-12-2024 17:07:15 Inštalátor modulov systému Windows
12-12-2024 17:27:07 Inštalátor modulov systému Windows
13-12-2024 17:43:41 Inštalátor modulov systému Windows
14-12-2024 17:53:00 Inštalátor modulov systému Windows
15-12-2024 17:54:08 Inštalátor modulov systému Windows
16-12-2024 18:01:05 Inštalátor modulov systému Windows
17-12-2024 18:18:44 Inštalátor modulov systému Windows
18-12-2024 18:25:34 Inštalátor modulov systému Windows

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (12/18/2024 11:12:41 PM) (Source: MsiInstaller) (EventID: 11704) (User: NT AUTHORITY)
Description: Produkt: Update for x64-based Windows Systems (KB5001716) – Chyba 1704. Inštalácia súčasti Adobe Acrobat (64-bit) je teraz pozastavená. Ak chcete pokračovať, musíte vrátiť zmeny, vykonané počas tejto inštalácie. Chcete vrátiť tieto zmeny?

Error: (12/18/2024 10:42:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: svchost.exe, verzia: 10.0.19041.3636, časová značka: 0x122dc5a3
Názov chybujúceho modulu: aphostservice.dll, verzia: 10.0.19041.3636, časová značka: 0xb532534f
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000001ca9f
Identifikácia chybujúceho procesu: 0xf840
Čas spustenia chybujúcej aplikácie: 0x01db513397b583f7
Cesta chybujúcej aplikácie: C:\WINDOWS\system32\svchost.exe
Cesta chybujúceho modulu: c:\windows\system32\aphostservice.dll
Identifikácia hlásenia: fb01eb58-1489-4627-be87-116335ac7917
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (12/18/2024 10:19:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SecHealthUI.exe version 10.0.19041.3758 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: c6d0

Start Time: 01db519251c7cbdb

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe

Report Id: 82dedfea-0690-4895-ab9d-32d4ef8b2adb

Faulting package full name: Microsoft.Windows.SecHealthUI_10.0.19041.4239_neutral__cw5n1h2txyewy

Faulting package-relative application ID: SecHealthUI

Hang type: Cross-thread

Error: (09/16/2024 06:21:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4239 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 9750

Start Time: 01db085cd8e9cbfe

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: a85761b6-467d-4fdc-acf1-5a857c2ff0e7

Faulting package full name: Microsoft.Windows.Search_1.14.14.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Quiesce

Error: (09/14/2024 08:43:10 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4239 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: a028

Start Time: 01db0679b04a6f4b

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: 886ade7a-9ecc-4d1e-a751-f5494c16ebba

Faulting package full name: Microsoft.Windows.Search_1.14.14.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Quiesce

Error: (09/04/2024 07:30:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4239 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: bee4

Start Time: 01dafed28cbe5492

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: 01c525e2-5989-48c7-8e57-72e961c9be4f

Faulting package full name: Microsoft.Windows.Search_1.14.14.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Quiesce

Error: (09/01/2024 08:26:54 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4239 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: b738

Start Time: 01dafc40428b97ec

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: 51f3e386-7f67-44a8-afdf-5bb96da0a2cc

Faulting package full name: Microsoft.Windows.Search_1.14.14.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Quiesce

Error: (08/27/2024 08:20:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4239 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: b2b0

Start Time: 01daf8883e8e2645

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: 9541796e-f238-4e45-9191-f83162ca281a

Faulting package full name: Microsoft.Windows.Search_1.14.14.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Quiesce


System errors:
=============
Error: (12/19/2024 07:49:43 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus – KB2267602 (verzia 1.421.871.0) – Aktuálny kanál (široký).

Error: (12/19/2024 07:48:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Služba Google Update (gupdate) zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (12/19/2024 07:48:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Služba Google Update (gupdate) bol dosiahnutý časový limit (30000 ms).

Error: (12/19/2024 07:43:58 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1115" attempting to start the service UsoSvc with arguments "Unavailable" in order to run the server:
{B91D5831-B1BD-4608-8198-D72E155020F7}

Error: (12/19/2024 07:43:58 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1115" attempting to start the service UsoSvc with arguments "Unavailable" in order to run the server:
{B91D5831-B1BD-4608-8198-D72E155020F7}

Error: (12/19/2024 07:42:45 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba (0x800704c7 = The operation was canceled by the user.): 2024-12 Kumulatívna aktualizácia pre Windows 10 Version 22H2 pre systémy s procesorom typu x64 (KB5048652).

Error: (12/18/2024 11:13:42 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba (0x80073d02 = The package could not be installed because resources it modifies are currently in use.): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (12/18/2024 11:10:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba (0x80073d02 = The package could not be installed because resources it modifies are currently in use.): 9NMPJ99VJBWV-Microsoft.YourPhone.


Windows Defender:
================Event[0]:

Date: 2024-12-19 07:49:41
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.421.871.0
Previous security intelligence Version: 1.421.865.0
Update Source: User
Security intelligence Type: AntiSpyware
Update Type: Delta
Current Engine Version: 1.1.24090.11
Previous Engine Version: 1.1.24090.11
Error code: 0x80509004
Error description: Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2024-12-19 07:49:41
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.421.871.0
Previous security intelligence Version: 1.421.865.0
Update Source: User
Security intelligence Type: AntiVirus
Update Type: Delta
Current Engine Version: 1.1.24090.11
Previous Engine Version: 1.1.24090.11
Error code: 0x80509004
Error description: Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2024-12-18 22:56:39
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Network Inspection System
Error Code: 0x8007042d
Error description: The service did not start due to a logon failure.
Reason: The system is missing updates that are required for running Network Inspection System. Install the required updates and restart the device.

CodeIntegrity:
===============
Date: 2024-12-19 08:04:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 0XCN23WW 03/21/2016
Motherboard: LENOVO Toronto 5A1
Processor: Intel(R) Core(TM) i3-6100U CPU @ 2.30GHz
Percentage of memory in use: 86%
Total physical RAM: 4001.91 MB
Available physical RAM: 541.02 MB
Total Virtual: 10913.91 MB
Available Virtual: 6231.79 MB

==================== Drives ================================

Drive c: (Windows SSD) (Fixed) (Total:222.43 GB) (Free:153.46 GB) (Model: WDC WDS240G2G0A-00JH30) NTFS

\\?\Volume{1646c248-45bc-4895-ae33-e30b03149777}\ (Obnovenie) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{5e23ce33-7ae8-4127-910f-421ae7c51403}\ () (Fixed) (Total:0.55 GB) (Free:0.07 GB) NTFS
\\?\Volume{8793877f-94ea-483d-91b5-b782ccea7190}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

[martin1973]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-12-2024
Ran by marti (administrator) on DESKTOP-S5VVRN9 (LENOVO 80SR) (19-12-2024 07:55:51)
Running from C:\Users\marti\Downloads\FRST64.exe
Loaded Profiles: marti
Platform: Microsoft Windows 10 Home Version 22H2 19045.4291 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{64B97637-3B02-4640-A62C-F548A7A8F6B8}\MicrosoftEdge_X64_131.0.2903.99.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{64B97637-3B02-4640-A62C-F548A7A8F6B8}\EDGEMITMP_E0035.tmp\setup.exe <2>
(C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{64B97637-3B02-4640-A62C-F548A7A8F6B8}\MicrosoftEdge_X64_131.0.2903.99.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngentask.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
(C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentask.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxEM.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\Microsoft\OneDrive\24.226.1110.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5071_none_7e3c4e707c6a2679\TiWorker.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(taskhostw.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngentask.exe
(taskhostw.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentask.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2635407922-3120242264-3776596203-1001\...\Run: [MicrosoftEdgeAutoLaunch_4A886EB596DDE810C696BFE47BAAC943] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4136896 2024-05-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.140\Installer\chrmstp.exe [2024-12-18] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {4F3D3328-B5C7-4A66-9EAB-8200AE06397D} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{4D568790-F566-4E0A-AEA3-97CCE8E4C62B} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 88.212.8.8 88.212.8.88
Tcpip\..\Interfaces\{55a08c2d-e316-4a8b-bc29-aa32af75c5f0}: [DhcpNameServer] 88.212.8.8 88.212.8.88

Edge:
=======
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-19]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-05]
Edge Extension: (Edge relevant text changes) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-04-11]

FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default [2024-12-19]
CHR Notifications: Default -> hxxps://a2dkmikkntk6pf.enhanceprotocol.co.in; hxxps://cthjg6e071bc73900490.enhanceprotocol.co.in; hxxps://l6zyni4ys7y746.enhanceprotocol.co.in; hxxps://www.facebook.com; hxxps://www.pocasie.sk; hxxps://www.youtube.com
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-03-30]
CHR Profile: C:\Users\marti\AppData\Local\Google\Chrome\User Data\System Profile [2024-12-18]
CHR HKU\S-1-5-21-2635407922-3120242264-3776596203-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9441760 2024-12-14] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-03-31] (Malwarebytes Inc. -> Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-03-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 FTSER2K; C:\WINDOWS\system32\drivers\ftser2k.sys [79872 2020-09-18] (Microsoft Windows Hardware Compatibility Publisher -> FTDI Ltd.)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2021-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2021-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2021-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [232024 2024-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [201280 2024-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [80448 2024-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2024-12-19] (Malwarebytes Inc. -> Malwarebytes)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-04-24] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [175800 2022-03-22] (Oracle Corporation -> Oracle Corporation)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [127512 2020-09-18] (WDKTestCert dant,132134237881206156 -> Wacom Technology, Corp.)
S3 wacomrouterfilter; C:\WINDOWS\System32\drivers\wacomrouterfilter.sys [28680 2020-09-18] (WDKTestCert dant,132134237881206156 -> Wacom Technology, Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-12-19 07:55 - 2024-12-19 07:58 - 000012177 _____ C:\Users\marti\Downloads\FRST.txt
2024-12-19 07:55 - 2024-12-19 07:56 - 000000000 ____D C:\FRST
2024-12-19 07:53 - 2024-12-19 07:54 - 002403840 _____ (Farbar) C:\Users\marti\Downloads\FRST64.exe
2024-12-19 07:50 - 2024-12-19 07:50 - 000000000 ___HD C:\$WinREAgent
2024-12-19 07:46 - 2024-12-19 07:46 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-12-18 22:36 - 2024-12-18 22:36 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\MMC
2024-12-10 15:59 - 2024-12-10 15:59 - 000181838 _____ C:\Users\marti\Downloads\EVP_01.11.2024a30.11.2024preos.c.00115462.ZIP
2024-12-08 14:06 - 2024-12-08 14:06 - 000000057 _____ C:\ProgramData\Ament.ini

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-12-19 07:56 - 2024-03-30 22:43 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-12-19 07:54 - 2024-03-30 23:34 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-19 07:54 - 2024-03-30 22:42 - 000000000 ____D C:\WINDOWS\INF
2024-12-19 07:53 - 2024-03-30 23:26 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-19 07:53 - 2024-03-30 23:26 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-12-19 07:53 - 2024-03-30 22:43 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-19 07:53 - 2024-03-30 22:43 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-19 07:50 - 2024-03-30 22:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-19 07:47 - 2024-03-30 23:04 - 000000000 ___RD C:\Users\marti\OneDrive
2024-12-19 07:46 - 2024-03-30 23:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-19 07:46 - 2024-03-30 23:25 - 000008192 ___SH C:\DumpStack.log.tmp
2024-12-19 07:46 - 2024-03-30 23:02 - 000000000 __SHD C:\Users\marti\IntelGraphicsProfiles
2024-12-19 07:46 - 2024-03-30 22:43 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-19 07:46 - 2024-03-30 22:31 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-12-19 07:42 - 2024-03-30 23:26 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-19 07:42 - 2024-03-30 23:26 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-19 07:42 - 2024-03-30 23:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-12-18 23:12 - 2024-04-01 20:17 - 000000000 ____D C:\Program Files\RUXIM
2024-12-18 23:12 - 2024-04-01 20:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-12-18 23:10 - 2024-03-30 23:02 - 000000000 ____D C:\Users\marti\AppData\Local\Packages
2024-12-18 23:07 - 2024-03-30 23:02 - 000000000 ____D C:\ProgramData\Packages
2024-12-18 23:07 - 2024-03-30 22:43 - 000000000 ____D C:\WINDOWS\appcompat
2024-12-18 23:02 - 2024-04-01 20:14 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-12-18 22:58 - 2024-03-30 23:08 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-12-18 22:58 - 2024-03-30 23:08 - 000002229 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-12-18 22:38 - 2024-03-31 06:57 - 000000000 ____D C:\Users\marti\AppData\Local\Malwarebytes
2024-12-18 22:36 - 2024-03-30 23:07 - 000000000 ____D C:\Program Files (x86)\Google
2024-12-12 17:05 - 2024-03-30 22:56 - 000002382 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[martin1973]

----------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-10-23.4 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 12-19-2024
# Duration: 00:00:06
# OS: Windows 10 (Build 19045.5247)
# Scanned: 32098
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

[martin1973]

[martin1973]

Je to klasika,zistil sa vírus,zapaťte a odstránime

[JaRon]

Ahoj,
pozri ci nejde o toto https://forum.viry.cz/viewtopic.php?p=1 ... a#p1550417

[martin1973]

Niečo podobné , len to je v chrome

[JaRon]

Daj blokovat oznamenia https://support.microsoft.com/cs-cz/mic ... or%20Block.

[martin1973]

Ok,vykonal som.Ďakujem

[Rudy]

Log ADW je OK.