Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2025
Ran by Martin (administrator) on MY_PC_MZ (Dell Inc. OptiPlex Tower Plus 7010) (15-11-2025 06:32:20)
Running from C:\Portableapps\PortableApps\FRST64\FRST64.exe
Loaded Profiles: Martin
Platform: Microsoft Windows 11 Pro Version 25H2 26200.7171 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.276.298.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe ->) (FastCopy Lab, LLC. -> FastCopy Lab, LLC.) C:\Portableapps\PortableApps\FastCopy392_x64\FastCopy.exe
(C:\Program Files (x86)\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files (x86)\Mozilla Firefox\crashhelper.exe
(C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe ->) (InterPromo GMBH -> ) C:\Program Files\4KDownload\4kvideodownloaderplus\crashpad_handler.exe
(C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe ->) (InterPromo GMBH -> The Qt Company Ltd.) C:\Program Files\4KDownload\4kvideodownloaderplus\QtWebEngineProcess.exe <2>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> ) C:\Program Files\Dell\Dell Peripheral Manager\DPMCrashHandler.exe <2>
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPM.exe
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.Update.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files\Dell\DellOptimizer\DellEnterpriseClientFrameworkSubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellOptimizer\Console\DellOptimizer.Systray.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellOptimizer\SubAgents\Dell.UUE.CoreSubAgent\Dell.UUE.CoreSubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\Dell Remediation\Dell.Remediation.Agent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\DellDigitalDelivery\SubAgent\Dell.Digital.Delivery.Service.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\MyDell\Manager\Dell.UCA.Manager.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Sentry and Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe <2>
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe
(C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel(R) Corporation) C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\PresentMonService.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25101.25.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25101.25.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe
(C:\Users\marti\AppData\Local\Obsidian\Obsidian.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Browser\Application\AVGBrowser.exe <13>
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.AlwaysOnTop.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.Awake.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.ColorPickerUI.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.CropAndLock.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.FancyZones.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.PowerLauncher.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\WinUI3Apps\PowerToys.AdvancedPaste.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\WinUI3Apps\PowerToys.Peek.UI.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_helper.exe
(EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2521.8.2.0_x64__8j3eq9eme6ctt\PrivacyIconClientGui\PrivacyIconClient.exe
(explorer.exe ->) (Dynalist Inc -> Obsidian) C:\Users\marti\AppData\Local\Obsidian\Obsidian.exe <4>
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (InterPromo GMBH -> InterPromo GMBH) C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDrive.Sync.Service.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <5>
(Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.CommandPalette_0.6.2963.0_x64__8wekyb3d8bbwe\Microsoft.CmdPal.UI.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <24>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Java\jre1.8.0_471\bin\javaw.exe
(PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(RARE IDEAS, LLC -> PortableApps.com) C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(services.exe ->) (CODE SECTOR PTY LTD -> ) C:\Program Files\TeraCopy\TeraCopyService.exe
(services.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Technologies Inc. -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TrustedDevice\Dell.TrustedDevice.Service.exe
(services.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_8a3f88e34f6b8385\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_dcf933055667780a\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_91b5ed43a9896c4a\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_abf9ff9884812579\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_923747d9c137105b\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_2c17521ca0d3f79c\WMIRegistrationService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncHelper.exe
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e54441f6cc56b0cb\RtkAudUService64.exe <3>
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd) C:\Windows\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesAudioService.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesSysSvc64.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2545.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.27.350.0_x64__8wekyb3d8bbwe\WindowsPackageManagerServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.165.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppActions.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
Failed to access process -> vmmemCmZygote
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e54441f6cc56b0cb\RtkAudUService64.exe [2790352 2025-05-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesSvc64.exe [5332192 2023-10-03] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [897704 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [11859680 2023-11-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2008856 2022-02-27] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Reader_Sl] => C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\reader_sl.exe [4312128 2024-11-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4736872 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [f.lux] => C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe [1535600 2025-03-14] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDrive.Sync.Service.exe [951656 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [4K Video Downloader+] => C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe [166095288 2025-11-13] (InterPromo GMBH -> InterPromo GMBH)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\MountPoints2: {09663097-8c8e-11ee-8568-806e6f6e6963} - "D:\startdvd.exe"
HKLM\...\Windows x64\Print Processors\shj2mPC: C:\Windows\System32\spool\prtprocs\x64\shj2mpc.dll [91216 2022-01-24] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\shj2m Langmon: C:\WINDOWS\system32\shj2mlm.dll [70224 2022-01-24] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files\AVG\Browser\Application\141.0.32537.78\Installer\chrmstp.exe [2025-11-01] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\142.1.84.139\Installer\chrmstp.exe [2025-11-12] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-05-20]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02FD46C2-A0A6-45F4-B2E9-74ECD8A7B371} - System32\Tasks\Abelssoft\Abelssoft File Organizer_117 => C:\Program Files (x86)\File Organizer\AbLauncher.exe -minimized -autorun (No File)
Task: {BC40998C-577C-42E1-A782-B199AA4174E5} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVG\Browser\Application\AVGBrowser.exe [3773536 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {0344A4EF-A185-4371-AAAA-57A649FC4DE0} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVG\Browser\Application\AVGBrowser.exe [3773536 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6C0167AC-F514-499D-886E-80A14A1070DE} - System32\Tasks\AVG Secure Browser VPS Differential Update => C:\Program Files\AVG\Browser\Application\vps_helper.exe [1883128 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3B8A8FD5-ED19-4E76-99FE-821A9E0C7806} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5649576 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {93817188-DCFF-4A27-BD1E-3E3399CAE1BE} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [9170656 2025-10-07] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {5A06F312-316B-4A79-8A9A-17C8654F7BCE} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [3014368 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6D600834-3C38-42D2-9D3D-BF3303355F99} - System32\Tasks\AVGBrowserProtectS-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\AVG\Browser\Application\AVGBrowserProtect.exe [1762528 2025-09-11] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {EC2180EC-8618-418F-A08E-DA9A5C262384} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {41D5B6A2-47D7-4CE2-A078-38D4465A5B65} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {3C1F6A04-9ADD-4EAD-A90C-6209EA2F0DEF} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{C9F699D4-B896-4C19-82E7-792D4D9BC608} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {72F85413-C402-4747-911C-D54C573D0118} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{96FB0E0A-5B36-4195-8B8B-F62CC20F4716} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {EA7B3D1F-87DB-4C71-B3AA-0F5C912C1D35} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (No File)
Task: {6900CDCA-041A-41AB-BDC6-8E144E143B53} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "fe2736fc-7faf-4a21-af05-fcf1de64db46" --version "6.29.11342" --silent
Task: {1FB0C7CA-EEBC-41D0-AEF1-7D8EDC12D5DF} - System32\Tasks\CCleanerSkipUAC - marti => "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0) (No File)
Task: {0DFB5006-732B-4DE6-8728-63B94566CEBA} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [1260184 2025-09-12] (Dell Technologies Inc. -> Dell Inc.) -> C:\Program Files\Dell\SupportAssistAgent\bin\AutoUpdate
Task: {6C6237C7-8D1A-4112-9DBC-FE6307A67DE3} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [81928 2025-07-08] (HP Inc. -> HP Inc.)
Task: {FFBA8A00-C0BE-48E5-B85D-B94B71DD651F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [81928 2025-07-08] (HP Inc. -> HP Inc.)
Task: {D6A29D25-7963-4D2D-96D5-A7DC7C7E528D} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16961872 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {774FBB0C-570C-4957-9D2E-E52D5A8B002C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29178800 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {ECC5B323-D52D-416A-A22F-6295CDF544F3} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [70464 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1319977-E9F4-4F29-9A6E-8FEBB034C940} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29178800 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F28258D7-4F8D-4588-AF3A-0AA44F7D922C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316680 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {865887D4-CC35-4F04-8BA3-62FA075EA6A2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316680 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9A9C446D-762A-4162-8665-AFEFC70BAC5B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1365280 2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {2EA0D568-F5CA-48AD-BC02-B75ACE61AD9F} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4644352 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {0280E691-B1B5-4DFC-960E-213DDC38E313} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [34944 2025-11-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {F8A520F9-F6A8-45A7-A88A-18424133055C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1AF61FF2-7A60-4E4F-9CED-9D3959624566} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {6ACE6FED-1DA9-4F3B-9422-D849D8D4EE93} - System32\Tasks\OneDrive Startup Task-S-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveLauncher.exe [727440 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {880E6B1F-500C-4491-837C-5B91B3C7A17D} - System32\Tasks\PowerToys\Autorun for Martin => C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe [1460768 2025-10-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {C091BACF-44B3-40BF-828E-27974D76B0E1} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056 2024-08-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) -> C:\Program Files (x86)\Samsung\Samsung Magician\\--disable-gpu-sandbox /AUTOHIDE
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1eb15bc2-5702-440b-96f2-a83215909e37}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1eb15bc2-5702-440b-96f2-a83215909e37}: [DhcpDomain] station
Edge:
=======
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2025-11-12]
Edge Extension: (Dokumenty Google offline) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-05]
Edge Extension: (Edge relevant text changes) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-05-19]
FireFox:
========
FF DefaultProfile: 7q3sipq3.default
FF DefaultProfile: dxv2geju.default
FF ProfilePath: C:\Users\marti\AppData\Roaming\Zotero\Zotero\Profiles\7q3sipq3.default [2025-11-12]
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default [2025-11-15]
FF DownloadDir: E:\Downloads
FF Homepage: Mozilla\Firefox\Profiles\dxv2geju.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\dxv2geju.default -> hxxps://www.aliexpress.com; hxxps://web.whatsapp.com
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2024-05-19]
FF Extension: (DeepL: AI překladač a editor textů) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\firefox-extension@deepl.com.xpi [2025-10-09]
FF Extension: (Language: Čeština (Czech)) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2025-11-12]
FF Extension: (Save as PDF) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2025-06-17]
FF Extension: (Gesturefy) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{506e023c-7f2b-40a3-8066-bc5deb40aebe}.xpi [2025-10-28]
FF Extension: (Tab Vault) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{a596357b-5d1f-4e04-ba81-4013c6d7d34e}.xpi [2025-03-20]
FF Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2025-06-05]
FF Extension: (Instapaper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{d0210f13-a970-4f1e-8322-0f76ec80adde}.xpi [2025-03-15]
FF Extension: (No Name) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2025-11-10]
FF Extension: (DownThemAll!) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2024-10-24]
FF Plugin: @java.com/DTPlugin,version=11.471.0 -> C:\Program Files\Java\jre1.8.0_471\bin\dtplugin\npDeployJava1.dll [2025-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.471.0 -> C:\Program Files\Java\jre1.8.0_471\bin\plugin2\npjp2.dll [2025-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Chrome:
=======
CHR Profile: C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default [2025-02-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-05-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-05-21]
Brave:
=======
BRA Profile: C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-11-12]
BRA Extension: (Brave Ad Block Updater (Brave First Party Adblock Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-11-02]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-11-02]
BRA Extension: (Brave NTP background images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-11-02]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-11-02]
BRA Extension: (Brave NTP sponsored images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-11-02]
BRA Extension: (Brave Ads Resources) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2025-04-19]
BRA Extension: (Brave Ad Block Updater (Brave Default Adblock Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Brave Default Privacy Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\kihnoaefogbkmblfimmibknnmkllbhlf [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-11-02]
BRA Extension: (Brave User Agent) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\nlpaeekllejnmhoonlpcefpfnpbajbpe [2025-11-02]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2025-07-30]
BRA Extension: (P3A Configuration) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\P3AConfig [2025-09-28]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5631928 2025-11-02] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [1072808 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2676392 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1125544 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7836840 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
S3 AVGSecureBrowserElevationService; C:\Program Files\AVG\Browser\Application\141.0.32537.78\elevation_service.exe [2651128 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-05-20] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\142.1.84.139\elevation_service.exe [3255376 2025-11-12] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13366624 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [763200 2024-08-23] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [20240 2025-10-10] (Dell Technologies Inc. -> Dell INC.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49952 2025-09-10] (Dell Technologies Inc. -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [153288 2025-07-03] (Dell Technologies Inc. -> Dell)
R2 DellTrustedDevice; C:\Program Files\Dell\TrustedDevice\Dell.TrustedDevice.Service.exe [153800 2025-05-28] (Dell Technologies Inc. -> Dell)
R2 DPMService; C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe [2013048 2024-03-13] (IndiLogic LLC -> Dell Inc.)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncHelper.exe [3606376 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2514016 2025-07-28] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243720 2025-07-08] (HP Inc. -> HP Inc.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_c25dbc60ad3b371a\lib\PlatformLicenseManagerService.exe [742904 2024-09-08] (Intel Corporation -> Intel(R) Corporation)
R2 IntelGraphicsSoftwareService; C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe [300544 2025-10-19] (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe [3102808 2024-10-11] (Intel Corporation -> Intel Corporation)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [13004248 2023-11-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveUpdaterService.exe [3890536 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [21405336 2025-11-08] (Logitech Inc -> Logitech, Inc.)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [460096 2024-08-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803088 2025-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [162456 2025-09-12] (Dell Technologies Inc. -> Dell Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [25764712 2025-10-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TeraCopyService.exe; C:\Program Files\TeraCopy\TeraCopyService.exe [317664 2023-06-29] (CODE SECTOR PTY LTD -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [763024 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R2 WavesAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesAudioService.exe [160992 2023-10-03] (Waves Inc -> Waves Audio Ltd)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [297888 2022-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [245816 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [390712 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [302648 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [85560 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [29144 2025-07-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [31288 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [285240 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [580664 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [92216 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [71224 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [878136 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [1283640 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [213560 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [391736 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2024-10-25] (Microsoft Corporation) [File not signed]
S3 DellBV; C:\WINDOWS\system32\DRIVERS\DellBV.sys [159072 2025-05-28] (Dell Technologies Inc. -> Dell)
R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [35896 2025-02-13] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [175824 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 DPMDriver; C:\WINDOWS\System32\drivers\DPMDriver.sys [139680 2022-12-08] (IndiLogic LLC -> Dell Inc.)
R1 dtdsel; C:\WINDOWS\System32\DRIVERS\dtdsel.sys [139104 2025-05-28] (Dell Technologies Inc. -> Dell)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_9b9691c91d28fd9b\e1d.sys [625296 2025-05-14] (Intel Corporation -> Intel Corporation)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [222592 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-24] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1623632 2025-02-04] (Intel Corporation -> Intel Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-23] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_ca5ac87d28341730\ipf_acpi.sys [89688 2024-10-11] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_cpu.sys [89688 2024-10-11] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_lf.sys [504920 2024-10-11] (Intel Corporation -> Intel Corporation)
S2 l1vhlwf; C:\WINDOWS\System32\drivers\l1vhlwf.sys [144768 2025-10-29] (Microsoft Windows -> Microsoft Corporation)
R2 Mrvdp; C:\WINDOWS\system32\drivers\mrvdp.sys [58112 2021-10-13] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
R3 PRI-Driver; C:\WINDOWS\System32\DriverStore\FileRepository\socthermalprovider_sw.inf_amd64_d8d2967b40ed3b12\Intel(R) PRI Driver\PRI-Driver.sys [297080 2024-11-04] (Intel Corporation -> Intel Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174264 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50896 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [246216 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [256536 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\System32\drivers\VBoxSup.sys [1053008 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxUSBMon; C:\WINDOWS\System32\drivers\VBoxUSBMon.sys [195576 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 vkrnlintvsc; C:\WINDOWS\System32\DriverStore\FileRepository\wvkrnlintvsc.inf_amd64_ae7c1fb85fc0224e\vkrnlintvsc.sys [79168 2024-10-24] (Microsoft Windows -> Microsoft Corporation)
R3 vkrnlintvsp; C:\WINDOWS\System32\DriverStore\FileRepository\wvkrnlintvsp.inf_amd64_cac6fce1cffcbb7d\vkrnlintvsp.sys [87464 2025-06-27] (Microsoft Windows -> Microsoft Corporation)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [98304 2025-05-30] (Microsoft Windows -> Microsoft Corporation)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74064 2022-02-27] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WiManHu; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiManHu\WiManHu.sys [217400 2024-09-08] (Intel Corporation -> Intel Corporation)
S3 WSDPrintDevice; C:\WINDOWS\System32\DriverStore\FileRepository\wsdprint.inf_amd64_1f9e32519098c0b6\WSDPrint.sys [57344 2024-10-24] (Microsoft Windows -> Microsoft Corporation)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 avgArDisk; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
S3 IntelTACD; \??\C:\Windows\System32\drivers\IntelTACD.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivka
Ahoj,
prescanuj PC s Adwcleanerom - log sem
Pridaj aj addition.txt od Frst
prescanuj PC s Adwcleanerom - log sem
Pridaj aj addition.txt od Frst
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?