Preventivka
Napsal: 15 lis 2025 07:00
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2025
Ran by Martin (administrator) on MY_PC_MZ (Dell Inc. OptiPlex Tower Plus 7010) (15-11-2025 06:32:20)
Running from C:\Portableapps\PortableApps\FRST64\FRST64.exe
Loaded Profiles: Martin
Platform: Microsoft Windows 11 Pro Version 25H2 26200.7171 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.276.298.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe ->) (FastCopy Lab, LLC. -> FastCopy Lab, LLC.) C:\Portableapps\PortableApps\FastCopy392_x64\FastCopy.exe
(C:\Program Files (x86)\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files (x86)\Mozilla Firefox\crashhelper.exe
(C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe ->) (InterPromo GMBH -> ) C:\Program Files\4KDownload\4kvideodownloaderplus\crashpad_handler.exe
(C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe ->) (InterPromo GMBH -> The Qt Company Ltd.) C:\Program Files\4KDownload\4kvideodownloaderplus\QtWebEngineProcess.exe <2>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> ) C:\Program Files\Dell\Dell Peripheral Manager\DPMCrashHandler.exe <2>
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPM.exe
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.Update.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files\Dell\DellOptimizer\DellEnterpriseClientFrameworkSubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellOptimizer\Console\DellOptimizer.Systray.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellOptimizer\SubAgents\Dell.UUE.CoreSubAgent\Dell.UUE.CoreSubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\Dell Remediation\Dell.Remediation.Agent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\DellDigitalDelivery\SubAgent\Dell.Digital.Delivery.Service.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\MyDell\Manager\Dell.UCA.Manager.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Sentry and Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe <2>
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe
(C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel(R) Corporation) C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\PresentMonService.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25101.25.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25101.25.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe
(C:\Users\marti\AppData\Local\Obsidian\Obsidian.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Browser\Application\AVGBrowser.exe <13>
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.AlwaysOnTop.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.Awake.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.ColorPickerUI.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.CropAndLock.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.FancyZones.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.PowerLauncher.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\WinUI3Apps\PowerToys.AdvancedPaste.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\WinUI3Apps\PowerToys.Peek.UI.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_helper.exe
(EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2521.8.2.0_x64__8j3eq9eme6ctt\PrivacyIconClientGui\PrivacyIconClient.exe
(explorer.exe ->) (Dynalist Inc -> Obsidian) C:\Users\marti\AppData\Local\Obsidian\Obsidian.exe <4>
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (InterPromo GMBH -> InterPromo GMBH) C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDrive.Sync.Service.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <5>
(Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.CommandPalette_0.6.2963.0_x64__8wekyb3d8bbwe\Microsoft.CmdPal.UI.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <24>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Java\jre1.8.0_471\bin\javaw.exe
(PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(RARE IDEAS, LLC -> PortableApps.com) C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(services.exe ->) (CODE SECTOR PTY LTD -> ) C:\Program Files\TeraCopy\TeraCopyService.exe
(services.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Technologies Inc. -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TrustedDevice\Dell.TrustedDevice.Service.exe
(services.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_8a3f88e34f6b8385\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_dcf933055667780a\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_91b5ed43a9896c4a\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_abf9ff9884812579\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_923747d9c137105b\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_2c17521ca0d3f79c\WMIRegistrationService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncHelper.exe
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e54441f6cc56b0cb\RtkAudUService64.exe <3>
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd) C:\Windows\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesAudioService.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesSysSvc64.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2545.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.27.350.0_x64__8wekyb3d8bbwe\WindowsPackageManagerServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.165.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppActions.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
Failed to access process -> vmmemCmZygote
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e54441f6cc56b0cb\RtkAudUService64.exe [2790352 2025-05-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesSvc64.exe [5332192 2023-10-03] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [897704 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [11859680 2023-11-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2008856 2022-02-27] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Reader_Sl] => C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\reader_sl.exe [4312128 2024-11-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4736872 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [f.lux] => C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe [1535600 2025-03-14] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDrive.Sync.Service.exe [951656 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [4K Video Downloader+] => C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe [166095288 2025-11-13] (InterPromo GMBH -> InterPromo GMBH)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\MountPoints2: {09663097-8c8e-11ee-8568-806e6f6e6963} - "D:\startdvd.exe"
HKLM\...\Windows x64\Print Processors\shj2mPC: C:\Windows\System32\spool\prtprocs\x64\shj2mpc.dll [91216 2022-01-24] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\shj2m Langmon: C:\WINDOWS\system32\shj2mlm.dll [70224 2022-01-24] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files\AVG\Browser\Application\141.0.32537.78\Installer\chrmstp.exe [2025-11-01] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\142.1.84.139\Installer\chrmstp.exe [2025-11-12] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-05-20]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02FD46C2-A0A6-45F4-B2E9-74ECD8A7B371} - System32\Tasks\Abelssoft\Abelssoft File Organizer_117 => C:\Program Files (x86)\File Organizer\AbLauncher.exe -minimized -autorun (No File)
Task: {BC40998C-577C-42E1-A782-B199AA4174E5} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVG\Browser\Application\AVGBrowser.exe [3773536 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {0344A4EF-A185-4371-AAAA-57A649FC4DE0} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVG\Browser\Application\AVGBrowser.exe [3773536 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6C0167AC-F514-499D-886E-80A14A1070DE} - System32\Tasks\AVG Secure Browser VPS Differential Update => C:\Program Files\AVG\Browser\Application\vps_helper.exe [1883128 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3B8A8FD5-ED19-4E76-99FE-821A9E0C7806} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5649576 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {93817188-DCFF-4A27-BD1E-3E3399CAE1BE} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [9170656 2025-10-07] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {5A06F312-316B-4A79-8A9A-17C8654F7BCE} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [3014368 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6D600834-3C38-42D2-9D3D-BF3303355F99} - System32\Tasks\AVGBrowserProtectS-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\AVG\Browser\Application\AVGBrowserProtect.exe [1762528 2025-09-11] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {EC2180EC-8618-418F-A08E-DA9A5C262384} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {41D5B6A2-47D7-4CE2-A078-38D4465A5B65} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {3C1F6A04-9ADD-4EAD-A90C-6209EA2F0DEF} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{C9F699D4-B896-4C19-82E7-792D4D9BC608} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {72F85413-C402-4747-911C-D54C573D0118} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{96FB0E0A-5B36-4195-8B8B-F62CC20F4716} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {EA7B3D1F-87DB-4C71-B3AA-0F5C912C1D35} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (No File)
Task: {6900CDCA-041A-41AB-BDC6-8E144E143B53} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "fe2736fc-7faf-4a21-af05-fcf1de64db46" --version "6.29.11342" --silent
Task: {1FB0C7CA-EEBC-41D0-AEF1-7D8EDC12D5DF} - System32\Tasks\CCleanerSkipUAC - marti => "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0) (No File)
Task: {0DFB5006-732B-4DE6-8728-63B94566CEBA} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [1260184 2025-09-12] (Dell Technologies Inc. -> Dell Inc.) -> C:\Program Files\Dell\SupportAssistAgent\bin\AutoUpdate
Task: {6C6237C7-8D1A-4112-9DBC-FE6307A67DE3} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [81928 2025-07-08] (HP Inc. -> HP Inc.)
Task: {FFBA8A00-C0BE-48E5-B85D-B94B71DD651F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [81928 2025-07-08] (HP Inc. -> HP Inc.)
Task: {D6A29D25-7963-4D2D-96D5-A7DC7C7E528D} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16961872 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {774FBB0C-570C-4957-9D2E-E52D5A8B002C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29178800 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {ECC5B323-D52D-416A-A22F-6295CDF544F3} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [70464 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1319977-E9F4-4F29-9A6E-8FEBB034C940} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29178800 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F28258D7-4F8D-4588-AF3A-0AA44F7D922C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316680 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {865887D4-CC35-4F04-8BA3-62FA075EA6A2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316680 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9A9C446D-762A-4162-8665-AFEFC70BAC5B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1365280 2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {2EA0D568-F5CA-48AD-BC02-B75ACE61AD9F} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4644352 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {0280E691-B1B5-4DFC-960E-213DDC38E313} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [34944 2025-11-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {F8A520F9-F6A8-45A7-A88A-18424133055C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1AF61FF2-7A60-4E4F-9CED-9D3959624566} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {6ACE6FED-1DA9-4F3B-9422-D849D8D4EE93} - System32\Tasks\OneDrive Startup Task-S-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveLauncher.exe [727440 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {880E6B1F-500C-4491-837C-5B91B3C7A17D} - System32\Tasks\PowerToys\Autorun for Martin => C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe [1460768 2025-10-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {C091BACF-44B3-40BF-828E-27974D76B0E1} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056 2024-08-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) -> C:\Program Files (x86)\Samsung\Samsung Magician\\--disable-gpu-sandbox /AUTOHIDE
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1eb15bc2-5702-440b-96f2-a83215909e37}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1eb15bc2-5702-440b-96f2-a83215909e37}: [DhcpDomain] station
Edge:
=======
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2025-11-12]
Edge Extension: (Dokumenty Google offline) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-05]
Edge Extension: (Edge relevant text changes) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-05-19]
FireFox:
========
FF DefaultProfile: 7q3sipq3.default
FF DefaultProfile: dxv2geju.default
FF ProfilePath: C:\Users\marti\AppData\Roaming\Zotero\Zotero\Profiles\7q3sipq3.default [2025-11-12]
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default [2025-11-15]
FF DownloadDir: E:\Downloads
FF Homepage: Mozilla\Firefox\Profiles\dxv2geju.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\dxv2geju.default -> hxxps://www.aliexpress.com; hxxps://web.whatsapp.com
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2024-05-19]
FF Extension: (DeepL: AI překladač a editor textů) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\firefox-extension@deepl.com.xpi [2025-10-09]
FF Extension: (Language: Čeština (Czech)) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2025-11-12]
FF Extension: (Save as PDF) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2025-06-17]
FF Extension: (Gesturefy) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{506e023c-7f2b-40a3-8066-bc5deb40aebe}.xpi [2025-10-28]
FF Extension: (Tab Vault) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{a596357b-5d1f-4e04-ba81-4013c6d7d34e}.xpi [2025-03-20]
FF Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2025-06-05]
FF Extension: (Instapaper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{d0210f13-a970-4f1e-8322-0f76ec80adde}.xpi [2025-03-15]
FF Extension: (No Name) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2025-11-10]
FF Extension: (DownThemAll!) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2024-10-24]
FF Plugin: @java.com/DTPlugin,version=11.471.0 -> C:\Program Files\Java\jre1.8.0_471\bin\dtplugin\npDeployJava1.dll [2025-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.471.0 -> C:\Program Files\Java\jre1.8.0_471\bin\plugin2\npjp2.dll [2025-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Chrome:
=======
CHR Profile: C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default [2025-02-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-05-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-05-21]
Brave:
=======
BRA Profile: C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-11-12]
BRA Extension: (Brave Ad Block Updater (Brave First Party Adblock Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-11-02]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-11-02]
BRA Extension: (Brave NTP background images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-11-02]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-11-02]
BRA Extension: (Brave NTP sponsored images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-11-02]
BRA Extension: (Brave Ads Resources) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2025-04-19]
BRA Extension: (Brave Ad Block Updater (Brave Default Adblock Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Brave Default Privacy Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\kihnoaefogbkmblfimmibknnmkllbhlf [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-11-02]
BRA Extension: (Brave User Agent) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\nlpaeekllejnmhoonlpcefpfnpbajbpe [2025-11-02]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2025-07-30]
BRA Extension: (P3A Configuration) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\P3AConfig [2025-09-28]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5631928 2025-11-02] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [1072808 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2676392 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1125544 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7836840 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
S3 AVGSecureBrowserElevationService; C:\Program Files\AVG\Browser\Application\141.0.32537.78\elevation_service.exe [2651128 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-05-20] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\142.1.84.139\elevation_service.exe [3255376 2025-11-12] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13366624 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [763200 2024-08-23] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [20240 2025-10-10] (Dell Technologies Inc. -> Dell INC.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49952 2025-09-10] (Dell Technologies Inc. -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [153288 2025-07-03] (Dell Technologies Inc. -> Dell)
R2 DellTrustedDevice; C:\Program Files\Dell\TrustedDevice\Dell.TrustedDevice.Service.exe [153800 2025-05-28] (Dell Technologies Inc. -> Dell)
R2 DPMService; C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe [2013048 2024-03-13] (IndiLogic LLC -> Dell Inc.)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncHelper.exe [3606376 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2514016 2025-07-28] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243720 2025-07-08] (HP Inc. -> HP Inc.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_c25dbc60ad3b371a\lib\PlatformLicenseManagerService.exe [742904 2024-09-08] (Intel Corporation -> Intel(R) Corporation)
R2 IntelGraphicsSoftwareService; C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe [300544 2025-10-19] (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe [3102808 2024-10-11] (Intel Corporation -> Intel Corporation)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [13004248 2023-11-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveUpdaterService.exe [3890536 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [21405336 2025-11-08] (Logitech Inc -> Logitech, Inc.)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [460096 2024-08-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803088 2025-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [162456 2025-09-12] (Dell Technologies Inc. -> Dell Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [25764712 2025-10-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TeraCopyService.exe; C:\Program Files\TeraCopy\TeraCopyService.exe [317664 2023-06-29] (CODE SECTOR PTY LTD -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [763024 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R2 WavesAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesAudioService.exe [160992 2023-10-03] (Waves Inc -> Waves Audio Ltd)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [297888 2022-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [245816 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [390712 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [302648 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [85560 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [29144 2025-07-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [31288 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [285240 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [580664 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [92216 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [71224 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [878136 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [1283640 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [213560 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [391736 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2024-10-25] (Microsoft Corporation) [File not signed]
S3 DellBV; C:\WINDOWS\system32\DRIVERS\DellBV.sys [159072 2025-05-28] (Dell Technologies Inc. -> Dell)
R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [35896 2025-02-13] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [175824 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 DPMDriver; C:\WINDOWS\System32\drivers\DPMDriver.sys [139680 2022-12-08] (IndiLogic LLC -> Dell Inc.)
R1 dtdsel; C:\WINDOWS\System32\DRIVERS\dtdsel.sys [139104 2025-05-28] (Dell Technologies Inc. -> Dell)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_9b9691c91d28fd9b\e1d.sys [625296 2025-05-14] (Intel Corporation -> Intel Corporation)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [222592 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-24] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1623632 2025-02-04] (Intel Corporation -> Intel Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-23] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_ca5ac87d28341730\ipf_acpi.sys [89688 2024-10-11] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_cpu.sys [89688 2024-10-11] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_lf.sys [504920 2024-10-11] (Intel Corporation -> Intel Corporation)
S2 l1vhlwf; C:\WINDOWS\System32\drivers\l1vhlwf.sys [144768 2025-10-29] (Microsoft Windows -> Microsoft Corporation)
R2 Mrvdp; C:\WINDOWS\system32\drivers\mrvdp.sys [58112 2021-10-13] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
R3 PRI-Driver; C:\WINDOWS\System32\DriverStore\FileRepository\socthermalprovider_sw.inf_amd64_d8d2967b40ed3b12\Intel(R) PRI Driver\PRI-Driver.sys [297080 2024-11-04] (Intel Corporation -> Intel Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174264 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50896 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [246216 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [256536 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\System32\drivers\VBoxSup.sys [1053008 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxUSBMon; C:\WINDOWS\System32\drivers\VBoxUSBMon.sys [195576 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 vkrnlintvsc; C:\WINDOWS\System32\DriverStore\FileRepository\wvkrnlintvsc.inf_amd64_ae7c1fb85fc0224e\vkrnlintvsc.sys [79168 2024-10-24] (Microsoft Windows -> Microsoft Corporation)
R3 vkrnlintvsp; C:\WINDOWS\System32\DriverStore\FileRepository\wvkrnlintvsp.inf_amd64_cac6fce1cffcbb7d\vkrnlintvsp.sys [87464 2025-06-27] (Microsoft Windows -> Microsoft Corporation)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [98304 2025-05-30] (Microsoft Windows -> Microsoft Corporation)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74064 2022-02-27] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WiManHu; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiManHu\WiManHu.sys [217400 2024-09-08] (Intel Corporation -> Intel Corporation)
S3 WSDPrintDevice; C:\WINDOWS\System32\DriverStore\FileRepository\wsdprint.inf_amd64_1f9e32519098c0b6\WSDPrint.sys [57344 2024-10-24] (Microsoft Windows -> Microsoft Corporation)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 avgArDisk; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
S3 IntelTACD; \??\C:\Windows\System32\drivers\IntelTACD.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Ran by Martin (administrator) on MY_PC_MZ (Dell Inc. OptiPlex Tower Plus 7010) (15-11-2025 06:32:20)
Running from C:\Portableapps\PortableApps\FRST64\FRST64.exe
Loaded Profiles: Martin
Platform: Microsoft Windows 11 Pro Version 25H2 26200.7171 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.276.298.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe ->) (FastCopy Lab, LLC. -> FastCopy Lab, LLC.) C:\Portableapps\PortableApps\FastCopy392_x64\FastCopy.exe
(C:\Program Files (x86)\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files (x86)\Mozilla Firefox\crashhelper.exe
(C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe ->) (InterPromo GMBH -> ) C:\Program Files\4KDownload\4kvideodownloaderplus\crashpad_handler.exe
(C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe ->) (InterPromo GMBH -> The Qt Company Ltd.) C:\Program Files\4KDownload\4kvideodownloaderplus\QtWebEngineProcess.exe <2>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> ) C:\Program Files\Dell\Dell Peripheral Manager\DPMCrashHandler.exe <2>
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPM.exe
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.Update.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files\Dell\DellOptimizer\DellEnterpriseClientFrameworkSubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellOptimizer\Console\DellOptimizer.Systray.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellOptimizer\SubAgents\Dell.UUE.CoreSubAgent\Dell.UUE.CoreSubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\Dell Remediation\Dell.Remediation.Agent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\DellDigitalDelivery\SubAgent\Dell.Digital.Delivery.Service.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\MyDell\Manager\Dell.UCA.Manager.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Sentry and Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe <2>
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe
(C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel(R) Corporation) C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\PresentMonService.exe
(C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25101.25.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25101.25.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe
(C:\Users\marti\AppData\Local\Obsidian\Obsidian.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Browser\Application\AVGBrowser.exe <13>
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.AlwaysOnTop.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.Awake.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.ColorPickerUI.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.CropAndLock.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.FancyZones.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.PowerLauncher.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\WinUI3Apps\PowerToys.AdvancedPaste.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\WinUI3Apps\PowerToys.Peek.UI.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_helper.exe
(EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2521.8.2.0_x64__8j3eq9eme6ctt\PrivacyIconClientGui\PrivacyIconClient.exe
(explorer.exe ->) (Dynalist Inc -> Obsidian) C:\Users\marti\AppData\Local\Obsidian\Obsidian.exe <4>
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (InterPromo GMBH -> InterPromo GMBH) C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDrive.Sync.Service.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <5>
(Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.CommandPalette_0.6.2963.0_x64__8wekyb3d8bbwe\Microsoft.CmdPal.UI.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <24>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Java\jre1.8.0_471\bin\javaw.exe
(PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(RARE IDEAS, LLC -> PortableApps.com) C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(services.exe ->) (CODE SECTOR PTY LTD -> ) C:\Program Files\TeraCopy\TeraCopyService.exe
(services.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Technologies Inc. -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TrustedDevice\Dell.TrustedDevice.Service.exe
(services.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_8a3f88e34f6b8385\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_dcf933055667780a\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_91b5ed43a9896c4a\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_abf9ff9884812579\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_923747d9c137105b\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_2c17521ca0d3f79c\WMIRegistrationService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncHelper.exe
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e54441f6cc56b0cb\RtkAudUService64.exe <3>
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd) C:\Windows\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesAudioService.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesSysSvc64.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2545.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.27.350.0_x64__8wekyb3d8bbwe\WindowsPackageManagerServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.165.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppActions.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
Failed to access process -> vmmemCmZygote
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e54441f6cc56b0cb\RtkAudUService64.exe [2790352 2025-05-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesSvc64.exe [5332192 2023-10-03] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [897704 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [11859680 2023-11-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2008856 2022-02-27] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Reader_Sl] => C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\reader_sl.exe [4312128 2024-11-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4736872 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [f.lux] => C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe [1535600 2025-03-14] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDrive.Sync.Service.exe [951656 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\Run: [4K Video Downloader+] => C:\Program Files\4KDownload\4kvideodownloaderplus\4kvideodownloaderplus.exe [166095288 2025-11-13] (InterPromo GMBH -> InterPromo GMBH)
HKU\S-1-5-21-395296610-1484778253-2832174162-1001\...\MountPoints2: {09663097-8c8e-11ee-8568-806e6f6e6963} - "D:\startdvd.exe"
HKLM\...\Windows x64\Print Processors\shj2mPC: C:\Windows\System32\spool\prtprocs\x64\shj2mpc.dll [91216 2022-01-24] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\shj2m Langmon: C:\WINDOWS\system32\shj2mlm.dll [70224 2022-01-24] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files\AVG\Browser\Application\141.0.32537.78\Installer\chrmstp.exe [2025-11-01] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\142.1.84.139\Installer\chrmstp.exe [2025-11-12] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-05-20]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02FD46C2-A0A6-45F4-B2E9-74ECD8A7B371} - System32\Tasks\Abelssoft\Abelssoft File Organizer_117 => C:\Program Files (x86)\File Organizer\AbLauncher.exe -minimized -autorun (No File)
Task: {BC40998C-577C-42E1-A782-B199AA4174E5} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVG\Browser\Application\AVGBrowser.exe [3773536 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {0344A4EF-A185-4371-AAAA-57A649FC4DE0} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVG\Browser\Application\AVGBrowser.exe [3773536 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6C0167AC-F514-499D-886E-80A14A1070DE} - System32\Tasks\AVG Secure Browser VPS Differential Update => C:\Program Files\AVG\Browser\Application\vps_helper.exe [1883128 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3B8A8FD5-ED19-4E76-99FE-821A9E0C7806} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5649576 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {93817188-DCFF-4A27-BD1E-3E3399CAE1BE} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [9170656 2025-10-07] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {5A06F312-316B-4A79-8A9A-17C8654F7BCE} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [3014368 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6D600834-3C38-42D2-9D3D-BF3303355F99} - System32\Tasks\AVGBrowserProtectS-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\AVG\Browser\Application\AVGBrowserProtect.exe [1762528 2025-09-11] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {EC2180EC-8618-418F-A08E-DA9A5C262384} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {41D5B6A2-47D7-4CE2-A078-38D4465A5B65} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {3C1F6A04-9ADD-4EAD-A90C-6209EA2F0DEF} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{C9F699D4-B896-4C19-82E7-792D4D9BC608} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {72F85413-C402-4747-911C-D54C573D0118} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{96FB0E0A-5B36-4195-8B8B-F62CC20F4716} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {EA7B3D1F-87DB-4C71-B3AA-0F5C912C1D35} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (No File)
Task: {6900CDCA-041A-41AB-BDC6-8E144E143B53} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "fe2736fc-7faf-4a21-af05-fcf1de64db46" --version "6.29.11342" --silent
Task: {1FB0C7CA-EEBC-41D0-AEF1-7D8EDC12D5DF} - System32\Tasks\CCleanerSkipUAC - marti => "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0) (No File)
Task: {0DFB5006-732B-4DE6-8728-63B94566CEBA} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [1260184 2025-09-12] (Dell Technologies Inc. -> Dell Inc.) -> C:\Program Files\Dell\SupportAssistAgent\bin\AutoUpdate
Task: {6C6237C7-8D1A-4112-9DBC-FE6307A67DE3} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [81928 2025-07-08] (HP Inc. -> HP Inc.)
Task: {FFBA8A00-C0BE-48E5-B85D-B94B71DD651F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [81928 2025-07-08] (HP Inc. -> HP Inc.)
Task: {D6A29D25-7963-4D2D-96D5-A7DC7C7E528D} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16961872 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {774FBB0C-570C-4957-9D2E-E52D5A8B002C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29178800 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {ECC5B323-D52D-416A-A22F-6295CDF544F3} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [70464 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1319977-E9F4-4F29-9A6E-8FEBB034C940} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29178800 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F28258D7-4F8D-4588-AF3A-0AA44F7D922C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316680 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {865887D4-CC35-4F04-8BA3-62FA075EA6A2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [316680 2025-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9A9C446D-762A-4162-8665-AFEFC70BAC5B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1365280 2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {2EA0D568-F5CA-48AD-BC02-B75ACE61AD9F} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4644352 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {0280E691-B1B5-4DFC-960E-213DDC38E313} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [34944 2025-11-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {F8A520F9-F6A8-45A7-A88A-18424133055C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1AF61FF2-7A60-4E4F-9CED-9D3959624566} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4395920 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {6ACE6FED-1DA9-4F3B-9422-D849D8D4EE93} - System32\Tasks\OneDrive Startup Task-S-1-5-21-395296610-1484778253-2832174162-1001 => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveLauncher.exe [727440 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {880E6B1F-500C-4491-837C-5B91B3C7A17D} - System32\Tasks\PowerToys\Autorun for Martin => C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe [1460768 2025-10-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {C091BACF-44B3-40BF-828E-27974D76B0E1} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056 2024-08-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) -> C:\Program Files (x86)\Samsung\Samsung Magician\\--disable-gpu-sandbox /AUTOHIDE
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1eb15bc2-5702-440b-96f2-a83215909e37}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1eb15bc2-5702-440b-96f2-a83215909e37}: [DhcpDomain] station
Edge:
=======
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2025-11-12]
Edge Extension: (Dokumenty Google offline) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-05]
Edge Extension: (Edge relevant text changes) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-05-19]
FireFox:
========
FF DefaultProfile: 7q3sipq3.default
FF DefaultProfile: dxv2geju.default
FF ProfilePath: C:\Users\marti\AppData\Roaming\Zotero\Zotero\Profiles\7q3sipq3.default [2025-11-12]
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default [2025-11-15]
FF DownloadDir: E:\Downloads
FF Homepage: Mozilla\Firefox\Profiles\dxv2geju.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\dxv2geju.default -> hxxps://www.aliexpress.com; hxxps://web.whatsapp.com
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2024-05-19]
FF Extension: (DeepL: AI překladač a editor textů) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\firefox-extension@deepl.com.xpi [2025-10-09]
FF Extension: (Language: Čeština (Czech)) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2025-11-12]
FF Extension: (Save as PDF) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2025-06-17]
FF Extension: (Gesturefy) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{506e023c-7f2b-40a3-8066-bc5deb40aebe}.xpi [2025-10-28]
FF Extension: (Tab Vault) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{a596357b-5d1f-4e04-ba81-4013c6d7d34e}.xpi [2025-03-20]
FF Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2025-06-05]
FF Extension: (Instapaper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{d0210f13-a970-4f1e-8322-0f76ec80adde}.xpi [2025-03-15]
FF Extension: (No Name) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2025-11-10]
FF Extension: (DownThemAll!) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\dxv2geju.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2024-10-24]
FF Plugin: @java.com/DTPlugin,version=11.471.0 -> C:\Program Files\Java\jre1.8.0_471\bin\dtplugin\npDeployJava1.dll [2025-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.471.0 -> C:\Program Files\Java\jre1.8.0_471\bin\plugin2\npjp2.dll [2025-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-08-09] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Chrome:
=======
CHR Profile: C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default [2025-02-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-05-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-05-21]
Brave:
=======
BRA Profile: C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-11-12]
BRA Extension: (Brave Ad Block Updater (Brave First Party Adblock Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-11-02]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-11-02]
BRA Extension: (Brave NTP background images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-11-02]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-11-02]
BRA Extension: (Brave NTP sponsored images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-11-02]
BRA Extension: (Brave Ads Resources) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2025-04-19]
BRA Extension: (Brave Ad Block Updater (Brave Default Adblock Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Brave Default Privacy Filters (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\kihnoaefogbkmblfimmibknnmkllbhlf [2025-11-02]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-11-02]
BRA Extension: (Brave User Agent) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\nlpaeekllejnmhoonlpcefpfnpbajbpe [2025-11-02]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2025-07-30]
BRA Extension: (P3A Configuration) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\P3AConfig [2025-09-28]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5631928 2025-11-02] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [1072808 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2676392 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1125544 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7836840 2025-10-23] (Gen Digital Inc. -> Gen Digital Inc.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209736 2024-05-21] (AVG Technologies USA, LLC -> Gen Digital Inc.)
S3 AVGSecureBrowserElevationService; C:\Program Files\AVG\Browser\Application\141.0.32537.78\elevation_service.exe [2651128 2025-10-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-05-20] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\142.1.84.139\elevation_service.exe [3255376 2025-11-12] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-04-19] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13366624 2025-11-07] (Microsoft Corporation -> Microsoft Corporation)
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [763200 2024-08-23] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [20240 2025-10-10] (Dell Technologies Inc. -> Dell INC.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49952 2025-09-10] (Dell Technologies Inc. -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [153288 2025-07-03] (Dell Technologies Inc. -> Dell)
R2 DellTrustedDevice; C:\Program Files\Dell\TrustedDevice\Dell.TrustedDevice.Service.exe [153800 2025-05-28] (Dell Technologies Inc. -> Dell)
R2 DPMService; C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe [2013048 2024-03-13] (IndiLogic LLC -> Dell Inc.)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncHelper.exe [3606376 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2514016 2025-07-28] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243720 2025-07-08] (HP Inc. -> HP Inc.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_c25dbc60ad3b371a\lib\PlatformLicenseManagerService.exe [742904 2024-09-08] (Intel Corporation -> Intel(R) Corporation)
R2 IntelGraphicsSoftwareService; C:\Program Files\WindowsApps\AppUp.IntelArcSoftware_25.36.1853.0_x64__8j3eq9eme6ctt\VFS\ProgramFilesX64\Intel\Intel Graphics Software\IntelGraphicsSoftware.Service.exe [300544 2025-10-19] (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_uf.exe [3102808 2024-10-11] (Intel Corporation -> Intel Corporation)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [13004248 2023-11-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.206.1021.0003\OneDriveUpdaterService.exe [3890536 2025-11-12] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [21405336 2025-11-08] (Logitech Inc -> Logitech, Inc.)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [460096 2024-08-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803088 2025-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [162456 2025-09-12] (Dell Technologies Inc. -> Dell Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [25764712 2025-10-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TeraCopyService.exe; C:\Program Files\TeraCopy\TeraCopyService.exe [317664 2023-06-29] (CODE SECTOR PTY LTD -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [763024 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R2 WavesAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo12de.inf_amd64_f4d6230909497f9a\WavesAudioService.exe [160992 2023-10-03] (Waves Inc -> Waves Audio Ltd)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [297888 2022-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [245816 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [390712 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [302648 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [85560 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [29144 2025-07-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [31288 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [285240 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [580664 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [92216 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [71224 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [878136 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [1283640 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [213560 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [391736 2025-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2024-10-25] (Microsoft Corporation) [File not signed]
S3 DellBV; C:\WINDOWS\system32\DRIVERS\DellBV.sys [159072 2025-05-28] (Dell Technologies Inc. -> Dell)
R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [35896 2025-02-13] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [175824 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 DPMDriver; C:\WINDOWS\System32\drivers\DPMDriver.sys [139680 2022-12-08] (IndiLogic LLC -> Dell Inc.)
R1 dtdsel; C:\WINDOWS\System32\DRIVERS\dtdsel.sys [139104 2025-05-28] (Dell Technologies Inc. -> Dell)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_9b9691c91d28fd9b\e1d.sys [625296 2025-05-14] (Intel Corporation -> Intel Corporation)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [222592 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-24] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1623632 2025-02-04] (Intel Corporation -> Intel Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-23] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_ca5ac87d28341730\ipf_acpi.sys [89688 2024-10-11] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_cpu.sys [89688 2024-10-11] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_c493e10bcfd25250\ipf_lf.sys [504920 2024-10-11] (Intel Corporation -> Intel Corporation)
S2 l1vhlwf; C:\WINDOWS\System32\drivers\l1vhlwf.sys [144768 2025-10-29] (Microsoft Windows -> Microsoft Corporation)
R2 Mrvdp; C:\WINDOWS\system32\drivers\mrvdp.sys [58112 2021-10-13] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
R3 PRI-Driver; C:\WINDOWS\System32\DriverStore\FileRepository\socthermalprovider_sw.inf_amd64_d8d2967b40ed3b12\Intel(R) PRI Driver\PRI-Driver.sys [297080 2024-11-04] (Intel Corporation -> Intel Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174264 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50896 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [246216 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [256536 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\System32\drivers\VBoxSup.sys [1053008 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxUSBMon; C:\WINDOWS\System32\drivers\VBoxUSBMon.sys [195576 2025-06-03] (Oracle America, Inc. -> Oracle and/or its affiliates)
R3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 vkrnlintvsc; C:\WINDOWS\System32\DriverStore\FileRepository\wvkrnlintvsc.inf_amd64_ae7c1fb85fc0224e\vkrnlintvsc.sys [79168 2024-10-24] (Microsoft Windows -> Microsoft Corporation)
R3 vkrnlintvsp; C:\WINDOWS\System32\DriverStore\FileRepository\wvkrnlintvsp.inf_amd64_cac6fce1cffcbb7d\vkrnlintvsp.sys [87464 2025-06-27] (Microsoft Windows -> Microsoft Corporation)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [98304 2025-05-30] (Microsoft Windows -> Microsoft Corporation)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [74064 2022-02-27] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WiManHu; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiManHu\WiManHu.sys [217400 2024-09-08] (Intel Corporation -> Intel Corporation)
S3 WSDPrintDevice; C:\WINDOWS\System32\DriverStore\FileRepository\wsdprint.inf_amd64_1f9e32519098c0b6\WSDPrint.sys [57344 2024-10-24] (Microsoft Windows -> Microsoft Corporation)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 avgArDisk; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
S3 IntelTACD; \??\C:\Windows\System32\drivers\IntelTACD.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)