Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2025
Ran by meduz (administrator) on MEDUZA (HP HP Laptop 15s-eq2xxx) (03-09-2025 08:07:16)
Running from C:\Users\meduz\Downloads\FRST64.exe
Loaded Profiles: meduz
Platform: Microsoft Windows 11 Home Version 24H2 26100.5074 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.1.1.14\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
(C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe ->) (Electronic Arts, Inc. -> ) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\compatibility32\EADesktop.exe
(C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EACefSubProcess.exe <6>
(C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.46.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.46.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(cmd.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe
(DriverStore\FileRepository\hpanalyticscomp.inf_amd64_0f2b4c962c16d743\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_0f2b4c962c16d743\x64\TouchpointGpuInfo.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\NetworkCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\BridgeCommunication.exe
(DriverStore\FileRepository\seapo64.inf_amd64_7ab1ea12f6a5b2d0\SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\DriverStore\FileRepository\seapo64.inf_amd64_7ab1ea12f6a5b2d0\SECOCL64.exe
(DriverStore\FileRepository\u0407196.inf_amd64_4f30592185b667eb\B406567\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407196.inf_amd64_4f30592185b667eb\B406567\atieclxx.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.46.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe
(Electronic Arts, Inc. -> Electronic Arts Inc.) C:\Program Files\EA Games\The Sims 3\Game\Bin\TS3.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(explorer.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <21>
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\meduz\AppData\Local\Microsoft\OneDrive\25.149.0803.0003\OneDrive.Sync.Service.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407196.inf_amd64_4f30592185b667eb\B406567\atiesrxx.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_0f2b4c962c16d743\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc; HP Development Company, L.P.) C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_4c654101995b0d9c\RtkAudUService64.exe <3>
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\DriverStore\FileRepository\seapo64.inf_amd64_7ab1ea12f6a5b2d0\SECOMN64.exe
(sihost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> DesktopExtension) C:\Program Files\WindowsApps\AD2F1837.myHP_48.52533.6679.0_x64__v10z8vjag6ke6\win32\DesktopExtension.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2508.1001.27.0_x64__8wekyb3d8bbwe\XboxPcTray.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_22507.1401.7.0_x64__8wekyb3d8bbwe\WinStore.DesktopExtension\StoreDesktopExtension.exe
(svchost.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.19012.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2534.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_48.52533.6679.0_x64__v10z8vjag6ke6\HP.myHP.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3456.0_x64__8wekyb3d8bbwe\EdgeGameAssist.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2508.1001.27.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.92.1.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_22507.1401.7.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\meduz\AppData\Local\Microsoft\OneDrive\25.149.0803.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppActions.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_4c654101995b0d9c\RtkAudUService64.exe [2165192 2024-08-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1088288 2025-08-27] (Bitdefender SRL -> Bitdefender)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [501424 2025-03-20] (Bitdefender SRL -> Bitdefender)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2096350567-2983039283-999813081-1002\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [545288 2025-03-14] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2096350567-2983039283-999813081-1002\...\Run: [MicrosoftEdgeAutoLaunch_DD908EED2B237ACFA3C74E0FAB84E1E2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4117544 2025-08-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2096350567-2983039283-999813081-1002\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3702432 2025-08-26] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2096350567-2983039283-999813081-1003\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [545288 2025-03-14] (HP Inc. -> HP Inc.)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00BFDF44-2E76-4EC2-8353-2B959B2730C4} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.14\WatchDog.exe [1168792 2025-06-04] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.14\repair
Task: {3411E28D-28FF-45AA-8A66-21292DDCD664} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [1004040 2025-06-19] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {738C7E1E-CAD4-4B52-AA0B-B76477850E06} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [480264 2025-06-19] (HP Inc. -> HP Inc.)
Task: {2AA1EC16-131C-4B31-A3A9-5CDDFDB78D76} - System32\Tasks\HP\Consent Manager Launcher => C:\windows\system32\sc.exe [102400 2025-07-02] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {A9D16CBD-25A8-4742-BFAB-5E445817EA59} - System32\Tasks\HPOneAgentRepairTask => C:\ProgramData\Package Cache\{38EBE077-6B9B-4E51-BE50-8F272A7853DB}\HPOneAgent.exe [1169784 2025-08-14] (HP Inc. -> HP Inc; HP Development Company, L.P.)
Task: {E6028824-5EFD-4AB7-9DB2-9118FF62762A} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16889712 2025-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {539399FE-70BE-453F-BE12-E180AE7946F1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28813696 2025-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {24BEAF13-5C0A-4463-9196-6043CE747B5D} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [70048 2025-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC897FB0-6848-4F8A-80AE-B00827EDAD96} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28813696 2025-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5AC060B-37D9-4559-8B04-BB845FD49512} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311152 2025-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {2E28A428-B9FA-44B6-AC85-C9BB90E23231} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311152 2025-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {04C37C8E-60DD-4086-BF7D-561492D1D5D8} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1355064 2025-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {44FB5664-8597-4A7A-89B0-A00F707BEECC} - System32\Tasks\Microsoft\Windows\Shell\UndockedFlightingUpdate => C:\windows\system32\UndockedFlightingUpdateTask.exe [81920 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
Task: {01B7383D-436C-40FB-8B53-F7E6E03E2109} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2096350567-2983039283-999813081-1002 => C:\Users\meduz\AppData\Local\Microsoft\OneDrive\25.149.0803.0003\OneDriveLauncher.exe [725352 2025-08-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {DEACB8BE-59EA-4B42-99A8-B2385338D0CC} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2096350567-2983039283-999813081-500 => C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\25.015.0126.0002\OneDriveLauncher.exe  /startInstances (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{f443cf12-1a45-4cc2-a05e-d02460828474}: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{f443cf12-1a45-4cc2-a05e-d02460828474}: [DhcpDomain] home
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\meduz\AppData\Local\Microsoft\Edge\User Data\Default [2025-09-03]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\meduz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2025-08-26]
Edge Extension: (Dokumenty Google offline) - C:\Users\meduz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-08-30]
Edge Extension: (Edge relevant text changes) - C:\Users\meduz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-02-21]
Edge Extension: (Bitdefender SecurePass) - C:\Users\meduz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lnfflhmanffipgdmceonijidkpiacanc [2025-08-27]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-08-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-08-22] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR Profile: C:\Users\meduz\AppData\Local\Google\Chrome\User Data\Default [2025-08-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\meduz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-08-16]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\meduz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2025-08-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\meduz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-08-16]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [851704 2025-08-27] (Bitdefender SRL -> Bitdefender)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852216 2025-08-27] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852216 2025-08-27] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2966176 2023-07-20] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender)
R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [852216 2025-08-27] (Bitdefender SRL -> Bitdefender)
R2 bdvpnservice; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [516928 2025-03-20] (Bitdefender SRL -> Bitdefender)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13283728 2025-08-18] (Microsoft Corporation -> Microsoft Corporation)
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19151520 2025-08-26] (Electronic Arts, Inc. -> Electronic Arts)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [475680 2023-04-14] (HP Inc. -> HP Inc.)
R2 hp-one-agent-service; C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe [2411616 2025-06-19] (HP Inc. -> HP Inc; HP Development Company, L.P.)
R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\AppHelperCap.exe [930400 2025-07-14] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\DiagsCap.exe [928864 2025-07-14] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\NetworkCap.exe [924768 2025-07-14] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_2ce7f3bdc4152084\x64\SysInfoCap.exe [929376 2025-07-14] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_0f2b4c962c16d743\x64\TouchpointAnalyticsClientService.exe [639720 2025-07-14] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9609096 2025-08-23] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-05-21] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [764808 2025-06-04] (Bitdefender SRL -> Bitdefender)
R2 SECOMNService; C:\windows\System32\DriverStore\FileRepository\seapo64.inf_amd64_7ab1ea12f6a5b2d0\SECOMN64.exe [992496 2024-05-10] (Sound Research Corporation -> Sound Research, Corp.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [291288 2025-08-27] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852216 2025-08-27] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AcpiAudioCompositorInbox; C:\windows\System32\DriverStore\FileRepository\acpiaudiocompositor.inf_amd64_047f553a6f70b169\AcpiAudioCompositor.sys [102400 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
R3 AMDAfdAudioService; C:\windows\System32\DriverStore\FileRepository\amdacpafd.inf_amd64_9e0bd40cea1a8ab6\amdacpafd.sys [432344 2024-06-18] (AMD Test Build -> Advanced Micro Devices)
R3 amdfendrmgr; C:\windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrmgr.sys [25672 2024-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\windows\System32\DriverStore\FileRepository\u0407196.inf_amd64_4f30592185b667eb\B406567\amdkmdag.sys [106730392 2024-09-04] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
S3 amdwirelessbutton; C:\windows\System32\drivers\amdwirelessbutton.sys [39032 2024-04-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
S3 AmUStor; C:\windows\system32\drivers\AmUStorU.sys [155848 2024-04-09] (Alcorlink Corp. -> )
R1 atc; C:\windows\System32\DRIVERS\atc.sys [8502336 2025-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
R3 AtcExt; C:\windows\System32\drivers\AtcExt.sys [27192 2025-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
S3 AX88772; C:\windows\System32\DriverStore\FileRepository\netax88772.inf_amd64_8cf5f634aa308898\ax88772.sys [116736 2024-04-01] (Microsoft Windows -> ASIX Electronics Corp.)
R2 BdDci4; C:\windows\system32\DRIVERS\bddci4.sys [1371176 2025-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\windows\System32\drivers\bdelam.sys [24568 2023-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
S3 bdprivmon; C:\windows\system32\DRIVERS\bdprivmon.sys [49200 2025-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender SRL)
S3 bduefiscan; C:\windows\system32\DRIVERS\bduefiscan.sys [53808 2025-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 bdvpn_callout; C:\Program Files\Bitdefender\Bitdefender VPN\Drivers\x64\netfilter.sys [105552 2024-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R0 fse; C:\windows\System32\drivers\fse.sys [222592 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
R1 Gemma; C:\windows\System32\DRIVERS\gemma.sys [1793112 2025-08-07] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [36424 2024-04-02] (HP Inc. -> HP Inc.)
S3 Ignisv2; C:\windows\system32\DRIVERS\ignisv2.sys [849968 2025-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 KslD; C:\windows\System32\drivers\wd\KslD.sys [331168 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
S2 l1vhlwf; C:\windows\System32\drivers\l1vhlwf.sys [140704 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\windows\System32\Drivers\MbamChameleon.sys [234072 2025-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [22120 2025-05-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [242752 2025-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 SdcaHidInbox; C:\windows\System32\DriverStore\FileRepository\sdcahid.inf_amd64_9b043c5c82568ed0\SdcaHid.sys [159744 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
S3 SdcaMfdInbox; C:\windows\System32\DriverStore\FileRepository\sdcamfd.inf_amd64_7616b07de0d13d6f\SdcaMfd.sys [176128 2025-08-29] (Microsoft Windows -> Microsoft Corporation)
S3 tap0901; C:\windows\System32\drivers\tap0901.sys [51192 2025-02-21] (OpenVPN Inc. -> The OpenVPN Project)
R2 trufos; C:\windows\System32\DRIVERS\trufos.sys [630312 2025-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 vlflt; C:\windows\System32\DRIVERS\vlflt.sys [1445960 2025-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 vmbusproxy; C:\windows\system32\drivers\vmbusproxy.sys [98304 2025-05-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\windows\system32\drivers\wd\WdBoot.sys [20016 2025-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\windows\system32\drivers\wd\WdFilter.sys [605576 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\windows\System32\drivers\wintun.sys [29592 2025-02-21] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\windows\System32\drivers\wireguard.sys [489368 2025-03-22] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [40200 2024-06-17] (HP Inc. -> HP)
S3 polarbear-split-tunneling; \??\C:\Program Files\McAfee\wps\1.26.217.1\vpn\Drivers\x64\SplitTunnelingDriver.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-09-03 08:07 - 2025-09-03 08:07 - 000030011 _____ C:\Users\meduz\Downloads\FRST.txt
2025-09-03 08:06 - 2025-09-03 08:07 - 000000000 ____D C:\FRST
2025-09-03 08:05 - 2025-09-03 08:05 - 002409472 _____ (Farbar) C:\Users\meduz\Downloads\FRST64.exe
2025-09-02 00:42 - 2025-09-02 00:42 - 000741898 _____ C:\windows\system32\perfh005.dat
2025-09-02 00:42 - 2025-09-02 00:42 - 000168488 _____ C:\windows\system32\perfc005.dat
2025-09-01 19:03 - 2025-09-03 07:15 - 000000000 ____D C:\windows\CbsTemp
2025-08-29 20:48 - 2025-08-29 20:48 - 000077233 _____ C:\windows\SysWOW64\ctac.json
2025-08-29 20:48 - 2025-08-29 20:48 - 000077233 _____ C:\windows\system32\ctac.json
2025-08-29 20:48 - 2025-08-29 20:48 - 000001681 _____ C:\windows\system32\DeviceFeatureDDF.json
2025-08-22 14:33 - 2025-08-22 14:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-08-16 13:14 - 2025-08-22 07:56 - 000002213 _____ C:\Users\meduz\Downloads\Google Chrome.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-09-03 08:02 - 2024-05-22 18:27 - 000000000 ____D C:\windows\system32\SleepStudy
2025-09-03 07:59 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-09-03 07:52 - 2024-04-01 09:26 - 000000000 ____D C:\windows\AppReadiness
2025-09-03 07:51 - 2025-05-21 08:02 - 000000000 ____D C:\Users\meduz\AppData\Local\Malwarebytes
2025-09-03 07:51 - 2024-04-01 09:26 - 000000000 ____D C:\windows\SystemTemp
2025-09-03 07:19 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-09-02 00:42 - 2024-05-22 18:33 - 001831992 _____ C:\windows\system32\PerfStringBackup.INI
2025-09-02 00:42 - 2024-04-01 09:24 - 000000000 ____D C:\windows\INF
2025-09-01 19:04 - 2025-02-21 14:35 - 000000000 ___RD C:\Users\meduz\OneDrive
2025-09-01 19:04 - 2024-04-01 00:48 - 000014016 _____ C:\windows\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-09-01 19:03 - 2024-05-22 18:27 - 000012288 ___SH C:\DumpStack.log.tmp
2025-09-01 19:03 - 2024-05-22 18:27 - 000000006 ____H C:\windows\Tasks\SA.DAT
2025-09-01 19:03 - 2024-04-01 09:21 - 001048576 _____ C:\windows\system32\config\BBI
2025-09-01 12:16 - 2025-02-21 16:49 - 000000000 ____D C:\ProgramData\Package Cache
2025-08-31 19:05 - 2025-02-21 14:30 - 000000000 ____D C:\Users\meduz\AppData\Local\D3DSCache
2025-08-31 09:10 - 2025-02-21 18:39 - 000000000 ____D C:\Users\meduz\AppData\Local\CrashDumps
2025-08-30 11:14 - 2024-04-01 09:21 - 000131072 _____ C:\windows\system32\config\ELAM
2025-08-30 04:56 - 2024-05-22 18:27 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-08-30 00:04 - 2024-08-12 20:01 - 000001607 _____ C:\windows\system32\config\VSMIDK
2025-08-30 00:02 - 2024-05-22 18:27 - 000590304 _____ C:\windows\system32\FNTCACHE.DAT
2025-08-30 00:01 - 2024-04-01 10:09 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-08-30 00:01 - 2024-04-01 10:08 - 000000000 ____D C:\windows\system32\OpenSSH
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ___SD C:\windows\SysWOW64\F12
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ___SD C:\windows\system32\F12
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ___RD C:\windows\ImmersiveControlPanel
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\UUS
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\SysWOW64\WinMetadata
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\SysWOW64\setup
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\SysWOW64\oobe
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\SysWOW64\InstallShield
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\SysWOW64\Dism
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\SysWOW64\AdvancedInstallers
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\SystemResources
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\WinMetadata
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\setup
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\PerceptionSimulation
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\oobe
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\migwiz
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\HealthAttestationClient
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\Dism
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\appraiser
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\system32\AdvancedInstallers
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\ShellExperiences
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\ShellComponents
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\Provisioning
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\PolicyDefinitions
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\windows\bcastdvr
2025-08-30 00:01 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-08-30 00:01 - 2024-04-01 09:21 - 000000000 ____D C:\windows\servicing
2025-08-29 21:45 - 2024-04-01 09:26 - 000282624 _____ (Microsoft Corporation) C:\windows\system32\msclmd.dll
2025-08-29 21:45 - 2024-04-01 09:26 - 000235520 _____ (Microsoft Corporation) C:\windows\SysWOW64\msclmd.dll
2025-08-29 20:48 - 2024-05-22 18:31 - 003270656 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintConfig.dll
2025-08-29 10:18 - 2025-03-01 14:17 - 000000436 _____ C:\windows\system32\Drivers\etc\hosts.ics
2025-08-28 21:07 - 2025-02-21 14:27 - 000000000 ____D C:\Users\meduz
2025-08-27 18:06 - 2025-02-21 14:27 - 000000000 ____D C:\Users\meduz\AppData\Local\Packages
2025-08-27 18:00 - 2025-03-22 10:00 - 000049200 _____ (Bitdefender SRL) C:\windows\system32\Drivers\bdprivmon.sys
2025-08-27 17:59 - 2025-03-22 10:00 - 001371176 _____ (Bitdefender) C:\windows\system32\Drivers\bddci4.sys
2025-08-27 17:59 - 2025-03-22 10:00 - 000849968 _____ (Bitdefender) C:\windows\system32\Drivers\ignisv2.sys
2025-08-27 17:44 - 2025-03-22 09:59 - 000000000 ____D C:\ProgramData\Bitdefender
2025-08-27 17:31 - 2025-03-22 10:00 - 008502336 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\windows\system32\Drivers\atc.sys
2025-08-27 08:13 - 2025-04-06 04:40 - 000000000 ____D C:\ProgramData\EA Desktop
2025-08-27 08:12 - 2024-04-01 00:04 - 000000000 ____D C:\Program Files\AMD
2025-08-26 16:44 - 2025-02-21 14:36 - 000003570 _____ C:\windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-2096350567-2983039283-999813081-1002
2025-08-26 16:44 - 2025-02-21 14:35 - 000003588 _____ C:\windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2096350567-2983039283-999813081-1002
2025-08-26 16:44 - 2025-02-21 14:35 - 000003360 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2096350567-2983039283-999813081-1002
2025-08-26 16:44 - 2025-02-21 14:35 - 000002384 _____ C:\Users\meduz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-08-23 09:28 - 2025-02-24 20:41 - 004213136 _____ (Microsoft Corporation) C:\windows\system32\xgameruntime.dll
2025-08-23 09:28 - 2025-02-24 20:41 - 000121208 _____ (Microsoft Corporation) C:\windows\system32\xgamehelper.exe
2025-08-23 09:28 - 2025-02-24 20:41 - 000076152 _____ (Microsoft Corporation) C:\windows\system32\xgamecontrol.exe
2025-08-23 09:27 - 2025-02-24 20:41 - 000829808 _____ (Microsoft Corporation) C:\windows\system32\gameplatformservices.dll
2025-08-23 09:27 - 2025-02-24 20:41 - 000276880 _____ (Microsoft Corporation) C:\windows\system32\gamelaunchhelper.dll
2025-08-23 09:27 - 2025-02-24 20:41 - 000244112 _____ (Microsoft Corporation) C:\windows\system32\gameconfighelper.dll
2025-08-23 09:27 - 2025-02-24 20:41 - 000166264 _____ (Microsoft Corporation) C:\windows\system32\gamingtcuihelpers.dll
2025-08-23 00:13 - 2024-04-01 00:10 - 000000000 ____D C:\Program Files (x86)\Google
2025-08-22 14:18 - 2024-08-12 20:08 - 000000000 ____D C:\Program Files\Microsoft Office
2025-08-20 15:49 - 2025-02-21 14:27 - 000000000 ___SD C:\Users\meduz\AppData\Roaming\Microsoft\Protect
2025-08-16 13:28 - 2024-04-01 00:12 - 000000000 ____D C:\Program Files\McAfee
2025-08-16 13:24 - 2025-03-02 19:32 - 000000000 ____D C:\Users\meduz\AppData\Local\Google
2025-08-15 17:40 - 2025-05-23 10:16 - 000000000 ____D C:\Users\meduz\Desktop\Hry
2025-08-14 12:15 - 2025-02-21 16:49 - 000003846 _____ C:\windows\system32\Tasks\HPOneAgentRepairTask
2025-08-13 01:19 - 2024-04-01 10:08 - 000000000 ____D C:\windows\system32\Microsoft-Edge-WebView
2025-08-12 19:52 - 2025-02-18 12:21 - 000000000 ____D C:\windows\system32\MRT
2025-08-12 19:51 - 2025-02-18 12:21 - 223939376 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2025-08-10 14:10 - 2025-05-21 07:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-08-10 12:48 - 2025-05-10 14:44 - 000000000 ____D C:\Program Files (x86)\Ekura
2025-08-09 10:32 - 2024-05-22 18:27 - 000002281 _____ C:\Users\meduz\Desktop\Microsoft Edge.lnk
2025-08-07 11:18 - 2025-03-22 10:00 - 001445960 _____ (Bitdefender) C:\windows\system32\Drivers\vlflt.sys
2025-08-07 11:18 - 2025-03-22 10:00 - 000630312 _____ (Bitdefender) C:\windows\system32\Drivers\Trufos.sys
2025-08-07 11:14 - 2025-03-22 10:00 - 001793112 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\windows\system32\Drivers\gemma.sys
2025-08-07 11:10 - 2025-03-22 10:00 - 000053808 _____ (Bitdefender) C:\windows\system32\Drivers\bduefiscan.sys
2025-08-06 11:13 - 2024-05-22 18:29 - 000000000 ____D C:\ProgramData\Packages

==================== Files in the root of some directories ========

2025-05-31 18:25 - 2025-05-31 18:25 - 000005357 _____ () C:\Users\meduz\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================