Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2022
Ran by JaHla (administrator) on DESKTOP-VJI0H33 (23-11-2022 14:27:18)
Running from C:\Users\janhl\OneDrive\Plocha\Složka na jiné složky\Ostatní
Loaded Profiles: JaHla
Platform: Microsoft Windows 10 Home Version 22H2 19045.2251 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe
(Discord Inc. -> Discord Inc.) C:\Users\janhl\AppData\Local\Discord\app-1.0.9007\Discord.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIXKE.EXE <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_7.70.13002.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_7.70.13002.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\pservice.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9246656 2018-01-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3089288 2022-11-10] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\janhl\AppData\Local\Microsoft\Teams\Update.exe [2492120 2022-05-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [670080 2021-08-07] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [895360 2021-08-07] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1310720 2020-02-10] (Seiko Epson Corporation) [File not signed]
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234088 2022-10-19] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe [19903800 2021-07-27] (A FOUR TECH CO., LTD. -> )
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [114000240 2021-10-28] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIXKE.EXE [421736 2021-11-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32696784 2022-11-15] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIXKE.EXE [421736 2021-11-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\janhl\AppData\Local\Microsoft\Teams\Update.exe [2492120 2022-05-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [Parsec.App.0] => C:\Program Files\Parsec\parsecd.exe [453368 2022-05-20] (Parsec Cloud, Inc. -> Parsec)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [Spotify] => C:\Users\janhl\AppData\Roaming\Spotify\Spotify.exe [19984872 2022-06-18] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1090168 2022-11-08] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-2119699963-3281376734-804585035-1001\...\Run: [MicrosoftEdgeAutoLaunch_131984991C1962FBADF69B3E63BF5660] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892168 2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\EPSON PC-FAX Driver2 64Monitor: C:\WINDOWS\system32\EFXLM16A.DLL [182784 2021-08-07] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON WF-3820 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBXKE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-11] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {018A913C-77FB-40CD-B782-6F51E354D3A2} - System32\Tasks\EPSON WF-3820 Series Update {F743CBBA-49C3-4778-9F03-3B0EB3083CE9} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSXKE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {0314E721-279B-400C-BAC2-919A26C48FFE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {09ABB069-34CD-413B-8937-A8C79F7CC653} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0EE6FB62-ED4C-4E10-8909-9DE264C225C3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {18AF11D1-71A2-4E65-B7D3-0018F79AC431} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [59232 2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {298D5935-0159-4431-BC88-AAB9437F8950} - System32\Tasks\GoogleUpdateTaskMachineUA{037F1B1C-FDF5-4216-9D73-80C1C4E42261} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-27] (Google LLC -> Google LLC)
Task: {3186E576-0AE1-469B-BC2C-56E9F25E86B9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {44721B65-A77D-4BE3-809A-6034EE23F69C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {47E41D8F-5E48-4ECB-A21C-5E3775705A2D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4DEE6E4D-D0C4-47A9-A523-983FE65B554B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22582224 2022-11-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5FB83A4F-4784-408D-BF26-57C0F2CAE3A5} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4105368 2022-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {63D01566-2F29-48FF-8577-BD173B76675A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {9699DF18-363A-4493-B78B-953F2867E165} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8311328 2022-11-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F1D0220-2620-400F-9C21-C7A36B4C9D60} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {A0A71B68-08D9-4285-B913-EF92AF76D070} - System32\Tasks\EPSON WF-3820 Series Update {7552F8D7-127C-4D2D-9D53-5189670F2DC3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSXKE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {A1AE96BC-E67C-4E44-A429-E345077954F9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22582224 2022-11-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {A7735D61-0CC1-4820-9591-30F75A41F9B4} - System32\Tasks\GoogleUpdateTaskMachineCore{D59F50B8-8200-40B1-8851-CDAA1B2DA752} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-27] (Google LLC -> Google LLC)
Task: {ADCB2B33-5574-45F4-8E1B-7B8F03CC387D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AE8A12A7-5DA2-45FF-AAD0-2932978DC6FE} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138200 2022-11-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {B6070591-A4B8-4ED6-A9E4-F11FDE6511F6} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B73AE85A-BD9C-4783-92CF-2A08D7A926FD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C57E3959-49D9-4EAC-9E89-CAC32ACFDB5D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C6394169-9885-43C3-81D3-39A47E5C0A8B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CBC5D541-B7E8-4129-8550-198F3959E634} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CFB09E94-DC20-430B-A56C-6EF025BAE041} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138200 2022-11-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {DBFBF58B-FC0D-471D-A5AC-D9C02F2AB06B} - System32\Tasks\Epson PowerENGAGE => C:\Program Files (x86)\Epson PowerENGAGE\\Epson PowerENGAGE.exe [83606232 ] (Aviata, Inc. -> Aviata, Inc.)
Task: {E0D64A1D-8C22-4972-8B4B-B46FE0ECB16F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FCFB20B2-7510-4600-9BFA-78D367E50506} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8311328 2022-11-19] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\EPSON WF-3820 Series Update {7552F8D7-127C-4D2D-9D53-5189670F2DC3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSXKE.EXE:/EXE:{7552F8D7-127C-4D2D-9D53-5189670F2DC3} /F:UpdateWORKGROUP\DESKTOP-VJI0H33$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON WF-3820 Series Update {F743CBBA-49C3-4778-9F03-3B0EB3083CE9}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSXKE.EXE:/EXE:{F743CBBA-49C3-4778-9F03-3B0EB3083CE9} /F:UpdateWORKGROUP\DESKTOP-VJI0H33$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.90.1
Tcpip\..\Interfaces\{797c542f-7d2d-4895-89bb-5f64b64d747c}: [DhcpNameServer] 192.168.90.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\janhl\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-23]
Edge Extension: (Phantom) - C:\Users\janhl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfnaelmomeimhlpmgjnjophhpkkoljpa [2022-11-09]
Edge Extension: (Plná Peněženka Lištička) - C:\Users\janhl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ecmgkhgjmodembdmiimbacpjgcdimiek [2022-11-23]
Edge Extension: (Return YouTube Dislike) - C:\Users\janhl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2022-11-21]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\janhl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-09-02]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-08-05] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR Profile: C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default [2022-11-23]
CHR Extension: (Terra Station Wallet) - C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiifbnbfobpmeekipheeijimdpnlpgpp [2022-11-16]
CHR Extension: (Phantom) - C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfnaelmomeimhlpmgjnjophhpkkoljpa [2022-11-09]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-30]
CHR Extension: (Plná Peněženka Lištička) - C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecmgkhgjmodembdmiimbacpjgcdimiek [2022-11-23]
CHR Extension: (Binance Wallet) - C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbohimaelbohpjbbldcngcnapndodjp [2022-11-07]
CHR Extension: (Return YouTube Dislike) - C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2022-11-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janhl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-05-17] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11649976 2022-07-09] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-01-24] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-07-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-11-21] (Epic Games Inc. -> Epic Games, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2020-01-24] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2021-10-27] (Microsoft Windows -> Microsoft Corporation)
R2 Parsec; C:\Program Files\Parsec\pservice.exe [414456 2022-05-20] (Parsec Cloud, Inc. -> Parsec)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10430256 2022-11-10] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 DSI_SiUSBXp_3_1; C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
R3 MpKslf4f37cb4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1074478C-C459-42B5-A7A0-4859E5BBB313}\MpKslDrv.sys [214280 2022-11-23] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 sRZVAD; C:\WINDOWS\System32\drivers\RZSurround.sys [172024 2019-06-06] (Razer USA Ltd. -> Windows (R) Win 7 DDK provider)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22216888 2022-11-10] (Riot Games, Inc. -> Riot Games, Inc.)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2021-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-11] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-11-23 14:04 - 2022-11-23 14:04 - 008791352 _____ (Malwarebytes) C:\Users\janhl\Downloads\adwcleaner.exe
2022-11-23 13:44 - 2022-11-23 13:44 - 002632256 _____ (Malwarebytes) C:\Users\janhl\Downloads\MBSetup-1312BFAD.exe
2022-11-23 13:44 - 2022-11-23 13:44 - 000000000 ____D C:\Program Files\Malwarebytes
2022-11-22 21:06 - 2022-11-22 21:06 - 000606125 _____ C:\Users\janhl\Downloads\zdroj 9 - 2021 ban - The End of the War or the Commencement of Battle cs.pdf
2022-11-20 00:13 - 2022-11-20 00:13 - 000438328 _____ C:\Users\janhl\Downloads\zdroj 5 - China bans ICO cs.pdf
2022-11-18 12:56 - 2022-11-18 12:56 - 000000000 ___HD C:\$WinREAgent
2022-11-16 23:33 - 2022-11-16 23:33 - 000508096 _____ C:\Users\janhl\Downloads\zdroj 6 - Light touch regulation in demand cs.pdf
2022-11-15 00:03 - 2022-11-19 21:55 - 000000000 ____D C:\Users\janhl\AppData\LocalLow\Mozilla
2022-11-15 00:03 - 2022-11-15 00:03 - 000000950 _____ C:\Users\janhl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2022-11-15 00:01 - 2022-11-15 00:02 - 103759600 _____ C:\Users\janhl\Downloads\torbrowser-install-win64-11.5.7_en-US.exe
2022-11-14 22:42 - 2022-11-14 22:42 - 000001741 _____ C:\Users\janhl\Downloads\multiTimeline.csv
2022-11-14 22:29 - 2022-11-14 22:29 - 000282647 _____ C:\Users\janhl\Downloads\Investigating_the_Adoption_Factors_of_Cryptocurren.pdf
2022-11-14 14:12 - 2022-11-14 14:12 - 005671868 _____ C:\Users\janhl\Downloads\Hsaka_twitter_setups_combined_pdf.pdf
2022-11-14 12:58 - 2022-11-14 12:58 - 000108960 _____ C:\Users\janhl\Downloads\DISCLAIMER_-_PRECTI_SI_ME.pdf
2022-11-13 12:46 - 2022-11-13 16:46 - 000000000 ____D C:\Program Files\RUXIM
2022-11-12 16:48 - 2022-11-12 16:48 - 000000000 ____D C:\Users\janhl\AppData\Local\EpicOnlineServicesUserHelper
2022-11-09 11:26 - 2022-11-09 11:26 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-11-09 11:26 - 2022-11-09 11:26 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll
2022-11-09 11:26 - 2022-11-09 11:26 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-11-09 11:25 - 2022-11-09 11:25 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-11-06 14:45 - 2022-11-06 14:45 - 000000000 ____D C:\Users\janhl\AppData\LocalLow\Blizzard Entertainment
2022-11-06 14:45 - 2022-11-06 14:45 - 000000000 ____D C:\Users\janhl\AppData\Local\Blizzard
2022-11-06 14:02 - 2022-11-11 17:02 - 000000000 ____D C:\Program Files (x86)\Hearthstone
2022-11-03 23:27 - 2022-11-03 23:27 - 001646891 _____ C:\Users\janhl\Downloads\1-s2.0-S0360544218322503-main.pdf
2022-11-03 23:10 - 2022-11-03 23:10 - 002617014 _____ C:\Users\janhl\Downloads\s41598-022-14987-0.pdf
2022-11-03 23:05 - 2022-11-03 23:05 - 000955949 _____ C:\Users\janhl\Downloads\Architectural Design - 2019 - Young - Tending Goats and Microprocessors Xingzhe Liu  Uncovering Sichuan s Remote Bitcoin.pdf
2022-11-03 12:32 - 2022-11-03 12:32 - 000129025 _____ C:\Users\janhl\Downloads\mnsfullbody.pdf
2022-11-02 22:45 - 2022-11-02 22:45 - 000377652 _____ C:\Users\janhl\Downloads\1-s2.0-S0261560622000286-main.pdf
2022-11-02 22:21 - 2022-11-02 22:21 - 001816644 _____ C:\Users\janhl\Downloads\IVS.2018.8500377.pdf
2022-11-02 22:11 - 2022-11-02 22:11 - 027679755 _____ C:\Users\janhl\Downloads\MSPEC.2017.8048840.pdf
2022-10-28 18:46 - 2022-10-28 18:46 - 000000000 ____D C:\Users\janhl\AppData\Roaming\Vampire_Survivors_Data
2022-10-28 18:46 - 2022-10-28 18:46 - 000000000 ____D C:\Users\janhl\AppData\Roaming\Vampire_Survivors_210533391
2022-10-28 18:40 - 2022-10-28 18:40 - 000261846 _____ C:\Users\janhl\Downloads\DTA-10-2019-0182.pdf
2022-10-24 20:27 - 2022-10-24 20:27 - 025522410 _____ C:\Users\janhl\Downloads\2022-Training-Program.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-11-23 14:27 - 2022-08-16 16:35 - 000000000 ____D C:\FRST
2022-11-23 14:20 - 2021-10-27 10:05 - 000000000 ____D C:\Users\janhl\AppData\Roaming\discord
2022-11-23 14:10 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-23 13:54 - 2021-10-27 09:26 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-23 13:50 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-11-23 13:36 - 2022-10-06 19:34 - 000000000 ____D C:\Users\janhl\AppData\Local\Battle.net
2022-11-23 13:36 - 2022-10-06 19:33 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-11-23 13:29 - 2021-10-27 10:05 - 000000000 ____D C:\Users\janhl\AppData\Local\Discord
2022-11-23 13:24 - 2021-10-26 23:47 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-11-23 13:20 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-23 13:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-11-23 12:25 - 2021-10-26 23:48 - 000000000 ____D C:\ProgramData\NVIDIA
2022-11-23 12:21 - 2021-10-26 23:47 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-22 19:55 - 2021-11-07 15:18 - 000000000 ____D C:\Users\janhl\AppData\Roaming\EpsonPowerENGAGE
2022-11-22 00:56 - 2021-10-27 09:36 - 000000000 ____D C:\Program Files (x86)\Steam
2022-11-20 21:20 - 2022-10-06 19:42 - 000000000 ____D C:\Program Files (x86)\Overwatch
2022-11-20 16:18 - 2021-10-27 13:56 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-11-20 01:19 - 2021-10-27 06:56 - 000000000 ____D C:\Users\janhl\AppData\Local\Packages
2022-11-19 22:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2022-11-19 19:56 - 2021-10-27 09:31 - 000000000 ____D C:\Program Files\Microsoft Office
2022-11-19 12:50 - 2022-09-12 10:54 - 000000000 ____D C:\Users\janhl\AppData\Roaming\com.adobe.dunamis
2022-11-19 12:44 - 2021-11-06 23:07 - 000416668 _____ C:\WINDOWS\system32\prfh0804.dat
2022-11-19 12:44 - 2021-11-06 23:07 - 000132376 _____ C:\WINDOWS\system32\prfc0804.dat
2022-11-19 12:44 - 2021-10-26 23:54 - 002242752 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-19 12:44 - 2019-12-07 15:41 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2022-11-19 12:44 - 2019-12-07 15:41 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
2022-11-19 12:44 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-11-19 12:40 - 2022-01-19 18:05 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-11-19 12:38 - 2021-10-27 09:27 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-19 12:37 - 2021-10-26 23:47 - 000008192 ___SH C:\DumpStack.log.tmp
2022-11-19 12:37 - 2021-10-26 23:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-11-19 01:23 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-11-18 16:16 - 2022-10-14 14:22 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-11-18 16:16 - 2021-10-29 21:48 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-11-18 12:57 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-11-17 00:37 - 2022-01-19 16:48 - 000000000 ____D C:\Program Files\Riot Vanguard
2022-11-16 14:14 - 2021-10-28 12:20 - 000000000 ____D C:\ProgramData\Riot Games
2022-11-15 22:27 - 2022-04-10 14:21 - 000000000 ____D C:\Users\janhl\AppData\Local\CrashDumps
2022-11-11 22:23 - 2021-10-26 23:47 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-11-11 22:23 - 2021-10-26 23:47 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-11-11 12:23 - 2021-10-26 23:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-11-10 00:24 - 2021-10-26 23:47 - 000465704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-11-10 00:23 - 2021-10-27 00:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2022-11-10 00:23 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-11-10 00:23 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-11-10 00:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-11-10 00:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-11-10 00:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-11-10 00:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-11-10 00:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-11-09 11:25 - 2021-10-26 23:52 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-11-09 11:19 - 2021-10-27 13:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-11-09 11:18 - 2021-10-27 13:55 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-11-01 11:25 - 2021-10-27 06:56 - 000000000 ____D C:\Users\janhl\AppData\Local\D3DSCache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================