Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-11-2020
Ran by origi (administrator) on DESKTOP-Q4STC4U (Gigabyte Technology Co., Ltd. Z390 UD) (27-11-2020 18:41:18)
Running from C:\Users\origi\Desktop
Loaded Profiles: origi
Platform: Windows 10 Pro Version 20H2 19042.630 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CloudBees, Inc.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\MonitorService-exec.exe
(Discord Inc. -> Discord Inc.) C:\Users\origi\AppData\Local\Discord\app-0.0.308\Discord.exe <7>
(Epic Games Inc. -> Epic Games, Inc.) E:\Program Files\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe <3>
(Epic Games Inc. -> Epic Games, Inc.) E:\Program Files\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <55>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(LogMeIn, Inc. -> LogMeIn Inc.) E:\Program Files\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) E:\Program Files\x64\LMIGuardianSvc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsMaps_10.2011.4.0_x64__8wekyb3d8bbwe\Maps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fodhelper.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PickerHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.621_none_e7694895260e0b6d\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\NisSrv.exe
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(Plex, Inc. -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Rockstar Games, Inc. -> Rockstar Games) E:\Program Files\Rockstar Games\Launcher\Launcher.exe
(Rockstar Games, Inc. -> Rockstar Games) E:\Program Files\Rockstar Games\Launcher\RockstarService.exe
(Rockstar Games, Inc. -> Take-Two Interactive Software, Inc.) C:\Program Files\Rockstar Games\Social Club\SocialClubHelper.exe <3>
(Spotify AB -> Spotify Ltd) C:\Users\origi\AppData\Roaming\Spotify\Spotify.exe <5>
(Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
(Ubisoft Entertainment Sweden AB -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(WeMod LLC -> Daring Development Inc.) C:\Users\origi\AppData\Local\WeMod\app-6.3.11\resources\app.asar.unpacked\static\unpacked\auxiliary\WeModAuxiliaryService.exe
(WeMod LLC -> WeMod) C:\Users\origi\AppData\Local\WeMod\app-6.3.11\WeMod.exe <4>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-07-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => E:\Program Files\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [50096 2019-04-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3424032 2020-10-29] (Valve -> Valve Corporation)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [Spotify] => C:\Users\origi\AppData\Roaming\Spotify\Spotify.exe [23232232 2020-11-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [Discord] => C:\Users\origi\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [EpicGamesLauncher] => E:\Program Files\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33102224 2020-11-06] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [24625144 2020-02-19] (Plex, Inc. -> Plex, Inc.)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [104586376 2020-11-21] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\origi\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [14766664 2020-10-03] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-05-07] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-05-07] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1797817695-3140524087-3623043744-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514096 2020-10-19] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-17] (Google LLC -> Google LLC)
Startup: C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AORUS ENGINE.lnk [2020-11-18]
ShortcutTarget: AORUS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\autorun.exe () [File not signed]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {059ACACA-6610-4154-B0B9-1A814E39B8C0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-19] (Google LLC -> Google LLC)
Task: {05AC1BC4-DF43-4C90-8C4B-4D12C1BDD8D5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {07471E98-CE11-41B9-8E9C-F87637FF5892} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F70B12F-62ED-4511-A9ED-81246B0BE16A} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe
Task: {41457A5F-3A9B-4270-9E29-88D63C659B66} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4EFA01D9-BD05-4C48-851F-56B7628B1B5E} - System32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE => C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe [33903328 2020-11-05] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
Task: {55AA047D-959B-4DB7-9C39-4C91A7EE2E19} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5CFA99A2-D0F8-4F7A-A306-8A9BC8BF63F0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-19] (Google LLC -> Google LLC)
Task: {5F2BA33A-8616-424C-AB9D-3217745A09E1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7778467F-4FC4-48CF-B33A-C9CA872D2C1B} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\program files (x86)\microsoft visual studio\installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [65440 2020-07-22] (Microsoft Corporation -> Microsoft)
Task: {81C207F1-0636-4A3C-8FD6-BB5186762748} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1797817695-3140524087-3623043744-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-11-17] (Microsoft Windows -> )
Task: {911E10DD-1AE9-4692-8751-0D0151258971} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144744 2020-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {9A362EF8-91BE-4938-AD25-3A5E6B5DDB25} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AB423A2B-41E4-4192-9DAB-2ECE36C25C6A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5153176 2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC31F993-D52B-4E9B-8ACA-77AEB8F34F25} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B12C15E3-4031-40A8-9434-75B0B6EE2047} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {BB812079-3B97-46E1-A5E8-8D60F2DE7894} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [752136 2020-10-17] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) <==== ATTENTION
Task: {C0093AFA-6E4B-4565-9BD9-6CFD85292586} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {C04310FD-E714-4DC4-9084-F7A7E8BCE848} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {C38684F7-90AB-4E69-B4DC-FEA8387E48B5} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6CA24E4-A723-4698-8CC1-4956551F3DE5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA711F0A-2238-446C-BC5E-2B42D4E33790} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D3C431D0-6611-4ADA-9CEB-0106933773B2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD6F9B9D-C2B5-4B40-953B-BBDB50753853} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-20] (Adobe Inc. -> Adobe)
Task: {DDACF7FE-8A0A-4373-8372-CA5A26F6DC02} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-18] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {E677DACB-D605-4FF2-AF1E-E4DDC6A1CD80} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-18] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E79C0B2C-BEAF-4FEA-9662-EE2C274784DC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E91294D4-094C-447E-8B68-B432F2C28B5B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5153176 2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB6B852A-45DE-4C1D-8911-973F4D8CAC40} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144744 2020-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {F0D61D05-4EDE-4B80-A447-CD4A7AE01BA0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [667856 2020-11-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {F6396AAE-D305-4B73-8FD3-5D2804D888DF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d67f30f0-0c71-4697-9b7d-1371f23a70e1}: [DhcpNameServer] 192.168.0.1

Edge: 
======
Edge Profile: C:\Users\origi\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-16]

FireFox:
========
FF DefaultProfile: a559bv13.default
FF ProfilePath: C:\Users\origi\AppData\Roaming\Mozilla\Firefox\Profiles\a559bv13.default [2020-11-23]
FF NewTab: Mozilla\Firefox\Profiles\a559bv13.default -> hxxps://searchdefault.co/homepage?hp=1&bitmask=9996&pId=BT171001&iDate=2019-12-25 10:02:22&bName=
FF ProfilePath: C:\Users\origi\AppData\Roaming\Mozilla\Firefox\Profiles\w11yp6xr.default-release [2020-11-27]
FF Extension: (Reddit Enhancement Suite) - C:\Users\origi\AppData\Roaming\Mozilla\Firefox\Profiles\w11yp6xr.default-release\Extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2020-10-03]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\origi\AppData\Roaming\Mozilla\Firefox\Profiles\w11yp6xr.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-11-27]
FF HKLM\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-20] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> E:\Program Files\VLC\npvlc.dll [2019-08-15] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-20] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-09-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-09-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-09-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-11-19] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1797817695-3140524087-3623043744-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\origi\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-05] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-12-19] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-12-19] <==== ATTENTION

Chrome: 
=======
CHR Profile: C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default [2020-11-27]
CHR DownloadDir: E:\Downloads
CHR Notifications: Default -> hxxps://www.cashrewards.com.au; hxxps://www.guilded.gg
CHR Extension: (Honey) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2020-11-18]
CHR Extension: (uBlock Origin) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-10-26]
CHR Extension: (Dark Mode) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmghijelimhndkbmpgbldicpogfkceaj [2020-11-12]
CHR Extension: (Adobe Acrobat) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-09-26]
CHR Extension: (Kaspersky Protection) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-07-01]
CHR Extension: (Cashrewards) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\foehlpanophbpagddidofdpeiappcmgf [2020-11-12]
CHR Extension: (Google Docs Offline) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-11-12]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-11-27]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2020-11-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-19]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-10-26]
CHR Extension: (Chrome Media Router) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-12]
CHR Extension: (HMA VPN Proxy Unblocker) - C:\Users\origi\AppData\Local\Google\Chrome\User Data\Default\Extensions\poeojclicodamonabcabmapamjkkmnnk [2020-07-19]
CHR Extension: (Nohat) - E:\Downloads\NohatExt_3\NohatExt_3 [2020-08-01]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AORUS LCD Panel Service; C:\Program Files (x86)\GIGABYTE\AORUS LCD Panel Setting\MonitorService-exec.exe [360960 2018-12-21] (CloudBees, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-11-19] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2020-10-08] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1728072 2020-10-03] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-02-26] (GOG Sp. z o.o. -> GOG.com)
R2 Hamachi2Svc; E:\Program Files\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10887816 2020-11-21] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7269976 2020-11-23] (Malwarebytes Inc -> Malwarebytes)
R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2148856 2020-02-19] (Plex, Inc. -> Plex, Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-06-24] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294128 2020-10-19] (Razer USA Ltd. -> Razer Inc.)
R3 Rockstar Service; E:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1382016 2020-11-27] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533376 2020-09-23] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-05-01] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-04-07] (Bluestack Systems, Inc -> Bluestack System Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-11-23] (Malwarebytes Corporation -> Malwarebytes)
R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2020-11-18] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79696 2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145304 2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251512 2019-10-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998016 2019-10-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\70065\driver_cpu_temperature\logi_core_temp.sys [25448 2020-11-21] (Logitech Inc. -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2020-10-30] (Logitech Inc -> Logitech)
S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-10-30] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2020-10-30] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197792 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [138904 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl0f53becd; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1D9677F7-E130-4FE7-8BE9-3105A03F2511}\MpKslDrv.sys [47336 2020-11-27] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2020-01-15] (Apple Inc.) [File not signed]
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429288 2020-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-27 18:41 - 2020-11-27 18:41 - 000033779 _____ C:\Users\origi\Desktop\FRST.txt
2020-11-27 13:36 - 2020-11-27 13:36 - 000000000 ____D C:\Users\origi\AppData\Local\WeMod
2020-11-26 23:32 - 2020-11-26 23:32 - 000197792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-11-26 22:35 - 2020-11-26 22:36 - 000000000 ____D C:\Users\origi\AppData\LocalLow\SUPERHOT_Team
2020-11-24 20:22 - 2020-11-26 23:32 - 000138904 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-11-24 20:22 - 2020-11-26 23:32 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-11-24 19:55 - 2020-11-24 19:55 - 000909824 _____ (Farbar) C:\Users\origi\Desktop\FSS.exe
2020-11-23 20:27 - 2020-11-27 15:55 - 000000000 ____D C:\Users\origi\AppData\LocalLow\IGDump
2020-11-23 20:26 - 2020-11-26 23:32 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-11-23 20:26 - 2020-11-26 23:32 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-11-23 20:26 - 2020-11-23 20:26 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-11-23 20:26 - 2020-11-23 20:26 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-11-23 20:26 - 2020-11-23 20:26 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-11-23 20:26 - 2020-11-23 20:26 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-11-23 20:26 - 2020-11-23 20:26 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-11-23 20:26 - 2020-11-23 20:26 - 000000000 ____D C:\Users\origi\AppData\Local\mbam
2020-11-23 20:26 - 2020-11-23 20:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-11-23 20:21 - 2020-11-23 20:21 - 000000000 ____D C:\Program Files\Malwarebytes
2020-11-23 20:20 - 2020-11-23 20:17 - 002076624 _____ (Malwarebytes) C:\Users\origi\Desktop\MBSetup.exe
2020-11-23 20:16 - 2020-11-24 19:37 - 000000000 ____D C:\AdwCleaner
2020-11-23 20:15 - 2020-11-23 20:15 - 008447152 _____ (Malwarebytes) C:\Users\origi\Desktop\AdwCleaner.exe
2020-11-23 20:09 - 2020-11-27 18:40 - 000000000 ____D C:\Users\origi\Desktop\FRST-OlderVersion
2020-11-22 23:14 - 2020-11-22 23:14 - 000000233 _____ C:\Users\origi\Desktop\Tom Clancy's Rainbow Six Siege.url
2020-11-22 23:14 - 2020-11-22 23:14 - 000000233 _____ C:\Users\origi\Desktop\Tom Clancy's Rainbow Six Siege - Vulkan.url
2020-11-21 20:08 - 2020-11-21 20:08 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2020-11-21 20:08 - 2020-11-21 20:08 - 000000650 _____ C:\ProgramData\Desktop\Logitech G HUB.lnk
2020-11-21 20:08 - 2020-11-21 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2020-11-21 20:08 - 2020-11-21 20:08 - 000000000 ____D C:\Program Files\LGHUB
2020-11-19 21:27 - 2020-11-19 21:30 - 000000000 ____D C:\Users\origi\Documents\Assassin's Creed Valhalla
2020-11-19 20:23 - 2020-11-19 20:23 - 000000235 _____ C:\Users\origi\Desktop\Assassin's Creed Valhalla.url
2020-11-19 19:22 - 2020-11-19 19:22 - 000000234 _____ C:\Users\origi\Desktop\Watch Dogs Legion.url
2020-11-18 18:46 - 2020-11-27 18:41 - 000000000 ____D C:\FRST
2020-11-18 18:46 - 2020-11-27 18:40 - 002290176 _____ (Farbar) C:\Users\origi\Desktop\FRST64.exe
2020-11-18 18:32 - 2020-11-18 18:32 - 000000000 ____D C:\Users\Public\Documents\Creative
2020-11-18 18:32 - 2020-11-18 18:32 - 000000000 ____D C:\ProgramData\Documents\Creative
2020-11-18 18:31 - 2020-11-18 18:31 - 000032600 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\gdrv2.sys
2020-11-18 18:31 - 2020-11-18 18:31 - 000002206 _____ C:\Users\Public\Desktop\RGBFusion 2.0.lnk
2020-11-18 18:31 - 2020-11-18 18:31 - 000002206 _____ C:\ProgramData\Desktop\RGBFusion 2.0.lnk
2020-11-18 18:31 - 2020-11-18 18:31 - 000000000 ____D C:\Users\origi\AppData\Local\Downloaded Installations
2020-11-18 18:31 - 2020-11-18 18:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AORUS
2020-11-18 18:31 - 2020-11-18 18:31 - 000000000 ____D C:\Program Files\Patriot
2020-11-18 18:31 - 2020-11-18 18:31 - 000000000 ____D C:\Program Files\ENE
2020-11-18 18:31 - 2020-11-18 18:31 - 000000000 ____D C:\Program Files (x86)\ENE
2020-11-18 18:31 - 2020-05-12 01:28 - 000020992 _____ C:\WINDOWS\system32\Drivers\ene.sys
2020-11-18 18:30 - 2020-11-18 18:32 - 000000000 ____D C:\Program Files (x86)\GIGABYTE
2020-11-18 18:30 - 2020-11-18 18:30 - 000003464 _____ C:\WINDOWS\system32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE
2020-11-18 18:30 - 2020-11-18 18:30 - 000001243 _____ C:\Users\Public\Desktop\AORUS ENGINE.lnk
2020-11-18 18:30 - 2020-11-18 18:30 - 000001243 _____ C:\ProgramData\Desktop\AORUS ENGINE.lnk
2020-11-18 18:30 - 2020-11-18 18:30 - 000000000 ____D C:\Users\origi\Documents\temp
2020-11-18 18:30 - 2020-11-18 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2020-11-18 18:15 - 2020-11-08 04:41 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-11-18 18:15 - 2020-11-08 04:41 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-11-18 18:15 - 2020-11-08 04:41 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-11-18 18:15 - 2020-11-08 04:41 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-11-18 18:15 - 2020-11-08 04:41 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-11-18 18:15 - 2020-11-08 04:41 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-11-18 18:15 - 2020-11-08 04:41 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-11-18 18:15 - 2020-11-08 04:41 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-11-18 18:15 - 2020-11-08 04:41 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-11-18 18:15 - 2020-11-08 04:41 - 000349936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 002096880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 001585560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 001506032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 001159920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 001027992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 000816368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 000813464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 000674712 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 000590576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-11-18 18:15 - 2020-11-08 04:38 - 000556440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-11-18 18:15 - 2020-11-08 04:38 - 000543128 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-11-18 18:15 - 2020-11-08 04:37 - 007707544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-11-18 18:15 - 2020-11-08 04:37 - 006858992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-11-18 18:15 - 2020-11-08 04:37 - 004175256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-11-18 18:15 - 2020-11-08 04:37 - 002509720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-11-18 18:15 - 2020-11-08 04:37 - 000849648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-11-18 18:15 - 2020-11-08 04:37 - 000445848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-11-18 18:15 - 2020-11-08 04:36 - 005976296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-11-18 18:15 - 2020-11-07 15:01 - 000080930 _____ C:\WINDOWS\system32\nvinfo.pb
2020-11-18 18:13 - 2020-11-18 18:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2020-11-18 18:09 - 2020-11-18 18:09 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2020-11-17 13:47 - 2020-11-16 18:53 - 000000000 ____D C:\Windows.old
2020-11-17 13:45 - 2020-11-17 13:47 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2020-11-17 13:44 - 2020-11-17 13:45 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-11-17 13:44 - 2020-11-17 13:44 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-11-17 13:43 - 2020-11-17 13:43 - 000000000 ____D C:\ProgramData\ssh
2020-11-17 13:41 - 2020-11-17 13:41 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-11-17 13:41 - 2020-11-17 13:41 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-11-17 13:41 - 2020-11-17 13:41 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-11-17 13:41 - 2020-11-17 13:41 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-11-17 13:41 - 2020-11-17 13:41 - 000580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2020-11-17 13:41 - 2020-11-17 13:41 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2020-11-17 13:41 - 2020-11-17 13:41 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-11-17 13:41 - 2020-11-17 13:41 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2020-11-17 13:41 - 2020-11-17 13:41 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-11-17 13:41 - 2020-11-17 13:41 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2020-11-17 13:41 - 2020-11-17 13:41 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2020-11-17 13:41 - 2020-11-17 13:41 - 000137016 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2020-11-17 13:41 - 2020-11-17 13:41 - 000111616 _____ C:\WINDOWS\system32\RDVGHelper.exe
2020-11-17 13:41 - 2020-11-17 13:41 - 000101688 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-11-17 13:41 - 2020-11-17 13:41 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2020-11-17 13:41 - 2020-11-17 13:41 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2020-11-17 13:41 - 2020-11-17 13:41 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-11-17 13:41 - 2020-11-17 13:41 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-17 13:40 - 2020-11-17 13:40 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-11-17 13:40 - 2020-11-17 13:40 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 001822256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-11-17 13:40 - 2020-11-17 13:40 - 001393472 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-11-17 13:40 - 2020-11-17 13:40 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-11-17 13:40 - 2020-11-17 13:40 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000645120 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-11-17 13:40 - 2020-11-17 13:40 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-11-17 13:40 - 2020-11-17 13:40 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000306176 _____ C:\WINDOWS\system32\HeatCore.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-11-17 13:40 - 2020-11-17 13:40 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2020-11-17 13:40 - 2020-11-17 13:40 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-11-17 13:40 - 2020-11-17 13:40 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-17 13:40 - 2020-11-17 13:40 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2020-11-17 13:40 - 2020-11-17 13:40 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-11-17 13:40 - 2020-11-17 13:40 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-11-17 13:40 - 2020-11-17 13:40 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-11-17 13:40 - 2020-11-17 13:40 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2020-11-17 13:40 - 2020-11-17 13:40 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-11-17 13:40 - 2020-11-17 13:40 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-11-17 13:36 - 2020-11-17 13:47 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-11-17 13:36 - 2020-11-17 13:36 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-11-17 13:36 - 2020-11-17 13:36 - 000000000 ____D C:\Program Files\MSBuild
2020-11-17 13:36 - 2020-11-17 13:36 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-11-17 09:52 - 2020-11-17 09:52 - 000000000 ____D C:\Users\origi\AppData\Roaming\HelloGames
2020-11-17 09:37 - 2020-11-17 09:37 - 000000629 _____ C:\Users\Public\Desktop\No Man's Sky.lnk
2020-11-17 09:37 - 2020-11-17 09:37 - 000000629 _____ C:\ProgramData\Desktop\No Man's Sky.lnk
2020-11-17 09:36 - 2020-11-27 11:54 - 000000000 ____D C:\Users\origi\AppData\Roaming\SUPERHOTMCD
2020-11-17 09:34 - 2020-11-17 09:34 - 000000669 _____ C:\Users\Public\Desktop\SUPERHOT - MIND CONTROL DELETE.lnk
2020-11-17 09:34 - 2020-11-17 09:34 - 000000669 _____ C:\ProgramData\Desktop\SUPERHOT - MIND CONTROL DELETE.lnk
2020-11-16 18:57 - 2020-11-18 18:16 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-16 18:56 - 2020-11-16 18:56 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-11-16 18:53 - 2020-11-24 20:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-16 18:53 - 2020-11-24 19:37 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-16 18:53 - 2020-11-16 18:53 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2020-11-16 18:53 - 2020-11-16 18:53 - 000007623 _____ C:\WINDOWS\diagerr.xml
2020-11-16 18:53 - 2020-11-16 18:53 - 000003710 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-11-16 18:53 - 2020-11-16 18:53 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-16 18:53 - 2020-11-16 18:53 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000003346 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-11-16 18:53 - 2020-11-16 18:53 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000003184 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-16 18:53 - 2020-11-16 18:53 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000003122 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-16 18:53 - 2020-11-16 18:53 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000002966 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2020-11-16 18:53 - 2020-11-16 18:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1797817695-3140524087-3623043744-1001
2020-11-16 18:53 - 2020-11-16 18:53 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-16 18:53 - 2020-11-16 18:53 - 000002638 _____ C:\WINDOWS\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2020-11-16 18:53 - 2020-11-16 18:53 - 000000020 ___SH C:\Users\origi\ntuser.ini
2020-11-16 18:53 - 2020-11-16 18:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-11-16 18:49 - 2020-11-25 22:18 - 000000000 ____D C:\Users\origi
2020-11-16 18:49 - 2019-12-07 20:10 - 000001105 _____ C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-16 18:47 - 2020-11-27 18:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-16 18:47 - 2020-11-24 20:22 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-16 18:47 - 2020-11-16 18:47 - 000443608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-16 17:40 - 2020-11-16 18:53 - 000000000 ___DC C:\WINDOWS\Panther
2020-11-16 17:36 - 2020-11-16 17:36 - 000000000 ___HD C:\$WinREAgent
2020-11-16 17:31 - 2020-08-03 22:37 - 000065910 _____ C:\Users\origi\Documents\Tom Leys - CV.pdf
2020-11-16 17:30 - 2020-11-23 21:07 - 000000000 ____D C:\Users\origi\Documents\My Games
2020-11-15 20:11 - 2020-11-15 20:11 - 000000000 ____D C:\Users\origi\Downloads\Django Unchained 2012 BluRay 720p [Hindi 2.0 + English 5.1] AAC x264 ESub - mkvCinemas [Telly]
2020-11-14 12:43 - 2020-11-14 12:43 - 000000000 ____D C:\Users\origi\AppData\LocalLow\Hopoo Games, LLC
2020-11-14 12:40 - 2020-11-14 12:40 - 000000573 _____ C:\Users\Public\Desktop\Risk of Rain 2.lnk
2020-11-14 12:40 - 2020-11-14 12:40 - 000000573 _____ C:\ProgramData\Desktop\Risk of Rain 2.lnk
2020-11-14 12:37 - 2020-11-14 12:37 - 000000000 ____D C:\Users\origi\AppData\Local\Mordhau
2020-11-14 12:13 - 2020-11-14 12:13 - 000000487 _____ C:\Users\Public\Desktop\Mordhau.lnk
2020-11-14 12:13 - 2020-11-14 12:13 - 000000487 _____ C:\ProgramData\Desktop\Mordhau.lnk
2020-11-11 23:27 - 2020-11-11 23:27 - 000042673 _____ C:\Users\origi\Documents\Book1.xlsx
2020-11-11 17:23 - 2020-11-27 16:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-11-06 21:31 - 2020-11-06 21:31 - 000000807 _____ C:\Users\Public\Desktop\Sniper - Ghost Warrior Contracts.lnk
2020-11-06 21:31 - 2020-11-06 21:31 - 000000807 _____ C:\ProgramData\Desktop\Sniper - Ghost Warrior Contracts.lnk
2020-11-06 16:22 - 2020-11-16 18:49 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2020-11-06 16:22 - 2020-11-09 21:46 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-11-04 21:19 - 2020-11-27 18:36 - 000000000 ____D C:\Users\origi\AppData\Roaming\WeMod
2020-11-04 21:19 - 2020-11-27 13:36 - 000002159 _____ C:\Users\origi\Desktop\WeMod.lnk
2020-11-04 21:19 - 2020-11-27 13:36 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2020-11-04 17:20 - 2020-11-04 17:20 - 000000000 ____D C:\Users\origi\AppData\Roaming\CreamAPI
2020-11-04 15:29 - 2020-11-04 15:35 - 000000000 ____D C:\Users\origi\AppData\Roaming\Sekiro
2020-11-04 15:12 - 2020-11-04 15:12 - 000000617 _____ C:\Users\Public\Desktop\Sekiro - Shadows Die Twice.lnk
2020-11-04 15:12 - 2020-11-04 15:12 - 000000617 _____ C:\ProgramData\Desktop\Sekiro - Shadows Die Twice.lnk
2020-11-04 14:56 - 2020-11-04 14:56 - 000000000 ____D C:\Users\origi\Documents\DyingLight
2020-11-04 14:29 - 2020-11-04 17:33 - 000000703 _____ C:\Users\Public\Desktop\Dying Light - Ultimate Collection.lnk
2020-11-04 14:29 - 2020-11-04 17:33 - 000000703 _____ C:\ProgramData\Desktop\Dying Light - Ultimate Collection.lnk
2020-11-04 14:27 - 2020-11-04 14:27 - 000001760 _____ C:\WINDOWS\system32\Drivers\etc\hosts.rollback
2020-11-04 14:27 - 2019-03-19 15:49 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup
2020-11-04 14:03 - 2020-11-04 14:03 - 000000553 _____ C:\Users\Public\Desktop\Hades.lnk
2020-11-04 14:03 - 2020-11-04 14:03 - 000000553 _____ C:\Users\Public\Desktop\Hades (x86).lnk
2020-11-04 14:03 - 2020-11-04 14:03 - 000000553 _____ C:\ProgramData\Desktop\Hades.lnk
2020-11-04 14:03 - 2020-11-04 14:03 - 000000553 _____ C:\ProgramData\Desktop\Hades (x86).lnk
2020-11-03 17:25 - 2020-11-03 21:15 - 000000000 ____D C:\Users\origi\Documents\Teardown
2020-11-03 16:42 - 2020-11-03 16:42 - 000000000 ____D C:\Users\origi\AppData\LocalLow\noio
2020-11-01 22:07 - 2020-11-08 21:52 - 000000000 ____D C:\Users\origi\AppData\Roaming\EasyAntiCheat
2020-10-30 23:58 - 2020-10-30 23:58 - 000066808 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2020-10-30 23:58 - 2020-10-30 23:58 - 000038136 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2020-10-30 23:58 - 2020-10-30 23:58 - 000026672 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2020-10-30 23:14 - 2020-10-23 07:19 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-10-30 23:14 - 2020-10-23 07:19 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-10-30 23:14 - 2020-10-23 07:19 - 000038632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-10-30 23:12 - 2020-11-08 04:38 - 000656112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-10-30 23:12 - 2020-11-08 04:36 - 007005008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-10-30 23:12 - 2020-10-28 14:49 - 005519600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-10-28 22:20 - 2020-10-19 16:42 - 000069608 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2020-10-28 22:20 - 2020-10-19 16:42 - 000058344 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-27 18:32 - 2019-12-18 20:58 - 000000000 ____D C:\Program Files (x86)\Steam
2020-11-27 18:30 - 2019-12-07 20:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-27 18:27 - 2020-01-28 13:17 - 000000000 ____D C:\Users\origi\AppData\Local\Battle.net
2020-11-27 18:03 - 2019-12-18 21:56 - 000000000 ____D C:\Users\origi\AppData\Roaming\Discord
2020-11-27 17:38 - 2019-12-19 12:33 - 000000000 ____D C:\ProgramData\NVIDIA
2020-11-27 17:35 - 2019-12-18 20:59 - 000000000 ____D C:\Users\origi\AppData\Roaming\Spotify
2020-11-27 17:31 - 2020-01-19 15:25 - 000000000 ____D C:\Program Files\Rockstar Games
2020-11-27 17:31 - 2020-01-19 15:25 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-11-27 17:28 - 2020-05-03 16:32 - 000000000 ____D C:\Users\origi\AppData\Local\Ubisoft Game Launcher
2020-11-27 17:28 - 2019-12-19 12:36 - 000000000 ____D C:\ProgramData\Package Cache
2020-11-27 17:26 - 2019-12-19 23:41 - 000000000 ____D C:\Users\origi\AppData\LocalLow\Mozilla
2020-11-27 13:36 - 2019-12-18 21:56 - 000000000 ____D C:\Users\origi\AppData\Local\SquirrelTemp
2020-11-27 13:31 - 2019-12-25 21:04 - 000000000 ____D C:\Users\origi\AppData\Roaming\uTorrent
2020-11-26 23:26 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-26 18:39 - 2019-12-18 20:59 - 000000000 ____D C:\Users\origi\AppData\Local\Spotify
2020-11-26 00:06 - 2019-12-07 20:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-25 22:08 - 2020-08-12 20:56 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-11-25 22:08 - 2020-08-12 20:56 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-11-25 22:08 - 2020-08-12 20:56 - 000002276 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-11-24 20:25 - 2019-12-23 16:45 - 000000000 ____D C:\Users\origi\AppData\Local\CrashDumps
2020-11-24 20:21 - 2019-12-19 12:24 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-11-24 20:21 - 2019-12-07 20:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-24 20:21 - 2019-12-07 20:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-11-24 19:52 - 2020-10-08 22:14 - 000000000 ____D C:\Program Files\Cheat Engine 7.1
2020-11-24 19:36 - 2020-08-03 21:29 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-11-23 21:07 - 2019-12-26 16:49 - 000000000 ____D C:\Users\origi\AppData\Local\BattlEye
2020-11-23 20:26 - 2019-12-07 20:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-11-23 20:11 - 2020-09-06 23:33 - 000000008 __RSH C:\ProgramData\ntuser.pol
2020-11-23 20:09 - 2019-03-19 15:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-11-22 19:48 - 2019-12-18 22:45 - 000000000 ____D C:\Users\origi\AppData\Local\D3DSCache
2020-11-21 21:42 - 2020-10-03 13:35 - 000000000 ____D C:\Users\origi\AppData\LocalLow\Temp
2020-11-21 21:41 - 2020-04-16 22:50 - 000000000 ____D C:\Users\origi\AppData\Roaming\LGHUB
2020-11-21 21:39 - 2019-12-07 20:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-21 21:34 - 2020-04-17 17:59 - 000000000 ____D C:\Users\origi\AppData\Local\LGHUB
2020-11-19 23:07 - 2019-12-07 20:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-19 20:43 - 2020-05-03 16:40 - 000000000 ____D C:\Users\origi\AppData\Local\My Games
2020-11-19 19:17 - 2020-05-03 16:32 - 000001310 _____ C:\Users\origi\Desktop\Ubisoft Connect.lnk
2020-11-19 19:17 - 2020-05-03 16:32 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-11-19 17:57 - 2020-07-21 23:22 - 000000000 ____D C:\Battlestate Games
2020-11-19 08:36 - 2019-12-18 21:28 - 001562560 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2020-11-19 08:35 - 2020-04-18 17:06 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2020-11-19 08:35 - 2019-12-18 21:28 - 000170424 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2020-11-19 08:35 - 2019-12-18 21:28 - 000158136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2020-11-19 08:35 - 2019-12-18 21:28 - 000154032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2020-11-19 08:35 - 2019-12-18 21:28 - 000033728 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2020-11-18 19:48 - 2019-12-19 12:36 - 000000000 ____D C:\Users\origi\AppData\Local\NVIDIA
2020-11-18 18:19 - 2019-12-19 12:36 - 000000000 ____D C:\Users\origi\AppData\Local\NVIDIA Corporation
2020-11-18 18:13 - 2020-07-19 23:19 - 000000000 ___RD C:\Users\origi\iCloudDrive
2020-11-18 14:35 - 2019-12-25 21:02 - 000000000 ____D C:\Users\origi\AppData\Local\BitTorrentHelper
2020-11-17 13:47 - 2020-10-08 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.1
2020-11-17 13:47 - 2020-10-03 14:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deus Ex - Mankind Divided [GOG.com]
2020-11-17 13:47 - 2020-10-01 00:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2020-11-17 13:47 - 2020-09-16 00:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-11-17 13:47 - 2020-09-06 23:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2020-11-17 13:47 - 2020-08-10 01:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda.net Launcher
2020-11-17 13:47 - 2020-08-04 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2019.4.6f1 (64-bit)
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\3082
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\1055
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\1049
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\1046
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\1045
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\1040
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\1036
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\1033
2020-11-17 13:47 - 2020-07-23 00:44 - 000000000 ____D C:\WINDOWS\system32\1029
2020-11-17 13:47 - 2020-07-23 00:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSCodium
2020-11-17 13:47 - 2020-07-22 23:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
2020-11-17 13:47 - 2020-07-21 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games
2020-11-17 13:47 - 2020-07-19 23:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2020-11-17 13:47 - 2020-06-16 00:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Divinity - Original Sin 2 [GOG.com]
2020-11-17 13:47 - 2020-05-30 05:39 - 000000000 ____D C:\Program Files\UNP
2020-11-17 13:47 - 2020-04-17 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-11-17 13:47 - 2020-04-11 17:42 - 000000000 ____D C:\WINDOWS\system32\Catroot2.old
2020-11-17 13:47 - 2020-04-04 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-11-17 13:47 - 2020-03-15 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare
2020-11-17 13:47 - 2020-02-24 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2020-11-17 13:47 - 2020-01-28 13:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2020-11-17 13:47 - 2020-01-25 00:33 - 000000000 ____D C:\WINDOWS\ShellNew
2020-11-17 13:47 - 2020-01-25 00:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2020-11-17 13:47 - 2020-01-13 20:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2020-11-17 13:47 - 2020-01-11 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Tree Gaming Ltd
2020-11-17 13:47 - 2020-01-11 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 3 - Wild Hunt [GOG.com]
2020-11-17 13:47 - 2020-01-02 03:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Clicker
2020-11-17 13:47 - 2020-01-01 13:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-17 13:47 - 2019-12-30 01:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mod Organizer
2020-11-17 13:47 - 2019-12-23 17:15 - 000000000 ____D C:\ProgramData\regid.1995-09.com.example
2020-11-17 13:47 - 2019-12-23 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UWPHook
2020-11-17 13:47 - 2019-12-19 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-11-17 13:47 - 2019-12-19 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2020-11-17 13:47 - 2019-12-19 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2020-11-17 13:47 - 2019-12-18 23:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-11-17 13:47 - 2019-12-18 22:13 - 000000000 ____D C:\WINDOWS\system32\Samsung
2020-11-17 13:47 - 2019-12-18 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher
2020-11-17 13:47 - 2019-12-18 20:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-11-17 13:47 - 2019-12-07 20:18 - 000000000 ____D C:\WINDOWS\Setup
2020-11-17 13:47 - 2019-12-07 20:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-11-17 13:47 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-11-17 13:47 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-11-17 13:47 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\spool
2020-11-17 13:47 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-11-17 13:47 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-11-17 13:47 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2020-11-17 13:47 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-11-17 13:47 - 2019-12-07 20:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-11-17 13:47 - 2019-03-19 15:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2020-11-17 13:47 - 2019-03-19 15:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-11-17 13:47 - 2019-03-19 15:52 - 000000000 ____D C:\WINDOWS\system32\Catroot2.bak
2020-11-17 13:45 - 2020-07-24 00:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017
2020-11-17 13:45 - 2020-07-22 23:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2020-11-17 13:45 - 2020-02-15 10:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2020-11-17 13:43 - 2019-12-07 20:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-11-17 13:43 - 2019-12-07 20:54 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-11-17 13:43 - 2019-12-07 20:54 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-11-17 13:43 - 2019-12-07 20:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-11-17 13:43 - 2019-12-07 20:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-11-17 13:43 - 2019-12-07 20:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\Com
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-17 13:43 - 2019-12-07 20:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-11-17 13:43 - 2019-12-07 20:03 - 000000000 ____D C:\WINDOWS\servicing
2020-11-17 13:37 - 2019-12-07 20:52 - 000000000 ____D C:\WINDOWS\OCR
2020-11-17 08:35 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\appcompat
2020-11-17 08:33 - 2019-12-19 12:22 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-17 08:33 - 2019-12-19 12:22 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-11-17 08:33 - 2019-12-19 12:22 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-11-17 01:58 - 2019-12-19 12:13 - 000000000 ____D C:\Users\origi\AppData\Local\Packages
2020-11-17 01:58 - 2019-12-19 12:11 - 000000000 ____D C:\ProgramData\Packages
2020-11-16 18:56 - 2020-04-11 16:47 - 000000000 ____D C:\Users\origi\AppData\LocalLow\uTorrent
2020-11-16 18:56 - 2019-12-19 12:13 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-11-16 18:54 - 2019-12-19 12:13 - 000000000 ___RD C:\Users\origi\3D Objects
2020-11-16 18:53 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-16 18:53 - 2019-12-07 20:14 - 000000000 ____D C:\ProgramData\USOPrivate
2020-11-16 18:53 - 2019-12-07 20:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-11-16 18:51 - 2019-12-07 20:14 - 000000000 __RHD C:\Users\Public\Libraries
2020-11-16 18:50 - 2020-07-19 23:19 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iCloud
2020-11-16 18:49 - 2020-09-23 13:48 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 2.7
2020-11-16 18:49 - 2020-09-23 13:31 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.8
2020-11-16 18:49 - 2020-07-25 21:44 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Macroplant LLC
2020-11-16 18:49 - 2020-07-01 20:46 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SnakeBite
2020-11-16 18:49 - 2020-06-23 19:27 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terraria Tweaker 2
2020-11-16 18:49 - 2020-06-23 18:53 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terraria Tweaker 2 for Terraria 1.3.5.3
2020-11-16 18:49 - 2020-04-05 21:00 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-11-16 18:49 - 2020-01-19 15:22 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2020-11-16 18:49 - 2020-01-01 13:58 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-16 18:49 - 2019-12-18 21:56 - 000000000 ____D C:\Users\origi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-11-16 18:48 - 2019-12-19 12:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-11-16 18:47 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-11-16 17:26 - 2019-12-19 12:14 - 000000000 ___RD C:\Users\origi\OneDrive
2020-11-16 17:16 - 2019-12-19 23:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-11-16 17:16 - 2019-03-19 15:52 - 000000000 ____D C:\WINDOWS\TextInput
2020-11-15 22:06 - 2019-12-18 23:53 - 000000000 ____D C:\Users\origi\AppData\Roaming\Twitch
2020-11-15 18:10 - 2020-04-17 16:39 - 000000000 ____D C:\Program Files\Microsoft Office
2020-11-14 22:25 - 2020-04-04 20:44 - 000000000 ____D C:\Users\origi\AppData\Roaming\vlc
2020-11-14 12:37 - 2019-12-29 23:33 - 000000000 ____D C:\Users\origi\AppData\Local\UnrealEngine
2020-11-14 11:00 - 2020-07-21 23:23 - 000000791 _____ C:\Users\Public\Desktop\Battlestate Games Launcher.lnk
2020-11-14 11:00 - 2020-07-21 23:23 - 000000791 _____ C:\ProgramData\Desktop\Battlestate Games Launcher.lnk
2020-11-12 01:44 - 2019-12-23 14:33 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-12 01:44 - 2019-12-23 14:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-11-11 23:33 - 2019-12-19 23:40 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-11-07 00:04 - 2019-12-19 11:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-11-04 14:27 - 2020-06-28 23:21 - 000000000 ____D C:\Users\origi\AppData\Local\GameAnalytics
2020-11-04 10:57 - 2019-12-19 23:13 - 000000000 ____D C:\Users\origi\AppData\LocalLow\MCC
2020-10-31 13:53 - 2020-08-17 00:43 - 000000000 ____D C:\websymbols
2020-10-31 00:03 - 2020-09-06 23:41 - 000795000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-10-28 22:20 - 2019-12-19 12:36 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-10-28 22:20 - 2019-12-19 12:36 - 000001447 _____ C:\ProgramData\Desktop\GeForce Experience.lnk
2020-10-28 22:20 - 2019-12-19 12:36 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-10-28 22:20 - 2019-12-19 12:11 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-10-28 22:20 - 2019-12-19 12:11 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-10-28 00:20 - 2019-12-19 12:15 - 000000000 ____D C:\Users\origi\AppData\Local\PlaceholderTileLogoFolder

==================== Files in the root of some directories ========

2020-08-27 23:25 - 2020-08-27 23:26 - 000000190 _____ () C:\Users\origi\AppData\Roaming\modthegungeon.conf
2020-08-06 21:25 - 2020-08-06 21:25 - 000013981 _____ () C:\Users\origi\AppData\Local\recently-used.xbel
2020-01-21 23:21 - 2020-07-22 00:33 - 000007601 _____ () C:\Users\origi\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================