Grand daughter got on pc and dl'ed some game which apparently auto installed wave browser. Deleted/uninstalled all instances I could find, but is causing Chrome and MS Edge to utilize yahoo when searching from the url bar.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2023
Ran by Jesstan Holland (administrator) on DESKTOP-JCJTEPB (Gigabyte Technology Co., Ltd. X570 GAMING X) (04-07-2023 18:34:10)
Running from C:\Users\Jesstan Holland\OneDrive\Desktop\FRST64.exe
Loaded Profiles: Jesstan Holland
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3086 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.139\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.139\BraveCrashHandler64.exe
(C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\Check_Kill.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\QmlRenderer.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jesstan Holland\AppData\Local\Discord\app-1.0.9013\Discord.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <16>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(explorer.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\APO051eDrv\Drivers\x64\THXHelper051E.exe
(explorer.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\THXVAD\Drivers\x64\THXHelper22AD.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Skutta, Kristjan -> ) C:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <8>
(services.exe ->) (HP Inc. -> DTS Inc.) C:\Windows\System32\DTS\HP\APO4x\DtsHPXV2Apo4Service.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Razer USA Ltd. -> THX) C:\Program Files (x86)\Razer\THXService\Drivers\x64\THXService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13513288 2013-03-29] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3183328 2022-03-11] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [THX22adHelper] => C:\Program Files (x86)\Razer\THXVAD\Drivers\x64\THXHelper22ad.exe [386008 2019-09-18] (Razer USA Ltd. -> )
HKLM\...\Run: [THX051eHelper] => C:\Program Files (x86)\Razer\APO051eDrv\Drivers\x64\THXHelper051E.exe [386008 2019-09-18] (Razer USA Ltd. -> )
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [185384 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [50096 2019-04-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [Steam] => D:\New folder\steam.exe [4371816 2023-06-21] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [WallpaperEngine] => C:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe [2707104 2022-01-28] (Skutta, Kristjan -> )
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37137360 2023-06-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [Discord] => C:\Users\Jesstan Holland\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [Synapse3] => [X]
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [Overwolf] => D:\Overwolf\OverwolfLauncher.exe [1785864 2023-06-19] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [253816 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-02-01] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2668648 2023-06-17] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Run: [MicrosoftEdgeAutoLaunch_50939B63E6C4CC099B72590A706757CC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [581120 2022-08-09] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3542032 2022-11-07] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Print\Monitors\HP DD11 Status Monitor: C:\Windows\system32\hpinkstsDD11LM.dll [392192 2019-03-15] (HP Inc -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-28] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\114.1.52.129\Installer\chrmstp.exe [2023-06-28] (Brave Software, Inc. -> Brave Software, Inc.)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {123A79D9-0E6F-42A4-B2CD-CA4D301445C8} - System32\Tasks\HyperXRamApp => C:\Users\Jesstan -> Holland\AppData\Local\Packages\33C30B79.HyperXNGenuity_0a78dr3hq0pvt\LocalState\\HyperXMemoryPlug-in.exe
Task: {1D1BDD50-9EB2-4D2C-96A9-C6D7505C018B} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2640904 2023-06-19] (Overwolf Ltd -> Overwolf LTD)
Task: {312E1B31-5A5B-403A-8B1F-F716BCFBFF06} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3AE00810-27C1-40DE-A0A0-89A4821C4885} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{33611151-01FE-49EF-90D2-D325FAE1F0D1} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-16] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {419C04A9-0BAB-433F-BCB6-884E14C05DD4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {475CF9E5-363A-4DBE-94D7-CD1F44CA778A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-17] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4955F12D-105D-4863-B3B0-EA6A789B269D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557352 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {4C5ACA2C-5FFB-4697-8AE0-33410ACB9BC5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5610E2B2-790B-4B39-B529-06C11010DE69} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157632 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F50DC98-9708-45FB-A207-3953349E4B00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-30] (Google LLC -> Google LLC)
Task: {61AEEAC8-DADB-43E6-8F57-747DAFE2815D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6B0C9AE2-501A-4EB6-A765-6509196D5D06} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157632 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {6FCA88BD-5745-4C30-A7F6-83155F31568C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {84E0BFA5-3F94-48F4-8042-95E05BB370A4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-30] (Google LLC -> Google LLC)
Task: {89DC45C8-663D-42DC-916B-6C4BE09E01CA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AED58399-1361-4CC1-9895-08FAF518ACE0} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B0F7673B-0FD6-4100-B653-C0ACD0173C91} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B6A46ED6-F85A-4DE1-B095-7B7589B4F030} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D1EF4AEF-9C87-4617-9B18-3D99BFBB06D7} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170456 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD65BC52-3853-486B-8004-3D9D0890913F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E7821F36-6557-420A-B69F-742481581F62} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{239508AF-6EAF-4923-BD77-FA1CDF860CCF} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-16] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {E8DD1869-9D08-49BB-8C65-23CC8F441E12} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EC384F57-317D-41CD-B03A-AEC064E5BA0F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FFAF07AB-46CC-4CEC-856A-F5EC3EC6EAD8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557352 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{31357fba-67a7-49fa-9fc3-6b7c660539ab}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{dcca761f-623e-428d-8cd0-4e31b0f490cf}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jesstan Holland\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-04]
Edge Extension: (Edge relevant text changes) - C:\Users\Jesstan Holland\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-27]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-05-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default [2023-07-04]
CHR Notifications: Default -> hxxps://www.reddit.com
CHR HomePage: Default -> hxxps://google.com/
CHR DefaultSearchURL: Default -> hxxps://search-fast.com/wc/search?q={searchTerms}&src=chrome&iid=a626b919-727f-4dc4-bc97-400c1183e08a
CHR DefaultSearchKeyword: Default -> chrome search
CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (AdGuard AdBlocker) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2023-06-07]
CHR Extension: (MEGA) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2023-07-01]
CHR Extension: (PayPal Honey: Automatic Coupons & Cash Back) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2023-07-04]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-06-17]
CHR Extension: (Girls und panzer 07 - 1920x1080) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgdkmipogfcjhnmhclckjlgkhfhdmaoe [2023-03-08]
CHR Extension: (Dark Mode) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmghijelimhndkbmpgbldicpogfkceaj [2023-01-05]
CHR Extension: (Google Docs Offline) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-22]
CHR Extension: (Vysor) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2020-09-04]
CHR Extension: (Grammarly: Grammar Checker and AI Writing App) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2023-07-04]
CHR Extension: (Qmee) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbaanpgkpkoamihninlcegnjclcpibde [2020-06-30]
CHR Extension: (YouTube NonStop) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlkaejimjacpillmajjnopmpbkbnocid [2021-10-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-10]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-07-04]
CHR Notifications: Profile 1 -> hxxps://meet.google.com
CHR HomePage: Profile 1 -> hxxps://us.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=863135388¶m1=y6bdVFVIsvuYsgEClQfz8IfaIrULFWUA2DMVetLqXBqGtmB8vcgD5VoCB4eV7XuJh%2BnN3PW7ckQt2lQVA7p%2FrMiF5qcrufvfRPxKOTpRJUqLpSF7YV45fRqpHJkZYyneafC7Yh%2BCsw3Br%2F3wef%2Fs9PO%2BscJoU%2FUd6FN0goTQNw9%2BQ9X4yJuORyYaN4HLtVq4JxZfSxUV5P4pCsx%2B%2FjrJjhLkR0tuPH0sa9DrduOTKgJ%2FcB87qMEZkd4TIg9HrVq%2BfapeSC%2Bt1JXdQKuXYYcMYbdYSJ5cJLYQHwVJ9EwDdHk%3D
CHR DefaultSearchURL: Profile 1 -> hxxps://search-fast.com/wc/search?q={searchTerms}&src=chrome&iid=a626b919-727f-4dc4-bc97-400c1183e08a
CHR DefaultSearchKeyword: Profile 1 -> chrome search
CHR DefaultSuggestURL: Profile 1 -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (PayPal Honey: Automatic Coupons & Cash Back) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2023-07-04]
CHR Extension: (Google Docs Offline) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-14]
CHR Extension: (Neon Kingdom (rnbow; neon tabs; grid; 1440p)) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hcblhoelddfblfdajahoblegakkhlepl [2022-12-02]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-07-04]
CHR DefaultSearchURL: Profile 2 -> hxxps://search-fast.com/wc/search?q={searchTerms}&src=chrome&iid=a626b919-727f-4dc4-bc97-400c1183e08a
CHR DefaultSearchKeyword: Profile 2 -> Chrome Search
CHR DefaultSuggestURL: Profile 2 -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Google Docs Offline) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-26]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3 [2023-07-04]
CHR DefaultSearchURL: Profile 3 -> hxxps://search-fast.com/wc/search?q={searchTerms}&src=chrome&iid=a626b919-727f-4dc4-bc97-400c1183e08a
CHR DefaultSearchKeyword: Profile 3 -> Chrome Search
CHR DefaultSuggestURL: Profile 3 -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Slides) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-09-29]
CHR Extension: (Docs) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-09-29]
CHR Extension: (Google Drive) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-09-29]
CHR Extension: (YouTube) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-09-29]
CHR Extension: (Sheets) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-09-29]
CHR Extension: (Google Docs Offline) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-28]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-29]
CHR Extension: (Gmail) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-09-29]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4 [2023-07-04]
CHR DefaultSearchURL: Profile 4 -> hxxps://search-fast.com/wc/search?q={searchTerms}&src=chrome&iid=a626b919-727f-4dc4-bc97-400c1183e08a
CHR DefaultSearchKeyword: Profile 4 -> Chrome Search
CHR DefaultSuggestURL: Profile 4 -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Slides) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-02-19]
CHR Extension: (Docs) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2022-02-19]
CHR Extension: (Google Drive) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-02-19]
CHR Extension: (YouTube) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-02-19]
CHR Extension: (Sheets) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-02-19]
CHR Extension: (Google Docs Offline) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-19]
CHR Extension: (Gmail) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-02-19]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 5 [2023-07-04]
CHR DefaultSearchURL: Profile 5 -> hxxps://search-fast.com/wc/search?q={searchTerms}&src=chrome&iid=a626b919-727f-4dc4-bc97-400c1183e08a
CHR DefaultSearchKeyword: Profile 5 -> Chrome Search
CHR DefaultSuggestURL: Profile 5 -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Google Docs Offline) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-12]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 6 [2023-07-04]
CHR DefaultSearchURL: Profile 6 -> hxxps://search-fast.com/wc/search?q={searchTerms}&src=chrome&iid=a626b919-727f-4dc4-bc97-400c1183e08a
CHR DefaultSearchKeyword: Profile 6 -> Chrome Search
CHR DefaultSuggestURL: Profile 6 -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Google Docs Offline) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-17]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7 [2023-07-04]
CHR DefaultSearchURL: Profile 7 -> hxxps://search-fast.com/wc/search?q={searchTerms}&src=chrome&iid=a626b919-727f-4dc4-bc97-400c1183e08a
CHR DefaultSearchKeyword: Profile 7 -> Chrome Search
CHR DefaultSuggestURL: Profile 7 -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Slides) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-03-31]
CHR Extension: (Docs) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2022-03-31]
CHR Extension: (Google Drive) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-03-31]
CHR Extension: (YouTube) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-03-31]
CHR Extension: (Sheets) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-03-31]
CHR Extension: (Google Docs Offline) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-31]
CHR Extension: (Gmail) - C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-03-31]
CHR Profile: C:\Users\Jesstan Holland\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-29]
Brave:
=======
BRA Profile: C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-06-17]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-06-17]
BRA Extension: (Brave NTP background images) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-06-17]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-05-16]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-06-17]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\gccbbckogglekeggclmmekihdgdpdgoe [2023-06-17]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-05-16]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-05-16]
BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-06-17]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-06-17]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Jesstan Holland\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-06-17]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-05-08] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-16] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-16] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\114.1.52.129\brave_vpn_helper.exe [3057176 2023-06-27] (Brave Software, Inc. -> Brave Software, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11774352 2023-06-24] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\WINDOWS\system32\CorsairGamingAudioCfgService64.exe [614432 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [238632 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84008 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairUniwillService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueUniwillService.exe [108072 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 DtsHPXV2Apo4Service; C:\WINDOWS\System32\DTS\HP\APO4x\DtsHPXV2Apo4Service.exe [367496 2023-05-09] (HP Inc. -> DTS Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11373160 2023-06-17] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-11-30] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-05-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-12-01] (Epic Games Inc. -> Epic Games, Inc.)
S3 EQU8_36; C:\ProgramData\EQU8\Splitgate\bin\anticheat.x64.equ8.exe [8344720 2022-02-12] (Int3 Software AB -> Int3 Software AB)
R3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [462888 2023-01-20] (Corsair Memory, Inc. -> Corsair)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10207488 2022-12-16] (Logitech Inc -> Logitech, Inc.)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [20536992 2020-08-22] (Mail.Ru LLC -> LLC Mail.Ru)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-11-21] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [254328 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [11910760 2021-12-19] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2640904 2023-06-19] (Overwolf Ltd -> Overwolf LTD)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-15] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300552 2022-11-06] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2720088 2022-11-11] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [537912 2022-10-24] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 THXService; C:\Program Files (x86)\Razer\THXService\Drivers\x64\THXService.exe [356312 2019-09-18] (Razer USA Ltd. -> THX)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5964328 2023-04-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10401912 2022-03-11] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12184416 2023-05-16] (KRAFTON, Inc. -> KRAFTON, Inc)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\114.1.52.129\elevation_service.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACE-BASE; C:\Windows\system32\drivers\ACE-BASE.sys [1459384 2023-07-03] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM)
S3 ACE-GAME; C:\WINDOWS\system32\drivers\ACE-GAME.sys [387752 2023-07-03] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-06-23] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 atvi-geirdriful; C:\ProgramData\Battle.net_components\geirdrifulfore\geirdriful.sys [1965320 2022-07-20] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [2986792 2023-05-27] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [47032 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [22968 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 EQU8_HELPER_36; C:\WINDOWS\system32\DRIVERS\EQU8_HELPER_36.sys [38032 2021-08-11] (Int3 Software AB -> )
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-07-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-10-27] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-10-27] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-10-27] (Logitech Inc -> Logitech)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [19767024 2020-08-22] (Mail.Ru LLC -> LLC Mail.Ru)
R2 NDivert; C:\Program Files\NordVPN\7.10.5.0\Drivers\NDivert.sys [131472 2023-05-24] (nordvpn s.a. -> Nordvpn S.A.)
S3 Neac; C:\WINDOWS\System32\drivers\NeacSafe.sys [4372512 2023-01-05] (NetEase(Hangzhou) Network Co. Ltd. -> 网易(杭州)网络有限公司杭州)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [44928 2021-06-09] (nordvpn s.a. -> TEFINCOM S.A.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0083; C:\WINDOWS\System32\drivers\RzDev_0083.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_051e; C:\WINDOWS\System32\drivers\RzDev_051e.sys [54088 2021-03-22] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
R3 sTHXVAD; C:\WINDOWS\System32\drivers\THXVAD.sys [162184 2019-09-17] (Razer USA Ltd. -> Windows ® Win 7 DDK provider)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8508504 2022-03-11] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2022-05-16] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 wtbt; d:\new folder\steamapps\common\super people\engine\binaries\thirdparty\wondertrust\wtdrv64.sys [4344504 2023-04-17] (Wonder People Co., Ltd. -> )
S3 xhunter1; C:\WINDOWS\xhunter1.sys [1447240 2023-05-25] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 equ8_helper; \??\C:\WINDOWS\system32\DRIVERS\equ8_helper.sys [X]
S3 NEProtect; \??\D:\New folder\steamapps\common\Lost Light\Engine\Binaries\Win64\NEProtect.sys [X]
S3 PHYMEM; \??\C:\Users\Jesstan Holland\AppData\Local\Packages\33C30B79.HyperXNGenuity_0a78dr3hq0pvt\LocalState\otipcibus64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-04 18:30 - 2023-07-04 18:34 - 000000000 ____D C:\FRST
2023-07-04 11:53 - 2023-07-04 11:53 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2023-07-04 11:53 - 2023-05-17 07:12 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-07-04 11:53 - 2023-05-17 07:12 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-07-04 11:53 - 2023-05-17 07:12 - 001607776 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-07-04 11:53 - 2023-05-17 07:12 - 001607776 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-07-04 11:53 - 2023-05-17 07:12 - 001479216 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-07-04 11:53 - 2023-05-17 07:12 - 001479216 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-07-04 11:53 - 2023-05-17 07:12 - 001211448 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-07-04 11:53 - 2023-05-17 07:12 - 001211448 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-07-04 11:53 - 2023-05-17 07:10 - 001487872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-07-04 11:53 - 2023-05-17 07:10 - 001226736 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-07-04 11:53 - 2023-05-17 07:02 - 000671216 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-07-04 11:53 - 2023-05-17 07:02 - 000506352 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-07-04 11:53 - 2023-05-17 07:01 - 002166256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-07-04 11:53 - 2023-05-17 07:01 - 001620968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-07-04 11:53 - 2023-05-17 07:01 - 001536512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-07-04 11:53 - 2023-05-17 07:01 - 001194480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-07-04 11:53 - 2023-05-17 07:01 - 000979456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-07-04 11:53 - 2023-05-17 07:01 - 000758760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-07-04 11:53 - 2023-05-17 07:01 - 000741360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-07-04 11:53 - 2023-05-17 07:00 - 000457752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-07-04 11:53 - 2023-05-17 06:59 - 013769216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-07-04 11:53 - 2023-05-17 06:59 - 011650088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-07-04 11:53 - 2023-05-17 06:59 - 006083560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-07-04 11:53 - 2023-05-17 06:59 - 005911016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-07-04 11:53 - 2023-05-17 06:58 - 005835288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-07-04 11:53 - 2023-05-17 06:56 - 000852976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-07-04 11:53 - 2023-05-17 06:12 - 000104369 _____ C:\WINDOWS\system32\nvinfo.pb
2023-07-03 13:06 - 2023-07-03 13:06 - 002149504 _____ (Roblox Corporation) C:\Users\Jesstan Holland\Downloads\RobloxPlayerLauncher.exe
2023-07-02 22:30 - 2023-07-02 22:30 - 002109712 _____ C:\Users\Jesstan Holland\Downloads\State.of.Survival.PC.V1.0_a386f700b6.exe
2023-06-30 13:48 - 2023-06-30 13:48 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Roaming\HelloGames
2023-06-28 15:22 - 2023-06-28 15:23 - 009513984 _____ C:\Users\Jesstan Holland\Downloads\Setup_installer_43842243.msi
2023-06-27 23:27 - 2023-06-27 23:27 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\MobiGame
2023-06-27 23:27 - 2023-06-27 23:27 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\Eclipse Media Inc
2023-06-27 23:26 - 2023-07-04 15:01 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Roaming\BBWC
2023-06-27 23:26 - 2023-07-04 15:00 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Roaming\Browser Extension
2023-06-27 23:26 - 2023-06-27 23:26 - 009513984 _____ C:\Users\Jesstan Holland\Downloads\Minecraft_installer_43831280.msi
2023-06-27 22:42 - 2023-06-27 22:42 - 001040064 _____ (Wavesor Software) C:\Users\Jesstan Holland\Downloads\Wave Browser (1).exe
2023-06-27 22:41 - 2023-06-27 22:41 - 001040064 _____ (Wavesor Software) C:\Users\Jesstan Holland\Downloads\Wave Browser.exe
2023-06-15 21:18 - 2023-06-15 21:18 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\DoubleClutch
2023-06-14 22:24 - 2023-06-14 22:31 - 000000000 ____D C:\Users\Jesstan Holland\OneDrive\Documents\Sound recordings
2023-06-13 15:33 - 2023-06-13 15:33 - 000000000 ___HD C:\$WinREAgent
2023-06-10 20:56 - 2023-06-10 20:56 - 000000000 ____D C:\Users\Jesstan Holland\OneDrive\Documents\FeedbackHub
2023-06-08 22:30 - 2023-06-08 22:30 - 000000000 ____D C:\Users\Jesstan Holland\AppData\LocalLow\Cognosphere
2023-06-08 22:17 - 2023-06-08 22:17 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\HoYoverse
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-04 18:29 - 2022-04-05 17:17 - 000004188 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{5FE0B687-ECAF-46E3-B331-3D57FB9C868A}
2023-07-04 18:20 - 2021-12-17 01:29 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-04 18:20 - 2020-06-30 10:45 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-04 18:10 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-04 18:02 - 2021-03-21 09:47 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-04 18:02 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2023-07-04 17:56 - 2022-10-27 01:52 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Roaming\LGHUB
2023-07-04 17:56 - 2022-10-27 01:52 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\LGHUB
2023-07-04 17:56 - 2020-10-25 02:54 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Roaming\discord
2023-07-04 17:56 - 2020-06-30 10:59 - 000000000 ____D C:\SteamLibrary
2023-07-04 17:55 - 2021-03-21 09:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-04 17:55 - 2021-03-21 09:37 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-04 17:55 - 2020-10-25 02:53 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\Discord
2023-07-04 17:55 - 2020-06-26 03:50 - 000000000 ____D C:\ProgramData\NVIDIA
2023-07-04 17:55 - 2019-12-07 04:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-07-04 17:54 - 2020-07-01 01:42 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\Packages
2023-07-04 17:54 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-04 17:54 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-04 17:38 - 2021-03-21 09:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-07-04 17:04 - 2020-06-30 11:05 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\D3DSCache
2023-07-04 15:00 - 2020-05-04 19:58 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2023-07-04 14:25 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-07-04 14:24 - 2021-02-21 01:35 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\Roblox
2023-07-04 14:03 - 2021-03-20 21:34 - 000000000 ____D C:\Users\Jesstan Holland
2023-07-04 11:54 - 2020-06-26 03:46 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-07-04 00:04 - 2020-07-05 19:11 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\CrashDumps
2023-07-03 22:20 - 2021-03-25 16:01 - 000387752 _____ (ANTICHEATEXPERT.COM) C:\WINDOWS\system32\Drivers\ACE-GAME.sys
2023-07-03 22:20 - 2020-12-07 21:22 - 001459384 _____ (ANTICHEATEXPERT.COM) C:\WINDOWS\system32\Drivers\ACE-BASE.sys
2023-07-03 13:06 - 2021-02-21 01:35 - 000000254 _____ C:\Users\Jesstan Holland\AppData\LocalLow\rbxcsettings.rbx
2023-07-01 09:31 - 2020-07-18 00:26 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-01 09:31 - 2020-07-18 00:26 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-30 13:52 - 2021-03-21 09:41 - 000003400 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2412010268-2508279897-3378718066-1002
2023-06-30 13:52 - 2021-03-20 21:34 - 000002420 _____ C:\Users\Jesstan Holland\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-30 13:30 - 2020-10-09 17:09 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Roaming\paradox-launcher-v2
2023-06-30 11:39 - 2022-02-06 18:19 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\NordVPN
2023-06-30 11:39 - 2022-02-06 18:19 - 000000000 ____D C:\Program Files\NordVPN
2023-06-30 11:38 - 2022-02-06 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2023-06-28 19:29 - 2023-05-16 20:50 - 000002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-06-28 19:29 - 2023-05-16 20:50 - 000002330 _____ C:\Users\Public\Desktop\Brave.lnk
2023-06-28 19:21 - 2020-06-30 10:45 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-28 19:21 - 2020-06-30 10:45 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-27 10:08 - 2021-12-10 17:39 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2412010268-2508279897-3378718066-1002
2023-06-24 01:07 - 2020-05-04 19:53 - 000000000 ____D C:\Program Files\Microsoft Office
2023-06-21 23:41 - 2020-06-30 10:53 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Local\Steam
2023-06-21 11:58 - 2022-10-21 15:47 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-06-21 11:58 - 2022-10-21 15:47 - 000062968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-06-21 11:58 - 2021-11-19 19:23 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-06-21 11:58 - 2020-05-04 20:25 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-06-21 11:58 - 2020-05-04 19:38 - 002807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-06-21 11:58 - 2020-05-04 19:38 - 000493048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-06-21 11:58 - 2020-05-04 19:38 - 000247288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2023-06-21 11:58 - 2020-05-04 19:38 - 000202232 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-06-20 10:22 - 2023-05-16 20:50 - 000003566 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{239508AF-6EAF-4923-BD77-FA1CDF860CCF}
2023-06-20 10:22 - 2023-05-16 20:50 - 000003442 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{33611151-01FE-49EF-90D2-D325FAE1F0D1}
2023-06-17 10:35 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-06-15 14:15 - 2021-03-21 09:41 - 000003714 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-06-15 14:15 - 2021-03-21 09:41 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-06-14 00:08 - 2021-03-21 09:37 - 000435384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-06-14 00:07 - 2019-12-07 04:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-06-14 00:07 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-14 00:07 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-06-14 00:07 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-06-14 00:07 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-06-14 00:07 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-14 00:07 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-06-14 00:07 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-06-14 00:07 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-06-13 15:38 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-13 15:36 - 2021-03-21 09:37 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-06-13 15:29 - 2020-07-02 02:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-13 15:27 - 2020-05-04 20:24 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-13 15:18 - 2020-05-04 19:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-11 20:18 - 2022-06-14 15:32 - 000000000 ____D C:\Users\Jesstan Holland\AppData\Roaming\EasyAntiCheat
2023-06-08 21:25 - 2021-03-21 09:41 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-08 21:25 - 2021-03-21 09:41 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2022-02-26 06:43 - 2022-10-23 23:56 - 000000100 _____ () C:\Users\Jesstan Holland\AppData\Roaming\BattleBitConfig.ini
2022-06-14 19:44 - 2022-06-14 19:44 - 000000006 _____ () C:\Users\Jesstan Holland\AppData\Local\4040BEE0000f056.dat
2022-06-14 19:43 - 2022-06-14 19:43 - 000000036 _____ () C:\Users\Jesstan Holland\AppData\Local\8051BDD0000f042.dat
2022-05-25 15:05 - 2022-05-25 15:05 - 000007605 _____ () C:\Users\Jesstan Holland\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2023
Ran by Jesstan Holland (04-07-2023 18:35:03)
Running from C:\Users\Jesstan Holland\OneDrive\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.3086 (X64) (2021-03-21 14:41:56)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2412010268-2508279897-3378718066-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2412010268-2508279897-3378718066-503 - Limited - Disabled)
Guest (S-1-5-21-2412010268-2508279897-3378718066-501 - Limited - Disabled)
Jesstan Holland (S-1-5-21-2412010268-2508279897-3378718066-1002 - Administrator - Enabled) => C:\Users\Jesstan Holland
WDAGUtilityAccount (S-1-5-21-2412010268-2508279897-3378718066-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.115 - Advanced Micro Devices, Inc.) Hidden
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.67 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 4.10.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 4.0.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver Alpha (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD USB Filter Driver (HKLM-x32\...\{427224F6-574B-4A95-AC7F-99D14C69CE6D}) (Version: 2.1.11.304 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{5D15C874-3E6B-4F55-AFB2-E73560F2F44F}) (Version: 1.07.07.0725 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 1.07.07.0725 - Advanced Micro Devices, Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.1.0.6 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Battlestate Games Launcher 12.11.1.1846 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.11.1.1846 - Battlestate Games)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 114.1.52.129 - Brave Software Inc)
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - Blizzard Entertainment)
Call of Duty Black Ops Cold War (HKLM-x32\...\Call of Duty Black Ops Cold War) (Version: - Blizzard Entertainment)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
Call of Duty Vanguard (HKLM-x32\...\Call of Duty Vanguard) (Version: - Blizzard Entertainment)
Command & Conquer™: Generals and Zero Hour (HKLM-x32\...\{609F6FD5-4B22-4D7A-AD30-8C9DD480D5BE}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
CORSAIR iCUE 4 Software (HKLM\...\{444A58EF-FD29-4558-BD8B-F4839576463C}) (Version: 4.33.138 - Corsair)
CPUID CPU-Z 2.01 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.01 - CPUID, Inc.)
CurseForge (HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.224.1.1 - Overwolf app)
DC Universe Online Live (HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\DG0-DC Universe Online Live) (Version: - Sony Online Entertainment)
DFO (HKLM-x32\...\{C1E5C0FB-527E-42C6-BCA0-0A37A6124AE4}) (Version: 2.00.0000 - Neople)
Diablo Immortal (HKLM-x32\...\Diablo Immortal) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Discord) (Version: 0.0.309 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.200.0.5457 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{b0cae22c-57fe-45bd-9def-be9cd1d619c6}) (Version: 12.200.0.5457 - Electronic Arts)
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{26b207d1-1f37-4df9-8b3f-aeebbca6bb85}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{FAC47927-1A6A-4C6E-AD7D-E9756794A4BC}) (Version: 1.3.23.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{4B31654B-80C2-405C-91C9-49B14AEB0F42}) (Version: 2.0.32.0 - Epic Games, Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.12.15.17107 - Battlestate Games)
GDLauncher 1.1.21 (HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\916a734d-6952-56dd-9bc1-8fe0631126cf) (Version: 1.1.21 - GorillaDevs)
GeeGeeClient (HKLM\...\{1A8F331C-E18C-4B25-87C8-6FC1EBE6D14A}) (Version: 1.2.7.0 - WonderPeople)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
Hyper Scape (HKLM-x32\...\Uplay Install 11957) (Version: - Ubisoft)
iBUYPOWER MEK 3 LT Keyboard (HKLM-x32\...\{1FD180DE-01D7-4267-9102-8D7C2C396032}_is1) (Version: 1.0.4 - American Future Technology Corp)
Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.12.348746 - Logitech)
Microsoft 365 Apps for enterprise - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.16501.20228 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\OneDriveSetup.exe) (Version: 23.122.0611.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visio - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.16501.20228 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.4.0.59 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.10.5.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.160 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.160 - NVIDIA Corporation)
NVIDIA Graphics Driver 531.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 531.79 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16501.20152 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15128.20224 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
osu! (HKLM-x32\...\{707c5b09-03bf-4674-9a5d-842d5d042f9c}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.226.0.38 - Overwolf Ltd.)
Paradox Launcher v2 (HKLM\...\{A92DB5D9-A24D-4678-9F91-B4FA6D895718}) (Version: 2.0.4.0 - Paradox Interactive)
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.7.1103.110716 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.20.0122.1 - GIGABYTE)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.66.1083 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
Twitch (HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 125.1.10585 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VALORANT (HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
Windows Driver Package - Advanced Micro Devices Inc. AMD USB Filter Driver (10/10/2017 2.1.11.304) (HKLM\...\6A54B91272C8EEFC84B544A964811CA62032006C) (Version: 10/10/2017 2.1.11.304 - Advanced Micro Devices Inc.)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
Packages:
=========
Crunchyroll -> C:\Program Files\WindowsApps\15EF7777.Crunchyroll_1.3.1.0_x64__mgdgtskya6f22 [2020-07-08] (Ellation, Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-21] (Microsoft Corporation) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.8.904.0_x64__8wekyb3d8bbwe [2023-01-31] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.20.102.0_x64__8wekyb3d8bbwe [2023-06-22] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.2.16.0_x64__8wekyb3d8bbwe [2023-06-10] (Microsoft Studios)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-09] (NVIDIA Corp.)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-05-16] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-06-16] (Microsoft Studios) [MS Ad]
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.851.1712.0_x64__8wekyb3d8bbwe [2023-05-27] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x64__8wekyb3d8bbwe [2023-06-22] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x86__8wekyb3d8bbwe [2023-06-22] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2412010268-2508279897-3378718066-1002_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn s.a. -> TEFINCOM S.A.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\nvshext.dll [2023-05-17] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Jesstan Holland\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iBUYPOWER.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> microsoft-edge:hxxps://www.ibuypower.com/review
ShortcutWithArgument: C:\Users\Jesstan Holland\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Vysor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gidgenkbbabolejbgbpnhbimgjbffefm
==================== Loaded Modules (Whitelisted) =============
2019-08-05 21:50 - 2019-08-05 21:50 - 000009216 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\Phison.dll
2019-11-06 16:09 - 2019-11-06 16:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2019-10-30 16:06 - 2019-10-30 16:06 - 000264704 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\SB_SMBUS_SDK.dll
2020-01-15 17:40 - 2020-01-15 17:40 - 000185856 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll
2022-12-16 18:06 - 2022-12-16 14:31 - 000156160 _____ () [File not signed] C:\Program Files\LGHUB\resources\app.asar.unpacked\keytar.node
2019-04-15 18:24 - 2019-04-15 18:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\yccV2.DLL
2019-12-09 19:27 - 2019-12-09 19:27 - 000289792 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVBIOSLib.dll
2019-10-29 11:26 - 2019-10-29 11:26 - 000445952 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVDisplay.dll
2018-09-11 21:53 - 2018-09-11 21:53 - 000237056 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvIllumLib.dll
2020-01-22 05:33 - 2020-01-22 05:33 - 002057728 _____ (GIGABYTE) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACDDR_Lib.dll
2020-01-22 05:35 - 2020-01-22 05:35 - 002057728 _____ (GIGABYTE) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACSSD_Lib.dll
2020-05-04 19:55 - 2020-05-04 19:55 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2020-05-04 19:55 - 2020-05-04 19:55 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
2018-08-30 18:26 - 2018-08-30 18:26 - 000053760 _____ (MS) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\MsIo32_Galax.dll
2023-01-17 13:13 - 2023-01-17 13:13 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll
2017-10-05 17:26 - 2017-10-05 17:26 - 002247168 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\CRtive.dll
2018-12-08 10:22 - 2018-12-08 10:22 - 002059264 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GHidApi.dll
2020-01-16 23:13 - 2020-01-16 23:13 - 000441344 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvLedLib.dll
2020-01-22 17:11 - 2020-01-22 17:11 - 002107392 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\SMBCtrl.dll
2017-07-24 18:36 - 2017-07-24 18:36 - 000481792 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\SDKDLL.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData:err [1428]
AlternateDataStreams: C:\WINDOWS\tracing:? [34]
AlternateDataStreams: C:\Users\All Users:err [1428]
AlternateDataStreams: C:\ProgramData\Application Data:err [1428]
AlternateDataStreams: C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc:169D67954B [3770]
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3770]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3770]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [3770]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [3770]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [3770]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk:5465085A2F [3770]
AlternateDataStreams: C:\Users\Jesstan Holland\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jesstan Holland\Application Data:03febd35b92b3fd6bae1a449c3baa293 [394]
AlternateDataStreams: C:\Users\Jesstan Holland\Downloads\Resume.docx:shield [1169]
AlternateDataStreams: C:\Users\Jesstan Holland\Downloads\Resume.pdf:shield [1167]
AlternateDataStreams: C:\Users\Jesstan Holland\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jesstan Holland\AppData\Roaming:03febd35b92b3fd6bae1a449c3baa293 [394]
AlternateDataStreams: C:\Users\Jesstan Holland\AppData\Local\Temp:$DATA [16]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [3674]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-01-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_291\bin\ssv.dll [2021-05-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-05-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-03-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-18 23:49 - 2019-03-18 23:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2021-09-14 17:00 - 2021-09-14 17:00 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Jesstan Holland\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\capture (18).png
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-2412010268-2508279897-3378718066-1002\...\StartupApproved\Run: => "Overwolf"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{97C9331A-E3EC-423B-B0D8-3876258EAE9D}D:\rage2\rage2.exe] => (Allow) D:\rage2\rage2.exe => No File
FirewallRules: [TCP Query User{FF256AA5-76A1-4AAA-AFEE-AFFFA0EEFB6F}D:\rage2\rage2.exe] => (Allow) D:\rage2\rage2.exe => No File
FirewallRules: [{8284D20E-A393-4CAF-A852-30B9F19CE013}] => (Allow) D:\New folder\steamapps\common\Terraria\Terraria.exe (Re-Logic) [File not signed]
FirewallRules: [{E7CDD758-8687-449A-A547-C60670219E06}] => (Allow) D:\New folder\steamapps\common\Terraria\Terraria.exe (Re-Logic) [File not signed]
FirewallRules: [{72D974E3-13BB-49FB-BE77-E07D6280DE8A}] => (Allow) D:\New folder\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{CC91A09E-52C4-417E-8017-CCE2F74478D2}] => (Allow) D:\New folder\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{46CE2279-FF3D-42D7-A0F3-10498E370B4A}] => (Allow) D:\New folder\steamapps\common\VRChat\VRChat.exe () [File not signed]
FirewallRules: [{DA21DF1F-C089-45EE-BB5B-86D5C0944668}] => (Allow) D:\New folder\steamapps\common\VRChat\VRChat.exe () [File not signed]
FirewallRules: [{33518F9E-6436-46C8-980A-A1EA00C94FE9}] => (Allow) D:\IFRDemo\ImmortalsFenyxRisingDemo.exe => No File
FirewallRules: [UDP Query User{72D04321-1EFC-4FC4-AE71-5D6F6469488D}D:\minecraft_launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\minecraft_launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{C0EB6030-73AF-4047-A8D7-1861EF9B164A}D:\minecraft_launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\minecraft_launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{AE4378CF-05E6-4699-B5B7-F638C3E1E909}D:\new folder\steamapps\common\blazing sails\blazingsails\binaries\win64\blazingsails-win64.exe] => (Allow) D:\new folder\steamapps\common\blazing sails\blazingsails\binaries\win64\blazingsails-win64.exe => No File
FirewallRules: [TCP Query User{3793E865-9DD7-452D-8B90-9459A6DDDA8A}D:\new folder\steamapps\common\blazing sails\blazingsails\binaries\win64\blazingsails-win64.exe] => (Allow) D:\new folder\steamapps\common\blazing sails\blazingsails\binaries\win64\blazingsails-win64.exe => No File
FirewallRules: [UDP Query User{B93A7B79-3D04-4DA2-9E39-2880D4C5C8E3}D:\new folder\steamapps\common\total war attila\attila.exe] => (Block) D:\new folder\steamapps\common\total war attila\attila.exe => No File
FirewallRules: [TCP Query User{F6351B57-F307-4FDC-833B-1F3F279C4628}D:\new folder\steamapps\common\total war attila\attila.exe] => (Block) D:\new folder\steamapps\common\total war attila\attila.exe => No File
FirewallRules: [UDP Query User{6311AC6C-4C90-4A80-ACFA-CFB74A5C3152}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{11920A38-9ABA-4869-82B6-8784A0097D51}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{843A803E-0D86-49D4-834F-1C74423E1B75}D:\new folder\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) D:\new folder\steamapps\common\total war warhammer ii\warhammer2.exe => No File
FirewallRules: [TCP Query User{3ABC0570-4F76-45B4-956D-2D69A26C9980}D:\new folder\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) D:\new folder\steamapps\common\total war warhammer ii\warhammer2.exe => No File
FirewallRules: [UDP Query User{98DB4B57-C133-4501-B91E-267D1BF20029}D:\new folder\steamapps\common\war thunder\win64\aces.exe] => (Allow) D:\new folder\steamapps\common\war thunder\win64\aces.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [TCP Query User{03FA6CD9-C0C2-4A7A-9F70-A0DD96390CA3}D:\new folder\steamapps\common\war thunder\win64\aces.exe] => (Allow) D:\new folder\steamapps\common\war thunder\win64\aces.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [UDP Query User{D77D92EF-D538-4D10-8743-331C932F542C}D:\new folder\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\new folder\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [TCP Query User{AAEC3666-2E56-461E-9A9F-9D02F16D43C5}D:\new folder\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\new folder\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{9AB4594F-905E-4222-AE1F-0DD0A88049AE}] => (Allow) D:\New folder\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{FF9A5097-7E2B-4D06-83BA-13AEFA4970BF}] => (Allow) D:\New folder\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [UDP Query User{B736294B-4E9B-4253-9983-D0E974D49C84}D:\neople\dfo\dfo.exe] => (Allow) D:\neople\dfo\dfo.exe (NEOPLE INC. -> neople)
FirewallRules: [TCP Query User{D9DA77B2-EA80-4885-A53A-B6BE31B4FB0B}D:\neople\dfo\dfo.exe] => (Allow) D:\neople\dfo\dfo.exe (NEOPLE INC. -> neople)
FirewallRules: [{3500429B-C03B-4787-A071-0F7EFD9FCF9D}] => (Allow) D:\New folder\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe () [File not signed]
FirewallRules: [{4B0FA7C8-388B-4805-B678-89481FDC2A9B}] => (Allow) D:\New folder\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe () [File not signed]
FirewallRules: [{4001B2E9-119D-4CA6-B179-3E13F02F1DDA}] => (Allow) D:\New folder\steamapps\common\Day of Defeat Source\hl2.exe (Valve -> )
FirewallRules: [{39254FF7-9A55-4F7C-92EC-042DB650F7F8}] => (Allow) D:\New folder\steamapps\common\Day of Defeat Source\hl2.exe (Valve -> )
FirewallRules: [UDP Query User{4BDA7C96-23A3-4BD3-A66B-09F8BB3D68DB}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{649459A8-F1C8-4751-9B08-7BB4EE3F4D2B}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{81197357-CB10-4DE2-A839-666E9F8ECBE9}C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe => No File
FirewallRules: [TCP Query User{43FBDE59-F2F8-4947-8466-3F6BB925EEE3}C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) C:\program files (x86)\call of duty black ops cold war\blackopscoldwar.exe => No File
FirewallRules: [{B8389803-7608-4D6F-A98D-72AF72507A92}] => (Allow) D:\New folder\steamapps\common\Phasmophobia\Phasmophobia.exe () [File not signed]
FirewallRules: [{197AE68D-305D-4C08-9FEE-408AA70A006D}] => (Allow) D:\New folder\steamapps\common\Phasmophobia\Phasmophobia.exe () [File not signed]
FirewallRules: [{D344B440-8801-4C63-AC1E-F19DCDAE035A}] => (Allow) D:\TheCycleEarlyAccess\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe (YAGER Development GmbH -> YAGER Development GmbH)
FirewallRules: [{9CF7DD9B-58AA-480F-925D-437431F21839}] => (Allow) D:\TheCycleEarlyAccess\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe (YAGER Development GmbH -> YAGER Development GmbH)
FirewallRules: [{29586D15-A844-4D35-8A86-8B0519698106}] => (Allow) D:\TheCycleEarlyAccess\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe (YAGER Development GmbH -> YAGER Development GmbH)
FirewallRules: [{844EB896-E07F-442C-831E-F671ABB32089}] => (Allow) D:\TheCycleEarlyAccess\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe (YAGER Development GmbH -> YAGER Development GmbH)
FirewallRules: [UDP Query User{69F10B04-F2AE-4C51-A8A6-E3D746576121}D:\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) D:\spellbreak\g3\binaries\win64\spellbreak.exe => No File
FirewallRules: [TCP Query User{B2416997-C17F-4BA8-B21A-4E95602F3918}D:\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) D:\spellbreak\g3\binaries\win64\spellbreak.exe => No File
FirewallRules: [{7E9ABE95-F3F1-41B9-BAA1-AB2B194D1C90}] => (Allow) C:\Users\Jesstan Holland\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{B5476A77-FF30-4380-824F-162C68D95827}] => (Allow) C:\Users\Jesstan Holland\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{27DF51ED-4514-46E8-88BF-60B5591391D1}] => (Allow) C:\Users\Jesstan Holland\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [UDP Query User{D826322B-DF66-482A-88D5-85C68223E5A0}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{2A1F6BD5-5C5C-488F-A112-9C985682FCCC}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{655CD7E0-2BDB-4B48-AB25-1143E1CB7A15}D:\new folder\steamapps\common\dc universe online\unreal3\binaries\win32\dcgame.exe] => (Allow) D:\new folder\steamapps\common\dc universe online\unreal3\binaries\win32\dcgame.exe => No File
FirewallRules: [TCP Query User{44B61389-9AE6-408B-BD7A-FF07CBF23EB0}D:\new folder\steamapps\common\dc universe online\unreal3\binaries\win32\dcgame.exe] => (Allow) D:\new folder\steamapps\common\dc universe online\unreal3\binaries\win32\dcgame.exe => No File
FirewallRules: [UDP Query User{DFE2A110-B78F-4524-AC6B-0001239E6719}C:\program files (x86)\call of duty black ops cold war beta\blackopscoldwar.exe] => (Allow) C:\program files (x86)\call of duty black ops cold war beta\blackopscoldwar.exe => No File
FirewallRules: [TCP Query User{125C56CB-E743-4D4A-88B0-0595E1614C9C}C:\program files (x86)\call of duty black ops cold war beta\blackopscoldwar.exe] => (Allow) C:\program files (x86)\call of duty black ops cold war beta\blackopscoldwar.exe => No File
FirewallRules: [UDP Query User{62975C41-E3A8-4E89-AEC9-C2BD2F753BCD}D:\roguecompany\roguecompany\binaries\win64\roguecompany.exe] => (Allow) D:\roguecompany\roguecompany\binaries\win64\roguecompany.exe => No File
FirewallRules: [TCP Query User{E2BFDB3F-17A4-4E70-91A1-831A0BA535CC}D:\roguecompany\roguecompany\binaries\win64\roguecompany.exe] => (Allow) D:\roguecompany\roguecompany\binaries\win64\roguecompany.exe => No File
FirewallRules: [UDP Query User{93BF465B-40EC-41AE-BF3E-5EA019D77B80}D:\rs2v\binaries\win64\risingstorm2.exe] => (Block) D:\rs2v\binaries\win64\risingstorm2.exe => No File
FirewallRules: [TCP Query User{499FE5ED-4BA5-40B8-A85D-A58BA4445A92}D:\rs2v\binaries\win64\risingstorm2.exe] => (Block) D:\rs2v\binaries\win64\risingstorm2.exe => No File
FirewallRules: [UDP Query User{03CB1844-A1C7-4C12-A6F6-4323F994656B}D:\uplay\hyper scape\hyperscape.exe] => (Allow) D:\uplay\hyper scape\hyperscape.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [TCP Query User{32629476-2970-4D63-9C6F-906A0DB18E2B}D:\uplay\hyper scape\hyperscape.exe] => (Allow) D:\uplay\hyper scape\hyperscape.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [UDP Query User{5EC72B9A-132D-4DD1-9F14-C80353AEC305}D:\new folder\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe] => (Allow) D:\new folder\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe => No File
FirewallRules: [TCP Query User{50FD83FE-55B4-4521-9EC3-201DD72701C3}D:\new folder\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe] => (Allow) D:\new folder\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe => No File
FirewallRules: [{54002272-AD57-4D74-87E7-1F9C09C2FA14}] => (Allow) C:\SteamLibrary\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe => No File
FirewallRules: [{2B3CFDDD-4173-4600-A090-D5B7EFF39870}] => (Allow) C:\SteamLibrary\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe => No File
FirewallRules: [UDP Query User{71274187-1C1F-4857-8633-B41118C4C332}D:\new folder\steamapps\common\drifters loot the galaxy - beta\supermass\binaries\win64\supermass-win64-shipping.exe] => (Allow) D:\new folder\steamapps\common\drifters loot the galaxy - beta\supermass\binaries\win64\supermass-win64-shipping.exe => No File
FirewallRules: [TCP Query User{C8CD4AB5-5964-4B09-9235-AF66DD1250D9}D:\new folder\steamapps\common\drifters loot the galaxy - beta\supermass\binaries\win64\supermass-win64-shipping.exe] => (Allow) D:\new folder\steamapps\common\drifters loot the galaxy - beta\supermass\binaries\win64\supermass-win64-shipping.exe => No File
FirewallRules: [UDP Query User{6BE4545E-2B6F-4571-817F-B846FB66799E}D:\new folder\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) D:\new folder\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{25CB37A7-EBAF-4EA5-9814-C4D7456EAA01}D:\new folder\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) D:\new folder\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [{9CE20365-3566-4D36-8013-D8C3B1D059F8}] => (Allow) C:\SteamLibrary\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe => No File
FirewallRules: [{97C0710C-0D7E-42CF-AE69-37A7CC580903}] => (Allow) C:\SteamLibrary\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe => No File
FirewallRules: [UDP Query User{F0CB987A-65FE-4122-B7ED-6D1E4B599BC8}D:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\games\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{EDFAABBB-C906-4015-9C80-D21833F01A0B}D:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\games\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [{D828594A-DBFD-4DB5-8828-BE265E9696ED}] => (Allow) D:\New folder\steamapps\common\Outward\Outward.exe () [File not signed]
FirewallRules: [{D05A7897-6141-46BF-AA3A-D8D087F3D523}] => (Allow) D:\New folder\steamapps\common\Outward\Outward.exe () [File not signed]
FirewallRules: [{621AB1C3-A7D7-482C-AAF6-8F01D8A38C6F}] => (Allow) D:\New folder\steamapps\common\Cities_Skylines\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{EB68447F-2960-4623-9B48-3FBA204C2A42}] => (Allow) D:\New folder\steamapps\common\Cities_Skylines\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [UDP Query User{7A2070D6-2EBC-4B0B-AE76-3451655353B5}D:\games\call of duty modern warfare\modernwarfare.exe] => (Block) D:\games\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{D23A6224-4D0F-4979-889B-937D80A09793}D:\games\call of duty modern warfare\modernwarfare.exe] => (Block) D:\games\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [UDP Query User{39E4C55F-588D-4EA9-B606-67AFF23E015E}D:\new folder\steamapps\common\cyber hunter\bin\ccmini\ccmini.exe] => (Block) D:\new folder\steamapps\common\cyber hunter\bin\ccmini\ccmini.exe => No File
FirewallRules: [TCP Query User{33ECAD46-DE28-4BAF-8C56-0B8839031EA1}D:\new folder\steamapps\common\cyber hunter\bin\ccmini\ccmini.exe] => (Block) D:\new folder\steamapps\common\cyber hunter\bin\ccmini\ccmini.exe => No File
FirewallRules: [{5E077E01-18AD-4FFA-88A8-E2839768E54D}] => (Block) D:\new folder\steamapps\common\cyber hunter\bin\client.exe => No File
FirewallRules: [{4EF170C3-C14A-4F1F-A3F9-17F226769D40}] => (Block) D:\new folder\steamapps\common\cyber hunter\bin\client.exe => No File
FirewallRules: [UDP Query User{E8AB6A4F-8CF0-4709-856D-EE266C00B0C5}D:\new folder\steamapps\common\cyber hunter\bin\client.exe] => (Allow) D:\new folder\steamapps\common\cyber hunter\bin\client.exe => No File
FirewallRules: [TCP Query User{5DD3AE69-ED2B-4252-B767-CC1798ED9B6D}D:\new folder\steamapps\common\cyber hunter\bin\client.exe] => (Allow) D:\new folder\steamapps\common\cyber hunter\bin\client.exe => No File
FirewallRules: [{F3E0DEC1-1A29-4466-91C3-835ED3BFCFA2}] => (Block) D:\new folder\steamapps\common\riders of icarus\bin64\launcher.exe => No File
FirewallRules: [{C43026FE-4F60-48A5-AC40-AB4553A3DF58}] => (Block) D:\new folder\steamapps\common\riders of icarus\bin64\launcher.exe => No File
FirewallRules: [UDP Query User{ED6E2AEE-DB70-4C45-924B-E60DD97DC84E}D:\new folder\steamapps\common\riders of icarus\bin64\launcher.exe] => (Allow) D:\new folder\steamapps\common\riders of icarus\bin64\launcher.exe => No File
FirewallRules: [TCP Query User{274A44A4-253C-486E-A001-857D9DA6E20F}D:\new folder\steamapps\common\riders of icarus\bin64\launcher.exe] => (Allow) D:\new folder\steamapps\common\riders of icarus\bin64\launcher.exe => No File
FirewallRules: [{562AC05F-58B4-42A1-ADB6-7D91F6541F5C}] => (Allow) D:\New folder\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{432A55A8-9FBC-4B08-814A-8ADD0B753715}] => (Allow) D:\New folder\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{C9D9C463-CED2-4A3E-AB60-C0A1164BCD22}] => (Allow) D:\New folder\steamapps\common\Aim Lab\AimLab_tb.exe () [File not signed]
FirewallRules: [{85D550E6-6E2C-4ADF-A04D-D1C08DFBD748}] => (Allow) D:\New folder\steamapps\common\Aim Lab\AimLab_tb.exe () [File not signed]
FirewallRules: [UDP Query User{6AA64FEC-73B8-4F88-87E9-BAB39FC5FF06}D:\new folder\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Block) D:\new folder\steamapps\common\warface\13_2000076\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [TCP Query User{27EDA85B-C9BC-4876-A5CB-211A68C35D08}D:\new folder\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Block) D:\new folder\steamapps\common\warface\13_2000076\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [{3FE82D54-56D8-413D-8A74-15A0396F8C1C}] => (Allow) D:\New folder\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7F44DC9B-6F00-4912-BCBE-51A363351081}] => (Allow) D:\New folder\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{DECD453A-CDB8-4FB1-9592-50E6E5676F92}D:\new folder\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) D:\new folder\steamapps\common\total war warhammer ii\warhammer2.exe => No File
FirewallRules: [TCP Query User{DE278875-A0B4-447C-B622-D0B8D27C81ED}D:\new folder\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) D:\new folder\steamapps\common\total war warhammer ii\warhammer2.exe => No File
FirewallRules: [UDP Query User{FDA13F36-7E7D-42FA-86BA-4D7D74F5A6F9}D:\new folder\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe] => (Allow) D:\new folder\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe => No File
FirewallRules: [TCP Query User{E0DB1805-BA9C-469B-A203-BB47C4925F40}D:\new folder\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe] => (Allow) D:\new folder\steamapps\common\dirty bomb\binaries\win64\shootergame-win32-shipping.exe => No File
FirewallRules: [UDP Query User{2DC29D25-EFC4-4A32-9188-05E91BDB268B}D:\new folder\steamapps\common\warface\gamecenter\gamecenter.exe] => (Block) D:\new folder\steamapps\common\warface\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{8174462E-9AC3-4374-A4C5-093847BE604E}D:\new folder\steamapps\common\warface\gamecenter\gamecenter.exe] => (Block) D:\new folder\steamapps\common\warface\gamecenter\gamecenter.exe => No File
FirewallRules: [{BB4A899F-0B44-49C3-9AE5-7B941D8CE4FF}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\eac_launcher.exe => No File
FirewallRules: [{AB5E2054-FF43-4BCD-9ADB-33BCDD3DCDB5}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\eac_launcher.exe => No File
FirewallRules: [{B272BAC7-BC21-42C6-A98D-B47015727EF1}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\win32\cuisine_royale.exe => No File
FirewallRules: [{EAA6D3BB-2F2B-46EB-8248-6545082F0773}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\win32\cuisine_royale.exe => No File
FirewallRules: [{5F37B551-6A6C-43F6-958A-C764650C269E}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\win64\cuisine_royale.exe => No File
FirewallRules: [{D3096951-DE18-4F7D-9D1D-C52CF5E07A56}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\win64\cuisine_royale.exe => No File
FirewallRules: [{CA81FB42-936C-4865-860A-8050F25DF5D2}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\gaijin_downloader.exe => No File
FirewallRules: [{9BC1A1A1-98D3-4780-9BFA-E5C8FD265EE7}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\gaijin_downloader.exe => No File
FirewallRules: [{38D8F1AB-F7B1-4209-ACFD-A7320D44425E}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\win32\bpreport.exe => No File
FirewallRules: [{F00385F9-0A02-4567-A946-1A883A9FC462}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\win32\bpreport.exe => No File
FirewallRules: [{050CE670-937E-40CD-92AB-878E8613BBA4}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\bpreport.exe => No File
FirewallRules: [{17FE4A01-2BF8-458A-98D6-3BE18EF8E3AD}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\bpreport.exe => No File
FirewallRules: [{C652A34C-2BAF-4EB9-ACCD-077B4F819203}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\launcher.exe => No File
FirewallRules: [{4C676BC8-38ED-4466-AE41-2C72C1DE611C}] => (Allow) D:\New folder\steamapps\common\Cuisine Royale\launcher.exe => No File
FirewallRules: [UDP Query User{8D078992-500B-4F6E-8D1C-F1FF71E13731}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{1DEC1E44-C279-4C11-BB41-ADE73637C9FB}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{19FB5277-F22A-41B4-9D0C-AFB4BAA60F5C}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{81B1F858-8529-486E-B492-F322BB519373}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{06563347-F0A8-4CEA-B1D7-1C55E463C583}] => (Allow) D:\New folder\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{7D973A51-F7E1-4E81-A44F-E10B5804947B}] => (Allow) D:\New folder\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{F0F0E635-8E2B-480A-B51D-3299DFB5D775}] => (Allow) D:\New folder\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4CEEA869-EAE0-4FAF-8F5A-A5DCD5D4A57B}] => (Allow) D:\New folder\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D8F725BA-3D5E-41FA-B549-2E0F53ECAC3E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{E5677A97-E4D0-491D-9E95-FEDBC6CF4345}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{568DE942-EA30-425A-9235-3899B1F3DFE4}D:\minecraft_launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) D:\minecraft_launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{328005BD-39E9-4400-80EE-7771612F4A8F}D:\minecraft_launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) D:\minecraft_launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{EF7AF17A-937E-49EA-8762-4B3CCF385F01}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{500EA65B-3955-4F4A-8430-232C968B929E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{14924037-CA3E-402A-96E0-E9DADF592030}] => (Allow) D:\New folder\steamapps\common\Deadside\Deadside.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{E9960D88-A8AE-4D4C-938F-78549266792C}] => (Allow) D:\New folder\steamapps\common\Deadside\Deadside.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{80537826-F848-4B99-A5DD-7EA15233E0C7}] => (Allow) D:\New folder\steamapps\common\Deadside\Deadside\Binaries\Win64\Deadside-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{DFD1B271-0217-4A8E-9317-52002077D474}] => (Allow) D:\New folder\steamapps\common\Deadside\Deadside\Binaries\Win64\Deadside-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{6B5514FF-D0FA-4E56-9B97-CB48A59857AB}] => (Allow) D:\New folder\steamapps\common\Deadside\EasyAntiCheat\EasyAntiCheat_x64.dll (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{FE13DB5A-FD3D-4EE7-9700-CF1922E18CAD}] => (Allow) D:\New folder\steamapps\common\Deadside\EasyAntiCheat\EasyAntiCheat_x64.dll (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{5917667A-0EF5-484E-B279-7D1DE543B88E}] => (Allow) D:\New folder\steamapps\common\Grounded\Grounded.exe (Obsidian Entertainment, Inc. -> Epic Games, Inc.)
FirewallRules: [{21AF1CEF-0BCB-4878-B358-29D1E618BA74}] => (Allow) D:\New folder\steamapps\common\Grounded\Grounded.exe (Obsidian Entertainment, Inc. -> Epic Games, Inc.)
FirewallRules: [{F22C81C3-FD85-4780-8503-ABA73E036D59}] => (Allow) D:\New folder\steamapps\common\RealBoxing\Binaries\Win32\RealBoxing.exe => No File
FirewallRules: [{D9062AEF-DF5F-4A5F-BCDD-EDAC8CB9C420}] => (Allow) D:\New folder\steamapps\common\RealBoxing\Binaries\Win32\RealBoxing.exe => No File
FirewallRules: [{77C8467C-C371-431C-BE11-3A1EED342142}] => (Allow) D:\New folder\steamapps\common\RealBoxing\Binaries\RBLauncher.exe => No File
FirewallRules: [{E8228BFC-3941-4F6E-9A32-DD6EC5A48DF1}] => (Allow) D:\New folder\steamapps\common\RealBoxing\Binaries\RBLauncher.exe => No File
FirewallRules: [{676E8C4C-8D09-4090-A343-54CEB287B183}] => (Allow) D:\New folder\steamapps\common\Devour\DEVOUR.exe () [File not signed]
FirewallRules: [{B1AA1631-FC13-4FE2-A055-00C96B1D4CF9}] => (Allow) D:\New folder\steamapps\common\Devour\DEVOUR.exe () [File not signed]
FirewallRules: [{35E45587-293A-4A13-8037-60D1730F7A7E}] => (Allow) D:\New folder\steamapps\common\New World Closed Beta\NewWorldLauncher.exe (Amazon.com Services LLC -> Epic Games, Inc)
FirewallRules: [{29E25549-EEA5-44BB-B93B-6941C4056CC5}] => (Allow) D:\New folder\steamapps\common\New World Closed Beta\NewWorldLauncher.exe (Amazon.com Services LLC -> Epic Games, Inc)
FirewallRules: [TCP Query User{4F02E416-9E13-4889-860D-0FAAF88B34BB}D:\new folder\steamapps\common\new world closed beta\bin64\newworld.exe] => (Allow) D:\new folder\steamapps\common\new world closed beta\bin64\newworld.exe (Amazon.com Services LLC -> Amazon.com, Inc.)
FirewallRules: [UDP Query User{920B14AF-8942-4791-BAC6-4AFFB5F5A614}D:\new folder\steamapps\common\new world closed beta\bin64\newworld.exe] => (Allow) D:\new folder\steamapps\common\new world closed beta\bin64\newworld.exe (Amazon.com Services LLC -> Amazon.com, Inc.)
FirewallRules: [{B7DA9446-2226-425E-9FC7-71522E3C288B}] => (Allow) D:\New folder\steamapps\common\Splitgate\equ8-launcher.exe (Int3 Software AB -> Int3 Software AB)
FirewallRules: [{AFA86BED-2238-48E5-A28A-EF548A37EF8C}] => (Allow) D:\New folder\steamapps\common\Splitgate\equ8-launcher.exe (Int3 Software AB -> Int3 Software AB)
FirewallRules: [{CF07F77B-2E48-4CA8-93A1-66D3509F5ABE}] => (Allow) D:\New folder\steamapps\common\Splitgate\PortalWars\Binaries\Win64\PortalWars-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{04AA7198-20AE-4238-AC43-2E31913B1739}] => (Allow) D:\New folder\steamapps\common\Splitgate\PortalWars\Binaries\Win64\PortalWars-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{C613C359-888C-408A-A237-53C562035A83}] => (Allow) D:\New folder\steamapps\common\POLYGON\POLYGON.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{628831DF-A8B7-4276-876E-2F7E0F74AB4B}] => (Allow) D:\New folder\steamapps\common\POLYGON\POLYGON.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [TCP Query User{6D7033D7-F785-455C-9C5F-2F6A47052A4C}D:\new folder\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\new folder\steamapps\common\the witcher 2\bin\witcher2.exe => No File
FirewallRules: [UDP Query User{72D160A0-3842-4B51-AB3B-7053ED5AA7BC}D:\new folder\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\new folder\steamapps\common\the witcher 2\bin\witcher2.exe => No File
FirewallRules: [{C90E0A83-0D88-43E0-BA67-AC48E391325E}] => (Allow) C:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe => No File
FirewallRules: [{A5B6BA9C-C619-4103-B082-BBCE24B0830F}] => (Allow) C:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe => No File
FirewallRules: [{6D515406-8F44-4455-999C-90DDE03703D5}] => (Allow) C:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe => No File
FirewallRules: [{10F9FB92-7853-43A8-8E72-20FB08609612}] => (Allow) C:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe => No File
FirewallRules: [TCP Query User{E67641C0-4214-4D49-9906-F59F46F2AACC}C:\program files (x86)\call of duty vanguard beta\vanguard.exe] => (Allow) C:\program files (x86)\call of duty vanguard beta\vanguard.exe => No File
FirewallRules: [UDP Query User{FFB1B79A-9620-4F0B-9331-5F880891D05A}C:\program files (x86)\call of duty vanguard beta\vanguard.exe] => (Allow) C:\program files (x86)\call of duty vanguard beta\vanguard.exe => No File
FirewallRules: [TCP Query User{99B2B788-2DAE-4EF8-8202-4ECFEAEE1077}C:\steamlibrary\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\steamlibrary\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [UDP Query User{2387DE7E-D0FD-4E67-83C1-F05504CDE3E7}C:\steamlibrary\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\steamlibrary\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [TCP Query User{16EF2B99-7C1C-4FCA-9DCD-2DA1B8B3AC93}D:\games\riot games\riot client\riotclientservices.exe] => (Allow) D:\games\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{9797AD74-794B-4088-8040-458515B6B9A6}D:\games\riot games\riot client\riotclientservices.exe] => (Allow) D:\games\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{56869958-9778-4A86-88CA-315FC72DF4C1}C:\users\jesstan holland\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\jesstan holland\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{1FDE7B1F-5954-4FBC-A6CC-7617100C06A9}C:\users\jesstan holland\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\jesstan holland\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{4C7E23B1-BD26-490D-ADC3-84BC51E14AFD}D:\minecraft mods\install\mods\runtimes\jre-legacy\bin\javaw.exe] => (Allow) D:\minecraft mods\install\mods\runtimes\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{F0DE3D96-F080-4B39-989D-252CC34E68EA}D:\minecraft mods\install\mods\runtimes\jre-legacy\bin\javaw.exe] => (Allow) D:\minecraft mods\install\mods\runtimes\jre-legacy\bin\javaw.exe
FirewallRules: [{997BD5AD-CE0C-42E7-9161-AA042A3D6F75}] => (Allow) D:\Origgion\Battlefield V\bfvTrial.exe => No File
FirewallRules: [{671D2B49-6982-489F-8933-895F1BA13B36}] => (Allow) D:\Origgion\Battlefield V\bfvTrial.exe => No File
FirewallRules: [{4A98CBCE-C746-48DA-B8AC-08FBFC0A96DF}] => (Allow) D:\Origgion\Battlefield V\bfv.exe => No File
FirewallRules: [{D6B8E780-1F95-4DB4-9E83-6777638D2D38}] => (Allow) D:\Origgion\Battlefield V\bfv.exe => No File
FirewallRules: [TCP Query User{BD770EA2-AEB3-4FAA-AC4B-21B26675E0AF}D:\call of duty vanguard\vanguard.exe] => (Allow) D:\call of duty vanguard\vanguard.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{9527D552-D238-4B72-9EF9-BF14336A72CE}D:\call of duty vanguard\vanguard.exe] => (Allow) D:\call of duty vanguard\vanguard.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{F22B9628-15C1-4AD7-829F-CE1C8128F006}] => (Allow) D:\New folder\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{E7181C8C-0F3E-4908-A527-938081E598E0}] => (Allow) D:\New folder\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{4B1EFD53-8FD9-4DAF-9054-6C2FB25E4E7F}] => (Allow) C:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe => No File
FirewallRules: [{E091C2EE-7640-41D7-B47F-F45C840F967A}] => (Allow) C:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe => No File
FirewallRules: [{DDE5B1E9-716A-4277-83E4-4D58A6F8CD42}] => (Allow) C:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe => No File
FirewallRules: [{A0F2826F-A180-42C7-A0CD-8364691DDC58}] => (Allow) C:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe => No File
FirewallRules: [{47AFF228-0ACC-45CE-A2D4-C59D88819D12}] => (Allow) D:\New folder\steamapps\common\sogame\game\sogame.exe => No File
FirewallRules: [{0C5F698D-D108-4577-ABCE-5B32D5E535B8}] => (Allow) D:\New folder\steamapps\common\sogame\game\sogame.exe => No File
FirewallRules: [{19332D5D-CE12-48C7-8AAD-70DF465A3530}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{58F7ECE9-289C-43B3-A74B-C6CCD70563C0}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{06830D45-100B-4FCB-B67B-31D91735F174}] => (Allow) D:\New folder\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => No File
FirewallRules: [{567D53B4-36F7-45A8-86EB-581C568FE93F}] => (Allow) D:\New folder\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => No File
FirewallRules: [{8F735B24-FAC3-498D-8321-24F2244B0C84}] => (Allow) D:\New folder\steamapps\common\Albion Online\launcher\AlbionLauncher.exe => No File
FirewallRules: [{7314D5FF-BE38-4D9F-A04C-6A7ACFAC2728}] => (Allow) D:\New folder\steamapps\common\Albion Online\launcher\AlbionLauncher.exe => No File
FirewallRules: [{C946874D-FBF3-4CB3-9B70-46D8ABBEB6E2}] => (Allow) C:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{C24C6284-50E1-43F1-BCCF-897666FA79C6}] => (Allow) C:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [TCP Query User{ED43AD5A-CAD3-432B-8070-97B0E3F98DBA}D:\new folder\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\new folder\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [UDP Query User{294CA1A0-957C-4EB4-9534-07E5CF8CB6BC}D:\new folder\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\new folder\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [TCP Query User{E00B8D80-80D5-40C9-8BE7-0D0D6C0A9A1A}C:\users\jesstan holland\appdata\local\discord\app-1.0.9003\discord.exe] => (Allow) C:\users\jesstan holland\appdata\local\discord\app-1.0.9003\discord.exe => No File
FirewallRules: [UDP Query User{8C1AAC7A-49FF-41A9-88D7-A531942288EE}C:\users\jesstan holland\appdata\local\discord\app-1.0.9003\discord.exe] => (Allow) C:\users\jesstan holland\appdata\local\discord\app-1.0.9003\discord.exe => No File
FirewallRules: [{AFA8FA8F-6550-4944-A81B-2BE584142F8F}] => (Allow) D:\New folder\steamapps\common\Feed and Grow Fish\Feed and Grow.exe () [File not signed]
FirewallRules: [{8A8B1A0E-53FC-4B88-98E2-171D7BF42E04}] => (Allow) D:\New folder\steamapps\common\Feed and Grow Fish\Feed and Grow.exe () [File not signed]
FirewallRules: [{2DC2262C-CD02-4254-B77B-194253654729}] => (Allow) D:\New folder\steamapps\common\Albion Online\launcher\AlbionLauncher.exe => No File
FirewallRules: [{D0F6A662-B1F0-4BB2-B06A-76E5C88E153B}] => (Allow) D:\New folder\steamapps\common\Albion Online\launcher\AlbionLauncher.exe => No File
FirewallRules: [TCP Query User{74FAD2B6-64D0-4C22-89EC-90613CD19E91}D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{FF68C146-7984-45B8-89A2-769E3BCB00BB}D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{4FC65528-889C-443F-931A-ED3FCAC39868}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{3F22C0ED-5DA7-4D8E-9CC2-F43FD4E4C98A}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3C4EEC23-7487-4AB9-97DC-E0EFEC909D2C}] => (Allow) D:\New folder\steamapps\common\Destiny 2\destiny2launcher.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{5C5ADCE9-C82B-4D31-AEB5-E32938EECA15}] => (Allow) D:\New folder\steamapps\common\Destiny 2\destiny2launcher.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{16A7AA3F-1E4B-4C76-B466-5CFB6BFA07FC}D:\new folder\steamapps\common\destiny 2\destiny2.exe] => (Allow) D:\new folder\steamapps\common\destiny 2\destiny2.exe (Bungie Inc. -> Bungie)
FirewallRules: [UDP Query User{36D17606-035F-4367-889C-907F260EF3DC}D:\new folder\steamapps\common\destiny 2\destiny2.exe] => (Allow) D:\new folder\steamapps\common\destiny 2\destiny2.exe (Bungie Inc. -> Bungie)
FirewallRules: [{11A5E039-A54B-4C11-90B3-F78003ACE48A}] => (Allow) D:\New folder\steamapps\common\BattleBit Remastered Playtest\BattleBitEAC.exe (OKIGAMES OYUN VE YAZILIM HİZMETLERİ LİMİTED ŞİRKETİ -> )
FirewallRules: [{995BFBF2-D348-4776-A86D-2099A6A682DD}] => (Allow) D:\New folder\steamapps\common\BattleBit Remastered Playtest\BattleBitEAC.exe (OKIGAMES OYUN VE YAZILIM HİZMETLERİ LİMİTED ŞİRKETİ -> )
FirewallRules: [{53AC93C8-8DB2-4CB4-9F00-344AA1DFBAB3}] => (Allow) D:\New folder\steamapps\common\BattleBit Remastered Playtest\EACRepair.exe => No File
FirewallRules: [{5DBD4551-3591-45AD-A809-D33F26F92A82}] => (Allow) D:\New folder\steamapps\common\BattleBit Remastered Playtest\EACRepair.exe => No File
FirewallRules: [{EB850642-B7A0-4E72-9D3E-DA85286EE160}] => (Allow) D:\New folder\steamapps\common\BattleBit Remastered Playtest\BattleBit.exe (OKIGAMES OYUN VE YAZILIM HİZMETLERİ LİMİTED ŞİRKETİ -> )
FirewallRules: [{A0DE17A8-F937-44B2-BC56-8002D2FE9A09}] => (Allow) D:\New folder\steamapps\common\BattleBit Remastered Playtest\BattleBit.exe (OKIGAMES OYUN VE YAZILIM HİZMETLERİ LİMİTED ŞİRKETİ -> )
FirewallRules: [{DE3AC7BE-5FBB-4860-8F13-5C6DFDDDF615}] => (Allow) D:\New folder\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{63081E25-DA4E-43FB-B2B4-DABB98F741C3}] => (Allow) D:\New folder\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{448C6722-222A-4062-8FD8-2340859D2097}] => (Allow) D:\New folder\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{23BE5D22-CC43-4EF5-8469-B191295F0A15}] => (Allow) D:\New folder\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{94438E3E-E740-4744-919F-8B0CB090B5B4}] => (Allow) D:\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{E2EEAF7A-DDA3-4B18-A0FA-A06F92770A09}] => (Allow) D:\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{82730CE6-2098-4E39-BA1C-2FB37B866DE0}] => (Allow) D:\New folder\steamapps\common\The Cycle Playtest\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => No File
FirewallRules: [{067CFBA4-F4A2-48D9-9FD1-555DA3AFAB60}] => (Allow) D:\New folder\steamapps\common\The Cycle Playtest\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => No File
FirewallRules: [{5768E941-860F-4988-B3B3-453DEFF60967}] => (Allow) D:\New folder\steamapps\common\The Cycle Playtest\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => No File
FirewallRules: [{EC343115-19D8-428B-BCF7-C1E4EA085F1A}] => (Allow) D:\New folder\steamapps\common\The Cycle Playtest\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => No File
FirewallRules: [{FDFF8B0B-5348-468D-944A-844CE84FF252}] => (Allow) D:\New folder\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{584DD344-405F-44DF-81E0-1F81EC31966D}] => (Allow) D:\New folder\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [TCP Query User{6A08A14A-DEFF-4CFD-A65F-C696E187F137}D:\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{90679478-D3B6-4702-86A9-0D89B2FC867E}D:\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{0FEC39F7-D23C-43BE-B5F6-6384842390BC}] => (Allow) D:\New folder\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => No File
FirewallRules: [{5C3658CE-4BE1-46D1-8812-2861CF63AFF4}] => (Allow) D:\New folder\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => No File
FirewallRules: [{257FE4F8-C5E7-4D91-9F4E-FA7BD58D9087}] => (Allow) D:\New folder\steamapps\common\sogame\game\sogame.exe => No File
FirewallRules: [{FF74170C-1B1E-4B54-8BDB-FB0F2D51C397}] => (Allow) D:\New folder\steamapps\common\sogame\game\sogame.exe => No File
FirewallRules: [TCP Query User{8A29EF81-8810-49B3-97D1-4F62573E703B}C:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe => No File
FirewallRules: [UDP Query User{BE8D2C6A-AE33-4209-9C97-2FAFEC989025}C:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe => No File
FirewallRules: [TCP Query User{865A5B1A-F9E3-432C-B551-F8669004FAD6}D:\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) D:\call of duty black ops cold war\blackopscoldwar.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [UDP Query User{5B243B6A-314F-4B4C-9E3E-B22303DD1F59}D:\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) D:\call of duty black ops cold war\blackopscoldwar.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [{4C5BE7F1-A66F-456A-9D78-AE1B6EFBC5C4}] => (Allow) C:\SteamLibrary\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => No File
FirewallRules: [{B601FAEF-6149-4984-8209-C554A868FFE5}] => (Allow) C:\SteamLibrary\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe => No File
FirewallRules: [{8D21E10C-080F-4524-B84C-CE1E1B8DB769}] => (Allow) C:\SteamLibrary\steamapps\common\SCP Containment Breach Multiplayer\game.exe () [File not signed]
FirewallRules: [{6CE23FF3-0FD2-43BE-B694-273816265351}] => (Allow) C:\SteamLibrary\steamapps\common\SCP Containment Breach Multiplayer\game.exe () [File not signed]
FirewallRules: [{20167A3D-EB4D-489F-AA69-EC6D50155C26}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{5FE5D5A3-4315-437D-919F-DCCB4CB0CC35}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{62AD856E-F760-48A3-95D9-B152BB00AC9C}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [TCP Query User{2E30A51F-52E2-487F-94B5-E14DC7E4998A}C:\users\jesstan holland\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\jesstan holland\appdata\local\discord\app-1.0.9004\discord.exe => No File
FirewallRules: [UDP Query User{80D88883-6D8F-4CFD-AAD8-7E89DD249AAB}C:\users\jesstan holland\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\jesstan holland\appdata\local\discord\app-1.0.9004\discord.exe => No File
FirewallRules: [{4F6A2A34-2D89-46CF-A3F9-BDA9548AD223}] => (Block) C:\users\jesstan holland\appdata\local\discord\app-1.0.9004\discord.exe => No File
FirewallRules: [{156E48F8-3E17-40A3-8049-C2FC70F9ED23}] => (Block) C:\users\jesstan holland\appdata\local\discord\app-1.0.9004\discord.exe => No File
FirewallRules: [TCP Query User{E87A5EBD-B00A-46DC-B03D-B18D7A6CC47B}D:\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) D:\borderlands3\oakgame\binaries\win64\borderlands3.exe (Gearbox Software, L.L.C. -> Gearbox Software)
FirewallRules: [UDP Query User{623E27CC-9CCF-4517-8328-8886CDD222CE}D:\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) D:\borderlands3\oakgame\binaries\win64\borderlands3.exe (Gearbox Software, L.L.C. -> Gearbox Software)
FirewallRules: [{5ADA4AE1-9490-4B0F-8066-D848B56496B1}] => (Allow) D:\New folder\steamapps\common\VRChat\launch.exe () [File not signed]
FirewallRules: [{A4A374E1-BFF2-40D5-AC94-85D96A90BFF6}] => (Allow) D:\New folder\steamapps\common\VRChat\launch.exe () [File not signed]
FirewallRules: [TCP Query User{419B627E-48DA-449E-AB79-6435C75AC53F}C:\users\jesstan holland\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe] => (Allow) C:\users\jesstan holland\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe (Plutonium Project -> Plutonium Project) [File not signed]
FirewallRules: [UDP Query User{A097AA08-023B-451C-9A8B-5A9A968B48F1}C:\users\jesstan holland\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe] => (Allow) C:\users\jesstan holland\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe (Plutonium Project -> Plutonium Project) [File not signed]
FirewallRules: [TCP Query User{83860F64-E121-43F7-A6A0-C030D3F94D55}D:\new folder\steamapps\common\badlanders\engine\binaries\win64\game.exe] => (Allow) D:\new folder\steamapps\common\badlanders\engine\binaries\win64\game.exe => No File
FirewallRules: [UDP Query User{F6DA305F-ACC3-42C4-95BA-AC9731918904}D:\new folder\steamapps\common\badlanders\engine\binaries\win64\game.exe] => (Allow) D:\new folder\steamapps\common\badlanders\engine\binaries\win64\game.exe => No File
FirewallRules: [TCP Query User{49004AC3-EBB4-46E0-A79E-7A168626F340}D:\new folder\steamapps\common\badlanders\engine\binaries\win64\cc\ccmini.exe] => (Allow) D:\new folder\steamapps\common\badlanders\engine\binaries\win64\cc\ccmini.exe => No File
FirewallRules: [UDP Query User{8F3E733C-445A-42BD-A4C9-BEBFAD34F756}D:\new folder\steamapps\common\badlanders\engine\binaries\win64\cc\ccmini.exe] => (Allow) D:\new folder\steamapps\common\badlanders\engine\binaries\win64\cc\ccmini.exe => No File
FirewallRules: [{3EAFC194-CD59-4351-AE78-98635557B7F4}] => (Allow) D:\New folder\steamapps\common\Total War Attila\launcher\launcher.exe => No File
FirewallRules: [{DABFF34F-4713-425D-8CAD-4BEBBE650CB4}] => (Allow) D:\New folder\steamapps\common\Total War Attila\launcher\launcher.exe => No File
FirewallRules: [{990B1123-8904-4FFF-8F71-3B1ADC9D8211}] => (Allow) D:\New folder\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{EC4EC843-B63A-48DF-916D-E7EF65F0FD88}] => (Allow) D:\New folder\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [TCP Query User{7DCA0EF5-F25E-4779-A260-E826D988B06C}D:\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [UDP Query User{B95AC08B-D278-46A3-AECC-94D7F4B7BFF0}D:\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [{BAB45BF1-896E-4E99-B04F-1CB3E7C58EBE}] => (Allow) D:\New folder\steamapps\common\MultiVersus\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{A38B3B7C-A7A0-43EB-A799-4706A2229395}] => (Allow) D:\New folder\steamapps\common\MultiVersus\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{17001488-17EF-4627-B7F6-68D08CB41BF8}] => (Allow) D:\New folder\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{BA4CB90C-520E-4E42-BE48-89385501396E}] => (Allow) D:\New folder\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{42526A0C-F89C-4753-94B7-EF85DDD393C6}] => (Allow) D:\New folder\steamapps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [{47554559-A527-44CD-A815-B66BD789AD12}] => (Allow) D:\New folder\steamapps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [TCP Query User{F461C3BC-9D56-43E9-BDED-5EB6A70346DF}D:\new folder\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\new folder\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
FirewallRules: [UDP Query User{F8B67657-EECF-42E2-8406-A475F8EC9835}D:\new folder\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) D:\new folder\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
FirewallRules: [TCP Query User{897EEF94-5B61-4F04-B3BE-A17F3E585E9D}C:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) C:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe => No File
FirewallRules: [UDP Query User{272AA6DA-D86B-4640-AFAE-54C533266361}C:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) C:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe => No File
FirewallRules: [{A92E4464-2D79-4977-A021-E8FDB0491F6C}] => (Allow) C:\SteamLibrary\steamapps\common\Soulstone Survivors Prologue\Soulstone Survivors.exe () [File not signed]
FirewallRules: [{9816345C-A449-4790-857B-3CEBA8A3B1E3}] => (Allow) C:\SteamLibrary\steamapps\common\Soulstone Survivors Prologue\Soulstone Survivors.exe () [File not signed]
FirewallRules: [{8EE62EFB-B5EC-41A0-A870-5EAAFC056C40}] => (Allow) C:\SteamLibrary\steamapps\common\Inside The Backrooms\Inside the Backrooms.exe () [File not signed]
FirewallRules: [{8CABF31F-DDDF-4AFF-84BD-3489065B299F}] => (Allow) C:\SteamLibrary\steamapps\common\Inside The Backrooms\Inside the Backrooms.exe () [File not signed]
FirewallRules: [{544D152F-EAD6-49FD-89F9-25827B444F72}] => (Allow) C:\SteamLibrary\steamapps\common\Shatterline\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{27B044AE-9240-4189-A3F0-B15217F77C73}] => (Allow) C:\SteamLibrary\steamapps\common\Shatterline\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{49B0A9F1-E069-452C-9164-A423408253DD}] => (Allow) C:\SteamLibrary\steamapps\common\Shatterline\Bin\Shatterline.exe (Amazon.com, Inc.) [File not signed]
FirewallRules: [{68388B78-F281-459E-AE75-B5F09DACB674}] => (Allow) C:\SteamLibrary\steamapps\common\Shatterline\Bin\Shatterline.exe (Amazon.com, Inc.) [File not signed]
FirewallRules: [{E4F68079-83C0-4D9A-968A-B752BFF5D5AD}] => (Allow) C:\SteamLibrary\steamapps\common\Sins of a Solar Empire Rebellion\StardockLauncher.exe (STARDOCK SYSTEMS, INC. -> Stardock Corporation)
FirewallRules: [{2B728468-177E-4F7C-ABD9-5EA5FB4A3051}] => (Allow) C:\SteamLibrary\steamapps\common\Sins of a Solar Empire Rebellion\StardockLauncher.exe (STARDOCK SYSTEMS, INC. -> Stardock Corporation)
FirewallRules: [TCP Query User{16A45E4A-93AF-46C3-8E78-A80AA85CE3E2}C:\steamlibrary\steamapps\common\world war 3\sglauncherww3\sglww3.exe] => (Allow) C:\steamlibrary\steamapps\common\world war 3\sglauncherww3\sglww3.exe (My.Com B.V. -> MY.COM B.V.)
FirewallRules: [UDP Query User{0F8DAD89-A565-49C0-9FC3-11CC6629166D}C:\steamlibrary\steamapps\common\world war 3\sglauncherww3\sglww3.exe] => (Allow) C:\steamlibrary\steamapps\common\world war 3\sglauncherww3\sglww3.exe (My.Com B.V. -> MY.COM B.V.)
FirewallRules: [{DE0C1B47-AE8C-4068-AF31-65DD2B947900}] => (Allow) D:\Origgion\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6EC420AF-BBDC-4621-A996-4A109843CA9B}] => (Allow) D:\Origgion\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{EA4D0B4F-318F-4EF0-B974-E5E5C1BB4CA9}] => (Allow) D:\New folder\steamapps\common\SUPER PEOPLE\geegeerun.exe => No File
FirewallRules: [{D926890D-1FB1-433F-BA9E-EE900F7C65C5}] => (Allow) D:\New folder\steamapps\common\SUPER PEOPLE\geegeerun.exe => No File
FirewallRules: [TCP Query User{70847B00-738B-4E9C-BA08-6E8ADF195D27}C:\steamlibrary\steamapps\common\warhammer 40,000 darktide playtest\binaries\darktide.exe] => (Allow) C:\steamlibrary\steamapps\common\warhammer 40,000 darktide playtest\binaries\darktide.exe => No File
FirewallRules: [UDP Query User{73ED1123-7784-4223-8A1A-697001AC82B6}C:\steamlibrary\steamapps\common\warhammer 40,000 darktide playtest\binaries\darktide.exe] => (Allow) C:\steamlibrary\steamapps\common\warhammer 40,000 darktide playtest\binaries\darktide.exe => No File
FirewallRules: [{DE0489D8-50B2-40D2-BDB5-1AFAEA1FEAB7}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{A7AF02DA-DE69-48EB-926D-7C7F297405BF}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [TCP Query User{03FFAF2B-7349-4DF7-97FE-C8CCFBBECF4A}D:\farcry6\bin\farcry6.exe] => (Allow) D:\farcry6\bin\farcry6.exe => No File
FirewallRules: [UDP Query User{F5ED0104-1D70-4745-8896-E52B12C9D794}D:\farcry6\bin\farcry6.exe] => (Allow) D:\farcry6\bin\farcry6.exe => No File
FirewallRules: [{E2C4656B-BC1E-44E4-BE20-5B8F9ED945E5}] => (Allow) D:\FarCry6\bin\FarCry6.exe => No File
FirewallRules: [{01061667-7211-45E6-99DF-6B59558E86C0}] => (Allow) D:\FarCry6\bin\FarCry6.exe => No File
FirewallRules: [{74DF3168-C436-4788-AFE0-CFC20559912B}] => (Allow) D:\FarCry6\bin_plus\FarCry6.exe => No File
FirewallRules: [{8F9D4117-700B-4193-9100-65C6EB1C06E2}] => (Allow) D:\FarCry6\bin_plus\FarCry6.exe => No File
FirewallRules: [TCP Query User{0F5E5368-4186-4EBF-8FE5-7AAF02B2FFF1}D:\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty\_retail_\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{15C8A0C5-AB63-4D48-B450-6BF9E37F5C1A}D:\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty\_retail_\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{D73A3460-F413-4BE1-BB53-3874BCEEA529}] => (Allow) D:\New folder\steamapps\common\Warhammer 40,000 DARKTIDE\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{6090D4D7-D6C9-4E20-9663-76B529EB3A59}] => (Allow) D:\New folder\steamapps\common\Warhammer 40,000 DARKTIDE\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [TCP Query User{D5369B16-5323-4248-91E8-7E4CD9E449A3}D:\new folder\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) D:\new folder\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe (Fatshark Studios AB) [File not signed]
FirewallRules: [UDP Query User{BC01B436-9E54-4C0D-B356-DB90C9A29A4C}D:\new folder\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe] => (Allow) D:\new folder\steamapps\common\warhammer 40,000 darktide\binaries\darktide.exe (Fatshark Studios AB) [File not signed]
FirewallRules: [{0B37552A-DB34-4531-A89C-89385AB0EEEE}] => (Allow) D:\New folder\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [{F4993FA7-43F5-4FFE-A4D3-C888E59DE459}] => (Allow) D:\New folder\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network Ltd -> Gaijin Entertainment)
FirewallRules: [{26F8B1F7-61CD-4C3B-8F73-F47AF90EAB25}] => (Allow) D:\New folder\steamapps\common\War Thunder\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [{CF6C0376-A17F-4C29-93E7-90CE3A51FE20}] => (Allow) D:\New folder\steamapps\common\War Thunder\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [{F4B57091-4A66-403D-B4C3-729C6D4A314B}] => (Allow) D:\New folder\steamapps\common\Feed and Grow Fish\net48\FeedAndGrowFishLauncher.exe (FeedAndGrowFishLauncher) [File not signed]
FirewallRules: [{2C662872-2BD1-44AD-98EB-D8F1CE7C0A5D}] => (Allow) D:\New folder\steamapps\common\Feed and Grow Fish\net48\FeedAndGrowFishLauncher.exe (FeedAndGrowFishLauncher) [File not signed]
FirewallRules: [{832A2E0F-C12C-41DD-93D1-E56E6F11699C}] => (Allow) D:\New folder\steamapps\common\Dungeon Siege 1\DungeonSiege.exe (Gas Powered Games) [File not signed]
FirewallRules: [{C256A4C8-FB4F-40F5-AA7E-7B2C54BFA7FC}] => (Allow) D:\New folder\steamapps\common\Dungeon Siege 1\DungeonSiege.exe (Gas Powered Games) [File not signed]
FirewallRules: [{E9821E6B-1267-46BE-B112-6B5EF24E9B74}] => (Allow) D:\New folder\steamapps\common\STALCRAFT\sclauncher.exe (Exbo North LLC -> )
FirewallRules: [{55ABB2DF-9BB3-42F5-A8FD-16BB5E0C648F}] => (Allow) D:\New folder\steamapps\common\STALCRAFT\sclauncher.exe (Exbo North LLC -> )
FirewallRules: [{D20F6965-9249-4204-A668-D2EA21727CE7}] => (Allow) C:\SteamLibrary\steamapps\common\Super Animal Royale\Super Animal Royale.exe () [File not signed]
FirewallRules: [{AEEA62B1-FA27-4DD0-A2C6-7981A2383601}] => (Allow) C:\SteamLibrary\steamapps\common\Super Animal Royale\Super Animal Royale.exe () [File not signed]
FirewallRules: [TCP Query User{CC94AAD8-BE33-4661-ADA2-77826810FDE6}D:\themsfightinherds\them's fightin' herds.exe] => (Allow) D:\themsfightinherds\them's fightin' herds.exe => No File
FirewallRules: [UDP Query User{E736DA04-E1D9-4EC0-8E74-6183DD5A5B47}D:\themsfightinherds\them's fightin' herds.exe] => (Allow) D:\themsfightinherds\them's fightin' herds.exe => No File
FirewallRules: [{3C217B57-AAF1-458A-BA33-E1238ACB1502}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{4CCBC366-9395-4C76-9ED1-544635DA069E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{7FB92902-D319-45CF-8B65-7DB154F0D924}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A198AF67-C91F-4F5F-9289-71E95BAD7B7D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{077D8707-910C-4FDD-9EB9-ECD78AFE5DAC}] => (Allow) C:\SteamLibrary\steamapps\common\Kingdoms of Amalur Re-Reckoning\koa.exe () [File not signed]
FirewallRules: [{06F89130-374C-4CC3-A805-2957A58A84E3}] => (Allow) C:\SteamLibrary\steamapps\common\Kingdoms of Amalur Re-Reckoning\koa.exe () [File not signed]
FirewallRules: [{24B3FEC8-718C-4BDA-9472-6C8D6CB431CA}] => (Allow) D:\New folder\steamapps\common\SUPER PEOPLE\BravoHotelClient.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd)
FirewallRules: [{E4ECE879-71FD-462F-8792-B57CEEAAFB38}] => (Allow) D:\New folder\steamapps\common\SUPER PEOPLE\BravoHotelClient.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd)
FirewallRules: [{B2D5EBC8-D9BA-47B9-9EFA-8B0105488CE3}] => (Allow) C:\SteamLibrary\steamapps\common\NARAKA BLADEPOINT\StartGame.exe (NetEase (Hangzhou) Network Co., Ltd -> )
FirewallRules: [{099987BE-22C6-4DA1-9EBD-AF50D532AA23}] => (Allow) C:\SteamLibrary\steamapps\common\NARAKA BLADEPOINT\StartGame.exe (NetEase (Hangzhou) Network Co., Ltd -> )
FirewallRules: [TCP Query User{6675B577-69C6-4D17-A1A4-02D47D74DB83}C:\steamlibrary\steamapps\common\naraka bladepoint\narakabladepoint.exe] => (Allow) C:\steamlibrary\steamapps\common\naraka bladepoint\narakabladepoint.exe (NetEase (Hangzhou) Network Co., Ltd -> )
FirewallRules: [UDP Query User{BA986476-9643-41AE-8E53-0FAF0AF1170E}C:\steamlibrary\steamapps\common\naraka bladepoint\narakabladepoint.exe] => (Allow) C:\steamlibrary\steamapps\common\naraka bladepoint\narakabladepoint.exe (NetEase (Hangzhou) Network Co., Ltd -> )
FirewallRules: [{25B3F09F-DAFA-468D-8915-7574BBD8BD4D}] => (Allow) C:\SteamLibrary\steamapps\common\Europa Universalis IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{F63593D1-0E6E-42C6-B9E1-BFFF3791A7FC}] => (Allow) C:\SteamLibrary\steamapps\common\Europa Universalis IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{C8ABD63B-A457-415A-9D31-F6472443318B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{FA55B41A-D126-4B1C-9A45-07F0341B1464}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F9E509FE-AD18-412B-83EC-A695DBBD0625}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8BDB735C-B0C1-47AA-99A2-D1F725E1D685}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2C045F19-9900-488E-9D54-9DC4C2809195}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3F97B03D-D67F-469E-9C73-EA9FCF015C65}] => (Allow) D:\Origgion\Command and Conquer Generals Zero Hour\Generals.exe (Kalloc Studios, Inc. -> Kalloc Studios) [File not signed]
FirewallRules: [{9DC23F55-3FFC-4696-8316-BA8A47AF1D81}] => (Allow) D:\Origgion\Command and Conquer Generals Zero Hour\Generals.exe (Kalloc Studios, Inc. -> Kalloc Studios) [File not signed]
FirewallRules: [{0A1584DA-2203-4178-BE27-CB428627CF20}] => (Allow) D:\New folder\steamapps\common\TheLongDark\tld.exe () [File not signed]
FirewallRules: [{AF4C14DA-BD4A-4A17-80FC-741B99815EEB}] => (Allow) D:\New folder\steamapps\common\TheLongDark\tld.exe () [File not signed]
FirewallRules: [TCP Query User{427C3BAB-1199-4B0C-99D1-D54E7961A79E}D:\new folder\steamapps\common\thelongdark\tld_dlc\wintermute\tld.exe] => (Block) D:\new folder\steamapps\common\thelongdark\tld_dlc\wintermute\tld.exe () [File not signed]
FirewallRules: [UDP Query User{20F9604A-1772-4E5C-8C77-BDA6A4562798}D:\new folder\steamapps\common\thelongdark\tld_dlc\wintermute\tld.exe] => (Block) D:\new folder\steamapps\common\thelongdark\tld_dlc\wintermute\tld.exe () [File not signed]
FirewallRules: [{CBAB2043-D6C5-4FC1-B5CC-7D2FB1BE82C5}] => (Allow) C:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{57F50832-06E5-4889-A944-FD6EF0FE7527}] => (Allow) C:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{F3EFB808-98FD-400F-A6D4-393F734AE2C3}] => (Allow) C:\SteamLibrary\steamapps\common\A.V.A\Binaries\start_protected_game.exe => No File
FirewallRules: [{74954782-05C7-4D6A-B604-4BBCE3EA788F}] => (Allow) C:\SteamLibrary\steamapps\common\A.V.A\Binaries\start_protected_game.exe => No File
FirewallRules: [TCP Query User{0D59F216-ED9D-472D-8322-04CA4ACD19B2}D:\new folder\steamapps\common\lost light\engine\binaries\win64\game_x64r.exe] => (Allow) D:\new folder\steamapps\common\lost light\engine\binaries\win64\game_x64r.exe => No File
FirewallRules: [UDP Query User{1E36B885-0DC4-4865-9C84-3E5E83DDB5ED}D:\new folder\steamapps\common\lost light\engine\binaries\win64\game_x64r.exe] => (Allow) D:\new folder\steamapps\common\lost light\engine\binaries\win64\game_x64r.exe => No File
FirewallRules: [TCP Query User{A56C50AC-BBCA-4DA1-A765-F226241848E9}D:\new folder\steamapps\common\lost light\engine\binaries\win64\cc\ccmini.exe] => (Allow) D:\new folder\steamapps\common\lost light\engine\binaries\win64\cc\ccmini.exe => No File
FirewallRules: [UDP Query User{59ED7D3B-7250-42C5-BCF6-BEFF12A5FEB1}D:\new folder\steamapps\common\lost light\engine\binaries\win64\cc\ccmini.exe] => (Allow) D:\new folder\steamapps\common\lost light\engine\binaries\win64\cc\ccmini.exe => No File
FirewallRules: [{53955BD7-FD25-418C-839A-CDD88782AB75}] => (Allow) D:\New folder\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{6D9B87E2-E23F-4398-8982-E54B95C18593}] => (Allow) D:\New folder\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{0797F72E-8C7E-43D6-A18C-83C0516317C6}] => (Allow) C:\SteamLibrary\steamapps\common\Total War Attila\launcher\launcher.exe => No File
FirewallRules: [{F36C22DE-1E1C-4D20-BA9D-8F113A0BD481}] => (Allow) C:\SteamLibrary\steamapps\common\Total War Attila\launcher\launcher.exe => No File
FirewallRules: [TCP Query User{6E933EF7-8837-4EBF-9998-55381252D349}C:\steamlibrary\steamapps\common\total war attila\attila.exe] => (Allow) C:\steamlibrary\steamapps\common\total war attila\attila.exe => No File
FirewallRules: [UDP Query User{6115266B-A665-422F-8F0F-884924858479}C:\steamlibrary\steamapps\common\total war attila\attila.exe] => (Allow) C:\steamlibrary\steamapps\common\total war attila\attila.exe => No File
FirewallRules: [TCP Query User{B413584E-6433-4A9C-AA8E-739ED7090A28}C:\program files\electronic arts\ea desktop\ea desktop\qtwebengineprocess.exe] => (Allow) C:\program files\electronic arts\ea desktop\ea desktop\qtwebengineprocess.exe (Electronic Arts, Inc. -> The Qt Company Ltd.)
FirewallRules: [UDP Query User{1180B3B3-22DD-40A6-B86E-928CC2C01022}C:\program files\electronic arts\ea desktop\ea desktop\qtwebengineprocess.exe] => (Allow) C:\program files\electronic arts\ea desktop\ea desktop\qtwebengineprocess.exe (Electronic Arts, Inc. -> The Qt Company Ltd.)
FirewallRules: [TCP Query User{C0ABFCB2-32DB-4B19-9BB1-D73D1E7A2EAA}C:\users\jesstan holland\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\jesstan holland\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{34F06B9B-2656-4C9E-84BB-BCA957AEC500}C:\users\jesstan holland\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\jesstan holland\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{13E8BF93-DBEF-4CCE-947B-9739AD402705}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AD72A844-1A9B-452E-82D1-E2CE3A55E075}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{684EFAEF-9B20-4898-B498-548A99647F3D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0634EA0D-82D1-4ACE-8513-89B29F806580}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B88722F0-6CF1-4ADF-BC34-7D71091FB316}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6CFA5FE9-E972-44E4-A618-64B683EAEA3C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F568B75D-0CD6-4544-B71F-EC00023AE111}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8BFAE78A-2778-4D8E-B641-05DFC9BE8CA6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{79DEB18C-8579-4A4A-9632-D0039DB3A2A0}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{DEFAC075-AEE1-418B-B9F5-A2EFEC5D105B}] => (Allow) D:\New folder\steamapps\common\Subnautica\Subnautica.exe () [File not signed]
FirewallRules: [{9E004E3F-3022-4911-9336-37D37DF020D7}] => (Allow) D:\New folder\steamapps\common\Subnautica\Subnautica.exe () [File not signed]
FirewallRules: [TCP Query User{8E78AD40-785A-4DF3-8095-BFF8233983B5}C:\users\jesstan holland\appdata\local\vysor\app-4.1.77\vysor.exe] => (Allow) C:\users\jesstan holland\appdata\local\vysor\app-4.1.77\vysor.exe (Vysor, Inc -> Vysor Inc.)
FirewallRules: [UDP Query User{5945C690-4C7E-4843-9CC8-307B78E478BE}C:\users\jesstan holland\appdata\local\vysor\app-4.1.77\vysor.exe] => (Allow) C:\users\jesstan holland\appdata\local\vysor\app-4.1.77\vysor.exe (Vysor, Inc -> Vysor Inc.)
FirewallRules: [{EF5F38F9-6D03-4E51-92D4-962D95C29F1E}] => (Allow) C:\SteamLibrary\steamapps\common\Crusader Kings III\launcher\dowser.exe => No File
FirewallRules: [{61AE6B54-BDF3-44E9-8AB9-E341CE5AB6BC}] => (Allow) C:\SteamLibrary\steamapps\common\Crusader Kings III\launcher\dowser.exe => No File
FirewallRules: [{33859A07-E63F-4B3A-8576-772C59267DBF}] => (Allow) C:\SteamLibrary\steamapps\common\FPS Chess\FPSChess.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{E3EBD801-6A27-477A-9DE3-28227AC70FA2}] => (Allow) C:\SteamLibrary\steamapps\common\FPS Chess\FPSChess.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{1906BBBE-E195-42B2-A5A5-FAB93DE7335C}] => (Allow) C:\SteamLibrary\steamapps\common\MobileSuitGundamBattleOperation2\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{24C96A26-930F-4C51-AE71-EB62C9DFF2D4}] => (Allow) C:\SteamLibrary\steamapps\common\MobileSuitGundamBattleOperation2\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{C955D563-F017-473E-8ABE-DEBF8117AAB4}] => (Allow) C:\SteamLibrary\steamapps\common\Garten Of Banban\Garten_of_Banban.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{9EA2A92C-A34C-4498-83E1-3E543F059C4A}] => (Allow) C:\SteamLibrary\steamapps\common\Garten Of Banban\Garten_of_Banban.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{06D14D20-B4DE-4F7B-A927-6659EFE70D4F}] => (Allow) C:\SteamLibrary\steamapps\common\3on3 FreeStyle Rebound\DoubleClutch.exe (Joycity Corp. -> Epic Games, Inc.)
FirewallRules: [{5292AA3D-DF25-493E-BD07-1975C799EC0C}] => (Allow) C:\SteamLibrary\steamapps\common\3on3 FreeStyle Rebound\DoubleClutch.exe (Joycity Corp. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C5E3CD49-C46F-4449-BCEA-4AB7FD8FBE10}C:\steamlibrary\steamapps\common\3on3 freestyle rebound\doubleclutch\binaries\win64\doubleclutch-win64-shipping.exe] => (Block) C:\steamlibrary\steamapps\common\3on3 freestyle rebound\doubleclutch\binaries\win64\doubleclutch-win64-shipping.exe (Joycity Corp. -> JOYCITY Corp.)
FirewallRules: [UDP Query User{994E850A-B142-4E2F-B76F-E342CB4FFC85}C:\steamlibrary\steamapps\common\3on3 freestyle rebound\doubleclutch\binaries\win64\doubleclutch-win64-shipping.exe] => (Block) C:\steamlibrary\steamapps\common\3on3 freestyle rebound\doubleclutch\binaries\win64\doubleclutch-win64-shipping.exe (Joycity Corp. -> JOYCITY Corp.)
FirewallRules: [{2E96CFBA-5562-4762-9523-52165F7A3EA3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EF5001F1-9824-4BCE-82B7-DF22E56C6037}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{939D8560-C29D-4B08-A525-F74B2A6F3AD9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5B419F7E-FC28-43F9-85E7-C7E93D2DAE52}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{817A472B-2862-4206-91B4-6525DECA447C}C:\users\jesstan holland\appdata\local\discord\app-1.0.9013\discord.exe] => (Allow) C:\users\jesstan holland\appdata\local\discord\app-1.0.9013\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [UDP Query User{91AACCD6-854E-4ECA-A45D-4F8AD2AA2C26}C:\users\jesstan holland\appdata\local\discord\app-1.0.9013\discord.exe] => (Allow) C:\users\jesstan holland\appdata\local\discord\app-1.0.9013\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{1E869F93-5538-49EB-B1F0-7CD3B9ABD5C9}] => (Allow) D:\Overwolf\0.224.0.25\OverwolfBrowser.exe => No File
FirewallRules: [{8287FAF4-3E2A-4E04-A063-BFBD75B7B4BE}] => (Allow) D:\Overwolf\0.224.0.25\OverwolfBrowser.exe => No File
FirewallRules: [{862E50F2-5414-4BD7-935C-0A3DD872024B}] => (Block) D:\Overwolf\0.224.0.25\OverwolfBrowser.exe => No File
FirewallRules: [{E2CE2951-EA79-4CC7-BA7E-2C25FE3F8B4E}] => (Block) D:\Overwolf\0.224.0.25\OverwolfBrowser.exe => No File
FirewallRules: [{3A03A6E7-FB7D-4F14-9B83-A61AC89837BF}] => (Allow) D:\Overwolf\0.221.109.14\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{0502E98B-F9A9-44C1-8136-EE0FF45EA5FF}] => (Allow) D:\Overwolf\0.221.109.14\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{765D9E88-ECF4-429C-ADC1-FF95AAEA8B05}] => (Block) D:\Overwolf\0.221.109.14\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CFA1C920-17CD-401C-B507-C920C629F75C}] => (Block) D:\Overwolf\0.221.109.14\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{0B88EE71-A16F-4496-9326-16473BE6A407}] => (Allow) D:\Overwolf\0.226.0.38\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{C58A41FD-F56B-4B9E-93BA-C3294A320DD9}] => (Allow) D:\Overwolf\0.226.0.38\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{131F4213-4305-4FAF-9553-FC0640065395}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{314AA78E-4954-4335-833A-63EC84F3D717}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{D2ADA100-5ABE-495A-A20C-A1D2CE48CBCC}] => (Allow) C:\SteamLibrary\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [File not signed]
FirewallRules: [{2BD62C2F-94CB-41AF-92D5-5532D4363EA5}] => (Allow) C:\SteamLibrary\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [File not signed]
FirewallRules: [{071C55AC-5F0A-4A47-9CC3-98F3501720DB}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
27-06-2023 23:27:05 Installed Installer Assistant
04-07-2023 14:59:46 Removed Browser Extension
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/04/2023 05:54:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (07/04/2023 05:54:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (07/04/2023 02:55:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (07/04/2023 02:55:23 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (07/04/2023 02:43:04 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (07/04/2023 12:04:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TQMCenter_64.exe, version: 1.1.0.1, time stamp: 0x5ffff9bc
Faulting module name: ntdll.dll, version: 10.0.19041.3086, time stamp: 0x6349a4f2
Exception code: 0xc0000374
Fault offset: 0x00000000000ff4c9
Faulting process id: 0x4708
Faulting application start time: 0x01d9ae268b872837
Faulting application path: D:\New folder\steamapps\common\Ring of Elysium\XVersion\tqm64\TQMCenter_64.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: 10fcb85c-2173-4bec-a786-410d7cb5e089
Faulting package full name:
Faulting package-relative application ID:
Error: (06/29/2023 04:18:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program eu4.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 2e4c
Start Time: 01d9aacd1fdcf8c2
Termination Time: 4294967295
Application Path: C:\SteamLibrary\steamapps\common\Europa Universalis IV\eu4.exe
Report Id: 93944a45-05e4-4e2a-b5c8-3f1030b931fc
Faulting package full name:
Faulting package-relative application ID:
Hang type: Top level window is idle
Error: (06/29/2023 04:04:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program eu4.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 21ec
Start Time: 01d9aacbe39d14dc
Termination Time: 4294967295
Application Path: C:\SteamLibrary\steamapps\common\Europa Universalis IV\eu4.exe
Report Id: db949e5b-2071-4d6d-9b56-9351ce11f7aa
Faulting package full name:
Faulting package-relative application ID:
Hang type: Cross-thread
System errors:
=============
Error: (07/04/2023 05:54:51 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: The BITS service failed to start. Error 2147500053.
Error: (07/04/2023 02:43:00 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {D4872B74-3AFC-47CD-B8A2-9E4F998539BC} did not register with DCOM within the required timeout.
Error: (07/04/2023 02:43:00 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {D4872B74-3AFC-47CD-B8A2-9E4F998539BC} did not register with DCOM within the required timeout.
Error: (07/04/2023 02:43:00 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {D4872B74-3AFC-47CD-B8A2-9E4F998539BC} did not register with DCOM within the required timeout.
Error: (07/04/2023 02:43:00 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JCJTEPB)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (07/04/2023 11:53:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA LocalSystem Container service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 6000 milliseconds: Restart the service.
Error: (07/04/2023 11:53:53 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The NVIDIA LocalSystem Container service terminated with the following error:
A generic command executable returned a result that indicates failure.
Error: (07/03/2023 01:58:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JCJTEPB)
Description: The server Windows.Media.Capture.Internal.AppCaptureShell did not register with DCOM within the required timeout.
Windows Defender:
================
Date: 2023-07-04 17:04:13
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-07-03 16:59:21
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-07-02 15:55:51
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-07-02 02:02:25
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-06-30 16:05:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2023-06-17 10:50:44
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.391.1697.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23050.3
Error code: 0x80240438
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2023-06-10 21:51:10
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80501102
Error description: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support.
Security intelligence Version: 1.391.1035.0;1.391.1035.0
Engine Version: 1.1.23050.3
Date: 2023-05-23 00:32:50
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80501102
Error description: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support.
Security intelligence Version: 1.389.2132.0;1.389.2132.0
Engine Version: 1.1.20300.3
CodeIntegrity:
===============
Date: 2023-07-04 17:04:13
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-11 00:02:03
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-05-23 18:34:36
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. F11 12/06/2019
Motherboard: Gigabyte Technology Co., Ltd. X570 GAMING X
Processor: AMD Ryzen 7 3700X 8-Core Processor
Percentage of memory in use: 41%
Total physical RAM: 16330.65 MB
Available physical RAM: 9578.55 MB
Total Virtual: 24522.65 MB
Available Virtual: 15476.06 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:930.81 GB) (Free:385.91 GB) (Model: WDS100T3X0C-00SJG0) NTFS
Drive d: (New Volume) (Fixed) (Total:1863 GB) (Free:111.74 GB) (Model: ST2000DM008-2FR102) NTFS
\\?\Volume{6ba89150-d9a0-4086-a525-9a4eb2e6a425}\ (Recovery) (Fixed) (Total:0.59 GB) (Free:0.15 GB) NTFS
\\?\Volume{06679805-a107-4eac-a5ff-d26b4ec9ed70}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==================== End of Addition.txt =======================