Possible Windows 10 Malware Infection

Hello,

I have been having some issues on my computer with a lot of my accounts being stolen, including my bank accounts and game service accounts. I have done everything I possibly can with Windows Security, which, while not being the best, should catch more obvious viruses. I haven't done anything with other antiviruses, mainly because of the possibility that the one I would choose to use is just a bogus program that does nothing and possibly can be a virus itself. I've noticed other issues than just emails from various companies about sign-in requests, but mainly just browser crashes. I don't know if that's because I primarily use Firefox, though. Regardless, whatever malware infected my PC has clearly accessed my saved browser passwords and sent them off somewhere to be used by people all over the world, and I would love nothing more than to make sure whatever malware is removed.

FRST.txt:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-08.2024
Ran by p (administrator) on DESKTOP-GN3POCI (09-08-2024 11:20:01)
Running from C:\Users\p\Downloads\FRST64.exe
Loaded Profiles: p
Platform: Microsoft Windows 10 Home Version 22H2 19045.4651 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\EPSON Software\PMA_A\PMAService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\PMA_A\PMA.exe
(C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe ->) (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe <2>
(C:\Program Files\LGHUB\lghub_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(explorer.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5587.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_47d3698a1c94c55a\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e709cb715c39d0e0\IntelCpHDCPSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_94b9135752f195c3\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\PMA_A\PMAService.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Skutta Software GmbH -> ) C:\Windows\SysWOW64\wallpaperservice32.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5587.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [367456 2024-04-22] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [109324536 2021-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [673608 2023-01-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [898888 2023-01-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [291080 2022-12-14] (Intel Corporation -> Intel)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-05-02] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2024-02-20] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\p\AppData\Local\Microsoft\Teams\Update.exe [2453704 2021-05-17] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1832968 2024-07-23] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13668840 2022-10-11] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [SignalRgb] => "C:\Users\p\AppData\Local\VortxEngine\SignalRgbLauncher.exe" --silent (No File)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46247680 2024-08-07] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [Gaijin.Net Updater] => C:\Users\p\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3036096 2023-10-12] (Gaijin Network LTD -> Gaijin)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-07-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919312 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [AltServer] => C:\Program Files (x86)\AltServer\AltServer.exe [2218496 2023-02-20] (AltStore LLC) [File not signed]
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [MicrosoftEdgeAutoLaunch_A304F8742E169929E19CE6C9614A1189] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3814968 2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\Microsoft.SharePoint.exe [1025552 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3380840 2024-07-30] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Run: [Discord] => C:\Users\p\AppData\Local\Discord\Update.exe [1526504 2024-08-05] (Discord Inc. -> GitHub)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2023-05-04] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON WF-3620 Series 64MonitorBE: C:\Windows\system32\E_YLMBKEE.DLL [187392 2018-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.100\Installer\chrmstp.exe [2024-08-08] (Google LLC -> Google LLC)
Startup: C:\Users\p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2024-08-03]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {743A2CB9-09F3-41CF-BF62-E2C2C6C9B00D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {8A5EB8EC-9DF2-45DC-B48A-277378DF8D47} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
Task: {90DD1F74-2FBD-4138-95A2-2B2AC6CA58C5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {5F647F5B-51E8-4A7D-B15C-AB95DB3AD8A8} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [309096 2023-03-13] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {60DB8D84-82BE-4783-8365-CA373F06D810} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1895784 2023-03-13] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {875CF564-0C60-4778-8DC5-7C36D51F27C0} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-05-30] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {9BDCD623-6DA7-4C4F-8445-BFB8AA671E43} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-05-30] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {8998C7CE-4AE8-4A20-907A-AF95CC898217} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {28B44312-223E-4842-9A0D-72A1F3924397} - System32\Tasks\EPSON WF-3620 Series Invitation {C907F769-FAB3-4D81-8129-F8D6E7DB8C31} => C:\Windows\System32\spool\drivers\x64\3\E_YTSKEE.EXE [679488 2013-02-27] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {101AA282-EE00-4C38-9113-59CA91518D13} - System32\Tasks\EPSON WF-3620 Series Invitation {D50E9493-4C26-4B61-82B9-AB37B0F82360} => C:\Windows\System32\spool\drivers\x64\3\E_YTSKEE.EXE [679488 2013-02-27] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {2CEAB715-C8E6-497E-BC12-5477C99EE069} - System32\Tasks\EPSON WF-3620 Series Update {C907F769-FAB3-4D81-8129-F8D6E7DB8C31} => C:\Windows\System32\spool\drivers\x64\3\E_YTSKEE.EXE [679488 2013-02-27] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {B0088DB5-6439-4401-8E2B-12D0C6A2A0DA} - System32\Tasks\EPSON WF-3620 Series Update {D50E9493-4C26-4B61-82B9-AB37B0F82360} => C:\Windows\System32\spool\drivers\x64\3\E_YTSKEE.EXE [679488 2013-02-27] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {DEDEB002-4D12-45CE-B841-7C1347E89E35} - System32\Tasks\Google Play Games Notifier => C:\Program Files\Google\Play Games\Bootstrapper.exe [372656 2024-07-01] (Google LLC -> Google LLC)
Task: {530F62A1-D18A-48DC-B985-B46F44926730} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{E4F749FC-CC17-4FCE-9E81-923B20B29054} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {DC30548D-16A5-401B-BDA6-EAC1382ADDCD} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4916640 2024-04-15] (Intel Corporation -> Intel Corporation)
Task: {0B1962E5-3259-4FAA-9F89-4338D93F9310} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4916640 2024-04-15] (Intel Corporation -> Intel Corporation)
Task: {FF2FF60A-8F14-4D23-83E0-41DDE2C3E900} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {6FFE0CD6-D5F7-4668-9E33-DC3015FFADAF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28584424 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1165068-1E0B-4E35-A1B3-307660452A92} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28584424 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {0C6489A4-4D1B-4ED0-B104-702EFC38CB16} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312288 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2E000D0-7CF7-48A0-AC67-53AD88A5C8E1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312288 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {27155F7B-6256-4934-967B-71A773FB215B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [182240 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {20314976-1B1C-43D8-BD87-4E45AC658DA4} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4465048 2024-07-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E26037E-874B-448A-B24F-20B483222D05} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E73B3C96-B822-4C31-997A-6A39DECABAF4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {56F76127-632C-4660-91DF-5A79CF983DCC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C0424CAD-3940-43C0-B365-D37E216A2406} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {51415D66-1D68-4324-8A9E-9BFE4592EF0E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {AB4ACDB2-3F93-456A-B24E-9B4E2C119A46} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-439056766-392687001-687573123-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {8E077AF3-CFC4-446D-B4BC-1227AE2F2628} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-08-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {8A2ED860-2F05-4FC1-97D4-6A6BF06A3DE1} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2021-09-08] () [File not signed]
Task: {26ECC2F1-2CC0-4312-888E-0FAB98638F63} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {BB24F7A1-202B-47C5-B92F-5C1855D6EAA1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7B11E28A-8AEA-4CEA-B628-71D54A5A4066} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A4195F4B-DB18-4694-B2C8-980A4E698C29} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {2524296E-4128-4C83-B40C-8B5A2D3D5C99} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A21757F2-DD19-4BB7-AA30-36DA31476A36} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {995DB711-B4DE-4E65-B292-26E17F605A64} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1AF74C88-FB38-4677-B80D-B31671A93797} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E734CA94-5A56-42FA-AFD0-44667CF4FB31} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6BD1EA4-C698-45E1-8DFF-43E091A90D05} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {68D6792B-30C5-49C7-809A-6CE08DB8700A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209072 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {36AD82DF-174B-475A-B0C0-0B51F2644518} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-439056766-392687001-687573123-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209072 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {1AC3DBD0-F101-4F9B-9765-134AF0A1E5B4} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2370056 2024-07-23] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule
Task: {58B5B388-646E-46C2-855A-853A7B148627} - System32\Tasks\PowerToys\Autorun for p => C:\Users\p\AppData\Local\PowerToys\PowerToys.exe [1195040 2024-07-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {570FB844-53BC-488F-B106-921401DA9A42} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [196608 2024-07-10] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {69627AF0-D3CF-4D2A-9488-50FFADEAA70E} - System32\Tasks\ViGEmBus_Updater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBus_Updater.exe -> C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\\/silent

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\EPSON WF-3620 Series Invitation {C907F769-FAB3-4D81-8129-F8D6E7DB8C31}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSKEE.EXE
Task: C:\Windows\Tasks\EPSON WF-3620 Series Invitation {D50E9493-4C26-4B61-82B9-AB37B0F82360}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSKEE.EXE
Task: C:\Windows\Tasks\EPSON WF-3620 Series Update {C907F769-FAB3-4D81-8129-F8D6E7DB8C31}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSKEE.EXE:/EXE:{C907F769-FAB3-4D81-8129-F8D6E7DB8C31} /F:UpdateWORKGROUP\DESKTOP-GN3POCI$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON WF-3620 Series Update {D50E9493-4C26-4B61-82B9-AB37B0F82360}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSKEE.EXE:/EXE:{D50E9493-4C26-4B61-82B9-AB37B0F82360} /F:UpdateWORKGROUP\DESKTOP-GN3POCI$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog9 15 C:\Windows\SysWOW64\vsocklib.dll [44128 2021-08-16] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9 16 C:\Windows\SysWOW64\vsocklib.dll [44128 2021-08-16] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog9-x64 15 C:\Windows\system32\vsocklib.dll [48224 2021-08-16] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9-x64 16 C:\Windows\system32\vsocklib.dll [48224 2021-08-16] (VMware, Inc. -> VMware, Inc.)
Tcpip\Parameters: [DhcpNameServer] 209.18.47.62 209.18.47.61 192.168.68.1
Tcpip\..\Interfaces\{2b6890ef-5f75-4dba-b9b1-d76bee27183c}: [DhcpNameServer] 209.18.47.62 209.18.47.61 192.168.68.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-25]
Edge Extension: (Google Docs Offline) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-29]
Edge Extension: (Edge relevant text changes) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Profile: C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2021-10-15]
Edge Profile: C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-12-19]
Edge Extension: (Pacman+ games) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bbgkehmnkogocffeplgkkaldbmaglcac [2021-09-28]
Edge Extension: (Norton Safe Web) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bdaafgjhhjkdplpffldcncdignokfkbo [2023-12-15]
Edge Extension: (Translator) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\cdkmohnpfdennnemmjekmmiibgfddako [2023-12-15]
Edge Extension: (Captain America Wallpaper HD Custom New Tab) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\cedcpiafbnkpedpphbmmfphpemimhhmn [2021-09-28]
Edge Extension: (AKColor) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\efeoiofidbaaelodnlphnagalplaligg [2021-09-28]
Edge Extension: (Meeting Scheduler) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gdndpilddmlahjjcfmknlmindbklnbel [2023-03-02]
Edge Extension: (Google Docs Offline) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-15]
Edge Extension: (Awesome ChatGPT Screenshot & Screen Recorder) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gpmljinohlbfgmeoaeceoajachkabijo [2023-12-15]
Edge Extension: (No Name) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\hokifickgkhplphjiodbggjmoafhignh [2023-12-15]
Edge Extension: (Tetris Game) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\iefpnmfngbceeldlcfmkancbginibhno [2021-09-28]
Edge Extension: (Edge relevant text changes) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-15]
Edge Extension: (Weather Forecast) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\kjdinijponjcepehoejigmpkppfocbnd [2021-09-28]
Edge Extension: (Classical Pac-Man Game) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\lhbhbmjkcaidjcamnbbjfejbehgmmpcm [2021-09-28]
Edge Extension: (Emoji Keyboard) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\migmbeklhhfnfklhpokmmdgnlgaglemk [2023-04-23]
Edge Extension: (AdBlock — best ad blocker) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-12-15]
Edge Extension: (Scratch 3 Developer Tools) - C:\Users\p\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\nfhcllbnpcpjggojjjliodclgjadggmj [2022-02-17]

FireFox:
========
FF DefaultProfile: 763nv7co.default
FF ProfilePath: C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\763nv7co.default [2023-08-20]
FF ProfilePath: C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release [2024-08-09]
FF Extension: (Tampermonkey) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\firefox@tampermonkey.net.xpi [2024-05-13]
FF Extension: (AdBlocker for YouTube™) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2024-07-30]
FF Extension: (Truffle) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\mogultv@mogultv.org.xpi [2024-05-25] [UpdateUrl:hxxps://v2.truffle.vip/firefox.json]
FF Extension: (Song id) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\song-id@losnappas.xpi [2023-10-07]
FF Extension: (uBlock Origin) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-07-31]
FF Extension: (Dark space - The best dynamic theme) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{22b0eca1-8c02-4c0d-a5d7-6604ddd9836e}.xpi [2024-01-25]
FF Extension: (ANIMATED Neutron Stars by candelora) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{2c216ba1-594a-4039-a389-b954f42ff809}.xpi [2023-06-07]
FF Extension: (YouTube Converter) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{47012250-db30-481b-9743-ee32fc5061a2}.xpi [2023-06-15]
FF Extension: (Corvimae's Better SRC) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{63556afe-e3fb-466b-8d1e-091198a81458}.xpi [2023-06-09]
FF Extension: (ColorZilla) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2024-04-25]
FF Extension: (NASA Dark) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{9437e0b3-ca8e-43f3-b935-e3da77a429bc}.xpi [2023-06-07]
FF Extension: (DarkTheme) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{99c277af-d778-4a0b-9faa-b1d8165f0a55}.xpi [2023-06-07]
FF Extension: (Colorful Abstract Neon) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{9fd56529-f621-4820-8128-f0bbbdbd8a73}.xpi [2023-07-02]
FF Extension: (Splatoon 2 Colours [Theme]) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{d6eb3386-e265-4e53-8cee-6c63097ce382}.xpi [2023-06-07]
FF Extension: (nasa) - C:\Users\p\AppData\Roaming\Mozilla\Firefox\Profiles\fqclte9l.default-release\Extensions\{e5a2244c-75c9-4d00-9243-cd8108414fe2}.xpi [2023-06-07]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2023-09-28] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-02-20] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2023-09-28] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-02-20] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\p\AppData\Local\Google\Chrome\User Data\Default [2024-07-06]
CHR Extension: (Rapid Font Finder) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\agmalodjnljmmplbmcpjnkpimfojbihl [2023-07-30]
CHR Extension: (CPS Test - Check Click Per Second) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\dphepiflcbpgcjldbomodjehkcgjebkp [2022-12-19]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-07-06]
CHR Extension: (Google Docs Offline) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-09]
CHR Extension: (AdBlock — block ads across the web) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-07-06]
CHR Extension: (Boxel Rebound) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\iginnfkhmmfhlkagcmpgofnjhanpmklb [2024-04-09]
CHR Extension: (Google Search Ad Remover) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgonjbhlkckplhddainicgmekfeckcnk [2024-07-06]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2024-06-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-18]
CHR Extension: (Flash Player for Chrome) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\oakbcaafbicdddpdlhbchhpblmhefngh [2024-02-08]
CHR Extension: (speedrun.com for chrome) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\omffjfmenhkgaongelcpainmkhmdajln [2024-03-10]
CHR Extension: (Typeracer Assistant) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdhpdibmmpabmojipngiikifminbkabf [2023-07-30]
CHR Extension: (Enhancer for YouTube™) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2024-06-15]
CHR HKU\S-1-5-21-439056766-392687001-687573123-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-03-30] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2022-02-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-05-30] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-05-30] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-07-21] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13995624 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [42248 2022-12-14] (Intel Corporation -> Intel)
S3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [207624 2022-12-14] (Intel Corporation -> Intel)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [16526440 2024-07-30] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-04-03] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2024-07-25] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-11-25] (Epic Games Inc. -> Epic Games, Inc.)
R2 Epson PMAService A; C:\Program Files (x86)\Epson Software\PMA_A\PMAService.exe [113144 2017-03-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [678328 2018-06-11] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncHelper.exe [3523088 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2131432 2022-10-11] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-10-11] (GOG Sp. z o.o. -> GOG.com)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11193088 2024-08-07] (Logitech Inc -> Logitech, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Muse Hub Background Service; C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe [188928 2023-06-06] (Musecy SM Ltd. -> Muse.Service)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.141.0714.0003\OneDriveUpdaterService.exe [3863568 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2370056 2024-07-23] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [6537200 2024-08-06] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3580352 2024-07-26] (Skutta Software GmbH -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10453576 2022-12-09] (PUBG CORPORATION -> KRAFTON, Inc)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_94b9135752f195c3\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_94b9135752f195c3\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [49256 2022-08-16] (ASUSTeK COMPUTER INC. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 HWiNFO_167; C:\Windows\system32\drivers\HWiNFO64A_167.SYS [57376 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> REALiX™)
R3 logi_audio_surround; C:\Windows\System32\DriverStore\FileRepository\logi_audio.inf_amd64_ef292d87e6baed60\logi_audio_surround.sys [44200 2024-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-10-31] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-10-31] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-10-31] (Logitech Inc -> Logitech)
R3 MpKsla9b06261; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4BAAD04A-D7D5-44D2-BE60-E37DA7A763F1}\MpKslDrv.sys [271640 2024-08-09] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R1 npcap; C:\Windows\system32\DRIVERS\npcap.sys [72792 2021-11-30] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [12128760 2024-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R2 SignalRgbDriver; C:\Windows\System32\Drivers\SignalRgbDriver.sys [25832 2023-01-02] (WHIRLWIND VIRTUAL REALITIES INC. -> )
R3 SteamStreamingMicrophone; C:\Windows\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\Windows\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 VBAudioVMAUXVAIOMME; C:\Windows\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2023-08-01] (Vincent Burel -> Windows ® Win 7 DDK provider)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [249400 2022-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
R1 vmkbd3; C:\Windows\system32\DRIVERS\vmkbd.sys [60344 2022-07-10] (VMware, Inc. -> VMware, Inc.)
R2 vmparport; C:\Windows\system32\DRIVERS\vmparport.sys [49112 2022-07-10] (VMware, Inc. -> VMware, Inc.)
R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [105912 2021-08-16] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
R2 WinRing0x64; C:\Windows\System32\Drivers\WinRing0x64.sys [14544 2023-01-02] (Noriyuki MIYAZAKI -> OpenLibSys.org)
U4 npcap_wifi; no ImagePath
S3 VBAudioVACMME; \SystemRoot\System32\drivers\vbaudio_cable64_win7.sys [X]
S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-08-09 11:20 - 2024-08-09 11:24 - 000049303 _____ C:\Users\p\Downloads\FRST.txt
2024-08-09 11:17 - 2024-08-09 11:23 - 000000000 ____D C:\FRST
2024-08-09 11:14 - 2024-08-09 11:14 - 002397184 _____ (Farbar) C:\Users\p\Downloads\FRST64.exe
2024-08-08 14:34 - 2024-08-08 14:34 - 115081216 _____ C:\Windows\system32\config\SOFTWARE
2024-08-08 10:43 - 2024-08-08 10:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-08-08 10:43 - 2024-08-08 10:43 - 000000000 ____D C:\Program Files\LGHUB
2024-08-07 11:28 - 2024-08-09 10:44 - 000000000 ____D C:\Users\p\AppData\Local\Discord
2024-08-07 11:27 - 2024-08-07 11:27 - 114443544 _____ (Discord Inc.) C:\Users\p\Downloads\DiscordSetup(1).exe
2024-08-06 19:33 - 2024-08-06 19:33 - 000197876 _____ C:\Users\p\Downloads\fabric-installer-1.0.1(2).jar
2024-08-06 12:20 - 2024-08-08 10:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-08-03 22:02 - 2024-08-03 22:02 - 000000000 ____D C:\Users\p\AppData\Roaming\Microsoft\OneNote
2024-08-02 12:28 - 2024-08-02 12:28 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-08-02 12:27 - 2024-08-02 12:27 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes (Preview).lnk
2024-07-31 11:23 - 2024-07-31 11:23 - 000000000 ____D C:\Users\p\AppData\Local\FPSChess
2024-07-31 11:04 - 2024-08-09 10:42 - 000000000 ____D C:\Windows\system32\Tasks\PowerToys
2024-07-31 11:04 - 2024-07-31 11:04 - 000000000 ____D C:\Users\p\Documents\PowerShell
2024-07-31 11:04 - 2024-07-31 11:04 - 000000000 ____D C:\Users\p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2024-07-31 10:49 - 2024-07-31 10:49 - 000000000 ____D C:\Users\p\AppData\Local\EALaunchHelper
2024-07-30 15:15 - 2024-07-30 15:15 - 000000000 ____D C:\Users\p\AppData\Local\EADesktop
2024-07-30 15:14 - 2024-07-30 17:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2024-07-30 15:14 - 2024-07-30 17:30 - 000000000 ____D C:\ProgramData\EA Desktop
2024-07-30 15:14 - 2024-07-30 15:14 - 000000000 ____D C:\Users\p\AppData\Local\Electronic Arts
2024-07-30 15:00 - 2024-07-30 15:00 - 000000000 ___HD C:\$SysReset
2024-07-29 10:29 - 2024-07-29 10:29 - 000000000 ____D C:\Users\p\Downloads\voxel-model-master
2024-07-29 09:52 - 2024-07-29 09:53 - 150068371 _____ C:\Users\p\Downloads\voxel-model-master.zip
2024-07-29 09:47 - 2024-07-29 09:47 - 003713380 _____ C:\Users\p\Downloads\MagicaVoxel-Viewer.zip
2024-07-29 09:47 - 2024-07-29 09:47 - 000000000 ____D C:\Users\p\Downloads\MagicaVoxel-Viewer
2024-07-29 09:42 - 2024-07-29 09:42 - 000000000 ____D C:\Users\p\Downloads\plugin-intel-denoiser-win64-1.2.0
2024-07-29 09:41 - 2024-07-29 09:41 - 038913218 _____ C:\Users\p\Downloads\plugin-intel-denoiser-win64-1.2.0.zip
2024-07-28 21:55 - 2024-07-29 09:46 - 000001249 _____ C:\Users\p\Desktop\MagicaVoxel.lnk
2024-07-27 16:25 - 2024-07-27 16:25 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:25 - 2024-07-27 16:25 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:25 - 2024-07-27 16:25 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:25 - 2024-07-27 16:25 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:25 - 2024-07-27 16:25 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:25 - 2024-07-27 16:25 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:25 - 2024-07-27 16:25 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:25 - 2024-07-27 16:25 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:25 - 2024-07-27 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-07-27 16:25 - 2021-03-11 01:15 - 002797808 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-07-27 16:25 - 2021-03-11 01:15 - 002154224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-07-27 16:25 - 2021-03-11 01:15 - 001295088 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2024-07-27 16:24 - 2024-07-27 16:24 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:24 - 2024-07-27 16:24 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-27 16:24 - 2021-03-11 01:15 - 000169272 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2024-07-27 16:24 - 2021-03-11 01:15 - 000145208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2024-07-27 16:23 - 2021-03-11 01:15 - 000135408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2024-07-27 16:23 - 2021-03-11 01:15 - 000069840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-07-27 16:23 - 2021-03-11 01:15 - 000067456 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2024-07-27 16:23 - 2021-03-11 01:15 - 000050592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys
2024-07-27 10:51 - 2024-07-27 10:58 - 000000000 ___HD C:\$WinREAgent
2024-07-26 18:51 - 2024-07-28 21:55 - 000000000 ____D C:\Users\p\AppData\Local\NVIDIA
2024-07-26 18:32 - 2024-07-26 18:32 - 000000000 ____D C:\Windows\system32\lxss
2024-07-26 18:32 - 2024-07-26 18:32 - 000000000 ____D C:\Windows\LastGood.Tmp
2024-07-26 18:32 - 2024-07-26 18:32 - 000000000 ____D C:\Users\p\AppData\LocalLow\NVIDIA
2024-07-26 18:28 - 2024-07-11 15:32 - 002040576 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-07-26 18:28 - 2024-07-11 15:32 - 002040576 _____ C:\Windows\system32\vulkaninfo.exe
2024-07-26 18:28 - 2024-07-11 15:32 - 001583872 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-07-26 18:28 - 2024-07-11 15:32 - 001583872 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-07-26 18:28 - 2024-07-11 15:32 - 001446656 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-07-26 18:28 - 2024-07-11 15:32 - 001446656 _____ C:\Windows\system32\vulkan-1.dll
2024-07-26 18:28 - 2024-07-11 15:32 - 001296640 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-07-26 18:28 - 2024-07-11 15:32 - 001296640 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-07-26 18:28 - 2024-07-11 15:32 - 000477704 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-07-26 18:28 - 2024-07-11 15:32 - 000374288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-07-26 18:28 - 2024-07-11 15:27 - 005910664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-07-26 18:28 - 2024-07-11 15:27 - 005349408 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-07-26 18:22 - 2024-07-26 18:26 - 729211952 _____ (NVIDIA Corporation) C:\Users\p\Downloads\560.70-desktop-win10-win11-64bit-international-dch-whql.exe
2024-07-26 17:33 - 2024-07-26 17:33 - 000000000 ____D C:\Users\p\AppData\Roaming\NVIDIA
2024-07-26 10:33 - 2024-07-26 10:03 - 000243136 _____ C:\Windows\SysWOW64\wpxscreensaver64.scr
2024-07-26 10:33 - 2024-07-26 10:03 - 000129472 _____ C:\Windows\SysWOW64\wallpaperservice32.exe
2024-07-24 21:36 - 2024-07-24 21:36 - 000000000 ____D C:\Users\p\ansel
2024-07-24 21:36 - 2021-03-11 01:15 - 000070896 _____ C:\Windows\system32\FvSDK_x64.dll
2024-07-24 21:36 - 2021-03-11 01:15 - 000059632 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2024-07-24 21:35 - 2024-08-09 10:47 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-24 21:35 - 2024-07-27 16:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-07-24 21:35 - 2024-07-27 16:24 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2024-07-24 21:35 - 2024-07-24 21:35 - 000000000 ____D C:\Windows\SysWOW64\NV
2024-07-24 21:35 - 2024-07-24 21:35 - 000000000 ____D C:\Windows\system32\NV
2024-07-24 21:33 - 2021-03-11 01:15 - 000038640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2024-07-24 21:32 - 2024-07-27 16:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-07-24 21:32 - 2021-03-13 00:02 - 000612144 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-07-24 21:31 - 2021-03-13 00:02 - 001511216 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-07-24 21:31 - 2021-03-13 00:02 - 001163536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-07-24 21:31 - 2021-03-13 00:02 - 000687888 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-07-24 21:31 - 2021-03-13 00:02 - 000678704 _____ C:\Windows\system32\nvofapi64.dll
2024-07-24 21:31 - 2021-03-13 00:02 - 000671512 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2024-07-24 21:31 - 2021-03-13 00:02 - 000556848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2024-07-24 21:31 - 2021-03-13 00:02 - 000546096 _____ C:\Windows\SysWOW64\nvofapi.dll
2024-07-24 21:31 - 2021-03-13 00:01 - 002102560 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-07-24 21:31 - 2021-03-13 00:01 - 001587488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-07-24 21:31 - 2021-03-13 00:01 - 000811808 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-07-24 21:31 - 2021-03-13 00:01 - 000655648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-07-24 21:31 - 2021-03-13 00:00 - 008306456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-07-24 21:31 - 2021-03-13 00:00 - 007429904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-07-24 21:31 - 2021-03-13 00:00 - 004610320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-07-24 21:31 - 2021-03-13 00:00 - 002729744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-07-24 21:31 - 2021-03-13 00:00 - 000445200 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-07-24 21:31 - 2021-03-12 23:59 - 000848656 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-07-24 21:31 - 2021-03-12 23:57 - 007119848 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-07-24 21:31 - 2021-03-12 23:57 - 006075480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-07-24 21:31 - 2021-03-11 01:15 - 000084450 _____ C:\Windows\system32\nvinfo.pb
2024-07-24 21:29 - 2024-07-24 21:31 - 661682264 _____ (NVIDIA Corporation) C:\Users\p\Downloads\461.92-desktop-win10-64bit-international-dch-whql.exe
2024-07-16 16:30 - 2024-07-16 16:30 - 002412859 _____ C:\Users\p\Downloads\permission_slips.pdf
2024-07-10 13:49 - 2024-07-10 13:49 - 000108822 _____ C:\Users\p\Downloads\Nathaniel_Arnow_(20376225)__07_02_2024_(Regular)_-_Complete.pdf
2024-07-10 10:00 - 2024-07-10 10:01 - 000000000 ____D C:\Windows\system32\compatrel
2024-07-10 09:49 - 2024-07-10 09:49 - 000021724 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-10 09:48 - 2024-07-10 09:48 - 000021724 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-08-09 11:19 - 2023-06-07 09:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-08-09 11:09 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-09 11:02 - 2021-05-25 19:15 - 000000000 ____D C:\Users\p\AppData\Roaming\discord
2024-08-09 10:50 - 2021-05-17 19:42 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-08 21:58 - 2023-02-20 15:26 - 000000000 ____D C:\Program Files (x86)\Steam
2024-08-08 21:15 - 2021-05-23 15:17 - 000000000 ____D C:\Users\p\AppData\Roaming\.minecraft
2024-08-08 16:47 - 2021-12-23 19:14 - 000000000 ____D C:\Windows\SystemTemp
2024-08-08 16:47 - 2021-05-18 11:33 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-08-08 14:56 - 2020-08-30 21:13 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-08-08 14:34 - 2023-05-30 21:09 - 000000000 ____D C:\Windows\Microsoft Antimalware
2024-08-08 10:46 - 2020-08-30 21:23 - 000845250 _____ C:\Windows\system32\PerfStringBackup.INI
2024-08-08 10:46 - 2019-12-07 05:13 - 000000000 ____D C:\Windows\INF
2024-08-08 10:45 - 2023-09-01 21:24 - 000000000 ____D C:\Users\p\AppData\Roaming\G HUB
2024-08-08 10:44 - 2023-01-03 11:39 - 000000000 ____D C:\Users\p\AppData\Local\LGHUB
2024-08-08 10:36 - 2021-05-17 19:46 - 000000000 ____D C:\Intel
2024-08-08 10:36 - 2020-08-30 21:14 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-08-08 10:35 - 2023-11-05 19:25 - 000001134 _____ C:\Windows\system32\config\VSMIDK
2024-08-08 10:35 - 2023-06-07 09:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-08-08 10:35 - 2020-08-30 21:13 - 000008192 ___SH C:\DumpStack.log.tmp
2024-08-08 10:33 - 2022-05-14 11:18 - 000001425 _____ C:\Windows\system32\default_error_stack-000000-000000.txt
2024-08-08 10:33 - 2019-12-07 05:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-08-08 09:29 - 2020-08-30 21:14 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-08-08 04:27 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-08-08 04:27 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\AppReadiness
2024-08-07 11:28 - 2023-02-03 19:06 - 000000000 ___RD C:\Users\p\Desktop\
2024-08-07 11:28 - 2021-06-18 17:48 - 000000000 ____D C:\Users\p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2024-08-07 11:28 - 2021-05-17 18:53 - 000000000 ____D C:\Users\p\AppData\Local\D3DSCache
2024-08-07 11:28 - 2021-05-17 18:51 - 000000000 ____D C:\Users\p\AppData\Local\SquirrelTemp
2024-08-06 15:53 - 2023-06-07 12:02 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-08-06 15:52 - 2023-06-07 12:01 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2024-08-06 15:52 - 2023-06-07 12:01 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-08-06 13:37 - 2024-05-03 19:08 - 000000000 ____D C:\Program Files\Rockstar Games
2024-08-06 13:37 - 2024-05-03 19:08 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2024-08-06 13:15 - 2023-11-22 12:03 - 000000000 ____D C:\Users\p\AppData\Local\DiscordPTB
2024-08-06 12:26 - 2023-06-07 09:15 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-08-06 12:26 - 2023-06-07 09:15 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-08-05 21:27 - 2021-09-11 14:24 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-08-03 21:42 - 2023-07-21 17:13 - 000000000 ____D C:\Users\p\AppData\Roaming\Dukharo Driver
2024-08-03 21:34 - 2021-10-09 10:53 - 000000000 ____D C:\Users\p\AppData\Roaming\EasyAntiCheat
2024-08-02 20:05 - 2021-11-14 15:45 - 000000000 ____D C:\Users\p\AppData\Local\CrashDumps
2024-08-02 17:04 - 2021-12-12 12:28 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-439056766-392687001-687573123-1001
2024-08-02 17:04 - 2021-05-17 20:02 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-08-02 17:04 - 2021-05-17 20:02 - 000002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-02 12:27 - 2021-05-17 19:55 - 000000000 ____D C:\Program Files\Microsoft Office
2024-08-01 19:34 - 2021-07-11 12:07 - 000000000 ____D C:\Users\p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2024-08-01 11:31 - 2024-02-16 21:43 - 000267776 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy_4.dll
2024-08-01 11:31 - 2022-10-31 10:14 - 000108024 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2024-08-01 11:31 - 2022-10-31 10:14 - 000075368 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2024-08-01 11:31 - 2021-11-19 20:15 - 002799096 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2024-08-01 11:31 - 2021-11-19 20:15 - 000755304 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2024-08-01 11:31 - 2021-11-19 20:15 - 000222712 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2024-08-01 11:31 - 2021-11-19 20:15 - 000206440 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2024-08-01 11:31 - 2021-11-19 20:15 - 000144888 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2024-07-31 21:43 - 2021-07-11 13:58 - 000000000 ____D C:\Users\p\AppData\LocalLow\Unity
2024-07-31 11:04 - 2023-06-02 14:10 - 000000000 ____D C:\Users\p\AppData\Local\Package Cache
2024-07-31 11:03 - 2023-06-02 14:10 - 000000000 ____D C:\Users\p\AppData\Local\PowerToys
2024-07-30 16:20 - 2024-02-25 11:20 - 000000000 ____D C:\Users\p\Documents\DRLSim
2024-07-30 15:14 - 2023-12-09 20:11 - 000000000 ____D C:\Program Files\Electronic Arts
2024-07-30 15:14 - 2021-05-23 14:25 - 000000000 ____D C:\ProgramData\Package Cache
2024-07-30 13:13 - 2022-02-24 08:24 - 000000000 ____D C:\Users\p\AppData\Local\Steam
2024-07-30 12:00 - 2021-05-17 19:46 - 000000000 __SHD C:\Users\p\IntelGraphicsProfiles
2024-07-29 14:23 - 2021-06-18 16:42 - 000000000 ____D C:\Users\p\AppData\Local\jjsploitv5-updater
2024-07-28 22:02 - 2023-02-13 19:06 - 000000000 ____D C:\Users\p\Documents\other
2024-07-28 10:24 - 2021-10-04 16:36 - 000000000 ____D C:\Users\p\AppData\Local\NVIDIA Corporation
2024-07-28 10:24 - 2021-05-17 19:41 - 000003536 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-28 10:24 - 2021-05-17 19:41 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-27 16:27 - 2023-07-21 20:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-07-26 17:19 - 2023-01-03 11:48 - 000000000 ____D C:\Users\p\AppData\Roaming\LGHUB
2024-07-26 16:16 - 2022-02-10 20:54 - 000000000 ____D C:\Program Files (x86)\Overwolf
2024-07-25 13:37 - 2021-06-16 17:16 - 000000000 ____D C:\Users\p\AppData\Local\UnrealEngine
2024-07-25 13:36 - 2021-10-24 13:36 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2024-07-25 10:59 - 2021-10-04 16:44 - 000000000 ____D C:\Program Files\Epic Games
2024-07-25 10:55 - 2019-12-07 05:03 - 000000000 ____D C:\Windows\CbsTemp
2024-07-24 21:36 - 2020-08-30 21:22 - 000000000 ____D C:\Users\p
2024-07-24 21:35 - 2020-08-30 21:23 - 000000000 ____D C:\Users\p\AppData\Local\Packages
2024-07-24 21:35 - 2020-08-30 21:23 - 000000000 ____D C:\ProgramData\Packages
2024-07-16 16:53 - 2021-05-18 17:36 - 000000000 ____D C:\Users\p\AppData\Roaming\Epson
2024-07-16 16:53 - 2021-05-18 17:35 - 000000000 ____D C:\ProgramData\EPSON
2024-07-16 16:43 - 2021-05-18 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2024-07-10 10:05 - 2020-08-30 21:13 - 000449784 _____ C:\Windows\system32\FNTCACHE.DAT
2024-07-10 10:04 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\ServiceState
2024-07-10 10:01 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-07-10 10:01 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\SystemResources
2024-07-10 10:01 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-07-10 10:01 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\system32\setup
2024-07-10 10:01 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-07-10 10:01 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\system32\oobe
2024-07-10 10:01 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\system32\Dism
2024-07-10 10:00 - 2023-12-14 22:00 - 000000000 ____D C:\Windows\InboxApps
2024-07-10 10:00 - 2019-12-07 05:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-07-10 10:00 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-07-10 10:00 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-07-10 10:00 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\ShellComponents
2024-07-10 10:00 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-07-10 10:00 - 2019-12-07 05:14 - 000000000 ____D C:\Windows\bcastdvr
2024-07-10 09:48 - 2020-08-30 21:16 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-07-10 08:48 - 2021-05-24 17:50 - 000000000 ____D C:\Windows\system32\MRT
2024-07-10 08:36 - 2021-05-24 17:50 - 194135240 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Files in the root of some directories ========

2022-09-05 14:30 - 2022-09-05 14:30 - 001106998 _____ (SQLite Development Team) C:\ProgramData\sqlite3.dll
2024-06-04 19:33 - 2024-06-04 19:33 - 000000372 _____ () C:\ProgramData\temp_Delete.bat
2024-06-04 19:33 - 2024-06-04 19:33 - 000000096 _____ () C:\ProgramData\temp_runbat.vbs
2023-05-08 17:46 - 2023-05-08 17:46 - 000000068 _____ () C:\Users\p\AppData\Roaming\changzhi_leidian.data
2021-06-18 16:42 - 2022-08-27 11:49 - 000000423 _____ () C:\Users\p\AppData\Roaming\jjv5conf.json
2023-02-20 17:06 - 2023-03-07 20:17 - 000000256 _____ () C:\Users\p\AppData\Roaming\MelonLoader.Installer.cfg
2023-07-29 15:37 - 2024-02-28 23:41 - 000000015 _____ () C:\Users\p\AppData\Roaming\obs-virtualcam.txt
2023-08-01 20:04 - 2023-08-01 20:04 - 000046425 _____ () C:\Users\p\AppData\Roaming\VoiceMeeterBananaDefault.xml
2022-03-13 15:09 - 2024-06-24 17:14 - 000001536 _____ () C:\Users\p\AppData\Local\GfxMetrics.cfg
2023-10-08 12:15 - 2023-10-08 12:15 - 000007605 _____ () C:\Users\p\AppData\Local\Resmon.ResmonCfg
2022-05-07 17:09 - 2022-06-25 13:45 - 000017408 _____ () C:\Users\p\AppData\Local\WebpageIcons.db

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addition:txt:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-08.2024
Ran by p (09-08-2024 11:26:14)
Running from C:\Users\p\Downloads
Microsoft Windows 10 Home Version 22H2 19045.4651 (X64) (2020-08-31 01:19:14)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-439056766-392687001-687573123-500 - Administrator - Disabled)
chad (S-1-5-21-439056766-392687001-687573123-1003 - Limited - Disabled)
DefaultAccount (S-1-5-21-439056766-392687001-687573123-503 - Limited - Disabled)
Guest (S-1-5-21-439056766-392687001-687573123-501 - Limited - Disabled)
natea (S-1-5-21-439056766-392687001-687573123-1004 - Limited - Disabled)
p (S-1-5-21-439056766-392687001-687573123-1001 - Administrator - Enabled) => C:\Users\p
WDAGUtilityAccount (S-1-5-21-439056766-392687001-687573123-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (HKLM-x32\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 24.002.20991 - Adobe)
Adobe Animate 2023 (HKLM-x32\...\FLPR_23_0_2) (Version: 23.0.2 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.2.0.554 - Adobe Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Illustrator 2023 (HKLM-x32\...\ILST_27_9) (Version: 27.9 - Adobe Inc.)
Adobe InDesign 2023 (HKLM-x32\...\IDSN_18_5) (Version: 18.5 - Adobe Inc.)
Adobe Lightroom (HKLM-x32\...\LRCC_6_5) (Version: 6.5 - Adobe Inc.)
Adobe Media Encoder 2023 (HKLM-x32\...\AME_23_6) (Version: 23.6 - Adobe Inc.)
Adobe Photoshop 2024 (HKLM-x32\...\PHSP_25_0) (Version: 25.0.0.37 - Adobe Inc.)
Adobe Premiere Pro 2023 (HKLM-x32\...\PPRO_23_6) (Version: 23.6 - Adobe Inc.)
Adobe Premiere Rush (HKLM-x32\...\RUSH_2_9) (Version: 2.9 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AltServer (HKLM-x32\...\{619A4470-A1F7-4782-8C44-523980FAE4C2}) (Version: 1.6.1 - Riley Testut)
Apple Application Support (32-bit) (HKLM-x32\...\{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}) (Version: 8.7 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{75BEF7E8-4370-4D42-94F3-B5AA77057965}) (Version: 8.7 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{336D80E8-E773-4B6F-BCAB-D291F34A6685}) (Version: 17.5.0.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{49c4358d-054e-4cf1-9ec1-dca3487f304a}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.113 - ASUSTeK Computer Inc.) Hidden
Audacity 3.5.1 (HKLM\...\Audacity_is1) (Version: 3.5.1 - Audacity Team)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Core Epic (HKLM\...\{B51E6DE5-9A25-47E6-9806-24B4C62D42A6}) (Version: 1.3.1.0 - Manticore Games)
Core Epic Installer (HKLM-x32\...\{531451dd-91d4-4b27-a171-1b9c7f325969}) (Version: 1.3.0.0 - Manticore Games) Hidden
CurseForge (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.239.3.1 - Overwolf app)
Deathcounter and Soundboard (HKLM-x32\...\DCSB) (Version: 4.0.0.9 - Kalejin)
Discord (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Discord) (Version: 1.0.9157 - Discord Inc.)
DJI Flight Simulator 2.2.0.0 (HKLM-x32\...\DJI Flight Simulator) (Version: 2.2.0.0 - DJI)
DMG Extractor (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\DMG Extractor) (Version: 1.3.20.6 - Reincubate Software Ltd)
Dukharo Driver 1.0.0 (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\91865116-95aa-500b-9677-45bedc984dcb) (Version: 1.0.0 - rongyuan)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.262.0.5775 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{ca963244-24a3-43c7-aaab-e80951403bd4}) (Version: 13.262.0.5775 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{209F4B4B-3DF2-4825-9906-D4D6A80EC09E}) (Version: 1.3.0.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.6 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 4.00.00 - Seiko Epson Corporation)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - Seiko Epson Corporation)
Epson ReadyInk Agent (A) (HKLM-x32\...\{A9B4584F-A29E-4880-97E6-1744B4AF2AF8}) (Version: 1.0.4.0 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 2.30.00 - SEIKO EPSON Corp.)
EPSON Scan PDF Extensions (HKLM-x32\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.0001 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM-x32\...\{711E8536-AB71-4455-A6C4-357FDBBEBF91}) (Version: 4.6.7 - Seiko Epson Corporation)
EPSON WF-3620 Series Printer Uninstall (HKLM\...\EPSON WF-3620 Series) (Version: - SEIKO EPSON Corporation)
Epson WF-3620 User’s Guide version 1.0 (HKLM-x32\...\UsersGuideEpson WF-3620 User’s Guide_is1) (Version: 1.0 - )
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Gling 1.6.3 (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\4e791780-9705-515f-9930-562f9a2a46fb) (Version: 1.6.3 - Gling)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.100 - Google LLC)
Google Play Games beta (HKLM\...\GooglePlayGames) (Version: 24.6.755.3 - Google LLC)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
Intel Driver && Support Assistant (HKLM-x32\...\{E4EC6B50-5A65-41DD-AC35-E1839BF685E8}) (Version: 22.8.50.7 - Intel) Hidden
Intel® Computing Improvement Program (HKLM\...\{2D924248-D4EE-45BA-BDDB-1FA8828CF5CA}) (Version: 2.4.10852 - Intel Corporation)
Intel® Graphics Driver Software (HKLM-x32\...\{34663e82-6c5e-4b48-b1b1-fee1881dc39b}) (Version: 3.11.1.0 - Intel) Hidden
Intel® Graphics Driver Software (HKLM-x32\...\{b67002e1-a877-4be9-af96-6f8867bc5b12}) (Version: 3.11.1.0 - Intel) Hidden
Intel® Driver & Support Assistant (HKLM-x32\...\{ff7ef6db-5d66-4ebe-827f-09d6cea8ee1e}) (Version: 22.8.50.7 - Intel)
iPod Support (HKLM\...\{DEC0F5DF-216B-4D66-B3DD-B1BDDC7A5BF8}) (Version: 12.11.3.7 - Apple Inc.)
iTunes (HKLM\...\{F741FD08-15DA-4153-941C-CB03656C8AAD}) (Version: 12.13.2.3 - Apple Inc.)
Java 8 Update 311 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lively Wallpaper version 2.0.6.0 (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\{E3E43E1B-DEC8-44BF-84A6-243DBA3F2CB1}}_is1) (Version: 2.0.6.0 - rocksdanister)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2024.6.600476 - Logitech)
Logitech Unifying Software 2.52 (HKLM\...\Logitech Unifying) (Version: 2.52.33 - Logitech)
MCreator 2021.3 (HKLM-x32\...\MCreator) (Version: 2021.3.53117 - Pylo)
Microsoft .NET Core Host - 3.1.28 (x64) (HKLM\...\{26ECE92F-518E-40AF-9108-7B7B444A46DE}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.28 (x64) (HKLM\...\{CDEA72F4-1367-4E0A-AC5F-0EBAF7C6825A}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM\...\{3691148D-EF42-4812-8956-AE11FC413B8D}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM-x32\...\{231e3b76-4d0f-4e60-9d69-f11c9c448630}) (Version: 3.1.28.31513 - Microsoft Corporation)
Microsoft .NET Host - 6.0.12 (x64) (HKLM\...\{E215AA9E-5DF2-44BC-9D6F-E1A1B0C348FB}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Host - 7.0.3 (x86) (HKLM-x32\...\{32B0A87E-7D42-4C57-880E-74E8618B3F67}) (Version: 56.15.55162 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.1 (x64) (HKLM\...\{CF9AD294-8156-4084-A5CC-839970BA09FE}) (Version: 64.4.5793 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.12 (x64) (HKLM\...\{0712F23C-FBAC-436C-9DDB-125F32D15033}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.9 (x64) (HKLM\...\{FD10B803-97FD-4867-9753-8784BC35D2F8}) (Version: 48.39.47157 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 7.0.3 (x86) (HKLM-x32\...\{BB03DB96-5698-4533-80D4-5C0AF7277073}) (Version: 56.15.55162 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.1 (x64) (HKLM\...\{9B3DED90-F398-457A-9F6C-855A543FEC5C}) (Version: 64.4.5793 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.12 (x64) (HKLM\...\{1BF67DC1-8BB5-4AF5-BE20-3B53D9532D01}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.12 (x64) (HKLM-x32\...\{35588924-6b2a-48cd-a3ee-b9118cad2d01}) (Version: 6.0.12.31918 - Microsoft Corporation)
Microsoft .NET Runtime - 6.0.9 (x64) (HKLM\...\{0B4F742D-2D47-4E95-B756-402822D31C48}) (Version: 48.39.47157 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 7.0.3 (x86) (HKLM-x32\...\{F2A02615-10E6-48B3-99A7-D75A26368E3C}) (Version: 56.15.55162 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.1 (x64) (HKLM\...\{16FC6669-9194-4096-8BDA-68907224C20B}) (Version: 64.4.5793 - Microsoft Corporation) Hidden
Microsoft 365 Apps for enterprise - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.17830.20138 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.98 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 126.0.2592.113 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.141.0714.0003 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\Teams) (Version: 1.4.00.7174 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.90.2 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.9 (x64) (HKLM\...\{C1CD2FC1-92E6-4DE2-89D8-6D309881856F}) (Version: 48.39.47171 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.9 (x64) (HKLM-x32\...\{569b351b-451b-48db-a2c7-7beb63411666}) (Version: 6.0.9.31620 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 7.0.3 (x86) (HKLM-x32\...\{67194A35-F76A-4E14-9704-ECCD6B4326BC}) (Version: 56.15.55219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 7.0.3 (x86) (HKLM-x32\...\{fb2a04f5-0485-4389-92b0-58b42022183d}) (Version: 7.0.3.32123 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.1 (x64) (HKLM\...\{A46C65AB-B1B1-427F-87D5-1B8F22ACEC50}) (Version: 64.4.5797 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.1 (x64) (HKLM-x32\...\{00014ed4-9aa3-44e4-a302-219ba1ac036e}) (Version: 8.0.1.33130 - Microsoft Corporation)
MidiEditor (HKLM-x32\...\D4338446-FFE6-1A12-ACFF-CB6F6A6A70A1) (Version: 3.3.0 - Markus Schwenk)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 129.0 (x64 en-US)) (Version: 129.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 114.0 - Mozilla)
MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD)
MuseScore 4 (HKLM\...\{85631FCF-88DD-42FD-8E2D-0A5F82CF631E}) (Version: 4.0.2.230651553 - MuseScore BVBA and Others)
Ninja Kiwi Archive 1.1.0 (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\b834e0c7-020c-52ca-b626-d307c31fbc58) (Version: 1.1.0 - Ninja Kiwi)
Npcap (HKLM-x32\...\NpcapInst) (Version: 1.60 - Nmap Project)
NVIDIA FrameView SDK 1.1.4923.29548709 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29548709 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.21.0.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.21.0.36 - NVIDIA Corporation)
NVIDIA Graphics Driver 461.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.92 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.1.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17830.20138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17830.20138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.256.0.2 - Overwolf Ltd.)
PicaSim (HKLM-x32\...\PicaSim_is1) (Version: - )
PowerToys (Preview) (HKLM\...\{5CA9E191-37EF-4DC4-BA01-87E0E73B035B}) (Version: 0.83.0 - Microsoft Corporation) Hidden
PowerToys (Preview) x64 (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\{66f7ac75-8d7e-47c2-8be6-845bea14b829}) (Version: 0.83.0 - Microsoft Corporation)
Project64 version 3.0.1.5664 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 3.0.1.5664 - )
QuestPatcher version 2.4.4 (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\{B122E38F-D907-4F41-ADDB-751FE07ADAFF}_is1) (Version: 2.4.4 - Lauriethefish#6700)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.)
RetroArch (HKLM-x32\...\RetroArch) (Version: 1.16.0.0 - Libretro)
Roblox Player for p (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for p (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\roblox-studio) (Version: - Roblox Corporation)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.93.2040 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.3.5 - Rockstar Games)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.5.0 - ASUSTek COMPUTER INC.)
SideQuest 0.10.33 (HKU\S-1-5-21-439056766-392687001-687573123-1001\...\4924ec51-3e48-5cb7-b145-2119467094c7) (Version: 0.10.33 - Shane Harris)
STAR WARS™ Battlefront™ (HKLM-x32\...\{E402D891-4E45-4ce9-B41F-DD35864EF170}) (Version: 1.0.7.64833 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.7174 - Microsoft Corporation)
TI Connect CE (HKLM\...\{3D300CD4-F462-46C3-AC8F-0F980FA23729}) (Version: 6.0.0.2688 - Texas Instruments Inc.)
TP-Link Archer T2U Plus Driver (HKLM-x32\...\{D646A985-33A6-4D98-973F-44CC267BD834}) (Version: 2.1.0 - TP-Link)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 136.0.10773 - Ubisoft)
UE Prerequisites (x64) (HKLM\...\{E171B21A-DA58-432D-A74B-D13B204BA477}) (Version: 1.0.16.0 - Epic Games, Inc.) Hidden
UE Prerequisites (x64) (HKLM-x32\...\{aad8a4b2-74da-409d-abb6-79a299008692}) (Version: 1.0.16.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
ViGEm Bus Driver (HKLM\...\{9C581C76-2D68-40F8-AA6F-94D3C5215C05}) (Version: 1.21.442 - Nefarius Software Solutions e.U.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)

Packages:
=========

Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2023-06-08] (Adobe Systems Incorporated)
Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC [2024-06-15] ()
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2023-05-02] (Adobe Systems Incorporated)
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5587.0_x64__8j3eq9eme6ctt [2024-08-05] (INTEL CORP) [Startup Task]
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe [2023-12-12] (Microsoft) [Startup Task]
Minecraft Education -> C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.300.0_x64__8wekyb3d8bbwe [2024-07-26] (Microsoft Studios)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.202.0_x64__8wekyb3d8bbwe [2024-07-10] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.11.6.0_x64__8wekyb3d8bbwe [2024-08-07] (Microsoft Studios)
Muse Hub -> C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6 [2023-06-16] (Muse) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-07-26] (NVIDIA Corp.)
PDP Control Hub -> C:\Program Files\WindowsApps\PerformanceDesignedProduc.PDPControlHub_1.3.2.0_x64__xgavg6chk0qcj [2024-07-26] (Performance Designed Products LLC)
Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-01-16] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-29] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0 [2024-08-04] (Spotify AB) [Startup Task]
Web Search from Microsoft Bing -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-26] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{04271989-C4D2-A2EA-FD84-6F3708A21F59} -> [OneDrive - Dayton Regional STEM School] => C:\Users\p\OneDrive - Dayton Regional STEM School [2021-10-31 16:55]
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{0440049F-D1DC-4E46-B27B-98393D79486B}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\WinUI3Apps\PowerToys.PowerRenameExt.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-84B5A1A554FC} -> [Creative Cloud Files] => C:\Users\p\Creative Cloud Files [2023-05-02 18:51]
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{10144713-1526-46C9-88DA-1FB52807A9FF}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.SvgThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\p\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20339.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{51B4D7E5-7568-4234-B4BB-47FB3C016A69}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.ImageResizerExt.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{60789D87-9C3C-44AF-B18C-3DE2C2820ED3}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.MarkdownPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{60aa42d5-2ac6-214e-efc7-0536e7bdb3e7}\localserver32 -> "C:\Users\p\AppData\Local\PowerToys\modules\launcher\PowerToys.PowerLauncher.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{6a27a1a9-7be8-1491-04ca-ee68a211c258}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{729B72CD-B72E-4FE9-BCBF-E954B33FE699}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.QoiPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{77257004-6F25-4521-B602-50ECC6EC62A6}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.StlThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{84D68575-E186-46AD-B0CB-BAEB45EE29C0}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\WinUI3Apps\PowerToys.FileLocksmithExt.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> "C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{A0257634-8812-4CE8-AF11-FA69ACAEAFAE}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.GcodePreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{a826e999-6325-bf60-6e66-4f911f6d7620}\localserver32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.PowerLauncher.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{AD856B15-D25E-4008-AFB7-AFAA55586188}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.QoiThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{D8034CFA-F34B-41FE-AD45-62FCBB52A6DA}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.MonacoPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{DD5CACDA-7C2E-4997-A62A-04A597B58F76}\localserver32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{F2847CBE-CD03-4C83-A359-1A8052C1B9D5}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.GcodeThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-439056766-392687001-687573123-1001_Classes\CLSID\{FCDD4EED-41AA-492F-8A84-31A1546226E0}\InprocServer32 -> C:\Users\p\AppData\Local\PowerToys\PowerToys.SvgPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-02-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-02-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-02-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers-x32: [    OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-02-20] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-03-26] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Player\vmdkShellExt.dll [2022-07-10] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Player\x64\vmdkShellExt64.dll [2022-07-10] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.141.0714.0003\FileSyncShell64.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_94b9135752f195c3\nvshext.dll [2021-03-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-02-20] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-03-26] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers2_S-1-5-21-439056766-392687001-687573123-1001: [FileLocksmithExt] -> {84D68575-E186-46AD-B0CB-BAEB45EE29C0} => C:\Users\p\AppData\Local\PowerToys\WinUI3Apps\PowerToys.FileLocksmithExt.dll [2024-07-30] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3_S-1-5-21-439056766-392687001-687573123-1001: [FileLocksmithExt] -> {84D68575-E186-46AD-B0CB-BAEB45EE29C0} => C:\Users\p\AppData\Local\PowerToys\WinUI3Apps\PowerToys.FileLocksmithExt.dll [2024-07-30] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3_S-1-5-21-439056766-392687001-687573123-1001: [PowerRenameExt] -> {0440049F-D1DC-4E46-B27B-98393D79486B} => C:\Users\p\AppData\Local\PowerToys\WinUI3Apps\PowerToys.PowerRenameExt.dll [2024-07-30] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5_S-1-5-21-439056766-392687001-687573123-1001: [PowerRenameExt] -> {0440049F-D1DC-4E46-B27B-98393D79486B} => C:\Users\p\AppData\Local\PowerToys\WinUI3Apps\PowerToys.PowerRenameExt.dll [2024-07-30] (Microsoft Corporation -> Microsoft Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\p\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\188f5ec9d11ded56\Profile 2 - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2023-03-12 19:21 - 2024-08-08 10:36 - 000027920 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.02.12\PEbiosinterface32.dll
2024-05-23 23:54 - 2024-05-23 23:54 - 001626624 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\enppmon.dll
2024-05-23 23:54 - 2024-05-23 23:54 - 003164160 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:err [2006]
AlternateDataStreams: C:\Users\All Users:err [2006]
AlternateDataStreams: C:\ProgramData\Application Data:err [2006]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [2594]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [2594]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [2594]
AlternateDataStreams: C:\Users\p\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\p\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\p\AppData\Local\Temp:$DATA [16]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6898]
AlternateDataStreams: C:\Users\Public\Documents\jre1.8.0_51.json:D80F1E7A29 [2594]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-439056766-392687001-687573123-1001\Software\Classes\regfile: <==== ATTENTION
HKU\S-1-5-21-439056766-392687001-687573123-1001\Software\Classes\.reg: => <==== ATTENTION
HKU\S-1-5-21-439056766-392687001-687573123-1001\Software\Classes\.bat: => <==== ATTENTION
HKU\S-1-5-21-439056766-392687001-687573123-1001\Software\Classes\.cmd: => <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-11-10] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-10] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-03] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-02] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-439056766-392687001-687573123-1001\...\sharepoint.com -> hxxps://daytonstemschoolorg-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 05:14 - 2022-01-12 17:52 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

2021-06-06 17:26 - 2022-08-15 19:38 - 000000445 _____ C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\VMware\VMware Player\bin\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\dotnet\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-439056766-392687001-687573123-1001\Control Panel\Desktop\\Wallpaper -> c:\users\p\downloads\sample3.jpg
DNS Servers: 209.18.47.62 - 209.18.47.61
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GBE Family Controller -> rt640x64.sys
Wi-Fi: TP-Link Wireless USB Adapter -> rtwlanu.sys

vms_vsf: Hyper-V Virtual Switch Extension Filter
INSECURE_NPCAP: Npcap Packet Driver (NPCAP)
ms_vfpext: Microsoft Azure VFP Switch Extension
vms_vsp: Hyper-V Virtual Switch Extension Protocol

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKLM\...\StartupApproved\Run32: => "FUFAXRCV"
HKLM\...\StartupApproved\Run32: => "FUFAXSTM"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Bloom"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "EPSDNMON"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Opera GX Stable"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Energy"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_A304F8742E169929E19CE6C9614A1189"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "SignalRgb"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "electron.app.now.gg wallet"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "Microsoft.Lists"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "AltServer"
HKU\S-1-5-21-439056766-392687001-687573123-1001\...\StartupApproved\Run: => "EADM"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CC585412-B0B1-4B40-8B1F-9DB2C97EA161}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D80D1EF-B4BE-4BD8-8C92-1E13BA8B2EDB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{05ABABC6-2548-447A-9FEF-1C80FB07766B}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{2326F224-830C-4B49-8489-B860FEE203EB}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{263A41AE-97AD-4B7D-8C7D-D00E34A1944F}] => (Allow) H:\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [{00093057-8C93-4AF4-AFA8-39CB7B512CC3}] => (Allow) H:\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [TCP Query User{09CAA96D-35EE-4C26-810D-ABDE7A2BD1BF}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{2CD34DF3-C6E9-4C96-AA43-B8E6462188C1}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{9F5F2B20-B30A-45B5-AF67-C586A7E8BCA6}C:\users\p\mogus\among us(game)\among us.exe] => (Allow) C:\users\p\mogus\among us(game)\among us.exe => No File
FirewallRules: [UDP Query User{96F1DA62-8986-475C-BCFE-7B739C4B48F0}C:\users\p\mogus\among us(game)\among us.exe] => (Allow) C:\users\p\mogus\among us(game)\among us.exe => No File
FirewallRules: [TCP Query User{4B1E0C6F-EF30-4EF5-8CBC-A5024E9254D8}I:\minetest\minetest-5.3.0-win64\minetest-5.3.0-win64\bin\minetest.exe] => (Allow) I:\minetest\minetest-5.3.0-win64\minetest-5.3.0-win64\bin\minetest.exe => No File
FirewallRules: [UDP Query User{1031B616-73D7-4CE6-88BF-806D58A05A01}I:\minetest\minetest-5.3.0-win64\minetest-5.3.0-win64\bin\minetest.exe] => (Allow) I:\minetest\minetest-5.3.0-win64\minetest-5.3.0-win64\bin\minetest.exe => No File
FirewallRules: [TCP Query User{3C7BAD75-BDC7-4B90-940C-4C789547868A}I:\nate - 2021\mogus\among us(game)\among us.exe] => (Allow) I:\nate - 2021\mogus\among us(game)\among us.exe => No File
FirewallRules: [UDP Query User{FB200868-2B29-4319-BD89-477A2CFBC285}I:\nate - 2021\mogus\among us(game)\among us.exe] => (Allow) I:\nate - 2021\mogus\among us(game)\among us.exe => No File
FirewallRules: [TCP Query User{CDE681B4-BAC0-4CDA-80EB-02B478AC1AD7}I:\nate - 2021\minetest\minetest-5.3.0-win64\minetest-5.3.0-win64\bin\minetest.exe] => (Allow) I:\nate - 2021\minetest\minetest-5.3.0-win64\minetest-5.3.0-win64\bin\minetest.exe => No File
FirewallRules: [UDP Query User{7417F544-CA10-4F58-A215-473D816EDE2E}I:\nate - 2021\minetest\minetest-5.3.0-win64\minetest-5.3.0-win64\bin\minetest.exe] => (Allow) I:\nate - 2021\minetest\minetest-5.3.0-win64\minetest-5.3.0-win64\bin\minetest.exe => No File
FirewallRules: [TCP Query User{1F302169-9761-4797-9DEB-F63C869C3C5E}C:\program files\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D85C5512-D687-42E7-91D0-E2C701F55A10}C:\program files\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [TCP Query User{511193A0-2DA4-4C91-BA80-FF819B958EDA}C:\users\p\downloads\aimbeast.v3.1.0.9\aimbeast.v3.1.0.9\aimbeast.v3.1.0.9\aimbeast\binaries\win64\aimbeast-win64-shipping.exe] => (Allow) C:\users\p\downloads\aimbeast.v3.1.0.9\aimbeast.v3.1.0.9\aimbeast.v3.1.0.9\aimbeast\binaries\win64\aimbeast-win64-shipping.exe => No File
FirewallRules: [UDP Query User{293AF4B9-B30C-4964-8B6F-971EBB13CA0B}C:\users\p\downloads\aimbeast.v3.1.0.9\aimbeast.v3.1.0.9\aimbeast.v3.1.0.9\aimbeast\binaries\win64\aimbeast-win64-shipping.exe] => (Allow) C:\users\p\downloads\aimbeast.v3.1.0.9\aimbeast.v3.1.0.9\aimbeast.v3.1.0.9\aimbeast\binaries\win64\aimbeast-win64-shipping.exe => No File
FirewallRules: [TCP Query User{B0A571E0-CADA-4E4E-B1BE-1C2EE8BAE8CC}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => No File
FirewallRules: [UDP Query User{6ECE6A60-C8CD-40D0-82EC-42CAC6C33BD8}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => No File
FirewallRules: [TCP Query User{0B30BC51-EA15-4EE7-AF38-2FA31FD4F4D3}I:\skyrouge\sky.rogue.v1.3.1\sky.rogue.v1.3.1\skyrogue.exe] => (Allow) I:\skyrouge\sky.rogue.v1.3.1\sky.rogue.v1.3.1\skyrogue.exe => No File
FirewallRules: [UDP Query User{70298AAD-7C81-4D6D-895A-5B715DF7F73F}I:\skyrouge\sky.rogue.v1.3.1\sky.rogue.v1.3.1\skyrogue.exe] => (Allow) I:\skyrouge\sky.rogue.v1.3.1\sky.rogue.v1.3.1\skyrogue.exe => No File
FirewallRules: [TCP Query User{E0F4F6F2-8F66-4F32-9D4D-463F658E1000}C:\users\p\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\p\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [UDP Query User{18D6DDDD-3B59-4BA7-BE14-6E28711E392E}C:\users\p\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\p\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [TCP Query User{6D9749E5-E4C1-4AFB-AA5B-C23140A67E22}C:\program files\epic games\core\core\platform\binaries\win64\platform-win64-shipping.exe] => (Allow) C:\program files\epic games\core\core\platform\binaries\win64\platform-win64-shipping.exe => No File
FirewallRules: [UDP Query User{5A6056D8-B850-4E65-B390-97A97ED4CD19}C:\program files\epic games\core\core\platform\binaries\win64\platform-win64-shipping.exe] => (Allow) C:\program files\epic games\core\core\platform\binaries\win64\platform-win64-shipping.exe => No File
FirewallRules: [{18522EB8-7E16-4CCF-B38F-DE490091960A}] => (Allow) C:\Program Files\Epic Games\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{E021DD3A-1367-447D-9AF5-85963FA57B97}] => (Allow) C:\Program Files\Epic Games\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [TCP Query User{6516A2EB-0830-47DD-9921-9E8BF6BC472A}C:\program files\epic games\scavengers\scavenger\binaries\win64\scavenger-win64-shipping.exe] => (Allow) C:\program files\epic games\scavengers\scavenger\binaries\win64\scavenger-win64-shipping.exe => No File
FirewallRules: [UDP Query User{17606BCF-D913-49E7-BB5B-680271EF9C8A}C:\program files\epic games\scavengers\scavenger\binaries\win64\scavenger-win64-shipping.exe] => (Allow) C:\program files\epic games\scavengers\scavenger\binaries\win64\scavenger-win64-shipping.exe => No File
FirewallRules: [{F49CE71F-C7B1-4803-B514-2B706F49B160}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{7F63F748-7A74-49A4-AFBF-67038DBC6BDC}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{65B469EC-19BF-4C48-AC6A-9B1486B8BB70}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe
FirewallRules: [UDP Query User{846CC854-53DD-4F58-9A06-EF6BF93DE232}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe
FirewallRules: [TCP Query User{A2B9D99E-328F-4E7F-9CD5-44F199B52BCE}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{8CE749C1-DC16-4642-9FA4-4551109546B5}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{4E7CE9DE-74AC-494C-9F48-899C67FA9325}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{19FB69B2-CC18-4703-A141-A8445AB530E1}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{F47330AE-EDE1-4E36-80E0-7F2867E1112D}C:\users\p\.lunarclient\jre\1.8\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\p\.lunarclient\jre\1.8\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe
FirewallRules: [UDP Query User{716176A9-8491-43A7-B0DC-CB01A720FB3D}C:\users\p\.lunarclient\jre\1.8\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\p\.lunarclient\jre\1.8\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe
FirewallRules: [TCP Query User{8FDAD82D-D2D6-4FE6-BCBC-FBB6BBD83F25}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe => No File
FirewallRules: [UDP Query User{4A4A00EE-80B5-4141-A1ED-2C41BD8713E8}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe => No File
FirewallRules: [TCP Query User{51C2CEF8-3F65-4F1E-A7EC-59E091BBF7DF}C:\users\p\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\p\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{A2610E86-541A-440E-96EA-6242B2DF863F}C:\users\p\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\p\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{3F9714A2-1639-4B45-8987-70BDAF671E46}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{7B45DFFC-7D60-4179-8DFE-3A233DECB043}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{B7A84A8E-88B0-4A52-934C-66CEC310BA63}C:\program files\epic games\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files\epic games\warface\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{94F1E81D-0344-4FB3-9129-65DBA1D0F244}C:\program files\epic games\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files\epic games\warface\gamecenter\gamecenter.exe => No File
FirewallRules: [{ACAE477D-81E7-4BA2-BA7D-6E081263CF53}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FBC3BFF1-D2AA-4CD5-85C7-FC8632D5C771}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{3E9F1527-7E2E-45E5-B8D4-A9B0E2FE3CFF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{33F67B9C-C326-4568-B8CB-AEDB86A55939}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7251BB53-2C88-466B-923C-9F82B844B19B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe => No File
FirewallRules: [{7F6F3CAB-A0C1-4117-9DB6-10B5621431F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe => No File
FirewallRules: [{033B100A-613F-4E7E-9E46-691F8554085F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FPS Game Dev Test\FPSSteamGame.exe => No File
FirewallRules: [{38983396-36A8-4C96-8787-6F3895CE0760}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FPS Game Dev Test\FPSSteamGame.exe => No File
FirewallRules: [TCP Query User{A3E550D5-B66C-458D-B82D-7940C56F6B73}C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe] => (Allow) C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{D94068B3-269B-4C38-907C-9B3AD808475C}C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe] => (Allow) C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{C0D3F255-14C1-41E8-9DF6-AB50F3B8D897}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe => No File
FirewallRules: [{A4B29E70-BB36-4063-85A8-151C2D590969}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe => No File
FirewallRules: [{9B7A7D1D-7819-4A92-B794-AE8426112642}] => (Allow) LPort=80
FirewallRules: [{82B6D5A8-504D-4469-843B-D96714C18E54}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{223B7689-9085-4155-99BC-5D18827FA51F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8E411823-F470-4CFB-9D4B-FA20DFA2B793}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DB09E0B8-FCD7-42D9-9C9A-F6FA499AB540}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{06D64034-4C23-40BB-9F15-8C82B7F569DE}] => (Allow) LPort=27015
FirewallRules: [TCP Query User{53C8DEB3-F1A9-4D7F-93D6-F242417BE4D0}C:\program files (x86)\3utools\3uairplayer.exe] => (Allow) C:\program files (x86)\3utools\3uairplayer.exe => No File
FirewallRules: [UDP Query User{9D6C450B-F61E-4FDC-8897-28629CC50A58}C:\program files (x86)\3utools\3uairplayer.exe] => (Allow) C:\program files (x86)\3utools\3uairplayer.exe => No File
FirewallRules: [TCP Query User{FAF84778-A3E8-43A5-860A-E5FAC682027C}C:\users\p\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\p\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [UDP Query User{D2D3FFF8-D6E6-40BE-9473-C3EEB5A061F9}C:\users\p\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\p\appdata\local\discord\app-1.0.9005\discord.exe => No File
FirewallRules: [TCP Query User{582F6955-7C01-42BD-AB6C-0CC99249DDE1}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{ED563994-2B70-4F42-82EC-919B4C1C3078}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{13F6026E-9789-41ED-8AFC-E22EECBA7C99}C:\users\p\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\p\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => No File
FirewallRules: [UDP Query User{2AE882BD-20C9-419B-956C-9CA02B8C2E56}C:\users\p\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\p\appdata\roaming\twitch studio\bin\twitchstudioagent.exe => No File
FirewallRules: [TCP Query User{2DCC3091-F8AF-4629-9155-C0E3412E19CC}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{E0346E28-3D73-464E-ABDF-9B8754E9C2C8}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{42E79F0B-72A7-4B39-BEDA-6B5430A9C06B}C:\program files\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{11E6FDCB-1411-44F8-931D-DFF93E044EA1}C:\program files\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files\epic games\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{EF713EF3-D3A6-407E-BBE9-6FA3864BDDF4}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{10C6F0F6-33DE-42C8-B1CC-2A75D0AF4077}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{34B7B402-8F7A-4E55-908B-2562DFE3A2A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe => No File
FirewallRules: [{339FBB5A-DFA3-4BCA-839F-07D3163DA4C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe => No File
FirewallRules: [{B4AF0D14-F473-44C5-BCD1-AE783E060289}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Harsh Doorstop Singleplayer Demo\HarshDoorstop\Binaries\Win64\HarshDoorstop-Win64-Shipping.exe => No File
FirewallRules: [{42EE1066-6DA9-4BF2-8CCE-AFA0338304EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Harsh Doorstop Singleplayer Demo\HarshDoorstop\Binaries\Win64\HarshDoorstop-Win64-Shipping.exe => No File
FirewallRules: [TCP Query User{884C4D0A-E5CA-457A-AC7A-BF311542E5BF}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{D8299AAC-D678-4F83-A879-3E64958188AC}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{A35D0333-1DEC-434F-B57D-0ED4012C4CEE}C:\program files\epic games\ue_4.27\engine\binaries\win64\ue4editor.exe] => (Allow) C:\program files\epic games\ue_4.27\engine\binaries\win64\ue4editor.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{89254EAC-AC46-4A46-B8B6-5A6F5020BD27}C:\program files\epic games\ue_4.27\engine\binaries\win64\ue4editor.exe] => (Allow) C:\program files\epic games\ue_4.27\engine\binaries\win64\ue4editor.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{5F3D9047-53FA-436C-B566-83CA9153915D}C:\users\p\appdata\local\unrealengine\common\unrealtrace\bin\0001000c\unrealtraceserver.exe] => (Allow) C:\users\p\appdata\local\unrealengine\common\unrealtrace\bin\0001000c\unrealtraceserver.exe (Epic Games) [File not signed]
FirewallRules: [UDP Query User{DB474A90-06DF-4A00-9A66-99F2C6743770}C:\users\p\appdata\local\unrealengine\common\unrealtrace\bin\0001000c\unrealtraceserver.exe] => (Allow) C:\users\p\appdata\local\unrealengine\common\unrealtrace\bin\0001000c\unrealtraceserver.exe (Epic Games) [File not signed]
FirewallRules: [TCP Query User{03DAF665-6292-4C0E-A8C8-20A84ADD83DF}C:\program files\epic games\ue_5.1\engine\binaries\win64\unrealeditor.exe] => (Allow) C:\program files\epic games\ue_5.1\engine\binaries\win64\unrealeditor.exe => No File
FirewallRules: [UDP Query User{9F3BE94C-8B29-40D8-B934-A5B82B08D3CF}C:\program files\epic games\ue_5.1\engine\binaries\win64\unrealeditor.exe] => (Allow) C:\program files\epic games\ue_5.1\engine\binaries\win64\unrealeditor.exe => No File
FirewallRules: [TCP Query User{CE04DBDB-A649-47EA-B578-9C849324D50D}C:\users\p\appdata\local\vortxengine\app-2.2.26\signal-x64\signalrgb.exe] => (Allow) C:\users\p\appdata\local\vortxengine\app-2.2.26\signal-x64\signalrgb.exe => No File
FirewallRules: [UDP Query User{58E3DE5C-1DCF-41E3-84C5-A59EC35E2E3B}C:\users\p\appdata\local\vortxengine\app-2.2.26\signal-x64\signalrgb.exe] => (Allow) C:\users\p\appdata\local\vortxengine\app-2.2.26\signal-x64\signalrgb.exe => No File
FirewallRules: [TCP Query User{133C4304-7C2A-4C5A-88A1-FD4D4B08DE06}J:\skyrouge\sky.rogue.v1.3.1\sky.rogue.v1.3.1\skyrogue.exe] => (Allow) J:\skyrouge\sky.rogue.v1.3.1\sky.rogue.v1.3.1\skyrogue.exe => No File
FirewallRules: [UDP Query User{56251621-0169-4327-A34D-E416F6531D55}J:\skyrouge\sky.rogue.v1.3.1\sky.rogue.v1.3.1\skyrogue.exe] => (Allow) J:\skyrouge\sky.rogue.v1.3.1\sky.rogue.v1.3.1\skyrogue.exe => No File
FirewallRules: [TCP Query User{8889716F-3628-4B8F-9638-C2AEF7286157}C:\users\p\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\p\appdata\local\warthunder\launcher.exe => No File
FirewallRules: [UDP Query User{A9D02EFE-EC1F-4940-9E13-720F9B29E206}C:\users\p\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\p\appdata\local\warthunder\launcher.exe => No File
FirewallRules: [TCP Query User{DD3B5B79-2843-4D9F-8770-158988956A2F}C:\users\p\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\p\appdata\local\warthunder\win64\aces.exe => No File
FirewallRules: [UDP Query User{7D3C10D5-95BA-4A11-B9C2-325FC37B9AD1}C:\users\p\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\p\appdata\local\warthunder\win64\aces.exe => No File
FirewallRules: [{A55ACA31-F435-448B-AB59-7764B087B581}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DFD2C9E3-C01E-4B50-9171-8F586804FE79}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9955123F-F23F-43D4-90AF-6B62BAC5CE8E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{878EE49F-0A6C-43A6-AA0A-7DBE510BE893}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{F682481E-2A7F-46F1-A034-06367794BE59}J:\sky.rogue.v1.3.3\sky.rogue.v1.3.3\skyrogue.exe] => (Allow) J:\sky.rogue.v1.3.3\sky.rogue.v1.3.3\skyrogue.exe => No File
FirewallRules: [UDP Query User{6A927453-6B9A-4293-B01C-C5E97CE396F7}J:\sky.rogue.v1.3.3\sky.rogue.v1.3.3\skyrogue.exe] => (Allow) J:\sky.rogue.v1.3.3\sky.rogue.v1.3.3\skyrogue.exe => No File
FirewallRules: [{513F3882-8FC6-494F-9BEB-B27BC5C21313}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trackmania\Trackmania.exe (NADEO SAS -> Nadeo)
FirewallRules: [{09BE0E77-EED1-43EA-8F5C-FB29C200EC08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trackmania\Trackmania.exe (NADEO SAS -> Nadeo)
FirewallRules: [{EA321B85-2556-4428-8B92-0D594C85D6CA}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{55026774-FA0A-49A4-9DC2-307E5EC88553}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => No File
FirewallRules: [{ABC803B0-31DC-40BB-81D6-FFE8DE0D8A40}] => (Allow) D:\SteamLibrary\steamapps\common\Team Fortress 2\hl2.exe => No File
FirewallRules: [{A5E7C53C-E7C7-4B82-A712-43444D847FD7}] => (Allow) D:\SteamLibrary\steamapps\common\Team Fortress 2\hl2.exe => No File
FirewallRules: [{9673D566-EA79-4E49-A893-03C5997821E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Leaf Blower Revolution\game.exe (Humble North) [File not signed]
FirewallRules: [{9CCA6D65-4414-478A-BE4B-B2F9A92F5BCD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Leaf Blower Revolution\game.exe (Humble North) [File not signed]
FirewallRules: [{47DE0CC2-AB4C-42A8-85DD-B1096A24FC87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Idle Slayer\Idle Slayer.exe () [File not signed]
FirewallRules: [{99202CF4-6A95-4B7D-897A-F94C6EB5CC9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Idle Slayer\Idle Slayer.exe () [File not signed]
FirewallRules: [{839D4F4E-7806-4322-8730-95A585B94C60}] => (Allow) D:\SteamLibrary\steamapps\common\BloonsTD6\BloonsTD6.exe () [File not signed]
FirewallRules: [{2EC303F8-8E53-42A3-8E12-D946C1107793}] => (Allow) D:\SteamLibrary\steamapps\common\BloonsTD6\BloonsTD6.exe () [File not signed]
FirewallRules: [TCP Query User{2BDBCC6A-8AAE-43D0-A952-2B283A81AB43}C:\program files\musescore 4\bin\musescore4.exe] => (Allow) C:\program files\musescore 4\bin\musescore4.exe () [File not signed]
FirewallRules: [UDP Query User{56A09B6E-733E-4633-A440-43F725BB61C9}C:\program files\musescore 4\bin\musescore4.exe] => (Allow) C:\program files\musescore 4\bin\musescore4.exe () [File not signed]
FirewallRules: [{c0b19d98-99ab-4f16-827c-541e8329e3c9}] => (Allow) C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe => No File
FirewallRules: [{F088C7CB-3FB1-4EAE-B596-052468B4210A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Codename Gordon\cg.exe (The Design Assembly GmbH) [File not signed]
FirewallRules: [{7B6C3F26-FAA6-43CB-8F89-7883FA35ED63}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Codename Gordon\cg.exe (The Design Assembly GmbH) [File not signed]
FirewallRules: [{E0069531-9878-49B6-B8F0-6068B3B6E063}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spacewar\SteamworksExample.exe () [File not signed]
FirewallRules: [{D77BD0A8-F788-415E-BFE9-7392564DD8EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spacewar\SteamworksExample.exe () [File not signed]
FirewallRules: [{5025B88E-EE4E-44A8-BC72-D4E172EAE9E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\District 187\MarbleStation\GlbMSLauncher.exe (CJ E&M Corp. -> CJ E&M)
FirewallRules: [{42F6E191-F9FC-471E-8D4A-73936F24F74B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\District 187\MarbleStation\GlbMSLauncher.exe (CJ E&M Corp. -> CJ E&M)
FirewallRules: [{57F6882F-E547-46EA-A787-BBEE79127C5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of Immortals\ClientLauncherR.exe (Petroglyph Games Inc. -> Petroglyph Games, Inc.)
FirewallRules: [{63F129B0-00E3-4757-8CDB-A364F45B9BF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of Immortals\ClientLauncherR.exe (Petroglyph Games Inc. -> Petroglyph Games, Inc.)
FirewallRules: [{446D28B1-A839-4E1F-8A49-C25DF31EB6B9}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{D58E28C5-4A0C-453D-B86A-6C2E6B4D06CB}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{87D0FB2B-31E3-4697-94EE-70E5E2FD99DC}] => (Allow) C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe (Musecy SM Ltd. -> Muse.Service)
FirewallRules: [{8BF42432-9019-4B86-B4B5-61657A18916B}] => (Allow) C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe (Musecy SM Ltd. -> Muse.Service)
FirewallRules: [{60610575-E382-41FB-AC7F-9806018834AB}] => (Allow) C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe (Musecy SM Ltd. -> Muse.Service)
FirewallRules: [{8940ABBB-FA97-4272-99DE-1CF7F9B70E41}] => (Allow) C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe (Musecy SM Ltd. -> Muse.Service)
FirewallRules: [{E65BCF45-33D4-4277-81EE-70B83FE79C64}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{25087BC3-F2B1-4AA5-A782-1F45E34A7A22}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{41DA8AE3-27AF-4694-B634-CD677ABD3EF2}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{8573DA90-5246-432B-934C-64E9F647E92F}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{629F9370-C53E-4E89-990B-6679BEFBCD87}] => (Allow) C:\Users\p\AppData\Local\Temp\WF-3620\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [{FA93641E-37B0-4604-9CC2-4BEC15166D6A}] => (Allow) C:\Users\p\AppData\Local\Temp\WF-3620\Common\EpsonNet Setup\ENEasyApp.exe => No File
FirewallRules: [{516EC326-A462-4F2F-83BB-603AD6F945A8}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{8E26D9BE-1DC6-4F76-9ECA-C15E44430AE8}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [TCP Query User{8C4A3A10-32AA-440D-BA25-262872084EA4}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{2924A376-7786-4058-9F72-C243D6E9005D}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{BCCD6D8D-21B9-47C7-924B-0703DBD2699A}C:\users\p\appdata\roaming\dukharo driver\iot_driver_v130.exe] => (Allow) C:\users\p\appdata\roaming\dukharo driver\iot_driver_v130.exe (Shenzhen Rongyuan Technology Co.ltd. -> Shenzhen Rongyuan Technology Co.ltd.)
FirewallRules: [UDP Query User{B997D80C-A490-41F6-BF02-56D89D43A168}C:\users\p\appdata\roaming\dukharo driver\iot_driver_v130.exe] => (Allow) C:\users\p\appdata\roaming\dukharo driver\iot_driver_v130.exe (Shenzhen Rongyuan Technology Co.ltd. -> Shenzhen Rongyuan Technology Co.ltd.)
FirewallRules: [TCP Query User{D91587BD-21EA-4102-A756-F9820AE3080E}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{EDA142CE-33D7-47BF-9A83-E331231CE016}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{4794256B-FECB-4D60-8868-C7369C80E202}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{5EE04AD6-BA03-4016-8801-619F86E66F80}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{8F6990FF-0A7C-4176-B4EE-7834D2F955AC}] => (Allow) D:\SteamLibrary\steamapps\common\LAVALAMP\lavalamp.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{1FB30FEE-EB38-4AFB-9D70-102A42884C2B}] => (Allow) D:\SteamLibrary\steamapps\common\LAVALAMP\lavalamp.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{A12553F8-4CB9-4D0D-82AB-43630E26CFFF}] => (Allow) D:\SteamLibrary\steamapps\common\Cat-aclysm\ProjectExplorer.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{12591364-45C7-4729-AC18-1856300F75A3}] => (Allow) D:\SteamLibrary\steamapps\common\Cat-aclysm\ProjectExplorer.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{3151DDD5-5AF2-49AA-B1ED-6408B9BD2D7E}] => (Allow) D:\SteamLibrary\steamapps\common\Muck\Muck.exe () [File not signed]
FirewallRules: [{B4A304FF-09E5-4F97-871F-2FEE4202DE83}] => (Allow) D:\SteamLibrary\steamapps\common\Muck\Muck.exe () [File not signed]
FirewallRules: [TCP Query User{0F4ED99B-374A-4813-B013-524BB13DD661}W:\--encrypted--\backup\my.lust.wish.uncensored\my lust wish\mlw_main\binaries\win64\mlw_main-win64-shipping.exe] => (Allow) W:\--encrypted--\backup\my.lust.wish.uncensored\my lust wish\mlw_main\binaries\win64\mlw_main-win64-shipping.exe => No File
FirewallRules: [UDP Query User{DCBAF5BE-78B4-4B42-AE56-6C906EF558A5}W:\--encrypted--\backup\my.lust.wish.uncensored\my lust wish\mlw_main\binaries\win64\mlw_main-win64-shipping.exe] => (Allow) W:\--encrypted--\backup\my.lust.wish.uncensored\my lust wish\mlw_main\binaries\win64\mlw_main-win64-shipping.exe => No File
FirewallRules: [TCP Query User{3A024376-D1B6-49C8-B170-ACAACC2BE448}C:\program files (x86)\steam\steamapps\common\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\destiny 2\destiny2.exe => No File
FirewallRules: [UDP Query User{59720129-53DE-4A85-B95E-44E86807E827}C:\program files (x86)\steam\steamapps\common\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\destiny 2\destiny2.exe => No File
FirewallRules: [{24C655EA-D8DE-4C45-A85E-4511C847D3AA}] => (Allow) D:\SteamLibrary\steamapps\common\Geometry Dash\GeometryDash.exe () [File not signed]
FirewallRules: [{4C8A6DC3-A02E-4B75-B81B-EC93142244E5}] => (Allow) D:\SteamLibrary\steamapps\common\Geometry Dash\GeometryDash.exe () [File not signed]
FirewallRules: [{F31CA860-ACB4-497A-A87C-1FF7019FAACE}] => (Allow) D:\SteamLibrary\steamapps\common\FPS Chess\FPSChess.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{38946F51-45C6-4B20-814F-E8E62E93424C}] => (Allow) D:\SteamLibrary\steamapps\common\FPS Chess\FPSChess.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{204D40F8-8A2C-4121-B07D-45B71B8B5D48}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{DE9E8127-6B55-435A-99C7-A78E42517467}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{BE072FCC-3440-45D0-9DC8-B1DD0F8E934F}] => (Allow) D:\SteamLibrary\steamapps\common\Crusader Kings II\CK2game.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{85F7C9A9-416D-4313-8B9C-68D8956FEA6A}] => (Allow) D:\SteamLibrary\steamapps\common\Crusader Kings II\CK2game.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [TCP Query User{C0089EAC-B3B6-427A-A3C0-4A75E2874B85}J:\sky.rogue.v1.3.3\sky.rogue.v1.3.3\skyrogue.exe] => (Allow) J:\sky.rogue.v1.3.3\sky.rogue.v1.3.3\skyrogue.exe => No File
FirewallRules: [UDP Query User{10F8D64B-C966-4804-96FE-A27C039D9DB1}J:\sky.rogue.v1.3.3\sky.rogue.v1.3.3\skyrogue.exe] => (Allow) J:\sky.rogue.v1.3.3\sky.rogue.v1.3.3\skyrogue.exe => No File
FirewallRules: [{6B5729BF-5F39-47F9-8AB1-9C2A7486FDF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sky Rogue\skyrogue.exe () [File not signed]
FirewallRules: [{9A9D2C58-F9F5-4581-BF43-DB78DAEF4E72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sky Rogue\skyrogue.exe () [File not signed]
FirewallRules: [TCP Query User{8BAE650B-61DC-4CEC-AFE2-69DB799B298C}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{87EBCCE9-90C5-4674-B49C-5BB8197B05CE}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{23D83C3F-D51B-48D7-88BA-A1F68A38C89F}] => (Allow) D:\SteamLibrary\steamapps\common\Crossout\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [{8AE0C7CB-85B7-4667-93DD-99D5C554A293}] => (Allow) D:\SteamLibrary\steamapps\common\Crossout\launcher.exe (Gaijin Network Ltd -> Gaijin)
FirewallRules: [{BA41EB3C-90D7-4AD6-BD8A-4D34E5F75FFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Operation Lovecraft Fallen Doll Demo\Desktop\WindowsNoEditor\FallenDoll.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{52EEEADB-B218-4236-89CF-1CB3D8013A40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Operation Lovecraft Fallen Doll Demo\Desktop\WindowsNoEditor\FallenDoll.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{5057A55F-4C83-4995-BD6B-3FD18E62F048}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Operation Lovecraft Fallen Doll Demo\VR\WindowsNoEditor\FallenDollVR.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{760B3B25-C8B0-436B-B781-CA8A0E57251D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Operation Lovecraft Fallen Doll Demo\VR\WindowsNoEditor\FallenDollVR.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{7FEA5F3A-8A08-46AF-AA41-2935D1FB121E}C:\program files (x86)\altserver\altserver.exe] => (Allow) C:\program files (x86)\altserver\altserver.exe (AltStore LLC) [File not signed]
FirewallRules: [UDP Query User{21DD4695-27DE-4D83-99AB-46183512EE49}C:\program files (x86)\altserver\altserver.exe] => (Allow) C:\program files (x86)\altserver\altserver.exe (AltStore LLC) [File not signed]
FirewallRules: [{A0CDB59A-5AC8-4C61-9A53-62524083A5C4}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9F77D417-4D96-477D-9E58-CE87D649A42B}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{E53D43FF-362E-4D07-ABE7-BBA50309B0B1}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [TCP Query User{907DD256-73A5-416D-9634-15C583927880}C:\users\p\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\p\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{FBF38E40-3A58-4A8F-86AB-3E264EB55704}C:\users\p\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\p\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{FA5FCF1E-340D-4D47-8040-7D542203A05D}C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe] => (Allow) C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{73E63B8B-8D24-4ACA-A6CF-78E1E8269314}C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe] => (Allow) C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{09D99761-CECC-48B9-BA4D-F77FDEE9FB1D}] => (Allow) D:\SteamLibrary\steamapps\common\Lethal Company\Lethal Company.exe () [File not signed]
FirewallRules: [{F6B24390-28F0-4432-AB6A-29FFC981C88D}] => (Allow) D:\SteamLibrary\steamapps\common\Lethal Company\Lethal Company.exe () [File not signed]
FirewallRules: [{B2F06547-A61B-4470-B9A9-BF4466A86B77}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F5398310-A6B8-4FF6-9001-96D07254CAE6}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3659ACDD-C620-49EF-BF10-CF0F341662A3}] => (Allow) D:\SteamLibrary\steamapps\common\Rodent Royale Playtest\Gibroski.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{D87C5EAB-280A-4A68-A5AC-7ACC31E3C6DC}] => (Allow) D:\SteamLibrary\steamapps\common\Rodent Royale Playtest\Gibroski.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{17BD389D-2F42-4D8E-9605-5E54392DD617}C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\starwarsbattlefrontii.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\starwarsbattlefrontii.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{7A9CA84D-D4B9-4D05-9A7F-E9534586CC18}C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\starwarsbattlefrontii.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\starwarsbattlefrontii.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{C6F4B69E-5736-40B2-82B1-C97646D4E9B3}D:\dfs\dfs_shop\djiarena\binaries\win64\djiarena-win64-shipping.exe] => (Allow) D:\dfs\dfs_shop\djiarena\binaries\win64\djiarena-win64-shipping.exe (DJI) [File not signed]
FirewallRules: [UDP Query User{EB38B88C-8978-4A7E-B925-9C5C3F142704}D:\dfs\dfs_shop\djiarena\binaries\win64\djiarena-win64-shipping.exe] => (Allow) D:\dfs\dfs_shop\djiarena\binaries\win64\djiarena-win64-shipping.exe (DJI) [File not signed]
FirewallRules: [{E25E811D-7613-46A1-A741-248033AB683D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Doom 64\DOOM64_x64.exe () [File not signed]
FirewallRules: [{5FC41671-A47E-4B3D-90FF-B58B89943E22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Doom 64\DOOM64_x64.exe () [File not signed]
FirewallRules: [{6A567ECC-C1A4-4A02-B987-E63683DAA9CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ultimate Doom\rerelease\DOOM.exe (Nightdive Studios) [File not signed]
FirewallRules: [{9BC6E194-1ADB-4D8E-9460-56BCD0F5A8E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ultimate Doom\rerelease\DOOM.exe (Nightdive Studios) [File not signed]
FirewallRules: [{40077ED3-13AA-4FE9-B1F1-0C63D8B87BE1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ultimate Doom\base\dosbox.exe => No File
FirewallRules: [{796A830C-A65E-4C8E-9BAE-915DF32C1894}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ultimate Doom\base\dosbox.exe => No File
FirewallRules: [{1F2042D4-A76F-4F7F-BAE0-D0B5E61912B3}] => (Allow) D:\SteamLibrary\steamapps\common\DRL Simulator\DRL Simulator.exe () [File not signed]
FirewallRules: [{5DD1B1E5-7683-4C22-9D01-38D8EAAF99AA}] => (Allow) D:\SteamLibrary\steamapps\common\DRL Simulator\DRL Simulator.exe () [File not signed]
FirewallRules: [{157116A2-6FC7-4E92-85FD-7A8D47997E80}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E34C4CDF-AB83-49F1-99C5-33A6D458F076}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{9F17111B-AB9E-4E35-ACF0-6DB5DFE7DD4E}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{626F4B57-02D3-4246-BF31-E1AE2DACBF8C}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{9EEE7898-D3D8-41F5-9386-67D2F6D51AFE}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{D5CA84C1-E841-42C0-A5B8-2776517FB172}C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\p\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [{DA576336-D077-4C48-9906-B97D81027501}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{B2137293-9EE8-4B32-A616-61605CA5A450}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{00821936-288F-411F-90BA-85A67753935C}J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{A671F2D5-27B8-4B6A-8E1A-9B381DF0B022}J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1F17605F-12E4-417D-9678-77F5EC6DD628}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C78F9B25-D92A-4E36-B146-C7470AF527E5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A76C3FE4-CA78-417F-B1BD-CEDD1BB59679}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC -> )
FirewallRules: [{06C92DC1-DD8F-4D77-BE6E-36D53A4BFF8E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C11FB995-0962-4110-98B9-1F510C31A355}] => (Allow) C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.300.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe (Microsoft Corporation -> )
FirewallRules: [{353F71C4-F154-48AC-B802-1F7F872CEBAC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.300.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe (Microsoft Corporation -> )
FirewallRules: [{D0E00152-FD44-4277-9217-4D94FE7C635B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{34B7579A-BE04-428C-9943-5BDF1C791277}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{56983102-0B18-4235-908D-F09A2F28AE61}] => (Allow) C:\Program Files (x86)\Overwolf\0.254.0.13\OverwolfBrowser.exe => No File
FirewallRules: [{0E1CEB72-394E-4E67-B348-D3BBB937423F}] => (Allow) C:\Program Files (x86)\Overwolf\0.254.0.13\OverwolfBrowser.exe => No File
FirewallRules: [{7D4FAA9A-B933-4E39-9495-4F6AB5746E28}] => (Block) C:\Program Files (x86)\Overwolf\0.254.0.13\OverwolfBrowser.exe => No File
FirewallRules: [{4B6AB074-EDC5-4042-931E-57525837D49B}] => (Block) C:\Program Files (x86)\Overwolf\0.254.0.13\OverwolfBrowser.exe => No File
FirewallRules: [{8FD9F937-39D7-4E03-A5B7-73067FEAF7E1}] => (Allow) C:\Program Files (x86)\Overwolf\0.256.0.2\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{FAA091DC-979E-402D-89AA-643B393A941C}] => (Allow) C:\Program Files (x86)\Overwolf\0.256.0.2\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [TCP Query User{2B6E5142-97E7-416D-A442-679E9777949E}C:\users\p\appdata\local\discord\app-1.0.9155\discord.exe] => (Allow) C:\users\p\appdata\local\discord\app-1.0.9155\discord.exe => No File
FirewallRules: [UDP Query User{3029FB4C-ACE9-4D2E-9BBE-7B54CDA134B5}C:\users\p\appdata\local\discord\app-1.0.9155\discord.exe] => (Allow) C:\users\p\appdata\local\discord\app-1.0.9155\discord.exe => No File
FirewallRules: [{B29741EF-9037-455C-B4E0-900E738C501B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E3DFFC57-F2A0-4BD9-B586-34A1B918A94A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C0D79F9F-3884-490A-903D-1AF414707362}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9131A7A8-BE94-4902-B8A4-E1C5E6BE0D9F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{50C1C185-0116-4D7F-BB63-7646F9F61C04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0D0C43FB-F1B7-48FB-9478-423CD77F3C2F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F4AF5288-98A0-4983-8ED3-66E24A6D81D3}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{FA2F2F79-BA3C-4C27-8CD7-D9C7E9974938}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3718A625-8323-4D93-B1ED-B22609F35E7F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1924F236-EA97-45B0-A13E-CABE0AC78C2B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D6AB2551-9B28-481F-91C2-274046B9E94E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{557585A8-9906-44EF-9A67-D9C7569741D7}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{BC31D890-1CB0-4E9E-BDAE-8DEC6F080CB0}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B8749298-E709-4392-8BDD-5EE063FCAA9F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{ED167CC8-C359-48A6-AF89-4B292183C96F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3782C9FE-24AB-4144-8524-489B84B62DD4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A42058F4-0FAA-40AC-ABCD-34179F12A300}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C4400FF1-B912-4D7B-967A-CDC76FC9741F}] => (Allow) J:\SteamLibrary\steamapps\common\DCSWorld\bin\DCS.exe (Eagle Dynamics SA) [File not signed]
FirewallRules: [{003995EF-A8D5-4126-B456-2A721309A870}] => (Allow) J:\SteamLibrary\steamapps\common\DCSWorld\bin\DCS.exe (Eagle Dynamics SA) [File not signed]
FirewallRules: [{022028F0-5B83-4DE0-A942-B4C7FE92EF07}] => (Allow) J:\SteamLibrary\steamapps\common\DCSWorld\bin-mt\DCS.exe (Eagle Dynamics SA) [File not signed]
FirewallRules: [{AC1A9C95-D744-4F98-8097-D81BCF0F5290}] => (Allow) J:\SteamLibrary\steamapps\common\DCSWorld\bin-mt\DCS.exe (Eagle Dynamics SA) [File not signed]
FirewallRules: [{C63485FC-E76E-4D89-8E0C-B05772BD545A}] => (Allow) J:\SteamLibrary\steamapps\common\DOOMEternal\idTechLauncher.exe () [File not signed]
FirewallRules: [{B44010BB-EB24-4CE3-976B-136522F66779}] => (Allow) J:\SteamLibrary\steamapps\common\DOOMEternal\idTechLauncher.exe () [File not signed]
FirewallRules: [{A6036F0E-F348-4B11-9B4E-1E1B735689E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5994DE0D-4FEF-43DC-B030-F933ABC56705}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DA1BA8E9-9A09-4830-80CB-432FE415E0C4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0B294E05-9F35-4C35-BA29-030CA23303CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BE1FEFB5-0F73-42C6-9FD2-9025FCFDE0A4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E849C5C3-020A-4ED9-B885-F8BBA94796C3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{66A441A5-9241-4A23-B05F-20AE95950BD7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E8F4F437-2899-45B6-AF9A-8356DE200F7D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{98DF4433-B6C2-4D3E-BD5D-CE4EE59A3F2E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BBB5E36C-3864-4142-997E-69F4D8E24B84}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.243.420.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D8B44A63-05BE-4B9A-BE9E-245E2F65CF2D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

06-08-2024 13:16:35 Removed Direct Game UNI Installer

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (08/08/2024 10:00:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15594

Error: (08/08/2024 10:00:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15594

Error: (08/08/2024 10:00:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/08/2024 11:40:23 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on (C:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

Error: (08/08/2024 11:06:46 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on CHONKER (J:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

Error: (08/08/2024 11:06:46 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on McQueen (D:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

Error: (08/08/2024 11:06:38 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on System Reserved because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

Error: (08/08/2024 10:52:46 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on CHONKER (J:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

System errors:
=============
Error: (08/09/2024 10:41:02 AM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.

Error: (08/08/2024 10:43:43 AM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013.

Error: (08/08/2024 10:43:42 AM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013.

Error: (08/08/2024 10:43:29 AM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013.

Error: (08/08/2024 10:43:06 AM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013.

Error: (08/08/2024 10:41:54 AM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013.

Error: (08/08/2024 10:41:17 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Delivery Optimization service hung on starting.

Error: (08/08/2024 10:36:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The GameInput Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.

Windows Defender:
================
Date: 2024-08-09 11:16:50
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Full Scan

Date: 2024-08-09 11:01:57
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-08-08 07:02:13
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-08-07 11:14:07
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-08-06 13:31:10
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Full Scan
Event[0]:

Date: 2024-08-03 15:06:11
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.470.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80070050
Error description: The file exists.

Date: 2024-07-24 21:07:27
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.131.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80070102
Error description: The wait operation timed out.

Date: 2024-07-24 21:07:27
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.131.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80070102
Error description: The wait operation timed out.

Date: 2024-07-24 21:00:45
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.131.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

Date: 2024-07-24 21:00:45
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.131.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

CodeIntegrity:
===============
Date: 2024-08-09 11:31:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2024-08-09 11:31:00
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 3016 12/27/2016
Motherboard: ASUSTeK COMPUTER INC. H110M-C
Processor: Intel® Core™ i3-7100 CPU @ 3.90GHz
Percentage of memory in use: 35%
Total physical RAM: 16327.29 MB
Available physical RAM: 10504.77 MB
Total Virtual: 19399.29 MB
Available Virtual: 12002.58 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.97 GB) (Free:191.7 GB) (Model: ST1000DX002-2DV162) NTFS
Drive d: (McQueen) (Fixed) (Total:111.79 GB) (Free:49.18 GB) (Model: Samsung SSD 840 EVO 120G USB Device) NTFS
Drive j: (CHONKER) (Fixed) (Total:931.51 GB) (Free:477.75 GB) (Model: TOSHIBA MQ04ABF100 SCSI Disk Device) NTFS

\\?\Volume{85c0608f-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{85c0608f-0000-0000-0000-20c1e8000000}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 85C0608F)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=505 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 111.8 GB) (Disk ID: 4BF3251B)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6F1ADB05)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Body Background

skin color theme

#1 ChadA

Advertisements

Register to Remove

Related Topics

1 user(s) are reading this topic

About What the Tech

Follow Us