Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-08-2021 Ran by User (11-08-2021 22:11:25) Running from C:\Users\User\Desktop Windows 10 Home Version 21H1 19043.1165 (X64) (2021-08-11 13:24:51) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= (If an entry is included in the fixlist, it will be removed.) Administrator (S-1-5-21-1800081647-856822976-2045172770-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1800081647-856822976-2045172770-503 - Limited - Disabled) Guest (S-1-5-21-1800081647-856822976-2045172770-501 - Limited - Disabled) User (S-1-5-21-1800081647-856822976-2045172770-1001 - Administrator - Enabled) => C:\Users\User WDAGUtilityAccount (S-1-5-21-1800081647-856822976-2045172770-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Systems Incorporated) Discord (HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.131 - Google LLC) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Logitech Camera Settings (HKLM-x32\...\LogiUCDPP) (Version: 2.12.8.0 - Logitech Europe S.A.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.67 - Microsoft Corporation) Microsoft Office Home and Student 2019 - en-us (HKLM\...\HomeStudent2019Retail - en-us) (Version: 16.0.14228.20226 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\OneDriveSetup.exe) (Version: 21.139.0711.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Graphics Driver 471.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.41 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation) NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) Oculus (HKLM\...\Oculus) (Version: <3 - Facebook Technologies, LLC) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14228.20226 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14228.20226 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden Opera Stable 77.0.4054.277 (HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\Opera 77.0.4054.277) (Version: 77.0.4054.277 - Opera Software) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.6 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.34 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7708 - Realtek Semiconductor Corp.) Revo Uninstaller 2.2.8 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.8 - VS Revo Group, Ltd.) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Spotify (HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\Spotify) (Version: 1.1.65.643.g2d707698 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.14.1 - Synaptics Incorporated) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 118.0.10358 - Ubisoft) UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden VALORANT (HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Zoom (HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\ZoomUMX) (Version: 5.7.4 (804) - Zoom Video Communications, Inc.) Packages: ========= HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_127.1.115.0_x64__v10z8vjag6ke6 [2021-05-13] (HP Inc.) HyperX NGENUITY -> C:\Program Files\WindowsApps\33C30B79.HyperXNGenuity_5.2.0.0_x64__0a78dr3hq0pvt [2021-05-10] (HyperX Gaming) [Startup Task] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5170.0_x64__8wekyb3d8bbwe [2021-05-24] (Microsoft Studios) [MS Ad] MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-26] (Microsoft Corporation) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-08-11] (NVIDIA Corp.) Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation) Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1800081647-856822976-2045172770-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0 CustomCLSID: HKU\S-1-5-21-1800081647-856822976-2045172770-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => No File ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_9dda6a81a12e6ac4\nvshext.dll [2021-07-14] (Nvidia Corporation -> NVIDIA Corporation) ==================== Codecs (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) ==================== Shortcuts & WMI ======================== ==================== Loaded Modules (Whitelisted) ============= ==================== Alternate Data Streams (Whitelisted) ======== ==================== Safe Mode (Whitelisted) ================== ==================== Association (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-05-30] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-07-31] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2019-07-14 21:08 - 2019-07-14 21:07 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Oculus\Support\oculus-runtime;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Users\User\AppData\Local\Microsoft\WindowsApps;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1800081647-856822976-2045172770-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\Downloads\wallpaperflare.com_wallpaper.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (If an entry is included in the fixlist, it will be removed.) HKLM\...\StartupApproved\Run: => "SynTPEnh" HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-1800081647-856822976-2045172770-1001\...\StartupApproved\Run: => "CCXProcess" ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [UDP Query User{951C75BC-8CF6-45A5-9CCD-E192C8DD8B59}C:\users\user\appdata\local\programs\opera\71.0.3770.284\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\71.0.3770.284\opera.exe => No File FirewallRules: [TCP Query User{1F2B608B-31B0-43E8-A327-1C1AF5577B1A}C:\users\user\appdata\local\programs\opera\71.0.3770.284\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\71.0.3770.284\opera.exe => No File FirewallRules: [UDP Query User{7B962ED5-006C-4FED-ACBB-4ECF61976C0D}C:\users\user\downloads\processing-3.5.4-windows64\processing-3.5.4\java\bin\java.exe] => (Allow) C:\users\user\downloads\processing-3.5.4-windows64\processing-3.5.4\java\bin\java.exe => No File FirewallRules: [TCP Query User{CF29BBFC-648D-417E-9C2C-DF570F0B278C}C:\users\user\downloads\processing-3.5.4-windows64\processing-3.5.4\java\bin\java.exe] => (Allow) C:\users\user\downloads\processing-3.5.4-windows64\processing-3.5.4\java\bin\java.exe => No File FirewallRules: [{F22A0FDC-34D6-4EC7-B574-82DA5950DAD7}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{FEA21D8E-D09C-4316-97EE-7CE3FD8D8DBF}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{B180999D-981A-49C6-AA64-4980298E24B1}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [UDP Query User{A7948C7B-1EFF-418C-BA38-04D138E6F43A}C:\users\user\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File FirewallRules: [TCP Query User{FEF44655-1FFD-43A2-ABC5-42EBDC9FACBC}C:\users\user\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File FirewallRules: [UDP Query User{19EFAE8F-4556-4DC2-868A-35A7476C60E5}D:\program files\epic games\remnantfromtheashes\remnant\binaries\win64\remnant-win64-shipping.exe] => (Allow) D:\program files\epic games\remnantfromtheashes\remnant\binaries\win64\remnant-win64-shipping.exe => No File FirewallRules: [TCP Query User{A7A5132C-4B09-4642-8BC6-531AF3E2F916}D:\program files\epic games\remnantfromtheashes\remnant\binaries\win64\remnant-win64-shipping.exe] => (Allow) D:\program files\epic games\remnantfromtheashes\remnant\binaries\win64\remnant-win64-shipping.exe => No File FirewallRules: [UDP Query User{BF69AC6B-B200-4704-A4DF-E61A4F30F7F1}C:\users\user\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File FirewallRules: [TCP Query User{346E60FF-800E-46A8-B2ED-E4256AEA503B}C:\users\user\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File FirewallRules: [UDP Query User{05D9C792-C66B-417B-A230-B2003D233C48}D:\program files\epic games\ue_4.25\engine\binaries\win64\ue4editor.exe] => (Block) D:\program files\epic games\ue_4.25\engine\binaries\win64\ue4editor.exe => No File FirewallRules: [TCP Query User{C19FD089-D032-442E-8B7B-D6C1B1FF2F95}D:\program files\epic games\ue_4.25\engine\binaries\win64\ue4editor.exe] => (Block) D:\program files\epic games\ue_4.25\engine\binaries\win64\ue4editor.exe => No File FirewallRules: [UDP Query User{C63FD614-DA29-4C01-BC0F-24E7C1E1A632}C:\users\user\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\69.0.3686.95\opera.exe => No File FirewallRules: [TCP Query User{C757E5DF-583A-4D04-9217-F212C9D62A05}C:\users\user\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\69.0.3686.95\opera.exe => No File FirewallRules: [{7C3732F3-6681-4651-9BA8-89FCCA21A266}] => (Allow) C:\Users\User\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe => No File FirewallRules: [{847DEC78-E9E1-4B5E-9DE8-E9DC16CE371C}] => (Allow) C:\Program Files\Warframe\Downloaded\Public\Warframe.x64.exe => No File FirewallRules: [{2F0C3089-4944-4C49-B0AE-A33B98E970A0}] => (Allow) C:\Program Files\Warframe\Downloaded\Public\Warframe.x64.exe => No File FirewallRules: [{6796056C-4DCA-43E1-B634-653E27DDB632}] => (Allow) C:\Users\User\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe => No File FirewallRules: [{C3455AEE-03A9-4F44-9B78-FFF2DE0578D3}] => (Allow) C:\Users\User\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe => No File FirewallRules: [{C27BE4C3-5476-47F3-9275-35D87CAAC39E}] => (Allow) C:\Program Files\Warframe\Downloaded\Public\Warframe.x64.exe => No File FirewallRules: [{CD6D1AEF-A6FF-4C40-98E1-398BCFC1730C}] => (Allow) C:\Program Files\Warframe\Downloaded\Public\Warframe.x64.exe => No File FirewallRules: [{9FB5529A-2FF5-4C2A-BC85-9A8AC7BF6940}] => (Allow) C:\Users\User\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe => No File FirewallRules: [UDP Query User{29C8A962-C702-49E5-A72A-FE8DE38027CB}D:\program files\epic games\gtav\gta5.exe] => (Allow) D:\program files\epic games\gtav\gta5.exe => No File FirewallRules: [TCP Query User{5B9A8B52-CC72-4745-ACB3-61E2E5762924}D:\program files\epic games\gtav\gta5.exe] => (Allow) D:\program files\epic games\gtav\gta5.exe => No File FirewallRules: [UDP Query User{1CDEFFB4-44FB-4E4B-B729-F7E32C1EA0E1}D:\program files\epic games\paladins\binaries\win64\paladins.exe] => (Allow) D:\program files\epic games\paladins\binaries\win64\paladins.exe => No File FirewallRules: [TCP Query User{9353BF26-D61B-48AC-AA2E-2E83DE833A61}D:\program files\epic games\paladins\binaries\win64\paladins.exe] => (Allow) D:\program files\epic games\paladins\binaries\win64\paladins.exe => No File FirewallRules: [UDP Query User{78592F91-D3A6-499D-8389-131917A157E4}D:\program files\epic games\worldwarz\en_us\client\bin\pc\wwzretailegs.exe] => (Allow) D:\program files\epic games\worldwarz\en_us\client\bin\pc\wwzretailegs.exe => No File FirewallRules: [TCP Query User{8B20924E-6370-4964-A38F-C744376C05E2}D:\program files\epic games\worldwarz\en_us\client\bin\pc\wwzretailegs.exe] => (Allow) D:\program files\epic games\worldwarz\en_us\client\bin\pc\wwzretailegs.exe => No File FirewallRules: [{145C6914-0B6A-4CDA-80F6-FA27D33F8F2B}] => (Allow) D:\Program Files\Epic Games\WatchDogs\bin\Watch_Dogs.exe => No File FirewallRules: [{2A7AE39F-F672-42E2-9F56-AAB44EF72683}] => (Allow) D:\Program Files\Epic Games\WatchDogs\bin\Watch_Dogs.exe => No File FirewallRules: [{7D029156-CBEA-4284-AFC7-C5E7811CA3C5}] => (Allow) D:\Program Files\Epic Games\AssassinsCreedSyndicate\ACS.exe => No File FirewallRules: [UDP Query User{786D985B-1714-4967-9D4C-0F5CCE6435A0}D:\program files\epic games\batmanarkhamcity\binaries\win32\batmanac.exe] => (Allow) D:\program files\epic games\batmanarkhamcity\binaries\win32\batmanac.exe => No File FirewallRules: [TCP Query User{EA7F20CC-65DF-4EB7-883A-814CB456555A}D:\program files\epic games\batmanarkhamcity\binaries\win32\batmanac.exe] => (Allow) D:\program files\epic games\batmanarkhamcity\binaries\win32\batmanac.exe => No File FirewallRules: [UDP Query User{681209A7-3C72-4114-911E-C9B7C040D189}D:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) D:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe => No File FirewallRules: [TCP Query User{AD0E07A9-CC92-42BE-92A7-E5EB7291014E}D:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) D:\program files\epic games\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe => No File FirewallRules: [UDP Query User{6E5209D8-FC1E-46D3-A342-DDD40BCDD2CE}D:\program files\epic games\batmanarkhamasylum\binaries\shippingpc-bmgame.exe] => (Allow) D:\program files\epic games\batmanarkhamasylum\binaries\shippingpc-bmgame.exe => No File FirewallRules: [TCP Query User{E4C69439-5808-44D3-97DE-1AB5500B9E3E}D:\program files\epic games\batmanarkhamasylum\binaries\shippingpc-bmgame.exe] => (Allow) D:\program files\epic games\batmanarkhamasylum\binaries\shippingpc-bmgame.exe => No File FirewallRules: [{3278E856-B20F-477F-B3DE-9ACD60F392E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0EA0781A-FE0A-4E1D-AD3F-933EB8E7A927}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{52AA59B8-F986-4CE7-A129-9781D51E9DDF}C:\users\user\appdata\local\programs\opera\72.0.3815.186\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\72.0.3815.186\opera.exe => No File FirewallRules: [UDP Query User{B73F1148-3269-4704-8F6F-C5E7DCACE2AE}C:\users\user\appdata\local\programs\opera\72.0.3815.186\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\72.0.3815.186\opera.exe => No File FirewallRules: [TCP Query User{1F5F21CF-A7C6-4875-8EEA-3ACC3F51D2E1}C:\users\user\appdata\local\programs\opera\72.0.3815.320\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\72.0.3815.320\opera.exe => No File FirewallRules: [UDP Query User{6D4A6D58-750C-4E79-9F2A-77DBDE85E59E}C:\users\user\appdata\local\programs\opera\72.0.3815.320\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\72.0.3815.320\opera.exe => No File FirewallRules: [{C226819F-2A43-40BE-9FFE-2529A5ED3298}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{83796848-DC3A-4A1E-B229-B74C9D75FC85}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{9825FA98-48C4-4463-B074-D073C4DE3D6B}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File FirewallRules: [{EAA98012-7ABF-43AE-B041-6E39B9A4255C}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File FirewallRules: [{6F48E83E-43EA-466B-96B8-238828968F1E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> ) FirewallRules: [{6DD77516-BD7F-4675-BCE0-2B7469AB0F80}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> ) FirewallRules: [TCP Query User{5F8686D2-9207-4659-9051-09818BEAFEFE}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{AFD596A7-E202-4C3D-82AF-443A8AD1DB3A}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{641BCB34-FD4C-4673-8833-9055B4C48E47}C:\users\user\appdata\local\programs\opera\72.0.3815.400\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\72.0.3815.400\opera.exe => No File FirewallRules: [UDP Query User{9BB2B019-90A5-4C01-9CBC-3F7D6CF25337}C:\users\user\appdata\local\programs\opera\72.0.3815.400\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\72.0.3815.400\opera.exe => No File FirewallRules: [TCP Query User{A1DAA58D-D136-4091-A7C8-8ECEFBFBBB7F}C:\users\user\appdata\local\programs\opera\73.0.3856.284\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\73.0.3856.284\opera.exe => No File FirewallRules: [UDP Query User{C7DE2633-4DF3-454E-9F8E-579E5CB39BD6}C:\users\user\appdata\local\programs\opera\73.0.3856.284\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\73.0.3856.284\opera.exe => No File FirewallRules: [{23607FE5-FBCF-459A-9A71-654D750FC0AA}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{58AFF4C4-AECB-4D41-838E-9735022BDB7A}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{E85BED9F-A2B1-4F2B-B83D-5C45AE8802D5}D:\program files\epic games\alienisolation\ai.exe] => (Block) D:\program files\epic games\alienisolation\ai.exe => No File FirewallRules: [UDP Query User{1DC9136A-312A-424F-9B97-C5C998D1D48B}D:\program files\epic games\alienisolation\ai.exe] => (Block) D:\program files\epic games\alienisolation\ai.exe => No File FirewallRules: [{38344D61-94A5-439F-8211-11D44CC00FBA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed] FirewallRules: [{F97D2CC3-16F9-49E4-86C9-8C31C327A334}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed] FirewallRules: [{4BA66A0B-BD6F-48B4-B40A-85DD2EB4435D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Aim Lab\AimLab_tb.exe () [File not signed] FirewallRules: [{C755CC49-7F7C-4F79-B712-805958DE9CF8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Aim Lab\AimLab_tb.exe () [File not signed] FirewallRules: [{44EB40E2-7581-47BD-A0FC-0389B0519921}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{03814757-E35B-4DB6-B44A-C6BB8200AF92}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [TCP Query User{32C362CD-46E9-47DF-81EA-CD0E160ECBE4}C:\users\user\appdata\local\programs\opera\73.0.3856.329\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\73.0.3856.329\opera.exe => No File FirewallRules: [UDP Query User{7C67D42D-BEB4-4215-B29A-3603A0CB9AC5}C:\users\user\appdata\local\programs\opera\73.0.3856.329\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\73.0.3856.329\opera.exe => No File FirewallRules: [{C751E426-9F0F-4870-A446-707D9BA221CF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{BACC4E54-324C-4FF0-98C0-373EAD795CA1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{D6628131-9648-4D5C-87F7-62CC07DA9251}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{108880FB-9052-4565-9B6D-E419DBA0DF06}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{EC723C85-A3F8-4991-A78C-5C126FB3B591}C:\users\user\appdata\local\programs\opera\73.0.3856.344\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\73.0.3856.344\opera.exe => No File FirewallRules: [UDP Query User{13BBF08E-60E7-493A-8CA6-1DAA4CE39E64}C:\users\user\appdata\local\programs\opera\73.0.3856.344\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\73.0.3856.344\opera.exe => No File FirewallRules: [{E5115B3D-230F-47F9-8863-83654118C003}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{7706AAB6-24A6-4285-966D-218AACBD9D5D}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{56DB03A9-9EC4-4D68-8528-76457B298B90}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{B6FC434E-4A96-400F-A140-C22AFCF6AC0F}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{B5F0D349-2A7B-4200-9831-92A29F1E5451}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{9C97EAA6-3EFD-45EE-B4BB-80C61B8C2812}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{FCE9BB82-3146-464A-A544-EE33610E53CE}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> ) FirewallRules: [{8D478E6E-3431-48A0-A67A-5AE60C0D2522}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> ) FirewallRules: [{39000E8F-085A-4BA9-894E-017113E94CB8}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [File not signed] FirewallRules: [{A03B5D70-EA4E-48BE-AAB7-5C2B913357DD}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [File not signed] FirewallRules: [{F2EC8945-1070-41CC-ABEB-46402DAA5291}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.) FirewallRules: [{95269E6C-1C2B-4AA4-B78B-AC611E7D5715}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.) FirewallRules: [{46C52F69-D8BA-4310-9FD1-2D5AB17C8480}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games, Inc.) [File not signed] FirewallRules: [{51419654-C6A2-4ACB-81C3-7010D88B6784}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games, Inc.) [File not signed] FirewallRules: [{AE8B5745-B3D0-4182-9EEB-C6363ACF2664}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [File not signed] FirewallRules: [{B32C1183-5031-41E6-AA40-28D29ED9814A}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [File not signed] FirewallRules: [{B79DE1C9-364F-4F05-992B-B3714FA8E99F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> Valve Corporation) FirewallRules: [{FF84FE40-827F-4F67-B4D8-4BFB204D4617}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> Valve Corporation) FirewallRules: [{2EF2AC82-2368-4189-BF86-9D94726D6726}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> ) FirewallRules: [{872AF88D-3CDA-4109-8A0A-5EF12EC03384}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> ) FirewallRules: [{1E716B21-A84C-405D-9D12-73E626FFF0B0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> ) FirewallRules: [{0B4EB8E8-76E1-4569-9D38-6BBB4BB3FBCC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> ) FirewallRules: [{F5E81E7A-9705-45FA-9FB3-FF956B58D9C0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{12D6D9CC-CB11-48C8-BDF2-ABD89501D26D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{405ABDB9-34A6-4333-A150-90839776F5A8}D:\program files\epic games\rage2\rage2.exe] => (Allow) D:\program files\epic games\rage2\rage2.exe => No File FirewallRules: [UDP Query User{1C2D8D90-AB77-4AAF-8B06-5F9CD2217FC7}D:\program files\epic games\rage2\rage2.exe] => (Allow) D:\program files\epic games\rage2\rage2.exe => No File FirewallRules: [TCP Query User{90DCE6AC-CFCD-479C-A241-C54FCDC1F207}C:\users\user\appdata\local\programs\opera\74.0.3911.203\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\74.0.3911.203\opera.exe => No File FirewallRules: [UDP Query User{D60CDA86-B468-44D7-905E-ACB184D9BF72}C:\users\user\appdata\local\programs\opera\74.0.3911.203\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\74.0.3911.203\opera.exe => No File FirewallRules: [TCP Query User{62697171-7041-4622-B4F1-9446EE5407C6}C:\users\user\appdata\local\programs\opera\74.0.3911.218\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\74.0.3911.218\opera.exe => No File FirewallRules: [UDP Query User{13067778-B6D2-42A0-BCA8-4139DCB336AC}C:\users\user\appdata\local\programs\opera\74.0.3911.218\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\74.0.3911.218\opera.exe => No File FirewallRules: [TCP Query User{EBF21A2B-0C66-4041-A75A-489FD250771A}C:\users\user\appdata\local\programs\opera\75.0.3969.243\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\75.0.3969.243\opera.exe => No File FirewallRules: [UDP Query User{429A60FC-D7A2-4641-9C22-E3C3B333E0A2}C:\users\user\appdata\local\programs\opera\75.0.3969.243\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\75.0.3969.243\opera.exe => No File FirewallRules: [TCP Query User{C1090B98-D835-4EBD-A6CC-F39150CF03EC}D:\program files\epic games\genshinimpact\genshin impact game\genshinimpact.exe] => (Allow) D:\program files\epic games\genshinimpact\genshin impact game\genshinimpact.exe => No File FirewallRules: [UDP Query User{11F1E93E-232B-4A35-A677-F185B27F6C20}D:\program files\epic games\genshinimpact\genshin impact game\genshinimpact.exe] => (Allow) D:\program files\epic games\genshinimpact\genshin impact game\genshinimpact.exe => No File FirewallRules: [TCP Query User{8D2EB7C0-3B3B-467B-BBC8-1159C9420EB3}D:\program files\epic games\overcooked2\overcooked2.exe] => (Allow) D:\program files\epic games\overcooked2\overcooked2.exe () [File not signed] FirewallRules: [UDP Query User{94B62DDC-7AAD-4A1A-8F5F-69F237B651CA}D:\program files\epic games\overcooked2\overcooked2.exe] => (Allow) D:\program files\epic games\overcooked2\overcooked2.exe () [File not signed] FirewallRules: [TCP Query User{79169290-E418-4393-8BDB-95CFD4E582BE}D:\program files\epic games\thestanleyparable\stanley.exe] => (Block) D:\program files\epic games\thestanleyparable\stanley.exe => No File FirewallRules: [UDP Query User{9BF9A55C-6A57-425D-9788-33772814E2A0}D:\program files\epic games\thestanleyparable\stanley.exe] => (Block) D:\program files\epic games\thestanleyparable\stanley.exe => No File FirewallRules: [TCP Query User{023A6BED-BC91-4AD5-A095-09673C114FB8}D:\program files\epic games\totalwarsagatroy\troy.exe] => (Block) D:\program files\epic games\totalwarsagatroy\troy.exe => No File FirewallRules: [UDP Query User{384C28E7-DFF6-40CF-817F-0A0600A0B01B}D:\program files\epic games\totalwarsagatroy\troy.exe] => (Block) D:\program files\epic games\totalwarsagatroy\troy.exe => No File FirewallRules: [TCP Query User{D6D1EBC7-ECC0-49D4-B3ED-A53315B9D9D2}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{B5FB080D-2E35-46C6-BB98-E13B0A951C85}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{A7C1BFA2-F18D-4214-BA6D-EC38C3DD0FCE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B22D441A-F7E0-4044-8252-0EE367FDC812}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C1388B1A-F85F-4419-B0A7-C43B3F0CA5CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{6EC7C93E-7540-475A-88C4-6ED8D9372E88}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{9F1FC320-F0A1-4409-ADDA-D077A1B88F69}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\user\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{A5CACE2B-4F80-4620-8711-363ECA1F3DF6}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\user\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{787D91FF-CCB3-4F67-9D7E-D446E510987D}C:\users\user\appdata\local\programs\opera\77.0.4054.203\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\77.0.4054.203\opera.exe => No File FirewallRules: [UDP Query User{176BE3C1-5880-42B4-9BA2-15136032B8CA}C:\users\user\appdata\local\programs\opera\77.0.4054.203\opera.exe] => (Block) C:\users\user\appdata\local\programs\opera\77.0.4054.203\opera.exe => No File FirewallRules: [{65113FDA-2B99-4C72-919A-BB9077EB14E9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hades\x64\Hades.exe () [File not signed] FirewallRules: [{69B92390-FDE3-4799-AE11-B10981533533}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hades\x64\Hades.exe () [File not signed] FirewallRules: [{8DFC869D-CAAF-4CFE-A910-FEC0306FF5CF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hades\x64Vk\Hades.exe () [File not signed] FirewallRules: [{75B5AE24-FCB4-4E80-9495-4B6C0D99C659}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hades\x64Vk\Hades.exe () [File not signed] FirewallRules: [{E2F44064-B81B-4490-AC58-A670C6DDAE9A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hades\x86\Hades.exe () [File not signed] FirewallRules: [{A8AD8A4F-687F-4354-B54C-950F124A2A62}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hades\x86\Hades.exe () [File not signed] FirewallRules: [{8A5E30E3-0E59-4880-ACE3-E467DCE8B032}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{F5F1EB9F-CAC8-4D30-AE95-477FC18E5E1E}] => (Allow) C:\WINDOWS\system32\winrmsrv.exe => No File ==================== Restore Points ========================= 11-08-2021 21:29:50 Windows Modules Installer ==================== Faulty Device Manager Devices ============ Name: Standard PS/2 Keyboard Description: Standard PS/2 Keyboard Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Microsoft PS/2 Mouse Description: Microsoft PS/2 Mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Event log errors: ======================== Application errors: ================== Error: (08/11/2021 09:31:29 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress. . Error: (08/11/2021 09:31:29 PM) (Source: VSS) (EventID: 13) (User: ) Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress. ] Error: (08/11/2021 09:31:29 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress. . Error: (08/11/2021 09:31:29 PM) (Source: VSS) (EventID: 13) (User: ) Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress. ] Error: (08/11/2021 09:19:12 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: The Cryptographic Services service failed to initialise the Catalogue Database. The ESENT error was: -1409. System errors: ============= Error: (08/11/2021 09:31:29 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: The Windows Update service did not shut down properly after receiving a pre-shutdown control. Error: (08/11/2021 09:21:13 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY) Description: DCOM got error "1069" attempting to start the service lfsvc with arguments "Unavailable" in order to run the server: {08D9DFDF-C6F7-404A-A20F-66EEC0A609CD} Error: (08/11/2021 09:21:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Geolocation Service service failed to start due to the following error: The service did not start due to a logon failure. Error: (08/11/2021 09:21:13 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: The lfsvc service was unable to log on as NT AUTHORITY\SYSTEM with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). Error: (08/11/2021 09:21:11 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: The server {A47979D2-C419-11D9-A5B4-001185AD2B89} did not register with DCOM within the required timeout. Error: (08/11/2021 09:19:49 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The Intel(R) Dynamic Application Loader Host Interface Service service depends on the IP Helper service which failed to start because of the following error: The operation completed successfully. Error: (08/11/2021 09:19:11 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: The Printer Extensions and Notifications service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. Error: (08/11/2021 09:19:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Network List Service service terminated with the following error: The device is not ready. Windows Defender: ================ Date: 2021-08-11 21:30:55 Description: Microsoft Defender Antivirus scan has been stopped before completion. Scan Type: Antimalware Scan Parameters: Full Scan  ==================== Memory info =========================== BIOS: American Megatrends Inc. 1.90 02/23/2016 Motherboard: MSI B150A GAMING PRO (MS-7978) Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz Percentage of memory in use: 50% Total physical RAM: 8136 MB Available physical RAM: 4000.59 MB Total Virtual: 17864 MB Available Virtual: 11591.08 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:222.46 GB) (Free:116.79 GB) NTFS Drive d: (New Volume) (Fixed) (Total:931.5 GB) (Free:719.79 GB) NTFS \\?\Volume{89272b00-7fc7-4e00-bbd2-f6f54a028674}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS \\?\Volume{b1675ca1-d43d-421d-90ae-dfe1485612ba}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS \\?\Volume{89c7d842-2982-45a2-bfa1-e640c8ff006e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt =======================