Hello,
I'm not very well versed in any of this, but I recently did a massive walware cleanout and have been running the likes of Malwarebytes and CCleaner. After getting rid of what I thought was absolutely everything, I still repeatedly get the attached error messages from Windows Script Host
Which suggests to me that there are still files somewhere that are using wscript to try and run these (now deleted) javascript files.
I can't seem to hunt them down anywhere and every time I close or hit OK on the windows, within a minute they have reappeared. Any help would be much appreciated and my most humble and wholehearted thanks in advance.
I'll post my FRST and Addition text files below:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-08.2024
Ran by Stuart (administrator) on DESKTOP-MOCH8QP (Gigabyte Technology Co., Ltd. B760 AORUS ELITE AX) (21-08-2024 11:14:22)
Running from E:\Desktop\FRST64.exe
Loaded Profiles: Stuart
Platform: Microsoft Windows 10 Pro Version 22H2 19045.4780 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.8806\Agent.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.0.1.281\DiscoverySrv.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\Corsair iCUE5 Software\crashpad_handler.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\SpaceRecall\EaseUSStartHelper.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\SpaceRecall\SpacePop.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe
(D:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe ->) (LogMeIn, Inc. -> LogMeIn, Inc.) D:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(D:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(D:\Program Files\PostgreSQL\13\bin\pg_ctl.exe ->) (PostgreSQL Global Development Group) [File not signed] D:\Program Files\PostgreSQL\13\bin\postgres.exe <8>
(Discord Inc. -> Discord Inc.) C:\Users\stuar\AppData\Local\Discord\app-1.0.9158\Discord.exe <6>
(DriverStore\FileRepository\u0405491.inf_amd64_cb31d9b7ce8e6841\B405281\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0405491.inf_amd64_cb31d9b7ce8e6841\B405281\atieclxx.exe
(E:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.258.0.6\OverwolfHelper.exe
(E:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.258.0.6\OverwolfHelper64.exe
(E:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Users\stuar\AppData\Local\Overwolf\ProcessCache\0.258.0.6\cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj\curseforge.exe
(E:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) E:\Program Files (x86)\Overwolf\0.258.0.6\OverwolfBrowser.exe <4>
(explorer.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Blizzard Entertainment, Inc. -> Blizzard Entertainment) D:\Program Files (x86)\Blizzard App\Battle.net.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Mega Limited -> Mega Limited) C:\ProgramData\MEGAsync\MEGAsync.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2408.1001.14.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SnippingTool.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIYHE.EXE
(explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\stuar\AppData\Roaming\Spotify\Spotify.exe <6>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\steam.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Gigabyte Technology CO.) C:\Program Files\GIGABYTE\Smart Backup\RPMDaemon.exe
(H:\Ubisoft Game Launcher\upc.exe ->) (Ubisoft Entertainment Sweden AB -> Ubisoft) H:\Ubisoft Game Launcher\UplayWebCore.exe <7>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Overwolf Ltd -> Overwolf LTD) E:\Program Files (x86)\Overwolf\Overwolf.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0405491.inf_amd64_cb31d9b7ce8e6841\B405281\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe
(services.exe ->) (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\ensserver.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair Device Control Service\bin\CorsairDeviceControlService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) D:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Hi-Rez Studios) [File not signed] D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_8f2d0015d04700ee\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_effe9612081e9042\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn Inc.) D:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_987f8cede005f427\amdfendrsr.exe
(services.exe ->) (PostgreSQL Global Development Group) [File not signed] D:\Program Files\PostgreSQL\13\bin\pg_ctl.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.MSPaint_6.2405.19017.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe
(svchost.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AURA\AsRogAuraGpuDllServer.exe
(svchost.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) D:\EaseUS CleanGenius\bin\CleanGenius.exe
(svchost.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files\GIGABYTE\Control Center\GCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.5142.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe <2>
(Ubisoft Entertainment Sweden AB -> Ubisoft) H:\Ubisoft Game Launcher\upc.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Sonic Studio 3] => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3svc32.exe [1210368 2016-12-15] (ASUSTeK COMPUTER INC.) [File not signed]
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe [3495808 2022-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [189480 2024-08-21] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-12-06] (Adobe Inc. -> )
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [7811960 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [4407656 2024-07-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [5094080 2017-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [Discord] => C:\Users\stuar\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3542032 2022-11-07] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [193592 2023-12-06] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [146943096 2022-06-08] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [Battle.net] => D:\Program Files (x86)\Blizzard App\Battle.net.exe [981640 2024-07-29] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3360360 2024-06-25] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [EPLTarget\P0000000000000002] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIYHE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [MicrosoftEdgeAutoLaunch_7DD9957D6AA32BAD75EB4A0420AC1FF2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814952 2024-08-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [Spotify] => C:\Users\stuar\AppData\Roaming\Spotify\Spotify.exe [35433288 2024-08-15] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [Ubisoft Game Launcher] => H:\Ubisoft Game Launcher\UbisoftConnect.exe [520000 2024-08-05] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [AF_uuid_2139460] => 87f1ba37-b7a8-4440-9446-37ff3dbcf45f (No File)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [AF_counter_2139460] => 3 (No File)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [145800 2023-06-14] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [Overwolf] => E:\Program Files (x86)\overwolf\OverwolfLauncher.exe [1832968 2024-08-05] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45120304 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Policies\Explorer\DisallowRun: [1] irsetup.exe
HKU\S-1-5-21-2819170693-1847857810-888430003-1002\...\Run: [MicrosoftEdgeAutoLaunch_D98FC9C3ABF09474F39A32D4B4D0E4AA] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3814952 2024-08-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2819170693-1847857810-888430003-1002\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [193592 2023-12-06] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-2819170693-1847857810-888430003-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Stu\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [41361280 2021-10-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2819170693-1847857810-888430003-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Stu\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-2819170693-1847857810-888430003-1002\...\RunOnce: [Uninstall 19.043.0304.0013\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Stu\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64" [0 2021-10-21] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-21-2819170693-1847857810-888430003-1002\...\RunOnce: [Uninstall 19.043.0304.0013] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Stu\AppData\Local\Microsoft\OneDrive\19.043.0304.0013" [0 2021-10-21] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3542032 2022-11-07] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Print\Monitors\EPSON ET-3850 Series 64MonitorBE: C:\Windows\system32\E_YLMBYHE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON XP-640 Series 64MonitorBE: C:\Windows\system32\E_YLMBRHE.DLL [182784 2015-12-08] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\127.0.6533.120\Installer\chrmstp.exe [2024-08-15] (Google LLC -> Google LLC)
Startup: C:\Users\stuar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CloudDocker.lnk [2023-12-05]
ShortcutTarget: CloudDocker.lnk -> C:\Users\stuar\AppData\Roaming\wcmapi\liveupdate.exe (No File)
Startup: C:\Users\stuar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2023-04-23]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {A53D94B0-8A70-4317-A832-E5C2ECFE5EF6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {2E10EECF-6654-4FAE-A9C4-89B0F3664E9D} - System32\Tasks\AmbientLED => C:\Program Files (x86)\GIGABYTE\AmbientLED\AmbLED.exe [876976 2018-09-17] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
Task: {15EEEE28-D81B-4B09-869E-61CC35B53194} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1031384 2024-07-14] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {CE13F711-3F7E-4527-A23E-5E0B2F241529} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1031384 2024-07-14] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {8150B621-DA56-4D64-916F-EA5D422AC006} - System32\Tasks\ASUS\AsRogAuraGpuDllServer => C:\Program Files (x86)\ASUS\AURA\AsRogAuraGpuDllServer.exe [247256 2017-06-12] (ASUSTeK Computer Inc. -> )
Task: {2F587378-8D5A-4D65-8578-A57333E6D2EE} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe -schedule (No File)
Task: {6969ED18-2E59-4596-8813-5E175CCC2DCF} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (No File)
Task: {259B6E3F-0127-4693-9CA9-0A03BCE50018} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1461200 2016-10-07] (ASUSTeK Computer Inc. -> )
Task: {A42D8CFA-23AB-4108-BD64-0FA9CECD0C3E} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe (No File)
Task: {3E1E51A1-80B6-4EE9-B4EA-C3321DE96568} - System32\Tasks\ASUS\RC TweakIt Server Execute => C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBclk.exe [7263160 2016-05-03] (ASUSTeK Computer Inc. -> )
Task: {1EC9886A-5D45-4CBD-8A9A-C69C0C3A9915} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.0.1.281\WatchDog.exe [1150456 2024-07-09] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.0.1.281\repair
Task: {3D2DBF5D-B174-49BA-94BD-4C151E98E6C4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-08-16] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {07E77119-5614-4214-AF6F-C3327414EB58} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5075248 2024-08-16] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "dc07bf1f-7265-45af-9652-9fb09f03b118" --version "6.27.11214" --silent
Task: {D802B624-5453-41FB-BAE7-941848414DFB} - System32\Tasks\CCleanerSkipUAC - Stuart => C:\Program Files\CCleaner\CCleaner.exe [39072560 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {7EB95AAD-EDF9-4C8E-AA9E-3D2FC861C27B} - System32\Tasks\CleanGenius => D:\EaseUS CleanGenius\bin\CleanGenius.exe [650432 2023-04-23] (CHENGDU YIWO Tech Development Co., Ltd. -> )
Task: {019E7221-85BD-4B2A-96CA-FB2C3FF4409D} - System32\Tasks\Companies => C:\Windows\system32\wscript.exe [196608 2024-08-20] (Microsoft Windows -> Microsoft Corporation) -> "C:\Users\stuar\AppData\Local\TravelLogix LLC\TravelLogix.js"
Task: {4C6DAAD3-DADF-4879-B3DE-4ACD096F4833} - System32\Tasks\DragonStart => C:\Program -> Files (x86)\Realtek\Dragon\Dragon.exe
Task: {412FBD97-82C2-432F-8573-D4268EBF3D64} - System32\Tasks\EPSON ET-3850 Series Update {656A2D2C-D766-4C97-804B-58A4D9FC6A32} => C:\Windows\System32\spool\drivers\x64\3\E_YTSYHE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {958B3158-6ACB-402B-A78F-AED1ACABF1A2} - System32\Tasks\Exhibition => C:\Windows\system32\wscript.exe [196608 2024-08-20] (Microsoft Windows -> Microsoft Corporation) -> "C:\Users\stuar\AppData\Local\ProtezioneDati Inc\Proteggi.js"
Task: {FE6A5670-F09F-4940-8B91-FD7EF5FADB90} - System32\Tasks\GCC => C:\Program Files\GIGABYTE\Control Center\GCC.exe [35229296 2024-03-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) -> C:\Program Files\GIGABYTE\Control Center\\-b
Task: {EFC355FE-90AE-4A70-BD30-2DB0F9B0D797} - System32\Tasks\Gener8UpdateTaskUserS-1-5-21-2819170693-1847857810-888430003-1001Core => C:\Users\stuar\AppData\Local\Gener8\Update\Gener8Update.exe /c (No File)
Task: {B428CB0B-3AF8-4CE6-A2E2-DC61F510D051} - System32\Tasks\Gener8UpdateTaskUserS-1-5-21-2819170693-1847857810-888430003-1001UA => C:\Users\stuar\AppData\Local\Gener8\Update\Gener8Update.exe /ua /installsource scheduler (No File)
Task: {2B1A8BCD-7D6C-40E2-8543-4731C464CA0D} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem129.0.6651.0{824DE89A-CA7F-4DA6-881E-18C97A7E79CF} => C:\Program Files (x86)\Google\GoogleUpdater\129.0.6651.0\updater.exe [4906600 2024-08-11] (Google LLC -> Google LLC)
Task: {2BC87604-8AA3-4ED5-8CF0-1987788D8F64} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel® Corporation)
Task: {DE314B24-A53A-40F3-B28D-A931B949A8F8} - System32\Tasks\Intel\Intel Telemetry 3 => C:\Program Files\Intel\Telemetry 3.0\lrio.exe [6045240 2024-02-14] (Intel Corporation -> Intel Corporation)
Task: {0D0BDF3E-23E2-4E48-9737-CB3489878064} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2819170693-1847857810-888430003-1001 => C:\ProgramData\MEGAsync\MEGAupdater.exe [2531592 2024-06-11] (Mega Limited -> )
Task: {B2C8487C-B79E-4294-9854-6EF11EE0F918} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe [12288 2020-09-09] (Microsoft Corporation) [File not signed]
Task: {3E27EE2B-64B4-4B98-9528-6CD02CC3CE33} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe [12288 2020-09-09] (Microsoft Corporation) [File not signed]
Task: {BF6068C5-FD1A-4D2C-AD81-E34E3C02ABA0} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1031384 2024-07-14] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {D8350D1A-644E-4A62-886E-102B749DF3DB} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2370056 2024-08-05] (Overwolf Ltd -> Overwolf LTD) -> E:\Program Files (x86)\overwolf\/RunningFrom Schedule
Task: {D1C3C637-078C-4508-8D27-F2C4A8F0F49F} - System32\Tasks\SS3Svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3Svc32.exe [1210368 2016-12-15] (ASUSTeK COMPUTER INC.) [File not signed]
Task: {D915E85A-0EB1-4196-9C47-8FA316C8DFA9} - System32\Tasks\SS3svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3svc64.exe [793088 2016-12-15] (ASUSTeK COMPUTER INC.) [File not signed]
Task: {7A669C63-650D-45BF-953D-A8B0C2D5BC3B} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [823512 2024-07-15] (Advanced Micro Devices -> AMD)
Task: {24427F83-18FC-405D-BED9-3822B8D06FA2} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {3478A660-1D5E-4612-BF12-D0D270D1A349} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {1B6DF8C6-3A0D-480D-9B31-C395F2FA0054} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON ET-3850 Series Update {656A2D2C-D766-4C97-804B-58A4D9FC6A32}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSYHE.EXE:/EXE:{656A2D2C-D766-4C97-804B-58A4D9FC6A32} /F:UpdateWORKGROUP\DESKTOP-MOCH8QP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\PC Cleaner automatic scan and notifications.job => DESKTOP MOCH8QP Stuart
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{01b4c40d-df35-487f-a8e9-69c6c3956462}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{01b4c40d-df35-487f-a8e9-69c6c3956462}: [DhcpDomain] hsd1.ut.comcast.net.
Tcpip\..\Interfaces\{0434557d-9cd3-48db-aff5-d78fd6b8d393}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{0434557d-9cd3-48db-aff5-d78fd6b8d393}: [DhcpDomain] hsd1.ut.comcast.net.
Tcpip\..\Interfaces\{93123211-9629-4E04-82F0-EA2E4F221468}: [NameServer] 162.252.172.57,149.154.159.92
Tcpip\..\Interfaces\{c887dab3-eaa7-4a45-8752-26b8d7ef4af9}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{c887dab3-eaa7-4a45-8752-26b8d7ef4af9}: [DhcpDomain] hsd1.ut.comcast.net.
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\stuar\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-21]
Edge Extension: (Google Docs Offline) - C:\Users\stuar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-26]
Edge Extension: (Edge relevant text changes) - C:\Users\stuar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\stuar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-06-26]
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll [2022-11-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2022-11-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Default [2024-08-21]
CHR Extension: (Whoer VPN) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgojmfochfikphincbhokimmmjenhhgk [2024-05-23]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-09]
CHR Extension: (Google Docs Offline) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-29]
CHR Extension: (Chrome Web Store Payments) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-11-29]
CHR Profile: C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-08-21]
CHR HomePage: Profile 1 -> hxxp://www.google.com/
CHR StartupUrls: Profile 1 -> "hxxp://google.com/"
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-21]
CHR Extension: (Google Docs Offline) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-09]
CHR Extension: (AdBlock — block ads across the web) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-08-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-09]
CHR Profile: C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-08-21]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-19]
CHR Extension: (Google Docs Offline) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\stuar\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-19]
CHR Profile: C:\Users\stuar\AppData\Local\Google\Chrome\User Data\System Profile [2024-08-10]
CHR HKU\S-1-5-21-2819170693-1847857810-888430003-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [384000 2019-03-22] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe [963544 2016-08-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsRogAuraService; C:\Program Files (x86)\ASUS\AURA\AsRogAuraService.exe [1162200 2017-06-12] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] (ASUSTeK Computer Inc. -> ) [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe [2394072 2016-09-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [537304 ] (Advanced Micro Devices -> AMD)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2569352 2024-08-01] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2574864 2023-07-20] (Bitdefender SRL -> Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15737128 2024-08-01] (BattlEye Innovations e.K. -> )
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [746648 2021-01-03] (BitRaider LLC -> BitRaider, LLC)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1086256 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
R3 CorsairCpuIdService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe [300584 2024-08-21] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R3 CorsairDeviceControlService; C:\Program Files\Corsair\Corsair Device Control Service\bin\CorsairDeviceControlService.exe [2368040 2024-08-02] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [175656 2024-08-21] (Corsair Memory, Inc. -> )
R2 CorsairService; C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2024-08-21] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2289856 2017-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [69997664 2024-06-14] (Electronic Arts, Inc. -> Electronic Arts)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [16589928 2024-06-25] (Electronic Arts, Inc. -> Electronic Arts)
R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [36872 2024-02-26] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-12-15] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-10-22] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [150640 2023-11-05] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [375248 2023-10-22] (Epic Games Inc. -> Epic Games, Inc.)
R3 EPMVssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{C9671F96-BECE-4E26-9F90-24A576A58A53} [22384 2023-12-05] (Microsoft Windows -> Microsoft Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2022-03-29] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2117096 2023-02-19] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2023-02-19] (GOG Sp. z o.o. -> GOG.com)
R2 Hamachi2Svc; D:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [4920184 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.)
U2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-07-11] (Hi-Rez Studios) [File not signed]
R3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [459304 2024-08-21] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 Intel® Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel® Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11523704 2022-06-08] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8965728 2024-08-20] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-08-20] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [23954152 2022-03-14] (My.Com B.V. -> My.com B.V.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [12917888 2024-01-09] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2562776 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [3481312 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2370056 2024-08-05] (Overwolf Ltd -> Overwolf LTD)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2023-12-12] (Even Balance, Inc. -> )
R2 postgresql-x64-13; D:\Program Files\PostgreSQL\13\bin\pg_ctl.exe [117248 2021-08-09] (PostgreSQL Global Development Group) [File not signed]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [688624 2024-07-09] (Bitdefender SRL -> Bitdefender)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-15] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300552 2022-11-06] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; F:\Program Files\Rockstar Games\Launcher\RockstarService.exe [6101488 2024-03-27] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [537912 2022-10-23] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522096 2024-08-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 TavernWorker_1_1; C:\Program Files\IRONMACE\Tavern\Steam\TavernApp_1_1\TavernWorker.exe [24078768 2024-08-06] (IRONMACE Co., Ltd. -> IRONMACE Co., Ltd.)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7099632 2021-07-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12470112 2024-08-01] (KRAFTON, Inc. -> KRAFTON, Inc)
R2 GigabyteUpdateService; %SystemRoot%\system32\GigabyteUpdateService.exe 2\C:\Windows\system32\ [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_987f8cede005f427\amdfendrmgr.sys [36040 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0405491.inf_amd64_cb31d9b7ce8e6841\B405281\amdkmdag.sys [106157352 2024-07-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63008 2024-05-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-05-23] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287232 2022-08-18] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-08-18] (Microsoft Corporation) [File not signed]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2022-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess8F050F5E415C1A5882EB9FF7CE2BC59B7BE3A953; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairLLAccess64.sys [23728 2024-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessE5624B0A345A7E17A08498BFEDC2D42A7CBA71C2; C:\Program Files\Corsair\Corsair Device Control Service\bin\CorsairLLAccess64.sys [23632 2024-08-02] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [47032 2024-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [22968 2024-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44592 2024-08-21] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [34512 2024-05-29] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-07-31] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-07-31] (Disc Soft Ltd -> Disc Soft Ltd)
S3 ebrntdrv; C:\WINDOWS\system32\ebrntdrv.sys [27728 2023-06-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 ecmntdrv; C:\WINDOWS\system32\ecmntdrv.sys [36280 2023-02-17] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S3 epmdkdrv; C:\WINDOWS\system32\epmdkdrv.sys [27728 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 epmspacedrv; C:\WINDOWS\system32\epmspacedrv.sys [27728 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2022-12-29] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows ® Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-08-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [76344 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUEDKEPM; C:\WINDOWS\System32\drivers\EUEDKEPM.sys [24656 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R3 gdrv2; C:\WINDOWS\gdrv2.sys [32008 2024-08-21] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv3; C:\WINDOWS\System32\drivers\gdrv3.sys [52528 2024-05-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 GLCKIO; C:\Program Files (x86)\ASUS\AURA\690b33e1-0462-4e84-9bea-c7552b45432a.sys [14976 2017-06-24] (ASUSTeK Computer Inc. -> )
S3 GPU-Z-v2; C:\Users\stuar\AppData\Local\Temp\GPU-Z-v2.sys [51392 2024-08-20] (TechPowerUp LLC -> ) <==== ATTENTION
R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-18] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation)
S1 ISODrive; D:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [124608 2020-07-10] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [44488 2022-06-08] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [33528 2022-05-30] (WDKTestCert builder,132743893872553407 -> Logitech)
S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [21704 2022-05-30] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [62904 2022-05-30] (WDKTestCert builder,132743893872553407 -> Logitech)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [231504 2024-08-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-08-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [201280 2024-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78800 2024-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2024-08-21] (Malwarebytes Inc. -> Malwarebytes)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [23190616 2022-03-14] (My.Com B.V. -> My.com B.V.)
S3 MyPortIO; C:\Program Files\GIGABYTE\Control Center\Lib\MBStorage\MyPortIO_x64.sys [29184 2023-12-05] (Nuvoton Technology Corporation -> Nuvoton Technology Corp.)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [79504 2016-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows ® Win 7 DDK provider)
S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70712 2021-09-29] (Realtek Semiconductor Corp. -> Realtek)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [33496 2017-01-11] (Mad Catz Inc -> Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [69080 2017-01-11] (Mad Catz Inc -> Saitek)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-18] (Bruce James -> Scarlet.Crush Productions)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46408 2017-06-01] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 tapsurfshark; C:\WINDOWS\System32\drivers\tapsurfshark.sys [38728 2019-05-22] (WDKTestCert Lenovo,131775874531219913 -> The OpenVPN Project)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2021-10-21] (Adlice -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 wintunshark; C:\WINDOWS\system32\DRIVERS\wintunshark.sys [31096 2020-09-17] (WDKTestCert nikod,132409123292239223 -> Surfshark Ltd)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-07-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 BRDriver64_1_4_0_5C00A8AF; \??\C:\ProgramData\BitRaider\support\1.4.0\5C00A8AF\BRDriver64.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
S3 NEProtect; \??\H:\SteamLibrary\steamapps\common\Once Human\NEProtect.sys [X]
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
S4 nvlddmkm; \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_bd530e4cbd42e0a3\nvlddmkm.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S3 SIUSBXP; \??\C:\Windows\system32\drivers\SiUSBXp.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-08-21 11:14 - 2024-08-21 11:14 - 000000000 ____D C:\FRST
2024-08-21 10:42 - 2024-08-21 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2024-08-21 10:41 - 2024-08-21 10:41 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-08-21 08:24 - 2024-08-21 08:24 - 000000000 ____D C:\ProgramData\Piriform
2024-08-21 08:23 - 2024-08-21 10:42 - 000000000 ____D C:\Program Files\CCleaner
2024-08-21 08:23 - 2024-08-21 10:41 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-08-21 08:23 - 2024-08-21 08:23 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-08-21 08:23 - 2024-08-21 08:23 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-08-21 08:23 - 2024-08-21 08:23 - 000002908 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Stuart
2024-08-21 08:23 - 2024-08-21 08:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-08-21 07:51 - 2024-08-21 07:51 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Overwolf
2024-08-21 07:27 - 2024-08-21 07:28 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-08-20 16:41 - 2024-08-20 16:41 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-20 16:39 - 2024-08-20 16:39 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-08-20 16:23 - 2024-08-20 16:23 - 000000000 ___HD C:\$WinREAgent
2024-08-20 13:58 - 2024-08-21 11:01 - 000000000 ____D C:\Users\stuar\AppData\Local\Malwarebytes
2024-08-20 13:58 - 2024-08-20 13:58 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-08-20 13:58 - 2024-08-20 13:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-08-20 13:58 - 2024-08-20 13:58 - 000000000 ____D C:\Program Files\Malwarebytes
2024-08-20 11:54 - 2024-08-20 11:54 - 000000000 ____D C:\ProgramData\obs-studio
2024-08-20 11:51 - 2024-08-21 07:51 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2024-08-20 11:51 - 2024-08-20 11:51 - 000004408 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2024-08-20 11:51 - 2024-08-20 11:51 - 000000000 ____D C:\ProgramData\Overwolf
2024-08-20 11:48 - 2024-08-21 10:42 - 000000000 ____D C:\Users\stuar\AppData\Local\Overwolf
2024-08-10 14:27 - 2024-08-10 14:27 - 000000742 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z.lnk
2024-08-06 15:35 - 2024-08-06 15:35 - 000000000 ____D C:\Users\stuar\AppData\Local\IRONMACE
2024-08-06 15:35 - 2024-08-06 15:35 - 000000000 ____D C:\Users\stuar\AppData\Local\DungeonCrawler
2024-08-06 15:35 - 2024-08-06 15:35 - 000000000 ____D C:\ProgramData\Tavern
2024-08-06 15:35 - 2024-08-06 15:35 - 000000000 ____D C:\Program Files\IRONMACE
2024-08-05 13:26 - 2024-08-05 13:26 - 000000000 ____D C:\Users\stuar\AppData\Local\HalfSwordUE5
2024-08-01 13:59 - 2024-08-21 10:41 - 000003120 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-08-01 13:59 - 2024-08-01 13:59 - 000003302 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2024-08-01 13:59 - 2024-08-01 13:59 - 000003194 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2024-08-01 13:58 - 2024-08-21 10:41 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-08-01 13:58 - 2024-08-01 13:58 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2024-08-01 13:58 - 2024-08-01 13:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2024-08-01 13:58 - 2024-08-01 13:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2024-08-01 13:38 - 2024-08-01 13:38 - 000000000 ____D C:\Users\stuar\AppData\Local\TslGame
2024-07-28 21:46 - 2024-07-29 06:48 - 000000000 ____D C:\ProgramData\USVFS
2024-07-28 18:50 - 2024-07-28 19:01 - 000000000 ____D C:\Users\stuar\AppData\Local\Wabbajack
2024-07-28 12:58 - 2024-07-19 09:48 - 002101032 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-07-28 12:58 - 2024-07-19 09:48 - 002101032 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-07-28 12:58 - 2024-07-19 09:48 - 001659184 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-07-28 12:58 - 2024-07-19 09:48 - 001659184 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-07-28 12:58 - 2024-07-19 09:48 - 001466176 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 001466176 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 001307624 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 001307624 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 001031360 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2024-07-28 12:58 - 2024-07-19 09:48 - 000632104 _____ C:\WINDOWS\system32\GameManager64.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 000558784 _____ C:\WINDOWS\system32\atieah64.exe
2024-07-28 12:58 - 2024-07-19 09:48 - 000526232 _____ C:\WINDOWS\system32\EEURestart.exe
2024-07-28 12:58 - 2024-07-19 09:48 - 000479632 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 000280256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 000236736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 000196288 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 000190656 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2024-07-28 12:58 - 2024-07-19 09:48 - 000150208 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 002287912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 002152744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 001797008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 001797008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 001347872 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 001254808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 001077392 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 001055536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 000473488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 000421568 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2024-07-28 12:58 - 2024-07-19 09:47 - 000142632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 000140176 _____ C:\WINDOWS\system32\amdxc64.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 000117040 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 000116624 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2024-07-28 12:58 - 2024-07-19 09:47 - 000075048 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 110292776 _____ C:\WINDOWS\system32\amd_comgr_2.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 105432984 _____ C:\WINDOWS\system32\amd_comgr.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 093902232 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 007598784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 007373512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 002921872 _____ C:\WINDOWS\system32\amd-smi.exe
2024-07-28 12:58 - 2024-07-19 09:46 - 000801584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000785088 _____ C:\WINDOWS\system32\hiprt0200064.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000678696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000591144 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000545984 _____ C:\WINDOWS\system32\dgtrayicon.exe
2024-07-28 12:58 - 2024-07-19 09:46 - 000471336 _____ C:\WINDOWS\system32\amdlogum.exe
2024-07-28 12:58 - 2024-07-19 09:46 - 000449432 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000344256 _____ C:\WINDOWS\system32\clinfo.exe
2024-07-28 12:58 - 2024-07-19 09:46 - 000227624 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000197416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000177040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000145816 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000051504 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2024-07-28 12:58 - 2024-07-19 09:46 - 000048320 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 021762456 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 020438312 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64_6.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 001726536 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 001401000 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000552984 _____ C:\WINDOWS\system32\amdmiracast.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000178864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000168648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000168640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000161792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000154032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000140744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000140736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2024-07-28 12:58 - 2024-07-19 09:45 - 000134400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2024-07-28 12:58 - 2024-07-19 09:07 - 113329392 _____ C:\WINDOWS\system32\amdxc64.so
2024-07-28 12:58 - 2024-07-19 09:06 - 009979672 _____ C:\WINDOWS\system32\hiprt02000_amd.hipfb
2024-07-28 12:58 - 2024-07-19 09:06 - 002459536 _____ C:\WINDOWS\system32\oro_compiled_kernels.hipfb
2024-07-28 12:58 - 2024-05-16 13:58 - 000063008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdxe.sys
2024-07-28 12:52 - 2024-07-28 12:52 - 000000000 ____D C:\WINDOWS\Panther
2024-07-27 10:32 - 2024-07-27 10:32 - 000000000 ____D C:\Users\stuar\AppData\Local\EuUpdater
2024-07-24 13:30 - 2024-07-24 13:30 - 000000000 ____D C:\Program Files (x86)\DAZ 3D
2024-07-24 13:29 - 2024-07-24 13:30 - 000000000 ____D C:\ProgramData\DAZ 3D
2024-07-24 13:29 - 2024-07-24 13:30 - 000000000 ____D C:\Program Files\DAZ 3D
2024-07-24 13:28 - 2024-07-24 13:45 - 000000000 ____D C:\Users\stuar\AppData\Roaming\DAZ 3D
2024-07-24 13:27 - 2024-07-24 13:30 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAZ 3D
2024-07-23 15:20 - 2024-07-23 15:20 - 000000000 ____D C:\Users\stuar\AppData\Local\Firaxis Games
2024-07-23 15:19 - 2024-07-23 15:20 - 000000000 ____D C:\Users\stuar\AppData\Local\T2GP Launcher
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-08-21 11:14 - 2017-07-16 14:14 - 000000000 ____D C:\Users\stuar\AppData\Local\Battle.net
2024-08-21 11:11 - 2019-12-07 03:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-21 11:11 - 2017-07-01 04:23 - 000000000 ____D C:\Users\stuar\AppData\Local\CrashDumps
2024-08-21 10:56 - 2017-06-24 03:59 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Microsoft\MMC
2024-08-21 10:44 - 2023-12-04 12:30 - 000003394 _____ C:\WINDOWS\system32\Tasks\CleanGenius
2024-08-21 10:43 - 2023-05-17 16:46 - 000000000 ____D C:\Users\stuar\AppData\Local\Spotify
2024-08-21 10:43 - 2023-03-03 08:31 - 000000000 ____D C:\Users\stuar\AppData\Roaming\discord
2024-08-21 10:42 - 2023-06-04 14:02 - 000000000 ____D C:\Program Files\Corsair
2024-08-21 10:42 - 2023-05-17 16:46 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Spotify
2024-08-21 10:42 - 2019-12-07 03:13 - 000000000 ____D C:\WINDOWS\INF
2024-08-21 10:42 - 2019-07-04 06:35 - 000000000 ____D C:\ProgramData\Corsair
2024-08-21 10:42 - 2017-12-27 05:03 - 000000000 ____D C:\Users\stuar\AppData\Local\Ubisoft Game Launcher
2024-08-21 10:42 - 2017-09-01 10:25 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Corsair
2024-08-21 10:41 - 2024-05-29 07:33 - 000089336 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2024-08-21 10:41 - 2024-05-29 07:32 - 001189680 _____ C:\WINDOWS\system32\wpbbin.exe
2024-08-21 10:41 - 2024-05-29 07:32 - 001161976 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2024-08-21 10:41 - 2024-05-28 23:03 - 000003450 _____ C:\WINDOWS\system32\Tasks\GCC
2024-08-21 10:41 - 2021-09-01 01:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-08-21 10:41 - 2021-09-01 01:49 - 005079928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-08-21 10:41 - 2020-05-18 21:35 - 000000000 ____D C:\Users\stuar\AppData\Roaming\WTablet
2024-08-21 10:41 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-08-21 10:41 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\Registration
2024-08-21 10:41 - 2019-02-06 11:15 - 000000000 ____D C:\Users\stuar\AppData\Local\Discord
2024-08-21 10:40 - 2021-09-01 01:51 - 000000000 ____D C:\Users\stuar
2024-08-21 10:40 - 2019-12-07 03:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-08-21 09:31 - 2019-12-07 03:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-08-21 08:27 - 2018-05-23 14:10 - 000000000 ____D C:\Users\stuar\AppData\Local\LogMeIn Hamachi
2024-08-21 08:27 - 2017-07-02 16:43 - 000000000 ____D C:\Users\stuar\AppData\Roaming\uTorrent
2024-08-21 08:27 - 2017-06-23 15:42 - 000000000 ____D C:\Users\stuar\AppData\Roaming\TS3Client
2024-08-21 07:52 - 2019-02-06 15:46 - 000000000 ____D C:\Users\stuar\AppData\Local\D3DSCache
2024-08-21 07:45 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-08-21 07:40 - 2022-12-06 22:21 - 000000000 ____D C:\Users\stuar\AppData\Local\AMD_Common
2024-08-21 07:31 - 2024-05-03 08:01 - 000032008 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\gdrv2.sys
2024-08-21 07:31 - 2019-12-07 03:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-08-21 07:31 - 2019-02-06 11:08 - 000000000 ____D C:\ProgramData\Packages
2024-08-21 07:31 - 2017-11-20 11:00 - 000000000 ____D C:\Users\stuar\AppData\Local\Packages
2024-08-21 07:29 - 2021-09-01 01:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-08-21 07:28 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-08-21 07:27 - 2024-05-03 10:45 - 000000000 ____D C:\WINDOWS\InboxApps
2024-08-21 07:27 - 2019-12-07 08:49 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2024-08-21 07:27 - 2019-12-07 08:49 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-08-21 07:27 - 2019-12-07 08:49 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-08-21 07:27 - 2019-12-07 08:49 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-08-21 07:27 - 2019-12-07 08:49 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-08-21 07:27 - 2019-12-07 08:49 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-08-21 07:27 - 2019-12-07 08:45 - 000000000 ____D C:\WINDOWS\en-GB
2024-08-21 07:27 - 2019-12-07 03:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-08-21 07:27 - 2019-12-07 03:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-08-21 07:27 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-08-21 07:27 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-08-21 07:27 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-08-21 07:27 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-08-21 07:27 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-08-21 07:27 - 2019-12-07 03:03 - 000000000 ____D C:\WINDOWS\servicing
2024-08-20 16:38 - 2021-09-01 01:50 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-08-20 15:16 - 2023-12-22 10:24 - 000000000 ____D C:\Users\stuar\AppData\Roaming\EasyAntiCheat
2024-08-20 15:16 - 2017-08-02 17:14 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Microsoft\Office
2024-08-20 14:30 - 2024-05-31 08:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WizTree
2024-08-20 14:19 - 2023-12-06 00:27 - 000003684 _____ C:\WINDOWS\system32\Tasks\Companies
2024-08-20 14:19 - 2023-12-05 18:57 - 000003686 _____ C:\WINDOWS\system32\Tasks\Exhibition
2024-08-20 13:58 - 2019-12-07 03:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-08-20 13:38 - 2022-08-05 12:37 - 000000000 ____D C:\Program Files\dotnet
2024-08-20 13:38 - 2017-06-23 17:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-08-20 13:38 - 2017-06-23 15:42 - 000000000 ____D C:\ProgramData\Package Cache
2024-08-20 13:35 - 2021-09-01 01:19 - 000000000 ____D C:\Program Files\ruxim
2024-08-20 13:35 - 2017-06-23 17:30 - 197093640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-08-20 11:48 - 2020-08-27 12:54 - 000000000 ____D C:\Users\stuar\AppData\Roaming\HearthstoneDeckTracker
2024-08-20 11:17 - 2024-06-23 12:57 - 000000000 ____D C:\Users\stuar\AppData\Local\HearthstoneDeckTracker
2024-08-20 11:17 - 2020-08-27 12:54 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2024-08-20 11:17 - 2017-10-06 14:21 - 000000000 ____D C:\Users\stuar\AppData\Local\SquirrelTemp
2024-08-19 16:00 - 2017-12-10 03:45 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Microsoft\Word
2024-08-18 14:17 - 2020-12-02 22:37 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-18 14:16 - 2022-01-14 12:10 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2819170693-1847857810-888430003-1001
2024-08-18 14:16 - 2021-09-01 01:58 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2819170693-1847857810-888430003-1001
2024-08-18 14:16 - 2021-09-01 01:51 - 000002379 _____ C:\Users\stuar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-15 17:34 - 2022-08-19 01:54 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-08-15 17:34 - 2017-06-23 15:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-08-13 21:23 - 2017-08-02 17:08 - 000000000 ____D C:\Users\stuar\AppData\Roaming\Microsoft\Excel
2024-08-08 09:18 - 2018-03-03 12:41 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-08-07 20:42 - 2022-10-11 21:19 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-08-07 20:42 - 2021-09-01 01:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-08-06 15:35 - 2024-02-02 14:22 - 000000000 ____D C:\Users\stuar\AppData\Roaming\GME
2024-08-06 14:44 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-08-06 13:28 - 2020-12-02 21:22 - 000000000 ____D C:\Program Files\Common Files\PUBG
2024-08-05 14:06 - 2022-12-06 22:22 - 000000000 ____D C:\Users\stuar\AppData\Local\AMD
2024-08-01 22:27 - 2019-12-07 03:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2024-08-01 22:26 - 2022-12-06 22:21 - 000000000 ____D C:\AMD
2024-08-01 14:36 - 2022-12-06 22:22 - 000000000 ____D C:\WINDOWS\system32\AMD
2024-08-01 13:59 - 2022-12-06 22:27 - 000000000 ____D C:\ProgramData\AMD
2024-08-01 13:59 - 2022-12-06 22:21 - 000000000 ____D C:\Program Files\AMD
2024-08-01 13:58 - 2024-05-31 09:01 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2024-08-01 13:58 - 2024-05-31 09:01 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2024-08-01 07:48 - 2024-02-16 19:56 - 000267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-08-01 07:48 - 2022-10-22 11:19 - 000108024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-08-01 07:48 - 2022-10-22 11:19 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-08-01 07:48 - 2021-11-20 15:19 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-01 07:48 - 2020-04-23 01:29 - 000144888 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-08-01 07:48 - 2019-12-27 19:14 - 002799096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-08-01 07:48 - 2019-12-27 19:14 - 000755304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-08-01 07:48 - 2019-12-27 19:14 - 000222712 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-07-28 13:34 - 2021-09-01 01:58 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-28 13:34 - 2021-09-01 01:58 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-27 10:34 - 2019-06-08 10:32 - 000000000 ____D C:\Users\stuar\AppData\Local\BitTorrentHelper
2024-07-27 10:34 - 2017-07-09 08:44 - 000000000 ____D C:\Users\stuar\AppData\Roaming\vlc
2024-07-23 14:29 - 2017-06-25 02:48 - 000000000 ____D C:\Users\stuar\AppData\Local\UnrealEngine
2024-07-23 12:45 - 2018-12-17 14:45 - 000000000 ____D C:\Users\stuar\AppData\Local\Jackbox Games
==================== Files in the root of some directories ========
2017-07-17 11:30 - 2017-09-03 07:01 - 000000132 _____ () C:\Users\stuar\AppData\Roaming\Adobe PNG Format CS5 Prefs
2022-05-18 03:00 - 2022-05-18 03:00 - 000004870 _____ () C:\Users\stuar\AppData\Local\128977652
2023-11-14 22:39 - 2023-11-14 22:39 - 000004838 _____ () C:\Users\stuar\AppData\Local\1684039254
2022-07-27 08:49 - 2022-07-27 08:49 - 000004358 _____ () C:\Users\stuar\AppData\Local\1799948584
2022-06-27 23:11 - 2022-06-27 23:11 - 000004358 _____ () C:\Users\stuar\AppData\Local\2069390173
2022-02-20 17:52 - 2022-02-20 17:52 - 000004990 _____ () C:\Users\stuar\AppData\Local\2405905061
2022-06-24 14:41 - 2022-06-24 14:41 - 000004350 _____ () C:\Users\stuar\AppData\Local\2429380217
2022-09-21 09:56 - 2022-09-21 09:56 - 000006822 _____ () C:\Users\stuar\AppData\Local\2476191251
2022-09-13 09:29 - 2022-09-13 09:29 - 000005166 _____ () C:\Users\stuar\AppData\Local\2594785460
2023-12-11 12:27 - 2023-12-11 12:27 - 000007174 _____ () C:\Users\stuar\AppData\Local\91199005730
2022-08-11 12:33 - 2022-08-11 12:33 - 000005382 _____ () C:\Users\stuar\AppData\Local\91315414525
2023-12-01 07:50 - 2023-12-06 08:07 - 000007166 _____ () C:\Users\stuar\AppData\Local\91505469508
2023-11-10 08:33 - 2023-11-10 08:33 - 000007302 _____ () C:\Users\stuar\AppData\Local\92605338746
2022-11-07 22:16 - 2022-11-07 22:16 - 000004670 _____ () C:\Users\stuar\AppData\Local\93759642671
2023-11-06 12:18 - 2023-11-06 12:18 - 000007302 _____ () C:\Users\stuar\AppData\Local\93962798689
2024-03-07 01:19 - 2024-03-07 01:19 - 000007174 _____ () C:\Users\stuar\AppData\Local\9655527093
2023-11-13 08:46 - 2023-11-13 08:46 - 000007198 _____ () C:\Users\stuar\AppData\Local\9896470859
2017-09-03 05:50 - 2017-09-03 08:42 - 000001456 _____ () C:\Users\stuar\AppData\Local\Adobe Save for Web 12.0 Prefs
2018-09-28 15:23 - 2023-12-05 18:22 - 000001456 _____ () C:\Users\stuar\AppData\Local\Adobe Save for Web 13.0 Prefs
2023-11-22 19:42 - 2023-11-22 19:42 - 000000028 _____ () C:\Users\stuar\AppData\Local\CapCutConfigure.ini
2019-12-04 17:16 - 2020-08-19 16:40 - 000007619 _____ () C:\Users\stuar\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-08.2024
Ran by Stuart (21-08-2024 11:15:20)
Running from E:\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.4780 (X64) (2021-09-01 07:59:07)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2819170693-1847857810-888430003-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2819170693-1847857810-888430003-503 - Limited - Disabled)
Guest (S-1-5-21-2819170693-1847857810-888430003-501 - Limited - Disabled)
Stu (S-1-5-21-2819170693-1847857810-888430003-1002 - Administrator - Enabled) => C:\Users\Stu
Stuart (S-1-5-21-2819170693-1847857810-888430003-1001 - Administrator - Enabled) => C:\Users\stuar
WDAGUtilityAccount (S-1-5-21-2819170693-1847857810-888430003-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 17.00 beta (x64) (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 24.002.20991 - Adobe)
Adobe AIR (HKLM-x32\...\{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}) (Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\{3521BDBD-D453-5D9F-AA55-44B75D214629}) (Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2) (Version: 21.2.0.225 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601091}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Agatha Christie Murder (HKLM-x32\...\Agatha Christie Murder_is1) (Version: 0.0.0 - DODI-Repacks)
Age of Wonders 4 (HKLM-x32\...\1915432764_is1) (Version: 78464 - GOG.com)
Age of Wonders 4: Pre-Order Content Pack (HKLM-x32\...\2127759575_is1) (Version: 78464 - GOG.com)
Age of Wonders 4: Sign-Up Content (HKLM-x32\...\2127737278_is1) (Version: 78464 - GOG.com)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 1.01.56 - ASUSTeK Computer Inc.)
Ambient LED (HKLM-x32\...\{BEF97B38-D1B8-45B4-A60A-AF5C1556CC72}) (Version: 1.19.0227.1 - GIGABYTE) Hidden
Ambient LED (HKLM-x32\...\InstallShield_{BEF97B38-D1B8-45B4-A60A-AF5C1556CC72}) (Version: 1.19.0227.1 - GIGABYTE)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 24.7.1 - Advanced Micro Devices, Inc.)
Assassins Creed IV Black Flag version 1.0.0.0 (HKLM-x32\...\Assassins Creed IV Black Flag_is1) (Version: 1.0.0.0 - RePack by SEYTER)
Assassin's Creed: Unity (HKLM-x32\...\Assassin's Creed: Unity_is1) (Version: - )
ASUS ROG Connect Plus (HKLM-x32\...\{ECF51D37-52ED-4871-BF8B-FEA34B8B4120}) (Version: 1.00.35 - ASUSTeK Computer Inc.)
Asus Sonic Radar 3 (HKLM-x32\...\{d385a418-0a04-44f8-9284-522ed67a2926}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc)
Asus Sonic Studio 3 (HKLM-x32\...\{acef060a-19fa-4c87-b145-524e6faf08c4}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc)
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.04.43 - ASUSTeK Computer Inc.)
Aurora (HKLM-x32\...\{A65BAA2D-2281-4DEE-93E0-34F323527587}) (Version: 1.0.3 - Aurora)
Battlefield™ 2042 (HKLM-x32\...\{45e281f3-1414-47ea-bb64-4f50d50121f3}) (Version: 1.0.77.60397 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Battlestate Games Launcher 13.0.2.2031 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 13.0.2.2031 - Battlestate Games)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.51.0 - Bethesda Softworks)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.0.1.281 - Bitdefender)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Blender (HKLM\...\{EDFAE2A8-E73B-4CD1-9648-46A7E4434BDA}) (Version: 2.82.1 - Blender Foundation)
Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blockbuster Inc (HKLM-x32\...\Blockbuster Inc_is1) (Version: - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
Burning Crusade Classic (HKLM-x32\...\Burning Crusade Classic) (Version: - Blizzard Entertainment)
CapCut (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\CapCut) (Version: 2.8.0.928 - Bytedance Pte. Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 6.27 - Piriform)
Citra (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\{093d805a-4d08-4ae6-96d4-7304e52e0b1d}) (Version: 1.0.0 - Citra Team)
CloneDrive (HKLM-x32\...\CloneDrive) (Version: 1.00.07 - ASUSTeKcomputer Inc)
Close Combat: Gateway to Caen (HKLM-x32\...\1321528002_is1) (Version: 1.02 - GOG.com)
Copoka version 1.1.5 (HKLM-x32\...\{B80EA2D2-EFC1-4471-9F3F-B35620A82CD7}_is1) (Version: 1.1.5 - Inaccurate Interactive)
Core Temp 1.15.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15.1 - ALCPU)
Corsair Device Control Service (HKLM\...\{ADE422C8-E07A-42A5-8B9B-F9CDD1875C08}) (Version: 1.1.4 - Corsair)
Corsair iCUE5 Software (HKLM\...\{A9B0B2D7-8C59-4413-A2FB-99EDBE65A608}) (Version: 5.18.106 - Corsair)
CPUID CPU-Z 1.90 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.90 - CPUID, Inc.)
CPUID HWMonitor 1.31 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CPUID ROG CPU-Z 1.77 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.77 - CPUID, Inc.)
Cuphead (HKLM-x32\...\1963513391_is1) (Version: 20170929 - GOG.com)
CurseForge (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 1.258.0.9849 - Overwolf app)
Cut & Run version 1.0 (HKLM-x32\...\{24D3C9BD-8A52-4369-9188-8F1512B3DA23}_is1) (Version: 1.0 - Simple Machine LLC)
DawnOfMan (HKLM-x32\...\1899257943_is1) (Version: 1.0.0 - GOG.com)
DAZ Install Manager (64-bit) (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\DAZ Install Manager (64-bit) 1.4.1.69) (Version: 1.4.1.69 - DAZ 3D)
Discord (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DiskSpaceAnalyzer version 1.0 (HKLM\...\EaseUS Disk Space Analyzer_is1) (Version: 1.0 - EaseUS)
Dragon (HKLM-x32\...\{3C8FA4F4-8471-4C60-9002-9B9F78B7B483}) (Version: 6 - Realtek)
DREDGE (HKLM-x32\...\1744110647_is1) (Version: 1836 - PROD - GOG.com)
Dynamic Application Loader Host Interface Service (HKLM\...\{FD2C01C4-F511-4B2E-BA8B-AAE44D4C3C7F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.235.0.5748 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{1ea29ff4-ac27-4775-b029-95e63cac9adb}) (Version: 13.235.0.5748 - Electronic Arts)
EA SPORTS FC 24 (HKLM-x32\...\{D599A8A7-E083-496C-B891-5752CD4E04F3}) (Version: 1.0.89.16451 - Electronic Arts)
EaseUS CleanGenius 3.0.2 (HKLM-x32\...\EaseUS CleanGenius_is1) (Version: - EaseUS)
EaseUS Partition Master (HKLM\...\EaseUS Partition Master_is1) (Version: 18.5 - EaseUS)
EaseUS Todo PCTrans 13.11.0 (HKLM-x32\...\EaseUS Todo PCTrans_is1) (Version: - EaseUS)
Easy Photo Scan (HKLM-x32\...\{9E3F2EC3-7E4F-4F20-A56F-7A24D6E3D39B}) (Version: 1.00.0017 - Seiko Epson Corporation)
ENE Video Capture Box HAL (HKLM\...\{A096611D-BA11-4A1A-8D09-0A0462D7C8F2}) (Version: 1.0.5.15 - Ene Tech.) Hidden
ENE Video Capture Box HAL (HKLM-x32\...\{974259bf-3ed1-4cd6-9ed1-40c7f601a786}) (Version: 1.0.5.15 - Ene Tech.) Hidden
ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{5B5CE185-F845-487D-824D-9D02A8B778FB}) (Version: 1.0.9.1 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{661c7ac8-4c45-4772-ba1d-090085dde688}) (Version: 1.0.9.1 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.12.2 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{3f5a70c6-60da-4ae9-8072-a51aa4dc08ee}) (Version: 1.0.12.2 - ENE TECHNOLOGY INC.) Hidden
ENE_External_Device_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.12.7 - ENE Tech) Hidden
ENE_External_Device_HAL (HKLM-x32\...\{a7b1cf47-d8f0-423d-9494-568195f1c864}) (Version: 1.0.12.7 - ENE Tech) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.6.3 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM-x32\...\{c662a481-d76a-4188-95d2-6eb4ffd55542}) (Version: 1.0.6.3 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{3ECF91A4-EE22-4A3A-921F-36ECAA04C13D}) (Version: 1.1.147.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.6.0.0 - SEIKO EPSON CORPORATION)
EPSON ET-3850 Series Printer Uninstall (HKLM\...\EPSON ET-3850 Series) (Version: - Seiko Epson Corporation)
Epson Photo+ (HKLM-x32\...\{994F3154-637D-4FC2-A9DA-AA80D147E7C3}) (Version: 2.3.0.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
Epson ScanSmart (HKLM-x32\...\{24D63D1B-83A2-4976-8D0D-8622D96B6B86}) (Version: 3.7.1 - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{26A9B753-4B5D-46D8-A329-5CEF96FC22D2}) (Version: 4.6.5 - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Firestone (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Overwolf_lnknbakkpommmjjdnelmfbjjdbocfpnpbkijjnob) (Version: 13.20.6 - Overwolf app)
First Feudal (HKLM-x32\...\1548203713_is1) (Version: 1.5.2 - GOG.com)
FiveM (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\CitizenFX_FiveM) (Version: - Cfx.re)
Floating Sandbox 1.17.4.2 (HKLM\...\{B7B75134-8635-4159-BC7F-DB4FC1AA4C01}) (Version: 1.17.4.2 - Gabriele Giuseppini)
Folder Size Explorer (HKLM-x32\...\{CD453A88-D560-47A2-9D4D-414134F5A73D}) (Version: 2.0.0 - Bazwise)
Foundation (HKLM-x32\...\1446930743_is1) (Version: alpha 1.6.28.0216 - GOG.com)
Frozen Synapse (HKLM-x32\...\Frozen Synapse 35) (Version: 35 - Mode 7 Limited)
GameFirst IV (HKLM-x32\...\{370651DD-8ABF-4807-9533-0869FDF79BFA}) (Version: 1.5.31 - ASUSTeK COMPUTER INC.) Hidden
GameFirst IV (HKLM-x32\...\GameFirst IV 1.5.31) (Version: 1.5.31 - ASUSTeK COMPUTER INC.)
Gangsters (HKLM-x32\...\Gangsters_is1) (Version: - GOG.com)
GBT_MB_Update (HKLM\...\GBT_MB_Update) (Version: 24.04.11.01 - GIGABYTE)
GBT_RGB_Sync_Control 24.03.21.01 (HKLM\...\GBT_RGB_Sync_Control) (Version: 24.03.21.01 - GIGABYTE)
GBT_rgbMotherboard_UC 24.03.21.01 (HKLM\...\GBT_rgbMotherboard_UC) (Version: 24.03.21.01 - GIGABYTE)
Geeks3D FurMark 1.19.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
Gener8 (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Gener8) (Version: 92.0.4515.108 - The Gener8 Authors)
Ghost Recon Breakpoint (HKLM-x32\...\Uplay Install 11903) (Version: - Ubisoft)
GIGABYTE Control Center 24.04.24.01 (HKLM\...\GIGABYTE Control Center) (Version: 24.04.24.01 - GIGABYTE)
GIGABYTE Performance Library (HKLM\...\MBEasyTune) (Version: 24.04.24.01 - GIGABYTE)
GIGABYTE Storage Library (HKLM\...\MBStorage) (Version: 24.04.26.01 - GIGABYTE)
Git (HKLM\...\Git_is1) (Version: 2.43.0 - The Git Development Community)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.120 - Google LLC)
Hamachi (HKLM-x32\...\{C00E2143-38F2-49BA-AB8A-03F22F02F0A4}) (Version: 2.3.0.111 - LogMeIn, Inc.) Hidden
Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.3.0.111 - LogMeIn, Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\HearthstoneDeckTracker) (Version: 1.31.0 - HearthSim)
Hexographer (HKLM-x32\...\Hexographer_0) (Version: - Inkwell Ideas)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HitFilm Express (HKLM\...\{9A34789F-2874-438A-8415-AC2EF5350733}) (Version: 8.1.7729.45222 - FXHOME)
Hoyle Board Games 5 (HKLM-x32\...\Hoyle Board Games 5) (Version: - )
Humble App 1.1.1+341 (HKLM\...\2f793df2-2969-529d-b0c0-7960ed40d70e) (Version: 1.1.1+341 - Humble Bundle)
iMazing 2.14.4.0 (HKLM\...\iMazing_is1) (Version: 2.14.4.0 - DigiDNA SARL)
Indiana Jones and the Fate of Atlantis (HKLM-x32\...\{DB5BA9A5-F75E-4897-8E7E-088A21069B5F}) (Version: 1.00.0000 - Lucasfilm Ltd., Disney)
Intel® Chipset Device Software (HKLM\...\{D666FBA1-39CE-48D2-9336-9256827EB308}) (Version: 10.1.19502.8391 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{e7892987-b2d0-4c0d-951c-86af011df195}) (Version: 10.1.19502.8391 - Intel® Corporation)
Intel® Extreme Tuning Utility (HKLM-x32\...\{23b8ca9c-4ed2-4c49-b4be-adfa33975d8c}) (Version: 7.14.1.12 - Intel Corporation)
Intel® HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.386 - Intel Corporation)
Intel® Icls (HKLM\...\{731E6324-F594-4C19-AA7A-B9145A331BD2}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{E2021C1F-CC6F-43F5-B4FF-F21E3091DEF1}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Driver (HKLM\...\{03F18B6E-52BA-4906-8993-9EA0AD0D6DD2}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® ME WMI Provider (HKLM\...\{492E26A3-3FB9-4ECA-913E-426EEA93E5FB}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Serial IO (HKLM\...\{47D5774F-BBF9-401C-B909-B056C0391B39}) (Version: 30.100.2237.26 - Intel Corporation) Hidden
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2237.26 - Intel Corporation)
Intel® Wireless Bluetooth® (HKLM-x32\...\{00000020-0230-1033-84C8-B8D95FA3C8C3}) (Version: 23.20.0.3 - Intel Corporation)
iPod Support (HKLM\...\{BE71B07A-9576-49A8-8358-D69826AA1382}) (Version: 12.11.3.7 - Apple Inc.)
Java 8 Update 351 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180351F0}) (Version: 8.0.3510.10 - Oracle Corporation)
Joyoshare iPasscode Unlocker 2.4.0.21 (HKLM-x32\...\Joyoshare iPasscode Unlocker_is1) (Version: - Joyoshare, Inc.)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
King of the Hat (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\460940655984771072) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LMA Manager 2007 (HKLM-x32\...\{FA165F4A-E981-467E-83DA-E68294FDBC8D}) (Version: 1.01.0000 - Codemasters)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.6.271036 - Logitech)
Lords and Villeins (HKLM-x32\...\1740243150_is1) (Version: 0.733 - GOG.com)
LSPD First Response (HKLM-x32\...\LSPD First Response) (Version: 0.3.1 - G17 Media)
Mafia II Definitive Edition version final (HKLM-x32\...\Mafia II Definitive Edition_is1) (Version: final - The)
Malwarebytes version 5.1.8.123 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.8.123 - Malwarebytes)
MediaHuman YouTube to MP3 Converter 3.9.9.75 (HKLM-x32\...\MediaHuman YouTube to MP3 Converter_is1) (Version: 3.9.9.75 - MediaHuman)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Core Host - 3.1.32 (x64) (HKLM\...\{8A8E3A04-83BC-4CDE-9259-893B666C1AB1}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.32 (x64) (HKLM\...\{ABC6B3C2-1A8D-4C5E-AC16-C2AE44F02743}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM\...\{A741B803-3F0E-4684-81EF-FC128D15A92C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.33 (x64) (HKLM\...\{8584855C-3B2B-4F95-BE1D-CCA5B6DE2815}) (Version: 48.132.18378 - Microsoft Corporation) Hidden
Microsoft .NET Host - 7.0.20 (x64) (HKLM\...\{EE5EB03B-D65C-4991-848E-2C6E024326DB}) (Version: 56.80.15184 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.33 (x64) (HKLM\...\{62A8E894-9FD1-45A0-A4D0-BD9FA854818D}) (Version: 48.132.18378 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 7.0.20 (x64) (HKLM\...\{B0FC828F-678C-4868-9B5B-99639758E6F3}) (Version: 56.80.15184 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.33 (x64) (HKLM\...\{07BE9B02-0247-471C-B06F-A3B1A8FA9216}) (Version: 48.132.18378 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 7.0.20 (x64) (HKLM\...\{221BB52A-B763-4C9D-AA62-4B0B6C9AAD62}) (Version: 56.80.15184 - Microsoft Corporation) Hidden
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.105 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 127.0.2651.105 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2010 (HKLM-x32\...\{90140000-0015-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (HKLM-x32\...\{90140000-0117-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (HKLM-x32\...\{90140000-0016-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (HKLM-x32\...\{90140000-00BA-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (HKLM-x32\...\{90140000-0044-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (HKLM\...\{90140000-002A-0000-1000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (HKLM-x32\...\{90140000-00A1-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (HKLM-x32\...\{90140000-002C-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (HKLM-x32\...\{90140000-0019-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (HKLM\...\{90140000-002A-0409-1000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (HKLM\...\{90140000-0116-0409-1000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (HKLM-x32\...\{90140000-006E-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (HKLM-x32\...\{90140000-0115-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (HKLM-x32\...\{90140000-001B-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\OneDriveSetup.exe) (Version: 24.151.0728.0003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2819170693-1847857810-888430003-1002\...\OneDriveSetup.exe) (Version: 21.196.0921.0007 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (HKLM-x32\...\{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (HKLM-x32\...\{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.32 (x64) (HKLM\...\{5BEE5F3E-4D78-4DE8-A8F3-36D3E9D8868C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.32 (x64) (HKLM-x32\...\{0eddeab6-01c1-4cf7-83ba-164ea8974c90}) (Version: 3.1.32.31915 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.33 (x64) (HKLM\...\{A59F43A6-AADB-42EB-883B-2FE4E3AA3A69}) (Version: 48.132.18374 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.33 (x64) (HKLM-x32\...\{ecb94bc3-963d-412a-b141-8b7c32ef103f}) (Version: 6.0.33.33916 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 7.0.20 (x64) (HKLM\...\{72C29BED-666F-4E5E-BC49-DF44C890742E}) (Version: 56.80.15245 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 7.0.20 (x64) (HKLM-x32\...\{362ea044-f96f-45c7-b59f-0dbe5ca98ff4}) (Version: 7.0.20.33720 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft_VC80_ATL_x86_x64 (HKLM\...\{925D058B-564A-443A-B4B2-7E90C6432E55}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (HKLM-x32\...\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (HKLM\...\{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (HKLM-x32\...\{D1A19B02-817E-4296-A45B-07853FD74D57}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (HKLM\...\{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (HKLM-x32\...\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (HKLM\...\{1E9FC118-651D-4934-97BE-E53CAE5C7D45}) (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (HKLM-x32\...\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (HKLM\...\{8557397C-A42D-486F-97B3-A2CBC2372593}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (HKLM-x32\...\{08D2E121-7F6A-43EB-97FD-629B44903403}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (HKLM\...\{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (HKLM-x32\...\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (HKLM\...\{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (HKLM-x32\...\{B6D38690-755E-4F40-A35A-23F8BC2B86AC}) (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86_x64 (HKLM\...\{90BF0360-A1DB-4599-A643-95AB90A52C1E}) (Version: 1.00.0000 - Adobe) Hidden
Nobody Wants to Die (HKLM-x32\...\Nobody Wants to Die_is1) (Version: - )
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.2.4 - OBS Project)
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenTTD (HKLM-x32\...\OpenTTD) (Version: 1.11.2 - OpenTTD)
Origin (HKLM-x32\...\Origin) (Version: 10.5.110.50000 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.258.0.6 - Overwolf Ltd.)
Paradox Launcher (HKLM-x32\...\{ED2CDA1D-39E4-4CBB-992C-5C1D08672128}) (Version: 1.1.0.0 - Paradox Interactive)
Paradox Launcher v2 (HKLM\...\{992827AC-2312-4B8A-BF33-C5DD19C61CEF}) (Version: 2.4.0 - Paradox Interactive)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.1 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{07236f40-ec25-4646-8cb6-b6aaf1597324}) (Version: 1.1.0.1 - Patriot Memory) Hidden
pgAdmin 4 version 5.6 (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\pgAdmin 4v5_is1) (Version: 5.6 - The pgAdmin Development Team)
Pirates of the Burning Sea (HKLM-x32\...\{A2ACDA6B-1894-4C98-83F2-DC0DD4046135}) (Version: 2.17.1 - Vision Online Games) Hidden
Pirates of the Burning Sea (HKLM-x32\...\Pirates of the Burning Sea 2.17.1) (Version: 2.17.1 - Vision Online Games)
PlayWay Launcher (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\playway-launcher) (Version: 1.5.1 - PWay Sp. z o.o.)
PostgreSQL 13 (HKLM\...\PostgreSQL 13) (Version: 13 - PostgreSQL Global Development Group)
ProductDaemonSetup (HKLM\...\{36606417-B1C4-42C2-B5C1-67972DA63DAB}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden
Project Highrise (HKLM-x32\...\{E414222B-D5F2-4011-8777-73CE5E244842}) (Version: 1.6.0.0 - Kalypso Media Digital)
Project Hospital - Department of Infectious Diseases (HKLM-x32\...\1617011795_is1) (Version: 1.2.21620 - GOG.com)
Project Hospital - Doctor Mode (HKLM-x32\...\2078914180_is1) (Version: 1.2.21620 - GOG.com)
Project Hospital - Hospital Services (HKLM-x32\...\1553503979_is1) (Version: 1.2.21620 - GOG.com)
Project Hospital - Traumatology Department (HKLM-x32\...\1269519984_is1) (Version: 1.2.21620 - GOG.com)
Project Hospital (HKLM-x32\...\1660194629_is1) (Version: 1.2.21620 - GOG.com)
Project64 version 2.3.0.210 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 2.3.0.210 - )
Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.7.1103.110716 - Razer Inc.)
Real Lives 2010 (HKLM-x32\...\Real Lives 2010) (Version: 10.0.0.13 - Educational Simulations)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9373.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.68.815.2023 - Realtek)
Red Dead Redemption 2 (HKLM-x32\...\Red Dead Redemption 2) (Version: 1.0.1491.50 - Rockstar Games)
REDlauncher (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - GOG.com)
RedM (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\CitizenFX_RedM) (Version: - Cfx.re)
Revo Uninstaller Pro 5.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 5.1.1 - VS Revo Group, Ltd.)
RoboCop Rogue City (HKLM-x32\...\RoboCop Rogue City_is1) (Version: 0.0.0 - DODI-Repacks)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.86.1893 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.0.1 - Rockstar Games)
RuneScape Launcher 2.2.4 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.4 - Jagex Ltd)
Rustler (Grand Theft Horse) (HKLM-x32\...\2058719826_is1) (Version: 1.10.08 - GOG.com)
Sherlock Holmes Chapter One (HKLM-x32\...\Sherlock Holmes Chapter One_is1) (Version: 0.0.0 - DODI-Repacks)
Sherlock Holmes The Awakened (HKLM-x32\...\Sherlock Holmes The Awakened_is1) (Version: 0.0.0 - DODI-Repacks)
SlimDX Runtime .NET 4.0 x64 (January 2012) (HKLM\...\{A2199A06-89C4-4187-AA4A-3A9676FB799D}) (Version: 2.0.13.43 - SlimDX Group)
Smart Backup (x64) (HKLM\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.22.0826.1 - Gigabyte) Hidden
Smart Backup (x64) (HKLM-x32\...\InstallShield_{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.22.0826.1 - Gigabyte)
Snooker 19 MULTi5 - ElAmigos version 1.18 (HKLM-x32\...\{1C0ED879-DE80-4A71-9FCE-F74DED466463}_is1) (Version: 1.18 - Ripstone)
SonicRadar3Setup (HKLM\...\{D1DF09DE-0347-42E7-9127-E66A85121C6D}) (Version: 3.1.3.38194 - ASUSTeKcomputer.Inc) Hidden
SonicStudio3Setup (HKLM\...\{2FFEC736-656D-41D7-A4D2-AD3CCF3EC272}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc) Hidden
Spotify (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Spotify) (Version: 1.2.44.405.g81fd6352 - Spotify AB)
Star Wars Galaxies (HKLM-x32\...\{88038160-9BCB-47BE-A5C3-5CE2DC115509}) (Version: 1.00.000 - )
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
Stronghold HD (HKLM-x32\...\GOGPACKSTRONGHOLDHD_is1) (Version: 2.0.0.3 - GOG.com)
TavernWorker for Dark and Darker - Steam (HKLM\...\TavernWorker for Dark and Darker - Steam) (Version: - IRONMACE)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.4.2669 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: 2.59.0 - TechPowerUp)
Terra Nil (HKLM-x32\...\Terra Nil_is1) (Version: - )
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.2847300 - Zenimax Online Studios)
The Godfather (HKLM-x32\...\The Godfather_is1) (Version: 0.0.0 - DODI-Repacks)
The Godfather II (HKLM-x32\...\The Godfather II_is1) (Version: 0.0.0 - DODI-Repacks)
The Incredible Machine - Even More Contraptions (HKLM-x32\...\{EAF547B5-9AEA-44BD-9843-94CD29FBA2CE}) (Version: 1.00.0000 - Dynamix, Disney)
The Incredible Machine 3 (HKLM-x32\...\{E9F7C7F9-8878-4114-99F3-32859670B0DE}) (Version: 1.00.0000 - Dynamix, Disney)
The Witness (HKLM-x32\...\1461060839_is1) (Version: 2.0.0.3 - GOG.com)
TmUnitedForever Update 2010-03-15 (HKLM-x32\...\TmUnitedForever_is1) (Version: - Nadeo)
TokenTool (HKLM\...\{F26F90CB-962E-381A-B2A8-6C1DA4A9E863}) (Version: 2.2.1 - rptools)
Twitch (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 146.0.10945 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UltraISO Premium V9.75 (HKLM-x32\...\UltraISO_is1) (Version: 9.75 - EZB Systems, Inc.)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Uurnog 1.1.1 (HKLM\...\NifflasUurnog_is1) (Version: 1.1.1 - Nifflas)
Vampire - The Masquerade - Bloodlines (HKLM-x32\...\1207659240_is1) (Version: 2.1.0.8 - GOG.com)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Verbatim_SureFireGaming_Product (HKLM\...\{35CB65C6-A7E3-4EE7-AD40-738D70A72164}) (Version: 1.0.3.11 - Verbatim) Hidden
Verbatim_SureFireGaming_Product (HKLM-x32\...\{d601832a-0d94-46ce-9b19-78e8a5887313}) (Version: 1.0.3.11 - Verbatim) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.10.8 - Black Tree Gaming Ltd.)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.38-2 - Wacom Technology Corp.)
Wargaming.net Game Center (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\Wargaming.net Game Center) (Version: 24.2.0.5793 - Wargaming.net)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 12.44 - NCH Software)
WD P40 Game Drive (HKLM\...\{EE55DBAE-ECDD-4ADD-AAB5-23DE848B0996}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden
WD P40 Game Drive (HKLM-x32\...\{72b1a866-fc31-4381-bff3-fa6cd8823777}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden
We. The Revolution (HKLM-x32\...\1492171024_is1) (Version: Final 1.0.1 - GOG.com)
WinDirStat 1.1.2 (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\WinDirStat) (Version: - )
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows PC Health Check (HKLM\...\{804A0628-543B-4984-896C-F58BF6A54832}) (Version: 3.7.2204.15001 - Microsoft Corporation)
WinRAR 5.50 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.6 - win.rar GmbH)
WinUAE 64-bit 4.9.0 (HKLM\...\{E911BDB6-6FC0-41CC-96A9-2E37630E3C36}) (Version: 4.9.0.0 - Arabuusimiehet)
WizTree v4.20 (HKLM\...\WizTree_is1) (Version: 4.20 - Antibody Software)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic Era (HKLM-x32\...\World of Warcraft Classic Era) (Version: - Blizzard Entertainment)
World_of_Warships (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\1865065073) (Version: - Wargaming.net)
World_of_Warships_EU (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net)
Zoom (HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\ZoomUMX) (Version: 5.15.5 (19404) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-16] ()
BT Sport -> C:\Program Files\WindowsApps\BRITISHTELECOMMUNICATIONS.232108916781E_1.16.0.0_x64__p4cqfe0ssz2sj [2021-12-15] (BRITISH TELECOMMUNICATIONS PUBLIC LIMITED COMPANY)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.274.300.0_x64__kgqvnymyfvs32 [2024-08-18] (king.com)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2023.531.1.0_x64__8xx8rvfyw5nnt [2023-06-01] (Meta)
Facebook -> C:\Program Files\WindowsApps\www.facebook.com-1C2D851A_2023.531.1.1_neutral__n468xs7erp6tc [2023-10-15] (www.facebook.com)
Facebook -> C:\Program Files\WindowsApps\www.facebook.com-21913B58_2023.531.1.1_neutral__n468xs7erp6tc [2023-10-15] (www.facebook.com)
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5587.0_x64__8j3eq9eme6ctt [2024-08-13] (INTEL CORP) [Startup Task]
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa [2024-05-08] (Apple Inc.) [Startup Task]
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-31] (Keeper Security Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2021-09-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-09-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-09-01] (Microsoft Corporation) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.27.25.0_x64__nfy108tqq3p12 [2023-01-09] (Thumbmunkeys Ltd)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2023-07-25] (Realtek Semiconductor Corp)
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.132.6332.0_x64__8wekyb3d8bbwe [2024-08-06] (Microsoft Studios)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-09-03] (Twitter Inc.)
Xbox 360 SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxCompanion_1.4.3.0_x64__8wekyb3d8bbwe [2020-11-05] (Microsoft Corporation) [MS Ad]
Xbox Console Companion - beta -> C:\Program Files\WindowsApps\Microsoft.XboxAppBeta_44.72.4001.0_x64__8wekyb3d8bbwe [2020-12-12] (Microsoft Corporation)
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2020-05-15] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2819170693-1847857810-888430003-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6723984 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2024-06-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2024-06-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2024-06-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-12-06] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-12-06] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-12-06] (Adobe Inc. -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-12-06] (Adobe Inc. -> )
ContextMenuHandlers1: [EpmRightMenu] -> {a5354344-b5da-4901-afd1-f0adc1d0b8bd} => C:\Program Files\EaseUS\RightMenu\epmright.dll [2023-10-09] (CHENGDU YIWO Tech Development Co., Ltd. -> TODO: <Company name>)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2024-06-11] (Mega Limited -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-07-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-07-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [EpmRightMenu] -> {a5354344-b5da-4901-afd1-f0adc1d0b8bd} => C:\Program Files\EaseUS\RightMenu\epmright.dll [2023-10-09] (CHENGDU YIWO Tech Development Co., Ltd. -> TODO: <Company name>)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2024-06-11] (Mega Limited -> )
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => D:\Program Files (x86)\UltraISO\isoshl64.dll [2020-07-13] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-08-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2024-06-11] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EpmRightMenu] -> {a5354344-b5da-4901-afd1-f0adc1d0b8bd} => C:\Program Files\EaseUS\RightMenu\epmright.dll [2023-10-09] (CHENGDU YIWO Tech Development Co., Ltd. -> TODO: <Company name>)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2024-06-11] (Mega Limited -> )
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => D:\Program Files (x86)\UltraISO\isoshl64.dll [2020-07-13] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [EpmRightMenu] -> {a5354344-b5da-4901-afd1-f0adc1d0b8bd} => C:\Program Files\EaseUS\RightMenu\epmright.dll [2023-10-09] (CHENGDU YIWO Tech Development Co., Ltd. -> TODO: <Company name>)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-12-06] (Adobe Inc. -> )
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-08-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => D:\Revo Uninstaller\RUExt.dll [2022-04-04] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => D:\Program Files (x86)\UltraISO\isoshl64.dll [2020-07-13] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-07-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-07-25] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2022-12-01] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2022-12-01] (Electronic Arts -> On2.com)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\stuar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAZ 3D\DAZ Install Manager (64-bit)\DAZ Install Manager (64-bit) Read Me.lnk -> hxxp:docs.daz3d.com\doku.php\public\read_me\index\14811
ShortcutWithArgument: C:\Users\stuar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Armoria.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dbgdcmmikcpdilpojhnifagkalbjdhaa
ShortcutWithArgument: C:\Users\stuar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\da5b6b7b4db8f395\hockey-js.lnk -> D:\Program Files (x86)\Steam\steamapps\common\Slapshot\slapshot.exe (The NWJS Community) -> --user-data-dir="C:\Users\stuar\AppData\Local\hockey-js\User Data" --profile-directory=Default --app-id=flgfcdondebfnfobgkgldingidobhaca
ShortcutWithArgument: C:\Users\stuar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Stuart - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2022-10-23 23:03 - 2022-08-08 21:52 - 001427968 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.Core.Runtime.dll
2017-06-24 09:35 - 2016-09-20 07:08 - 000241664 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2017-06-24 09:35 - 2016-07-14 09:09 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2017-06-24 09:35 - 2016-07-14 09:10 - 000621056 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll
2017-06-24 09:21 - 2017-05-24 03:04 - 001746432 _____ () [File not signed] C:\Program Files (x86)\ASUS\AURA\Vender.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000379392 _____ () [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\libegl.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 006679040 _____ () [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\libglesv2.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 004325888 _____ () [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\vk_swiftshader.dll
2021-09-07 17:03 - 2021-08-09 23:51 - 002244096 _____ () [File not signed] D:\Program Files\PostgreSQL\13\bin\libxml2.dll
2017-06-24 09:27 - 2015-06-05 05:00 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.25\ASACPI.DLL
2017-06-24 09:35 - 2016-07-27 03:51 - 000108544 ____R (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsAcpi.dll
2017-06-24 09:35 - 2016-07-27 03:51 - 000676864 ____R (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\asacpiEx.dll
2021-09-07 17:03 - 2021-08-09 23:51 - 001731499 _____ (Free Software Foundation) [File not signed] D:\Program Files\PostgreSQL\13\bin\libiconv-2.dll
2021-09-07 17:03 - 2021-08-09 23:51 - 000829175 _____ (Free Software Foundation) [File not signed] D:\Program Files\PostgreSQL\13\bin\libintl-8.dll
2013-03-08 11:28 - 2013-03-08 11:28 - 000187392 _____ (Gigabyte Technology CO., LTD.) [File not signed] C:\Program Files\GIGABYTE\Smart Backup\RescuePlan.dll
2018-10-19 10:44 - 2018-10-19 10:44 - 000751616 _____ (Gigabyte Technology CO., LTD.) [File not signed] C:\Program Files\GIGABYTE\Smart Backup\srpCore.dll
2017-06-24 09:14 - 2017-04-29 01:55 - 000075776 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2021-09-07 17:08 - 2021-08-09 23:51 - 000304640 _____ (PostgreSQL Global Development Group) [File not signed] D:\Program Files\PostgreSQL\13\bin\LIBPQ.dll
2020-04-28 19:50 - 2015-12-08 11:08 - 000182784 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\E_YLMBRHE.DLL
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 001166336 _____ (The Chromium Authors) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\chrome_elf.dll
2021-09-07 17:03 - 2021-08-09 23:51 - 028399104 _____ (The ICU Project) [File not signed] D:\Program Files\PostgreSQL\13\bin\icudt67.dll
2021-09-07 17:03 - 2021-08-09 23:51 - 002686976 _____ (The ICU Project) [File not signed] D:\Program Files\PostgreSQL\13\bin\icuin67.dll
2021-09-07 17:03 - 2021-08-09 23:51 - 001934336 _____ (The ICU Project) [File not signed] D:\Program Files\PostgreSQL\13\bin\icuuc67.dll
2022-02-07 01:02 - 2020-09-07 15:19 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files (x86)\Origin\LIBEAY32.dll
2022-02-07 01:02 - 2020-09-07 15:20 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files (x86)\Origin\ssleay32.dll
2023-12-04 12:30 - 2023-02-17 10:31 - 002523136 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] D:\EaseUS CleanGenius\bin\libcrypto-1_1.dll
2023-12-04 12:30 - 2023-02-17 10:31 - 000531456 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] D:\EaseUS CleanGenius\bin\libssl-1_1.dll
2021-09-07 17:03 - 2021-08-09 23:51 - 002849792 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] D:\Program Files\PostgreSQL\13\bin\libcrypto-1_1-x64.dll
2021-09-07 17:03 - 2021-08-09 23:51 - 000683008 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] D:\Program Files\PostgreSQL\13\bin\libssl-1_1-x64.dll
2022-02-07 01:02 - 2020-09-07 15:19 - 001611264 _____ (The Qt Company Ltd) [File not signed] D:\Program Files (x86)\Origin\platforms\qwindows.dll
2022-02-07 01:02 - 2020-09-07 15:20 - 005487104 _____ (The Qt Company Ltd) [File not signed] D:\Program Files (x86)\Origin\Qt5Core.dll
2022-02-07 01:02 - 2020-09-07 15:20 - 005841920 _____ (The Qt Company Ltd) [File not signed] D:\Program Files (x86)\Origin\Qt5Gui.dll
2022-02-07 01:02 - 2020-09-07 15:20 - 001179136 _____ (The Qt Company Ltd) [File not signed] D:\Program Files (x86)\Origin\Qt5Network.dll
2022-02-07 01:02 - 2020-09-07 15:20 - 000146432 _____ (The Qt Company Ltd) [File not signed] D:\Program Files (x86)\Origin\Qt5WebSockets.dll
2022-02-07 01:02 - 2020-09-07 15:20 - 005089792 _____ (The Qt Company Ltd) [File not signed] D:\Program Files (x86)\Origin\Qt5Widgets.dll
2022-02-07 01:02 - 2020-09-07 15:20 - 000184832 _____ (The Qt Company Ltd) [File not signed] D:\Program Files (x86)\Origin\Qt5Xml.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000046080 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\audio\qtaudio_windows.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000030720 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\iconengines\qsvgicon.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000027136 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\imageformats\qgif.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000025600 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\imageformats\qico.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000353280 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\imageformats\qjpeg.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000021504 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\imageformats\qsvg.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000352256 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\imageformats\qtiff.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000423424 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\imageformats\qwebp.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 001239552 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\platforms\qwindows.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000915456 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\Qt5Network.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000362496 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\Qt5QmlModels.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 004702208 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\Qt5Widgets.dll
2024-07-29 15:10 - 2024-05-16 17:45 - 000165888 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files (x86)\Blizzard App\Battle.net.14956\Qt5Xml.dll
2017-06-24 09:21 - 2017-05-24 03:04 - 001623552 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\AURA\LED_DLL_forMB.dll
2017-06-24 09:21 - 2017-05-24 03:04 - 001624576 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\AURA\VGA_Extra.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [486]
AlternateDataStreams: C:\Users\stuar\Application Data:d988fd1ce0beed92b2bcb751f85f2bf5 [394]
AlternateDataStreams: C:\Users\stuar\AppData\Roaming:d988fd1ce0beed92b2bcb751f85f2bf5 [394]
AlternateDataStreams: C:\Users\stuar\AppData\Local\Microsoft:ISBD [32]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\ssv.dll [2022-11-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\jp2ssv.dll [2022-11-30] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 15:03 - 2022-04-03 23:26 - 000000822 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\dotnet\;C:\Program Files\Git\cmd
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\Control Panel\Desktop\\Wallpaper -> E:\Pictures\Dual Monitor Backgrounds\europeansouthernobservatory.jpg
HKU\S-1-5-21-2819170693-1847857810-888430003-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
nt_rtf64: Realtek LightWeight Filter (NDIS6.40)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2819170693-1847857810-888430003-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{D7494BF5-8D7B-46A2-B999-6CCA55482D93}] => (Allow) F:\SteamLibrary\steamapps\common\TaleSpire\TaleSpire.exe () [File not signed]
FirewallRules: [{35AF9F7F-7BC7-489E-BB2A-2860FB4E146C}] => (Allow) F:\SteamLibrary\steamapps\common\TaleSpire\TaleSpire.exe () [File not signed]
FirewallRules: [{91D91852-9883-439B-B0CB-41DAC931538D}] => (Allow) F:\SteamLibrary\steamapps\common\The Isle\TheIsle.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{0277883B-D6D6-43B6-9E32-E02C87715A3D}] => (Allow) F:\SteamLibrary\steamapps\common\The Isle\TheIsle.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{9F3C2E1C-5467-4827-8E82-F4E0F1AF303F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{8CB561D3-690D-495B-B57F-3AEB6B4B71FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{0523831F-572E-4350-83CE-36096D912265}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{7C4B7F1C-3ED4-439A-A2D7-B0561690574A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{B14C16C6-9BD3-42C5-9324-91F49A03F0D2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{E499B6DF-8A7E-4B09-84B6-6A5832464F3C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{218C73F3-3296-4367-926A-A2764CA2CEB1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{89149B63-F371-4DB5-BACD-78E71CC78BFC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{03C4F214-085C-4CA1-A7B0-01EA87C30109}] => (Allow) F:\SteamLibrary\steamapps\common\Dorfromantik\Dorfromantik.exe () [File not signed]
FirewallRules: [{89A165BF-21DC-4A7F-B834-96063E523DF9}] => (Allow) F:\SteamLibrary\steamapps\common\Dorfromantik\Dorfromantik.exe () [File not signed]
FirewallRules: [{DC50A152-6F67-4F19-8B86-9F9631677EB4}] => (Allow) F:\SteamLibrary\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Entertainment) [File not signed]
FirewallRules: [{185B17D2-0DC2-4871-A715-59C83B671775}] => (Allow) F:\SteamLibrary\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Entertainment) [File not signed]
FirewallRules: [{E87CC9B5-4650-441E-8279-E59F5CB0C10E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe () [File not signed]
FirewallRules: [{0567AFA6-E895-4F6F-8576-B2FCEED83F8B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe () [File not signed]
FirewallRules: [{1E76C20F-0754-4B22-BAF1-AEF0EBC8F964}] => (Allow) E:\SteamLibrary\steamapps\common\Banished\Application-steam-x64.exe () [File not signed]
FirewallRules: [{8C6EA69F-A917-4750-9F45-28DC91F0A5FA}] => (Allow) E:\SteamLibrary\steamapps\common\Banished\Application-steam-x64.exe () [File not signed]
FirewallRules: [{7531A590-1466-4CEB-9AF5-07293F138623}] => (Allow) E:\SteamLibrary\steamapps\common\Circuit Superstars\circuit-superstars.exe (Unity Technologies ApS) [File not signed]
FirewallRules: [{076BF756-D92D-4D36-AD31-0AD0E5C139EA}] => (Allow) E:\SteamLibrary\steamapps\common\Circuit Superstars\circuit-superstars.exe (Unity Technologies ApS) [File not signed]
FirewallRules: [{89BA34D4-1D75-45DD-B5BE-FA75A50AF237}] => (Allow) E:\SteamLibrary\steamapps\common\Foxhole\War.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{4F4B17DC-9D2F-46D2-8596-1AA1583939B2}] => (Allow) E:\SteamLibrary\steamapps\common\Foxhole\War.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{9BCA2677-9DF7-4FC6-8894-EF517C48F2EC}] => (Allow) F:\SteamLibrary\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{9BFFC3AD-058C-42B6-AFC3-0DEAC5A06A92}] => (Allow) F:\SteamLibrary\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{CB4B69A8-47D2-484E-ADB1-CD45F480717B}] => (Allow) E:\SteamLibrary\steamapps\common\Sink Again\Sink Again.exe () [File not signed]
FirewallRules: [{7281916C-80D3-4205-9674-67D53518FCBF}] => (Allow) E:\SteamLibrary\steamapps\common\Sink Again\Sink Again.exe () [File not signed]
FirewallRules: [{A435F76E-CFBB-4F87-BFCB-B0D8E2FBEDB2}] => (Allow) F:\SteamLibrary\steamapps\common\The Jackbox Party Pack 7\The Jackbox Party Pack 7.exe () [File not signed]
FirewallRules: [{071DE446-1258-4C00-BC0D-7BC2F3A92BBB}] => (Allow) F:\SteamLibrary\steamapps\common\The Jackbox Party Pack 7\The Jackbox Party Pack 7.exe () [File not signed]
FirewallRules: [{99D040A0-BE67-4532-BF12-5540B7AFF0BB}] => (Allow) F:\SteamLibrary\steamapps\common\The Jackbox Party Pack 6\The Jackbox Party Pack 6.exe () [File not signed]
FirewallRules: [{9D2F902B-A5F7-45A7-9D5A-D31B6846A259}] => (Allow) F:\SteamLibrary\steamapps\common\The Jackbox Party Pack 6\The Jackbox Party Pack 6.exe () [File not signed]
FirewallRules: [{C400FBB1-1356-4BDC-8957-0DCE5E73740C}] => (Allow) E:\SteamLibrary\steamapps\common\EmpireOfSin\ParadoxLauncher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{CD44E68C-4A2C-4298-A744-CCB30437CE46}] => (Allow) E:\SteamLibrary\steamapps\common\EmpireOfSin\ParadoxLauncher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{4AF2B2BA-31D3-4E7B-B735-53424C495E33}] => (Allow) E:\SteamLibrary\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
FirewallRules: [{73C14DDE-1E6D-44F0-BAE7-EEA07A96DC49}] => (Allow) E:\SteamLibrary\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
FirewallRules: [{2F7B3C78-EFC6-4E35-B340-F6711248E668}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Townsmen - A Kingdom Rebuilt\TownsmenRebuilt.exe (www.handy-games.com GmbH) [File not signed]
FirewallRules: [{CEEBA27B-DB6E-47EE-AF24-81BD51D6E8E5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Townsmen - A Kingdom Rebuilt\TownsmenRebuilt.exe (www.handy-games.com GmbH) [File not signed]
FirewallRules: [{7B7F5E3D-44D3-4A84-B88E-5CE29A258A64}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Battle Brothers\win32\BattleBrothers.exe () [File not signed]
FirewallRules: [{64640E5B-5397-47F5-A61A-A551A2B61F7F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Battle Brothers\win32\BattleBrothers.exe () [File not signed]
FirewallRules: [{BBDB24E1-59BC-4B4C-AE25-F248D3CC9BEE}] => (Allow) F:\SteamLibrary\steamapps\common\Northgard\ng32\Northgard.exe () [File not signed]
FirewallRules: [{5E93D9B9-70BF-478E-AA2D-63FEAFBC878E}] => (Allow) F:\SteamLibrary\steamapps\common\Northgard\ng32\Northgard.exe () [File not signed]
FirewallRules: [{EA1D2277-71CD-40B4-91E8-050B86CCFAA1}] => (Allow) F:\SteamLibrary\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{F69ECF87-D206-4E76-B051-DA3A62CEF919}] => (Allow) F:\SteamLibrary\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{F4E4979B-0F52-4F46-ADDA-7547692F8E6D}] => (Allow) F:\SteamLibrary\steamapps\common\SunlessSea\Sunless Sea.exe () [File not signed]
FirewallRules: [{7BE0D185-EB45-4C95-ACFF-FBB35EAE58C5}] => (Allow) F:\SteamLibrary\steamapps\common\SunlessSea\Sunless Sea.exe () [File not signed]
FirewallRules: [{4C984087-7B56-4E81-B5B3-C27287A63078}] => (Allow) F:\SteamLibrary\steamapps\common\Sunless Skies\Sunless Skies.exe () [File not signed]
FirewallRules: [{E54292F3-B8D1-4080-8DB4-F52B572D8EA3}] => (Allow) F:\SteamLibrary\steamapps\common\Sunless Skies\Sunless Skies.exe () [File not signed]
FirewallRules: [{45CBDE4A-B843-4105-B121-5AF12241D9F1}] => (Allow) F:\SteamLibrary\steamapps\common\A Game of Thrones The Board Game\AGameOfThronesTheBoardGame.exe (Dire Wolf Digital, LLC -> )
FirewallRules: [{240680C6-86B9-43C0-B706-325AB9C98C91}] => (Allow) F:\SteamLibrary\steamapps\common\A Game of Thrones The Board Game\AGameOfThronesTheBoardGame.exe (Dire Wolf Digital, LLC -> )
FirewallRules: [{032273DB-D822-40C8-A419-679E7D244F77}] => (Allow) E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{DF6FDE86-FE17-476F-9949-60DD2E974EB2}] => (Allow) E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{9A99F6D7-9ADD-4B4C-BD2D-5C70EE57EC92}] => (Allow) E:\SteamLibrary\steamapps\common\LittleBigWorkshop\LittleBigWorkshop.exe () [File not signed]
FirewallRules: [{DE39DD58-4E36-4DCD-BABD-408435A52B8F}] => (Allow) E:\SteamLibrary\steamapps\common\LittleBigWorkshop\LittleBigWorkshop.exe () [File not signed]
FirewallRules: [{24A00F4A-5619-499F-A5E5-F846FCDB8F34}] => (Allow) E:\SteamLibrary\steamapps\common\Through The Darkest of Times\TtDoT.exe () [File not signed]
FirewallRules: [{A0997967-A7BF-43C5-AECE-67099B7FE68F}] => (Allow) E:\SteamLibrary\steamapps\common\Through The Darkest of Times\TtDoT.exe () [File not signed]
FirewallRules: [{02BF5208-0071-4452-A0E5-EEA9A55DCAB1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Holdfast Nations At War\Holdfast NaW.exe () [File not signed]
FirewallRules: [{A0D5A681-355D-4B79-8621-F9DB28CF2102}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Holdfast Nations At War\Holdfast NaW.exe () [File not signed]
FirewallRules: [{2D668FCE-5D9B-4659-98F4-7371F9A41A2B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [File not signed]
FirewallRules: [{971B3646-2572-4182-8A5E-E45CA77E7081}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [File not signed]
FirewallRules: [{D27F8019-18D7-4B51-9967-FA896B328F2A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Skye\Seaplane.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{71EC7BA4-5032-49B4-91D3-16EC40BF0C60}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Skye\Seaplane.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{E34FD1BB-4C0A-47C0-A3B1-55635735A536}] => (Allow) F:\SteamLibrary\steamapps\common\SlayTheSpire\jre\bin\javaw.exe
FirewallRules: [{38152F62-D11A-4621-BAA0-EBC691A1B5A4}] => (Allow) F:\SteamLibrary\steamapps\common\SlayTheSpire\jre\bin\javaw.exe
FirewallRules: [{530B3DEF-A320-46E3-B435-E93D977EE2E0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SigmaTheory\sigma.exe () [File not signed]
FirewallRules: [{64EFCC44-AC84-4852-8913-8C73C749B540}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SigmaTheory\sigma.exe () [File not signed]
FirewallRules: [{C178AAD5-EBCE-4A9F-9815-D32DA313A940}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Railway Empire\RailwayEmpire.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [{35EAB619-436B-4AFB-9FCA-F0CFAE07B5E8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Railway Empire\RailwayEmpire.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [{336201C1-10E2-45C1-9069-1E1FB4D4A019}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Heroes of Hammerwatch\HWR.exe () [File not signed]
FirewallRules: [{EA21D4D6-8B88-40AD-9D57-F09C90AAA836}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Heroes of Hammerwatch\HWR.exe () [File not signed]
FirewallRules: [{9B4A99F4-2472-4708-9ED9-03BC3B560A14}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Project Winter\ProjectWinter.exe () [File not signed]
FirewallRules: [{23A2ED64-F9BA-4F0A-B35C-A3AF9429E544}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Project Winter\ProjectWinter.exe () [File not signed]
FirewallRules: [{7A2F1566-B9FA-45D4-90E2-AFEF8974D71E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{CBADD417-33AB-4193-ABB9-A40698234913}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{7C6B25E6-8F5D-411D-A4FB-E597EB8C6C3F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\We Were Here Together\We Were Here Together.exe () [File not signed]
FirewallRules: [{3CB1A446-787F-4477-A6D8-D9B7629B3B4A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\We Were Here Together\We Were Here Together.exe () [File not signed]
FirewallRules: [{D43F55F9-0005-45F9-B690-6EB93E712FDF}] => (Allow) F:\SteamLibrary\steamapps\common\Northgard\Northgard.exe () [File not signed]
FirewallRules: [{DACF6806-E7A6-48C8-8E9E-7194602296BE}] => (Allow) F:\SteamLibrary\steamapps\common\Northgard\Northgard.exe () [File not signed]
FirewallRules: [{4B40E6EF-ED43-499E-A65F-A8B8E4AB584F}] => (Allow) E:\SteamLibrary\steamapps\common\Train Valley 2\TrainValley2.exe () [File not signed]
FirewallRules: [{ED60F8CA-D765-4FD6-AF2A-4F5BDE8ACAA6}] => (Allow) E:\SteamLibrary\steamapps\common\Train Valley 2\TrainValley2.exe () [File not signed]
FirewallRules: [{0A64F43E-C728-46AB-B01A-78BFD4D2693B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe () [File not signed]
FirewallRules: [{AE66CB99-1A41-4989-B0D8-CFD9957587B5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe () [File not signed]
FirewallRules: [{6BAF6AEE-C191-4446-BDF6-DA1551396F07}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe () [File not signed]
FirewallRules: [{58D89F2D-A770-4691-8287-84677A14D91D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe () [File not signed]
FirewallRules: [{D1440518-EA8C-4395-A7D3-68B835DB9C93}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{524FF97E-F5E4-4538-8997-F5AF8D3BBF9C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{BE5D8A13-D3DE-42DF-93E8-039C6F2850CA}] => (Allow) E:\SteamLibrary\steamapps\common\RiseOfIndustry\Rise of Industry.exe () [File not signed]
FirewallRules: [{E5A6D40B-B814-427E-8BA5-365C24E59629}] => (Allow) E:\SteamLibrary\steamapps\common\RiseOfIndustry\Rise of Industry.exe () [File not signed]
FirewallRules: [{3AC2F527-A5C6-4AE0-B7E9-4EE348AA452F}] => (Allow) E:\SteamLibrary\steamapps\common\WARSAW\Warsaw.exe () [File not signed]
FirewallRules: [{7BDC31A0-954D-4917-B3FC-E194A8EB154D}] => (Allow) E:\SteamLibrary\steamapps\common\WARSAW\Warsaw.exe () [File not signed]
FirewallRules: [{1AE419D9-65C7-42FB-BFEC-196DAFE16340}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stoneshard\StoneShard.exe () [File not signed]
FirewallRules: [{5C7AC8FC-808A-4771-B79B-0E0353C0DEFF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stoneshard\StoneShard.exe () [File not signed]
FirewallRules: [{A0A54C28-A492-4146-B4B4-72B4C4A6489E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This Is the Police 2\Police2.exe () [File not signed]
FirewallRules: [{75D9CF8D-57BE-4276-BB76-1E063B233F37}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This Is the Police 2\Police2.exe () [File not signed]
FirewallRules: [{1AD04C1E-8994-4608-B5ED-0952B316CCD5}] => (Allow) C:\Users\stuar\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{CB6489EF-D8C0-4BE9-B7DA-54651CDD441C}] => (Allow) C:\Users\stuar\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1A3EF71C-563B-48E0-A9EE-F3D54DCA7EEB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Truberbrook\Truberbrook.exe () [File not signed]
FirewallRules: [{4A4301DD-F8C7-4B74-99D5-513C3C31977A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Truberbrook\Truberbrook.exe () [File not signed]
FirewallRules: [{262C7098-BE19-4AE4-ABD1-A1E863203E83}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\KARDS\kards.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{43BB6E31-9A9B-42F7-AC69-53DDEC7CD7F3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\KARDS\kards.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{38F7A1B3-649D-457F-B956-6ED871DCEE30}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> )
FirewallRules: [{32D37015-77FC-4B9E-92D2-EE617C041FDF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> )
FirewallRules: [{D1A23023-0F5E-4FC5-AA7F-14DD24FA793C}] => (Allow) F:\SteamLibrary\steamapps\common\Graveyard Keeper\Graveyard Keeper.exe () [File not signed]
FirewallRules: [{3C2E30A7-E27D-4B4C-ABA4-51A8892CAEC2}] => (Allow) F:\SteamLibrary\steamapps\common\Graveyard Keeper\Graveyard Keeper.exe () [File not signed]
FirewallRules: [{26868BB7-DCEC-4A8E-9F7B-A68CCCDDFDAD}] => (Allow) F:\SteamLibrary\steamapps\common\War Thunder\launcher.exe (GAIJIN NETWORK LTD -> Gaijin)
FirewallRules: [{B2AB2318-AFA0-4B7B-A09F-BD341937CFE3}] => (Allow) F:\SteamLibrary\steamapps\common\War Thunder\launcher.exe (GAIJIN NETWORK LTD -> Gaijin)
FirewallRules: [{6DC97917-4DEF-40A3-8B06-FFB500499187}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{F74FD206-6BF0-4A8D-B937-7D44A804D0FF}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{3F54E4A7-EB1C-4FD2-9DC9-DC572A9F52EE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Isle\TheIsle.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{ED8F8688-B9E0-411C-97B7-BA7AC91B1BCC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Isle\TheIsle.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{B6930D01-1050-4379-B0EE-85A951329ED9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (LariLauncher) [File not signed]
FirewallRules: [{29BDD378-D80D-4781-9EC0-44DF92BB3A29}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (LariLauncher) [File not signed]
FirewallRules: [{04C9B391-615B-4893-96D5-FE095184BFB2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{920107F6-9AB6-4897-83AF-975BECFF7055}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{26B95AE1-DA78-4725-B9CC-1F83FCA6CC4B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\King and Assassins\KingAndAssassins.exe () [File not signed]
FirewallRules: [{17D2C7EB-A0A2-4C2D-8852-7A5D5ED34C7E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\King and Assassins\KingAndAssassins.exe () [File not signed]
FirewallRules: [{C38CD441-74F6-452F-84A7-A48DB9484512}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Splendor\Splendor.exe () [File not signed]
FirewallRules: [{919FDECC-F780-4354-B070-23C29FE1CAAF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Splendor\Splendor.exe () [File not signed]
FirewallRules: [{DEDBFEDA-0F34-4840-904D-2E61654862A6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Into the Breach\Breach.exe () [File not signed]
FirewallRules: [{CB624286-708B-4DCB-B764-C4F5F4D4E1D7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Into the Breach\Breach.exe () [File not signed]
FirewallRules: [{422C6D59-5FCE-413A-BD5C-7A52E443E7F8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Jackbox Party Pack 5\The Jackbox Party Pack 5.exe () [File not signed]
FirewallRules: [{AC4390A7-F62C-4819-9B15-FEB416099628}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Jackbox Party Pack 5\The Jackbox Party Pack 5.exe () [File not signed]
FirewallRules: [{CB1ED23E-AB49-4FA6-9EB3-C0D4E74E1380}] => (Allow) LPort=5739
FirewallRules: [{B69E4882-12FF-4493-BBAF-EACAA1512708}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Ticket to Ride\Ticket to Ride.exe (Days of Wonder, Inc.) [File not signed]
FirewallRules: [{FD5DD544-2A66-4E12-8676-2FF661954FC8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Ticket to Ride\Ticket to Ride.exe (Days of Wonder, Inc.) [File not signed]
FirewallRules: [{1958EE05-0D2C-4598-957A-3DEAA277BF83}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Carcassonne The Official Board Game\Carcassonne.exe () [File not signed]
FirewallRules: [{4E30A873-209C-48FB-AFA4-AF3A0793EDEC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Carcassonne The Official Board Game\Carcassonne.exe () [File not signed]
FirewallRules: [{DBDF1B7E-104C-4E39-B15C-DD254DDEFFEC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mysterium\Mysterium.exe () [File not signed]
FirewallRules: [{C110688B-AD26-4EEF-A9BF-1C113E771E4B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mysterium\Mysterium.exe () [File not signed]
FirewallRules: [{C004977E-0A77-49B3-9885-E4D767155E02}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9E10DA7F-56A2-4082-953F-B23D3F1E25B8}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{80446E80-1898-40F5-AB13-C2129208E606}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Escapists 2\TheEscapists2.exe () [File not signed]
FirewallRules: [{B6A0D614-3469-47E9-BCE7-6952BBB96787}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Escapists 2\TheEscapists2.exe () [File not signed]
FirewallRules: [{27B09541-344C-426B-ACE5-3111A007EA85}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CardHunter\CardHunter.exe () [File not signed]
FirewallRules: [{E7B7D16C-9DD1-47F8-A136-0EBEF7BD01BA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CardHunter\CardHunter.exe () [File not signed]
FirewallRules: [{94D74B23-3EE3-4536-96BC-B581C4506A3E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\For The King\FTK.exe () [File not signed]
FirewallRules: [{81D2D415-90E2-4700-B3B1-2E8AAE91BF57}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\For The King\FTK.exe () [File not signed]
FirewallRules: [{AE31EF05-4714-4715-87E8-1BCDE95DD6A2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect64.exe () [File not signed]
FirewallRules: [{6B21099F-523D-498D-B8B8-F3095561D97A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect64.exe () [File not signed]
FirewallRules: [{362CCA5C-FFD5-4083-86F2-89E858D51FFC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe () [File not signed]
FirewallRules: [{4029AB2C-124A-416E-AF4A-28CB7B0C2497}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe () [File not signed]
FirewallRules: [{276138F3-80E6-44C8-9B36-89514ED85769}] => (Allow) E:\SteamLibrary\steamapps\common\The Jackbox Party Pack 4\The Jackbox Party Pack 4.exe () [File not signed]
FirewallRules: [{0FC77D1D-E254-401F-BF0A-C0CF3122B729}] => (Allow) E:\SteamLibrary\steamapps\common\The Jackbox Party Pack 4\The Jackbox Party Pack 4.exe () [File not signed]
FirewallRules: [{A2F5FD40-9ABD-466E-A812-2471EAFEBDB5}] => (Allow) E:\SteamLibrary\steamapps\common\The Jackbox Party Pack 3\The Jackbox Party Pack 3.exe () [File not signed]
FirewallRules: [{6E1FDF5D-41E5-4ECE-B904-9925BE903C47}] => (Allow) E:\SteamLibrary\steamapps\common\The Jackbox Party Pack 3\The Jackbox Party Pack 3.exe () [File not signed]
FirewallRules: [{4F19207C-AD9D-40D9-8436-5B6EC3BDF56F}] => (Allow) E:\SteamLibrary\steamapps\common\The Jackbox Party Pack 2\The Jackbox Party Pack 2.exe () [File not signed]
FirewallRules: [{CC05D73A-2DAF-406D-A401-4E65CD4013F0}] => (Allow) E:\SteamLibrary\steamapps\common\The Jackbox Party Pack 2\The Jackbox Party Pack 2.exe () [File not signed]
FirewallRules: [{0F5DDEDB-A80E-4850-A416-0B3C7051A0EA}] => (Allow) E:\SteamLibrary\steamapps\common\Ylands\Ylands.exe (BOHEMIA INTERACTIVE a.s. -> )
FirewallRules: [{ED739A55-65F8-49B4-9562-BD1841CE5924}] => (Allow) E:\SteamLibrary\steamapps\common\Ylands\Ylands.exe (BOHEMIA INTERACTIVE a.s. -> )
FirewallRules: [{8AA94018-4512-4FF7-B4C9-7AFF04B5EBEA}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Pirates!\Pirates!.exe (Firaxis Games) [File not signed]
FirewallRules: [{995268DE-03D1-4055-9DED-D64D49C9D61C}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Pirates!\Pirates!.exe (Firaxis Games) [File not signed]
FirewallRules: [{C455E4AD-7AF1-4240-99BF-6CA1F0DDC39B}] => (Allow) E:\SteamLibrary\steamapps\common\Sky Knights\SkyKnights.exe () [File not signed]
FirewallRules: [{A42BC4D8-057B-4DED-B5BC-8CE52D37E3ED}] => (Allow) E:\SteamLibrary\steamapps\common\Sky Knights\SkyKnights.exe () [File not signed]
FirewallRules: [{B5AD75EE-8019-40B7-A9D8-EB354ADA54BB}] => (Allow) E:\SteamLibrary\steamapps\common\Kim\Kim.exe () [File not signed]
FirewallRules: [{9E2D2C5E-4315-4F50-8DA9-1A8F15F4E1AD}] => (Allow) E:\SteamLibrary\steamapps\common\Kim\Kim.exe () [File not signed]
FirewallRules: [{C459368C-6190-4BB4-A308-184CE404B52E}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6CBD6BE3-A418-42AC-8C2A-AC718B282177}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{13506D0B-2B5B-4C3F-A6C1-D3BD0E7BE759}] => (Allow) E:\SteamLibrary\steamapps\common\Golf It!\GolfIt.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{AB77A19E-239F-427D-AFCE-32A6DCE7510E}] => (Allow) E:\SteamLibrary\steamapps\common\Golf It!\GolfIt.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{12ACD351-3E37-4C43-9661-5A5BED41A39C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Domina\Domina.exe (Dolphin Barn Incorporated) [File not signed]
FirewallRules: [{6B7DDBB5-C31D-43CE-B0E4-7E5DDEBE90E9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Domina\Domina.exe (Dolphin Barn Incorporated) [File not signed]
FirewallRules: [{8FB829E7-A364-4D77-999A-D32BB8D2DEBC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe (DoubleDutch Games) [File not signed]
FirewallRules: [{376CBD6F-2564-4519-8057-ABED5D6EE36D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe (DoubleDutch Games) [File not signed]
FirewallRules: [{80A1D45D-4AFE-430B-9B01-7F640612007B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Portal Knights\portal_knights_x64.exe () [File not signed]
FirewallRules: [{C4ADD9C0-E547-4018-8B55-547E8AF35D76}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Portal Knights\portal_knights_x64.exe () [File not signed]
FirewallRules: [{86CA580F-ACB9-455B-8204-70E0D02E94F0}] => (Allow) E:\Program Files\Ventrilo\Ventrilo.exe (Flagship Industries, Inc.) [File not signed]
FirewallRules: [{3083C62F-BA9C-4326-AD11-6D17A661F14E}] => (Allow) E:\Program Files\Ventrilo\Ventrilo.exe (Flagship Industries, Inc.) [File not signed]
FirewallRules: [{685F3231-7700-458B-B8DF-3E237B4F467B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Town of Salem\TownOfSalem.exe () [File not signed]
FirewallRules: [{197809DA-0ACE-406A-8F30-4B0EC98E4878}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Town of Salem\TownOfSalem.exe () [File not signed]
FirewallRules: [{79503F7A-D51F-4BB0-A8C6-C6953541CB0C}] => (Allow) E:\SteamLibrary\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe (Square Enix Ltd. -> )
FirewallRules: [{9247148E-1151-4EBB-A2BF-396CCC84063E}] => (Allow) E:\SteamLibrary\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe (Square Enix Ltd. -> )
FirewallRules: [{BAEA8056-25D4-42CF-A0A8-1EB8D98100D9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stellaris\stellaris.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{E3A9DA0A-6930-4EC6-85F9-E5ED0A069C4E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stellaris\stellaris.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{B9FFD8DB-F0A2-42C3-8B51-CB86E735BF5A}] => (Allow) E:\SteamLibrary\steamapps\common\Gang Beasts\Gang Beasts.exe () [File not signed]
FirewallRules: [{3BA667B3-FF47-424D-900E-EDC8028E67D6}] => (Allow) E:\SteamLibrary\steamapps\common\Gang Beasts\Gang Beasts.exe () [File not signed]
FirewallRules: [{45F17154-B027-4262-939E-34562C0FD6AC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Enter the Gungeon\EtG.exe () [File not signed]
FirewallRules: [{6260D657-CD6D-4C2C-92DC-4BCC90D1574E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Enter the Gungeon\EtG.exe () [File not signed]
FirewallRules: [{4E95734F-BEFD-456A-8AEA-71CB9D72546C}] => (Allow) E:\SteamLibrary\steamapps\common\Windward\Windward.exe () [File not signed]
FirewallRules: [{B87AFD63-EB4A-4642-98B4-64D1C0E37239}] => (Allow) E:\SteamLibrary\steamapps\common\Windward\Windward.exe () [File not signed]
FirewallRules: [{71B63814-ECAF-4489-8603-9B1FAB836ABA}] => (Allow) E:\SteamLibrary\steamapps\common\Move or Die\MoveOrDie.exe () [File not signed]
FirewallRules: [{5A6CC04A-9F3D-4190-8478-720E95A0FF6B}] => (Allow) E:\SteamLibrary\steamapps\common\Move or Die\MoveOrDie.exe () [File not signed]
FirewallRules: [{A438456E-AF72-4C7F-8146-D5BD5078702D}] => (Allow) E:\SteamLibrary\steamapps\common\Move or Die\Editor.exe () [File not signed]
FirewallRules: [{1319EB4F-DB34-4F7F-B2A9-6928EF369BE2}] => (Allow) E:\SteamLibrary\steamapps\common\Move or Die\Editor.exe () [File not signed]
FirewallRules: [{1B9E3B85-6D86-4117-BB6D-38E9DBE22E6A}] => (Allow) E:\SteamLibrary\steamapps\common\WormsWMD\Worms W.M.D.exe () [File not signed]
FirewallRules: [{1CCF02D7-C922-474E-8D86-A8703A58586D}] => (Allow) E:\SteamLibrary\steamapps\common\WormsWMD\Worms W.M.D.exe () [File not signed]
FirewallRules: [{D577D596-E308-4A5F-917A-A51DFF164484}] => (Allow) E:\SteamLibrary\steamapps\common\WormsWMDWorldEditor\Worms W.M.D Editor.exe () [File not signed]
FirewallRules: [{099E01E8-60FA-4CF5-927B-5609BE04EEFE}] => (Allow) E:\SteamLibrary\steamapps\common\WormsWMDWorldEditor\Worms W.M.D Editor.exe () [File not signed]
FirewallRules: [{FC4F09DB-3972-4935-972E-C94D73A96AED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Slapshot\slapshot.exe (The NWJS Community) [File not signed]
FirewallRules: [{472EB26E-BBA8-4E46-844B-E9C02867345C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Slapshot\slapshot.exe (The NWJS Community) [File not signed]
FirewallRules: [{FA5E0F17-3915-4FF1-8AAB-9AD139BC5668}] => (Allow) E:\SteamLibrary\steamapps\common\The Jackbox Party Pack\The Jackbox Party Pack.exe () [File not signed]
FirewallRules: [{43A2D55A-2C86-42E6-A9ED-2231AEBC7448}] => (Allow) E:\SteamLibrary\steamapps\common\The Jackbox Party Pack\The Jackbox Party Pack.exe () [File not signed]
FirewallRules: [{2EF8CF62-0B08-4611-A94C-B98C3DE0FBD2}] => (Allow) E:\SteamLibrary\steamapps\common\Human Fall Flat\Human.exe () [File not signed]
FirewallRules: [{4D40832A-5BD2-415F-804D-BC5929ED5A58}] => (Allow) E:\SteamLibrary\steamapps\common\Human Fall Flat\Human.exe () [File not signed]
FirewallRules: [{D29CB684-2543-4299-A80B-3B230DDA8ECC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [{AC83288B-7038-467F-B7F6-B882EE935763}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [{65D7FCF7-869E-438D-9576-1A1A824DA327}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{2530E566-ED1D-41EB-B11E-3518B52798E2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{353BCF55-AE0B-4504-A4AA-4D0CBDCFD271}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{796C7390-4328-41FE-B2D8-03A5F37C4C70}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{27DE8BB1-FC68-45C5-8D30-426625F55AC7}] => (Allow) F:\SteamLibrary\steamapps\common\SlayTheSpire\SlayTheSpire.exe () [File not signed]
FirewallRules: [{BAB27EFE-AA6D-4257-A4F2-D12B4452BD54}] => (Allow) F:\SteamLibrary\steamapps\common\SlayTheSpire\SlayTheSpire.exe () [File not signed]
FirewallRules: [{4A712BA8-0406-4B8D-8258-E99E558C6FDC}] => (Allow) F:\SteamLibrary\steamapps\common\Guacamelee2\Guac2_x64.exe () [File not signed]
FirewallRules: [{B7938296-6B01-4996-B755-B7D3C59DDE3B}] => (Allow) F:\SteamLibrary\steamapps\common\Guacamelee2\Guac2_x64.exe () [File not signed]
FirewallRules: [{06A5F229-5E83-4055-9D89-AD8C144E6B8A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{88076C67-7DF3-4EF6-B07D-CAC09954004F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{EAA56C65-9537-4F55-8258-9E0C8FAF5081}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{D1F44597-D6A1-41FB-9B78-7F9C751FD678}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{398C5C94-35C4-44DF-B2F8-2049D0687A27}] => (Allow) F:\SteamLibrary\steamapps\common\The Curious Expedition\The Curious Expedition.exe (GitHub, Inc.) [File not signed]
FirewallRules: [{D370E1FC-6297-47AC-BAE0-79BE69ED54E4}] => (Allow) F:\SteamLibrary\steamapps\common\The Curious Expedition\The Curious Expedition.exe (GitHub, Inc.) [File not signed]
FirewallRules: [{E663D417-9DA5-46DB-B05D-0D168E362ED2}] => (Allow) E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{15A90386-85B6-49FD-9005-D92CCA31F78B}] => (Allow) E:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{2F872673-A182-4D6A-A09B-9EF4D74A998C}] => (Allow) F:\SteamLibrary\steamapps\common\The Isle\TheIsle\Binaries\Win64\TheIsleClient-Win64-Shipping.exe (The Isle) [File not signed]
FirewallRules: [{FCE32998-A5CF-45AF-B294-0E86E7447F59}] => (Allow) F:\SteamLibrary\steamapps\common\The Isle\TheIsle\Binaries\Win64\TheIsleClient-Win64-Shipping.exe (The Isle) [File not signed]
FirewallRules: [{76D26416-E1A3-42CD-AB41-9C774AFF8471}] => (Allow) F:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [File not signed]
FirewallRules: [{4B28CF71-7549-464A-B4EF-48CC177C4B2C}] => (Allow) F:\SteamLibrary\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe () [File not signed]
FirewallRules: [{39C12E3E-1904-4FA2-B456-24F1E7CE3887}] => (Allow) F:\SteamLibrary\steamapps\common\The Jackbox Party Pack 8\The Jackbox Party Pack 8.exe () [File not signed]
FirewallRules: [{92831B93-73C1-48B0-8FA2-4C0ED67E7F7A}] => (Allow) F:\SteamLibrary\steamapps\common\The Jackbox Party Pack 8\The Jackbox Party Pack 8.exe () [File not signed]
FirewallRules: [{7C64283C-A6FA-417C-9025-14518226C02E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AE6976B5-A054-4F48-9FC0-D5F9D2671430}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{012CDC02-98C8-487A-8D36-21A38AEE8F47}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{435A1559-9DCA-4C34-889E-E74F69CB7817}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{177915BE-460C-4F37-A81C-41E8E3510BF9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\112 Operator\Operator 112.exe () [File not signed]
FirewallRules: [{8EACCD21-D63C-4DE5-B719-87FC28F232FE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\112 Operator\Operator 112.exe () [File not signed]
FirewallRules: [{9DF0A91A-F233-471C-BCB5-CF19B5D59A82}] => (Allow) E:\SteamLibrary\steamapps\common\ProjectZomboid\ProjectZomboid64.exe () [File not signed]
FirewallRules: [{EA457428-0DF8-4258-B49C-685CDDDCC125}] => (Allow) E:\SteamLibrary\steamapps\common\ProjectZomboid\ProjectZomboid64.exe () [File not signed]
FirewallRules: [{87B6A54D-35E3-47BE-96B0-4E79B5C7E694}] => (Allow) F:\SteamLibrary\steamapps\common\OpenTTD\openttd.exe (OpenTTD Distribution Ltd -> OpenTTD Development Team)
FirewallRules: [{59AD7C67-0ABC-4B06-BF93-8E96810C4C00}] => (Allow) F:\SteamLibrary\steamapps\common\OpenTTD\openttd.exe (OpenTTD Distribution Ltd -> OpenTTD Development Team)
FirewallRules: [{DE46974A-21C0-499B-8A72-6D5E21E6A346}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{03B95FC5-2732-4D1A-B036-E698317F748E}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{548927E5-E69D-4338-814B-100CEFE61249}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO - The Hobbit\LEGOHobbit.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{183D0C33-B72D-4580-B853-454CA3543661}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO - The Hobbit\LEGOHobbit.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{DE49CA66-B4E4-4230-94C4-94F9BD4AD37B}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO DC Super-Villains\LEGO DC Super-villains_DX11.exe (Travellers Tales (UK) Limited -> Warner Bros. Interactive Entertainment)
FirewallRules: [{E6E08ECC-C964-4BF3-8C2B-1C2D7DF9EEED}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO DC Super-Villains\LEGO DC Super-villains_DX11.exe (Travellers Tales (UK) Limited -> Warner Bros. Interactive Entertainment)
FirewallRules: [{C6EB3889-1A4F-4B20-9F7E-8F8788BBD75B}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Tom Clancy’s Rainbow Six Extraction\R6-Extraction.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{153DA1B4-C775-4E65-B80A-E83A70974B24}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Tom Clancy’s Rainbow Six Extraction\R6-Extraction.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{95BB4621-65D3-4424-8F04-2314FBEF2614}] => (Allow) E:\SteamLibrary\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [File not signed]
FirewallRules: [{EDD76308-8789-482F-9BFC-46D880EF5327}] => (Allow) E:\SteamLibrary\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [File not signed]
FirewallRules: [{1ADE12AC-C56B-477F-8A6E-84C8A479DD29}] => (Allow) F:\SteamLibrary\steamapps\common\Virtual Cottage\Virtual Cottage_WINDOWS.exe (DU&I) [File not signed]
FirewallRules: [{42E20C76-D42C-4571-9F6A-C096933488F3}] => (Allow) F:\SteamLibrary\steamapps\common\Virtual Cottage\Virtual Cottage_WINDOWS.exe (DU&I) [File not signed]
FirewallRules: [{0B9D6BC4-63FB-4B67-8AF8-BF0805DDE78F}] => (Allow) F:\SteamLibrary\steamapps\common\PoliceStories\PoliceStories.exe (HypeTrain Digital LTD) [File not signed]
FirewallRules: [{01C6F318-795A-4F7D-983B-4C0B5CB3EAF8}] => (Allow) F:\SteamLibrary\steamapps\common\PoliceStories\PoliceStories.exe (HypeTrain Digital LTD) [File not signed]
FirewallRules: [{2CC079C0-9166-4F09-B220-0BA7157D9159}] => (Allow) G:\SteamLibrary\steamapps\common\LEGO Star Wars - The Skywalker Saga\LEGOSTARWARSSKYWALKERSAGA_DX11.exe (TT Games Studios Limited -> Warner Bros. Interactive Entertainment)
FirewallRules: [{198497A7-B9A6-4BD9-A728-04BD328D05B7}] => (Allow) G:\SteamLibrary\steamapps\common\LEGO Star Wars - The Skywalker Saga\LEGOSTARWARSSKYWALKERSAGA_DX11.exe (TT Games Studios Limited -> Warner Bros. Interactive Entertainment)
FirewallRules: [{81F2FA94-FE41-4AE2-BA81-3E571747F1EF}] => (Allow) G:\SteamLibrary\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{7BD6A88F-D770-443C-BB3F-A1C51083639B}] => (Allow) G:\SteamLibrary\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{92C407A7-9FA6-43E1-A0F5-7E823557F00F}] => (Allow) G:\SteamLibrary\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{82451F43-5001-4E8A-8D70-9CB2DADF4DC2}] => (Allow) G:\SteamLibrary\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{CCD74FD5-1456-4862-AE10-BB5C70241688}] => (Allow) G:\SteamLibrary\steamapps\common\Crab Game\Crab Game.exe () [File not signed]
FirewallRules: [{F9F051CC-473F-4C42-8661-8A09BB66433E}] => (Allow) G:\SteamLibrary\steamapps\common\Crab Game\Crab Game.exe () [File not signed]
FirewallRules: [{8C1EB7A5-EAB8-436A-9F81-F23DBCD8FE55}] => (Allow) F:\SteamLibrary\steamapps\common\VRising\VRising.exe (Stunlock Studios AB -> Stunlock Studios)
FirewallRules: [{8C6E52BF-DC8A-4DCF-A96C-B3D9B04702E5}] => (Allow) F:\SteamLibrary\steamapps\common\VRising\VRising.exe (Stunlock Studios AB -> Stunlock Studios)
FirewallRules: [{4EC7641B-3404-41EF-A845-EF8B83161B1F}] => (Allow) F:\SteamLibrary\steamapps\common\Golf Gang\Golf Gang.exe () [File not signed]
FirewallRules: [{D982825D-F816-4877-B174-2B8181CED52D}] => (Allow) F:\SteamLibrary\steamapps\common\Golf Gang\Golf Gang.exe () [File not signed]
FirewallRules: [{45E86240-0C54-47D3-AAC7-AF98793029B3}] => (Allow) G:\SteamLibrary\steamapps\common\Spellcaster University\Spellcaster University.exe () [File not signed]
FirewallRules: [{337F332D-FE63-4B78-AC98-C3338726ECF6}] => (Allow) G:\SteamLibrary\steamapps\common\Spellcaster University\Spellcaster University.exe () [File not signed]
FirewallRules: [{CFC4E55C-D975-4109-91ED-8B4D7C9953EE}] => (Allow) G:\SteamLibrary\steamapps\common\Tricky Towers\TrickyTowers.exe () [File not signed]
FirewallRules: [{3729899E-3078-4F14-A6B8-9C3B984D8E58}] => (Allow) G:\SteamLibrary\steamapps\common\Tricky Towers\TrickyTowers.exe () [File not signed]
FirewallRules: [{EE8219EC-B95F-4657-ABCD-1912890FA702}] => (Allow) G:\SteamLibrary\steamapps\common\Escape Simulator\Escape Simulator.exe () [File not signed]
FirewallRules: [{872C85DD-F947-4F41-B1AA-BF173F6AA55E}] => (Allow) G:\SteamLibrary\steamapps\common\Escape Simulator\Escape Simulator.exe () [File not signed]
FirewallRules: [{8A89B821-36C3-4C0D-BF4F-87196C5FBF08}] => (Allow) G:\SteamLibrary\steamapps\common\RunningWithRifles\rwr_game.exe () [File not signed]
FirewallRules: [{C636109B-1969-4D04-A710-49C1F9750AEE}] => (Allow) G:\SteamLibrary\steamapps\common\RunningWithRifles\rwr_game.exe () [File not signed]
FirewallRules: [{04C37BDA-C752-44BF-9D33-BFF020B99522}] => (Allow) G:\SteamLibrary\steamapps\common\RunningWithRifles\rwr_config.exe () [File not signed]
FirewallRules: [{50F2996F-3857-4C51-BC4E-02FFCA124C9F}] => (Allow) G:\SteamLibrary\steamapps\common\RunningWithRifles\rwr_config.exe () [File not signed]
FirewallRules: [{8E3B38EC-079C-4AE6-87CE-A14667AC842E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stray\Stray.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{994F83A5-69AF-4412-813C-55DEF02F09B0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stray\Stray.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{28BB39DD-CD6E-4F6B-9830-197BAF9BDCDB}] => (Allow) F:\SteamLibrary\steamapps\common\Dinkum\Dinkum.exe () [File not signed]
FirewallRules: [{0E6A6ECF-5005-4118-82A2-4151C79F4628}] => (Allow) F:\SteamLibrary\steamapps\common\Dinkum\Dinkum.exe () [File not signed]
FirewallRules: [{43480951-0603-4BA3-9E53-838EB9C52779}] => (Allow) E:\SteamLibrary\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0EC73F63-DF45-4634-98E7-8F92A4A7E3EB}] => (Allow) E:\SteamLibrary\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8E1FF553-9271-4497-B412-98B96937B230}] => (Allow) E:\SteamLibrary\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{73C4560D-4042-446B-86FF-25BC2C1DDC95}] => (Allow) E:\SteamLibrary\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{BF2C344D-0C36-4E6B-86DF-B00FEEFE1CC2}] => (Allow) E:\SteamLibrary\steamapps\common\Colt Canyon\ColtCanyon.exe (Retrific) [File not signed]
FirewallRules: [{D9613E16-E431-4D0F-B81F-6DD3296B216D}] => (Allow) E:\SteamLibrary\steamapps\common\Colt Canyon\ColtCanyon.exe (Retrific) [File not signed]
FirewallRules: [{34136290-7AE9-46C7-8842-8655AF47843B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe (Chucklefish LTD) [File not signed]
FirewallRules: [{623D7C34-A95F-47DD-8867-F6CA7633731F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe (Chucklefish LTD) [File not signed]
FirewallRules: [{2D9B3CF0-1567-4078-8F7E-F424BB32F535}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe () [File not signed]
FirewallRules: [{7C6946F0-209E-460B-8851-52ECC19541CC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe () [File not signed]
FirewallRules: [{77C656F8-C554-4C69-9242-E93B49D8AA03}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe () [File not signed]
FirewallRules: [{76750DB8-4E1E-4D65-A5CE-B59AF4DA7947}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe () [File not signed]
FirewallRules: [{CF7A9D33-6D0C-4FC8-B296-B56C4FC87023}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe (Chucklefish LTD) [File not signed]
FirewallRules: [{B21E5766-9428-49B2-86A1-AAC19E1893B0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe (Chucklefish LTD) [File not signed]
FirewallRules: [{C2ED37EF-3F9A-4DEC-9DDE-E36DA3596216}] => (Allow) E:\SteamLibrary\steamapps\common\Arcane Waters\ArcaneWaters.exe () [File not signed]
FirewallRules: [{50C615C1-E78A-4F98-82E9-43C49B39138A}] => (Allow) E:\SteamLibrary\steamapps\common\Arcane Waters\ArcaneWaters.exe () [File not signed]
FirewallRules: [{AE9166B7-7374-42C9-9557-A53BFB71068B}] => (Allow) G:\SteamLibrary\steamapps\common\ShadowOfWar\x64\ShadowOfWar.exe (WB Games Inc. -> WB Games, Inc.) [File not signed]
FirewallRules: [{1C1829D6-8865-40E5-AF8B-2EA342E63B20}] => (Allow) G:\SteamLibrary\steamapps\common\ShadowOfWar\x64\ShadowOfWar.exe (WB Games Inc. -> WB Games, Inc.) [File not signed]
FirewallRules: [{BB9874DB-E09D-4E53-A22A-40AFB5D0FFA5}] => (Allow) F:\SteamLibrary\steamapps\common\Northgard\ng32\Northgard.exe () [File not signed]
FirewallRules: [{48F1C813-A9F0-46A8-BFC5-ED8CC6BCA4A1}] => (Allow) F:\SteamLibrary\steamapps\common\Northgard\ng32\Northgard.exe () [File not signed]
FirewallRules: [{01509584-BB74-4214-B347-6892509DBD67}] => (Allow) E:\Downloads\hitpaw-video-converter.exe (Adoreshare Co.,Limited -> HitPaw Co., Ltd.)
FirewallRules: [{840A7C69-29D0-4B54-A7CA-DA20BF6AB9A2}] => (Allow) E:\Downloads\hitpaw-video-converter.exe (Adoreshare Co.,Limited -> HitPaw Co., Ltd.)
FirewallRules: [{B4ACBF31-8843-4091-8A38-4ACCAD5454A4}] => (Allow) F:\SteamLibrary\steamapps\common\SlayTheSpire\jre\bin\javaw.exe
FirewallRules: [{11B2A627-5CDF-49FE-ACFA-2A3549AEF4ED}] => (Allow) F:\SteamLibrary\steamapps\common\SlayTheSpire\jre\bin\javaw.exe
FirewallRules: [{F98DB7C4-B96C-4839-BDB1-C35E9C7C6E92}] => (Allow) F:\SteamLibrary\steamapps\common\Crusader Kings III\launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{C59589F5-FD28-468E-93BC-859CADC8D4EE}] => (Allow) F:\SteamLibrary\steamapps\common\Crusader Kings III\launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{35C5F926-0F0C-485F-B107-8D15863C9AEF}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{D8F1D180-B707-4B7B-877F-F87A559BC3EC}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{5204A2D9-6C75-429B-9C2C-392A35E5FFCB}] => (Allow) E:\SteamLibrary\steamapps\common\Wolfpack\Wolfpack.exe () [File not signed]
FirewallRules: [{FD539855-E8DE-49F1-9A06-4A204D155509}] => (Allow) E:\SteamLibrary\steamapps\common\Wolfpack\Wolfpack.exe () [File not signed]
FirewallRules: [{2293DA07-FA4A-402C-AF17-AAF99EEA2A80}] => (Allow) F:\SteamLibrary\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [{BC90C4C3-70F5-4C57-953F-14AB2CAD59C2}] => (Allow) F:\SteamLibrary\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [{44715F0E-F2EF-4738-9C03-DBAA14B1E5DF}] => (Allow) E:\SteamLibrary\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
FirewallRules: [{BD81ECCE-FE2B-4CCE-99A7-A1D30A5EF0A4}] => (Allow) E:\SteamLibrary\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [File not signed]
FirewallRules: [{EDDE0B88-ED7E-4724-B603-1A1171D7286C}] => (Allow) F:\SteamLibrary\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> )
FirewallRules: [{35C25120-A3A0-4A6A-9604-3621908ECA29}] => (Allow) F:\SteamLibrary\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> )
FirewallRules: [{8D109AD0-64C4-419C-B2B2-0B8EAA3069AD}] => (Allow) G:\SteamLibrary\steamapps\common\12 is Better Than 6\12ibt6Hi\12ibt6.exe (Ink Sains Games) [File not signed]
FirewallRules: [{EEC51181-BDCD-4CE5-B133-71729D4F1C1C}] => (Allow) G:\SteamLibrary\steamapps\common\12 is Better Than 6\12ibt6Hi\12ibt6.exe (Ink Sains Games) [File not signed]
FirewallRules: [{D80F6063-E817-48D6-AFBD-0DC744928A63}] => (Allow) G:\SteamLibrary\steamapps\common\12 is Better Than 6\12ibt6Low\12ibt6.exe (Ink Sains Games) [File not signed]
FirewallRules: [{B437CF76-22FC-435C-8E43-92BB1496A091}] => (Allow) G:\SteamLibrary\steamapps\common\12 is Better Than 6\12ibt6Low\12ibt6.exe (Ink Sains Games) [File not signed]
FirewallRules: [{7661DDD2-7787-45C2-AE1E-B343B9990E70}] => (Allow) F:\SteamLibrary\steamapps\common\Element TD 2\Element TD 2.exe () [File not signed]
FirewallRules: [{6DE0AB8F-7779-40D8-A39D-3EF16F445B39}] => (Allow) F:\SteamLibrary\steamapps\common\Element TD 2\Element TD 2.exe () [File not signed]
FirewallRules: [{C9083F15-F59A-44CA-BC58-315FCB8E480F}] => (Allow) D:\Games\Project Highrise\Game.exe (Electronic Arts, Inc. -> )
FirewallRules: [{66550F68-2D11-4B7E-BD81-7F9E58686FEB}] => (Allow) D:\Games\Project Highrise\Game.exe (Electronic Arts, Inc. -> )
FirewallRules: [{43EE9901-1F82-4127-8A63-0D8DC4B60497}] => (Allow) F:\SteamLibrary\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{71ECBA1E-B5BC-44B8-A87C-AD89F55A61D1}] => (Allow) F:\SteamLibrary\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{80120CEF-1E70-479F-BB25-0B24880EB947}] => (Allow) F:\SteamLibrary\steamapps\common\ASTRONEER\Astro.exe (System Era Softworks) [File not signed]
FirewallRules: [{6C3D1DFF-DB96-41EB-AD34-F3FA3AD72293}] => (Allow) F:\SteamLibrary\steamapps\common\ASTRONEER\Astro.exe (System Era Softworks) [File not signed]
FirewallRules: [{EA88BDD8-100A-497A-8C14-CFBDBA3FC918}] => (Allow) F:\SteamLibrary\steamapps\common\[bleep] Let Loose\Launch_HLL.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{CFB7347E-0185-46DA-8F9A-B732AB5A6311}] => (Allow) F:\SteamLibrary\steamapps\common\[bleep] Let Loose\Launch_HLL.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{1DA7F103-F26A-4763-995F-32CA1E8A6CDD}] => (Allow) G:\SteamLibrary\steamapps\common\The Jackbox Party Pack 9\The Jackbox Party Pack 9.exe () [File not signed]
FirewallRules: [{AF0A73F6-EA27-4A99-BCEE-0728A6E00353}] => (Allow) G:\SteamLibrary\steamapps\common\The Jackbox Party Pack 9\The Jackbox Party Pack 9.exe () [File not signed]
FirewallRules: [{C1156713-F255-466B-8C8A-B5D7CD340D21}] => (Allow) H:\SteamLibrary\steamapps\common\Ready Or Not\ReadyOrNot.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{7555C362-6858-4FA4-A6F6-BA503EAE7803}] => (Allow) H:\SteamLibrary\steamapps\common\Ready Or Not\ReadyOrNot.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{54D4A4D3-EA8D-4322-9C22-8623D53947D8}] => (Allow) H:\SteamLibrary\steamapps\common\Ready Or Not\Engine\Binaries\Win64\CrashReporter.exe () [File not signed]
FirewallRules: [{BA50F74C-C9A5-433D-A558-15ED5A1E88B1}] => (Allow) H:\SteamLibrary\steamapps\common\Ready Or Not\Engine\Binaries\Win64\CrashReporter.exe () [File not signed]
FirewallRules: [{13C3CD8D-8F76-4672-8193-B1BA673BB2F9}] => (Allow) H:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{93385933-298F-48DC-B064-440349185176}] => (Allow) H:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{483A654E-133D-4F53-AEBA-D1F7BE2F8623}] => (Allow) F:\SteamLibrary\steamapps\common\WormsRevolution\WormsRevolution.exe () [File not signed]
FirewallRules: [{2A2C99CD-624A-4CD7-9CB7-35D14D9E23C3}] => (Allow) F:\SteamLibrary\steamapps\common\WormsRevolution\WormsRevolution.exe () [File not signed]
FirewallRules: [{D8552E3E-0BB0-482F-921F-8318A21499E8}] => (Allow) H:\SteamLibrary\steamapps\common\RavenExt\start_protected_game.exe (UnbrokenClient) [File not signed]
FirewallRules: [{B2FADBB1-5C9F-4398-89E6-06F3C28C18EE}] => (Allow) H:\SteamLibrary\steamapps\common\RavenExt\start_protected_game.exe (UnbrokenClient) [File not signed]
FirewallRules: [{1F74C55E-2ED2-44EC-AB79-BC466A01E848}] => (Allow) H:\Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{661F3C6D-7A9E-486C-AAAC-D0A55A17B344}] => (Allow) H:\Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{9F9E3813-393D-4A81-89D6-135A8D44679A}] => (Allow) H:\Ubisoft\Ghost Recon Breakpoint\GRB.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{ECC56A67-08EE-488F-864F-07F3F5236198}] => (Allow) H:\Ubisoft\Ghost Recon Breakpoint\GRB.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E7196B0F-2077-4700-8FF5-9D30F2192B27}] => (Allow) H:\SteamLibrary\steamapps\common\Lethal Company\Lethal Company.exe () [File not signed]
FirewallRules: [{89A4EB80-1EB3-49A2-9CDB-2F9D75632BCC}] => (Allow) H:\SteamLibrary\steamapps\common\Lethal Company\Lethal Company.exe () [File not signed]
FirewallRules: [{A23B64DD-D2C2-4DC7-8AB1-6E357C5580D5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe (Re-Logic) [File not signed]
FirewallRules: [{2A2BB8D7-D000-41EA-90A9-8598D66EF938}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe (Re-Logic) [File not signed]
FirewallRules: [{6E85FEBC-02B8-405F-B43B-48391F0875D0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{DA0440F7-78F4-4DD8-89BD-F9D06ED41D3C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{E8302181-DD40-4519-A8AD-DCF4653A3A99}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{16736B68-81EA-4328-A6D0-50AC408000E2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{949F7218-978E-4958-8A36-72F86A87A214}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{42886467-85C5-45D7-9F5B-CDC65D0DA02E}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{938B6FDA-F484-4D3F-955F-5E969B5CE2DD}] => (Allow) H:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{D7A116EA-AA43-44A6-B6E2-3765EC444707}] => (Allow) H:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{C3799E5E-2705-417A-97B9-5DB8CAD9DA6F}] => (Allow) H:\SteamLibrary\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{43202ADE-11E5-43EF-ADD6-259A36B93720}] => (Allow) H:\SteamLibrary\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{70443A3A-573F-4FFD-866C-CF7514D4FB37}] => (Allow) F:\SteamLibrary\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{9E902EF9-1FF8-454B-875B-0230CAE5F297}] => (Allow) F:\SteamLibrary\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{EBE6198E-84C2-418E-9FA4-B28FD7094954}] => (Allow) F:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{E4A69AF2-7D33-499F-8A24-785628E46C90}] => (Allow) F:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{F8044A97-ED52-44E4-A00E-0BD30ADE5B88}] => (Allow) F:\SteamLibrary\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{3FAC15EF-0AA2-443F-8A8A-03884AF9F427}] => (Allow) F:\SteamLibrary\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive a.s.)
FirewallRules: [{AE10B790-DDC0-4204-AB7E-FBB37C7D46ED}] => (Allow) H:\SteamLibrary\steamapps\common\For The King II\For The King II.exe () [File not signed]
FirewallRules: [{14E89E7C-1D23-4718-89E2-CC5806A89727}] => (Allow) H:\SteamLibrary\steamapps\common\For The King II\For The King II.exe () [File not signed]
FirewallRules: [{9036ECBD-ACCE-42E5-BF97-3A7BB6B35A50}] => (Allow) H:\SteamLibrary\steamapps\common\Enshrouded\enshrouded.exe () [File not signed]
FirewallRules: [{6B0DF532-2BCE-47E5-BDE3-D846FF048FB6}] => (Allow) H:\SteamLibrary\steamapps\common\Enshrouded\enshrouded.exe () [File not signed]
FirewallRules: [{87C78E7F-AFF3-4ACE-AEAF-0F03787F2DDE}] => (Allow) G:\SteamLibrary\steamapps\common\Travelin Demo\Travelin'.exe () [File not signed]
FirewallRules: [{D1FC41A4-F96E-4612-BB7F-0B7251357F11}] => (Allow) G:\SteamLibrary\steamapps\common\Travelin Demo\Travelin'.exe () [File not signed]
FirewallRules: [{C7E4FBC2-A6B1-4CE2-9CB0-5E6BE4313B8D}] => (Allow) H:\SteamLibrary\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{15EB9B55-735E-4B9C-86F0-3804303D122C}] => (Allow) H:\SteamLibrary\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{1DC73A57-98DF-42A8-970E-F57FAB4ADB60}] => (Allow) H:\SteamLibrary\steamapps\common\Total War Saga Thrones of Britannia\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{23B693F1-ADB2-4F65-B60B-851B10D1F722}] => (Allow) H:\SteamLibrary\steamapps\common\Total War Saga Thrones of Britannia\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{7D557D5D-1692-40BF-B234-94BC3A9D49A2}] => (Allow) H:\SteamLibrary\steamapps\common\Baldurs Gate 3\Launcher\LariLauncher.exe (Larian Studios Games Ltd. -> LariLauncher)
FirewallRules: [{C86B65AF-A791-4130-A9F6-15354C84DB1F}] => (Allow) H:\SteamLibrary\steamapps\common\Baldurs Gate 3\Launcher\LariLauncher.exe (Larian Studios Games Ltd. -> LariLauncher)
FirewallRules: [{93064A72-0923-4702-B987-7A4F61B39A3E}] => (Allow) H:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{918F7317-5AD1-49BE-9F25-61B37D9E72FE}] => (Allow) H:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{F1237FC0-193A-4DC7-BF0E-0BEC6DCDE362}] => (Allow) H:\SteamLibrary\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [File not signed]
FirewallRules: [{A83ABBE2-2710-484F-B79A-2C80D9813A3B}] => (Allow) H:\SteamLibrary\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [File not signed]
FirewallRules: [{2AB91FA1-4A76-4AAE-A91A-24AA869D88E8}] => (Allow) H:\SteamLibrary\steamapps\common\Heliborne\heliborne-launcher.exe (Klabater) [File not signed]
FirewallRules: [{68139E1E-FA47-4A57-B009-BD8D5941380D}] => (Allow) H:\SteamLibrary\steamapps\common\Heliborne\heliborne-launcher.exe (Klabater) [File not signed]
FirewallRules: [{34AA24D2-5D57-4ECF-B148-D52ACEED8633}] => (Allow) H:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{2667E958-71B2-4F33-9092-1DFFDAC3690F}] => (Allow) H:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{FD181441-25D2-4D9F-B2C3-8CD9A3528E00}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{891B57F7-75A4-4FCA-BBB0-06B9E43C42F2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{C1EBC82B-C360-478B-92EB-1ECED7023F18}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{16EF8606-3180-4685-922D-26F3AE6EC93C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{BAA2DC57-A1AF-458E-95D7-5D7B663A6028}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{23A0FD1E-E8C4-495A-996F-9E59712056F7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{BEC86FEB-4272-41AA-8980-A3A2A61431ED}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FFE3A8D9-841E-4E97-9756-DFAA01E6A9ED}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{F6BE7D5D-D289-417C-932F-253DABF29A73}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77A769BC-4D6C-4B0C-8693-91238CA6B95F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E24BDB6D-2AB8-4FCD-8865-BB16F6D5F5C3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F893CCC2-CBE5-44DA-8682-432E42148FAC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A2592A99-1361-4D61-AB5E-4AC6CA0FAAC3}] => (Allow) C:\Program Files\GIGABYTE\Control Center\GCC.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{8C4032F0-AC83-4729-95F0-420F84CF8412}] => (Allow) J:\EA Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{3B9A57FF-DC4B-4950-A467-13DB8A2DBF4D}] => (Allow) J:\EA Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{D3033301-9EF5-4A93-B5B5-5F6B6140E8BB}] => (Allow) J:\EA Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{47E6CAE8-FFF3-403D-BEC5-FEE5C5B199E2}] => (Allow) J:\EA Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{19CB2437-A638-4F92-B70C-8F483AACFCE8}] => (Allow) J:\EA Games\Battlefield 2042\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2EEE751A-A2D3-4BB7-AB1D-6A8C10F595DF}] => (Allow) J:\EA Games\Battlefield 2042\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{75B155F8-A0FA-41CF-9BF5-DCE3E2B6B449}] => (Allow) C:\Program Files\EaseUS\EaseUS Todo PCTrans\bin\PCTrans.exe (CHENGDU YIWO Tech Development Co., Ltd. -> EaseUS)
FirewallRules: [{C6C1265D-4054-424C-B2E6-AC15C7F79BA4}] => (Allow) H:\SteamLibrary\steamapps\common\Mirthwood Demo\Mirthwood.exe () [File not signed]
FirewallRules: [{860CB9CD-F036-47BC-A44E-66FC19348E67}] => (Allow) H:\SteamLibrary\steamapps\common\Mirthwood Demo\Mirthwood.exe () [File not signed]
FirewallRules: [{00C28056-6CA7-41E7-8EB8-833A28F09CBE}] => (Allow) H:\SteamLibrary\steamapps\common\Tiny Glade Demo\tiny-glade.exe () [File not signed]
FirewallRules: [{3D270EF4-952B-4CCF-851D-9C1692124735}] => (Allow) H:\SteamLibrary\steamapps\common\Tiny Glade Demo\tiny-glade.exe () [File not signed]
FirewallRules: [{AA22400E-D808-4A5A-ADB4-E6C207EE6313}] => (Allow) H:\SteamLibrary\steamapps\common\Squad\squad_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{D885186E-75D8-4594-ABCD-A43E73F480FE}] => (Allow) H:\SteamLibrary\steamapps\common\Squad\squad_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{AAF997A9-2E62-4A69-868A-7820C69D9FDD}] => (Allow) J:\EA Games\EA SPORTS FC 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{74DFFE32-1284-4197-BCAB-943CC5098C36}] => (Allow) J:\EA Games\EA SPORTS FC 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{AF0BCA4E-658F-4A4B-BDE9-06B2E99C6A2A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3D810716-E476-4275-9A01-D15A36EA9A78}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C616C31A-57B8-4B78-8BF8-6BE60D6F1CA5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{BEF1DB6F-7EED-4E5D-BEB5-B686052526A9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5E8A09C4-0CD9-4C22-99E6-78BC0551D43C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{9A65F76B-89FF-4766-B133-CAEA6E55E771}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{31159800-E076-4B88-A915-88F87A33E5B4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{176FE7D5-ACF7-48C5-ACED-E52CA1B433B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1A52A40F-63F2-407A-B7B3-57AF572ED8AA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3C9BEB90-E9CD-4822-B377-988424F301BD}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{543ADACD-2DA6-4476-B769-27F2522D6E8F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{BF7F556D-E8B5-490F-B169-CFD43345237D}] => (Allow) H:\SteamLibrary\steamapps\common\Once Human\ONCE_HUMAN.exe (NetEase (Hangzhou) Network Co., Ltd -> 网易)
FirewallRules: [{2EB0B577-2891-4C7B-8600-C16F9B4FE364}] => (Allow) H:\SteamLibrary\steamapps\common\Once Human\ONCE_HUMAN.exe (NetEase (Hangzhou) Network Co., Ltd -> 网易)
FirewallRules: [{E539F810-E7C5-496E-AB98-83BDC1EB4107}] => (Allow) H:\SteamLibrary\steamapps\common\The Jackbox Party Pack 10\The Jackbox Party Pack 10.exe () [File not signed]
FirewallRules: [{133F92E4-A6AB-4ADA-B413-94CA51E4B2DE}] => (Allow) H:\SteamLibrary\steamapps\common\The Jackbox Party Pack 10\The Jackbox Party Pack 10.exe () [File not signed]
FirewallRules: [{A9E4F956-FF97-48F1-85CD-303D2FFABF29}] => (Allow) H:\SteamLibrary\steamapps\common\Starfield\Starfield.exe (Bethesda Softworks LLC -> Bethesda Softworks)
FirewallRules: [{7E1B879E-303D-4AD4-A6CB-07C8FDAD9D6E}] => (Allow) H:\SteamLibrary\steamapps\common\Starfield\Starfield.exe (Bethesda Softworks LLC -> Bethesda Softworks)
FirewallRules: [{49FE9EF7-02C8-431E-A51E-73E922B8AEDB}] => (Allow) H:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{CAE66316-C766-461A-9FF3-0C0FCEDEB67A}] => (Allow) H:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (KRAFTON, Inc. -> KRAFTON, Inc.)
FirewallRules: [{8AC9CA65-52E9-4C11-98D7-5DEBBE981D43}] => (Allow) H:\SteamLibrary\steamapps\common\Half Sword Demo\HalfSwordUE5.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{2BAB7DAF-341E-4449-9A28-DAE563D52D7B}] => (Allow) H:\SteamLibrary\steamapps\common\Half Sword Demo\HalfSwordUE5.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{9FEF115C-2531-496C-9E2B-EB3610210C0F}] => (Allow) H:\SteamLibrary\steamapps\common\Dark and Darker\Tavern.exe (IRONMACE Co., Ltd. -> IRONMACE Co., Ltd.)
FirewallRules: [{39983194-D7C0-4C3D-97CB-B59D158431EF}] => (Allow) H:\SteamLibrary\steamapps\common\Dark and Darker\Tavern.exe (IRONMACE Co., Ltd. -> IRONMACE Co., Ltd.)
FirewallRules: [{6A33F43F-70FE-4444-91B5-3CF826C62786}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{170731C6-F98F-4514-A9A9-16AF47D87C30}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\127.0.2651.105\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{62320333-B7E2-40B7-94E2-922FF21E7875}] => (Allow) E:\Program Files (x86)\Overwolf\0.258.0.6\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{7769D578-D224-4D83-B8BB-23F332F2098B}] => (Allow) E:\Program Files (x86)\Overwolf\0.258.0.6\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{356386A7-0E63-4FD0-A485-D100203DF1AF}] => (Block) E:\Program Files (x86)\Overwolf\0.258.0.6\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{17CA0E54-C4C5-4720-A7D2-EBC4233AE84B}] => (Block) E:\Program Files (x86)\Overwolf\0.258.0.6\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/21/2024 11:11:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: StartMenuExperienceHost.exe, version: 0.0.0.0, time stamp: 0x5b4094ef
Faulting module name: ucrtbase.dll, version: 10.0.19041.3636, time stamp: 0x81cf5d89
Exception code: 0xc0000409
Fault offset: 0x000000000007286e
Faulting process ID: 0x6fe0
Faulting application start time: 0x01daf3eb2768c0c0
Faulting application path: C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Faulting module path: C:\WINDOWS\System32\ucrtbase.dll
Report ID: 05752832-7e7c-4361-bc5d-c7e547c42e63
Faulting package full name: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.4239_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: App
Error: (08/21/2024 10:57:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: StartMenuExperienceHost.exe, version: 0.0.0.0, time stamp: 0x5b4094ef
Faulting module name: ucrtbase.dll, version: 10.0.19041.3636, time stamp: 0x81cf5d89
Exception code: 0xc0000409
Fault offset: 0x000000000007286e
Faulting process ID: 0x2f0c
Faulting application start time: 0x01daf3e8fc62e472
Faulting application path: C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Faulting module path: C:\WINDOWS\System32\ucrtbase.dll
Report ID: 015e07e0-1a6e-4fda-b91d-8314fa51877a
Faulting package full name: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.4239_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: App
Error: (08/21/2024 10:49:18 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "E:\Desktop\New folder\Autoruns.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_a865f0c28672571c.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_60b8b9eb71f62e16.manifest.
Error: (08/21/2024 10:41:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AmbLED.exe, version: 1.0.0.0, time stamp: 0x5b9f7a4c
Faulting module name: KERNELBASE.dll, version: 10.0.19041.4780, time stamp: 0xc4a0381f
Exception code: 0xe0434352
Fault offset: 0x00141072
Faulting process ID: 0x408c
Faulting application start time: 0x01daf3e901415c68
Faulting application path: C:\Program Files (x86)\GIGABYTE\AmbientLED\AmbLED.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report ID: af7aaf12-44b1-4111-98c2-c1051b833b1c
Faulting package full name:
Faulting package-relative application ID:
Error: (08/21/2024 10:41:50 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: AmbLED.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
at AmbLED.LEDFunc.PchLedCtrl.piCLed_Init()
at AmbLED.LEDFunc.LEDCtrl..ctor()
at AmbLED.MainWindow..ctor()
Exception Info: System.Windows.Markup.XamlParseException
at System.Windows.Markup.WpfXamlLoader.Load(System.Xaml.XamlReader, System.Xaml.IXamlObjectWriterFactory, Boolean, System.Object, System.Xaml.XamlObjectWriterSettings, System.Uri)
at System.Windows.Markup.WpfXamlLoader.LoadBaml(System.Xaml.XamlReader, Boolean, System.Object, System.Xaml.Permissions.XamlAccessLevel, System.Uri)
at System.Windows.Markup.XamlReader.LoadBaml(System.IO.Stream, System.Windows.Markup.ParserContext, System.Object, Boolean)
at System.Windows.Application.LoadBamlStreamWithSyncInfo(System.IO.Stream, System.Windows.Markup.ParserContext)
at System.Windows.Application.LoadComponent(System.Uri, Boolean)
at System.Windows.Application.DoStartup()
at System.Windows.Application.<.ctor>b__1_0(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.DispatcherOperation.InvokeImpl()
at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Windows.Threading.DispatcherOperation.Invoke()
at System.Windows.Threading.Dispatcher.ProcessQueue()
at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at AmbLED.App.Main()
Error: (08/21/2024 10:41:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AsRogAuraService.exe, version: 1.3.13.0, time stamp: 0x593e3a47
Faulting module name: AsRogAuraService.exe, version: 1.3.13.0, time stamp: 0x593e3a47
Exception code: 0xc0000005
Fault offset: 0x0000ba04
Faulting process ID: 0x14d0
Faulting application start time: 0x01daf3e8f7577e8d
Faulting application path: C:\Program Files (x86)\ASUS\AURA\AsRogAuraService.exe
Faulting module path: C:\Program Files (x86)\ASUS\AURA\AsRogAuraService.exe
Report ID: 77f91181-402f-46a6-a6d9-2f2da29f7af8
Faulting package full name:
Faulting package-relative application ID:
Error: (08/21/2024 08:23:33 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\stuar\AppData\Local\CapCut\CapCut.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_a865f0c28672571c.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_60b8b9eb71f62e16.manifest.
Error: (08/21/2024 08:11:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: StartMenuExperienceHost.exe, version: 0.0.0.0, time stamp: 0x5b4094ef
Faulting module name: ucrtbase.dll, version: 10.0.19041.3636, time stamp: 0x81cf5d89
Exception code: 0xc0000409
Fault offset: 0x000000000007286e
Faulting process ID: 0x4568
Faulting application start time: 0x01daf3d1e0c8ecbe
Faulting application path: C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Faulting module path: C:\WINDOWS\System32\ucrtbase.dll
Report ID: 1d1f4c24-db20-41a1-9fe0-2bb4f93a73ce
Faulting package full name: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.4239_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: App
System errors:
=============
Error: (08/21/2024 10:45:25 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: The LoadUserProfile call failed with the following error:
The configuration registry database is corrupt.
Error: (08/21/2024 10:44:19 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: The LoadUserProfile call failed with the following error:
The configuration registry database is corrupt.
Error: (08/21/2024 10:43:31 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: The LoadUserProfile call failed with the following error:
The configuration registry database is corrupt.
Error: (08/21/2024 10:43:31 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: The LoadUserProfile call failed with the following error:
The configuration registry database is corrupt.
Error: (08/21/2024 10:41:52 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: The LoadUserProfile call failed with the following error:
The configuration registry database is corrupt.
Error: (08/21/2024 10:41:44 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: The LoadUserProfile call failed with the following error:
The configuration registry database is corrupt.
Error: (08/21/2024 10:41:42 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The AsRogAuraService service terminated unexpectedly. It has done this 1 time(s).
Error: (08/21/2024 10:41:31 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: The LoadUserProfile call failed with the following error:
The configuration registry database is corrupt.
Windows Defender:
================
Date: 2024-08-13 14:57:48
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-07-22 15:30:29
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-06-23 20:13:47
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-06-07 21:34:22
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-06-01 10:43:58
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2024-08-16 09:53:27
Description:
Microsoft Defender Antivirus has encountered an error trying to upload a suspicious file for further analysis.
Filename: H:\Games\Ghost of Tsushima DIRECTOR'S CUT\UNINSTALL.exe
Sha256: e04f229327069e85bb0a18da6137746e0011ac4956a078fc847de9526f63c4bb
Current security intelligence Version: AV: 1.417.151.0, AS: 1.417.151.0
Current Engine Version: 1.1.24070.3
Error code: 0x80071112
Date: 2024-08-16 08:07:48
Description:
Microsoft Defender Antivirus has encountered an error trying to upload a suspicious file for further analysis.
Filename: H:\Games\Ghost of Tsushima DIRECTOR'S CUT\UNINSTALL.exe
Sha256: e04f229327069e85bb0a18da6137746e0011ac4956a078fc847de9526f63c4bb
Current security intelligence Version: AV: 1.417.151.0, AS: 1.417.151.0
Current Engine Version: 1.1.24070.3
Error code: 0x80071112
Date: 2024-06-25 17:28:46
Description:
Microsoft Defender Antivirus has encountered an error trying to upload a suspicious file for further analysis.
Filename: E:\Downloads\SodaPDF12Installer.exe
Sha256: 55e454fd424e79126585498eb2903eb73663e69bd90c425284641f857565682d
Current security intelligence Version: AV: 1.413.510.0, AS: 1.413.510.0
Current Engine Version: 1.1.24050.5
Error code: 0x80071112
Date: 2024-06-23 18:53:44
Description:
Microsoft Defender Antivirus has encountered an error trying to upload a suspicious file for further analysis.
Filename: E:\Downloads\SodaPDF12Installer.exe
Sha256: 55e454fd424e79126585498eb2903eb73663e69bd90c425284641f857565682d
Current security intelligence Version: AV: 1.413.467.0, AS: 1.413.467.0
Current Engine Version: 1.1.24050.5
Error code: 0x80071112
Date: 2024-05-29 09:02:34
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.411.421.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24040.1
Error code: 0x80070643
Error description: Fatal error during installation.
CodeIntegrity:
===============
Date: 2024-08-21 11:15:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. F7 10/16/2023
Motherboard: Gigabyte Technology Co., Ltd. B760 AORUS ELITE AX
Processor: 12th Gen Intel® Core i7-12700K
Percentage of memory in use: 39%
Total physical RAM: 32527.03 MB
Available physical RAM: 19825.29 MB
Total Virtual: 64271.03 MB
Available Virtual: 46375.34 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.77 GB) (Free:3.07 GB) (Model: Force MP500) NTFS
Drive d: (External HDD 2TB) (Fixed) (Total:1863.01 GB) (Free:645.17 GB) (Model: Seagate Expansion Desk USB Device) NTFS
Drive e: (Toshiba 1TB) (Fixed) (Total:931.39 GB) (Free:249.28 GB) (Model: TOSHIBA DT01ACA100) NTFS
Drive f: (Samsung EVO 860 1TB) (Fixed) (Total:931.5 GB) (Free:212.33 GB) (Model: Samsung SSD 860 EVO 1TB) NTFS
Drive g: (ASUS Laptop HDD 750GB) (Fixed) (Total:698.63 GB) (Free:390.42 GB) (Model: TOSHIBA MK7559GSXP) NTFS
Drive h: (Samsung EVO 980 2TB) (Fixed) (Total:1863 GB) (Free:220.07 GB) (Model: Samsung SSD 980 PRO with Heatsink 2TB) NTFS
Drive j: (Samsung EVO 990 1TB) (Fixed) (Total:931.51 GB) (Free:569.76 GB) (Model: Samsung SSD 990 EVO 1TB) NTFS
\\?\Volume{ba2fd282-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{ba2fd282-0000-0000-0000-a0d01b000000}\ () (Fixed) (Total:0.53 GB) (Free:0.06 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 0ED52403)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0BD5E7AA)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0BD6A7AC)
Partition: GPT.
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 0BD707AD)
Partition: GPT.
==========================================================
Disk: 4 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: BA2FD282)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=541 MB) - (Type=27)
==========================================================
Disk: 5 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: E0E09B40)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 6 (Size: 1863 GB) (Disk ID: 45A21720)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================