Strange connections/Behavior for years now - Virus, Trojan, Spyware, and Malware Removal Help (2022)

For years I have been suspicious of a persistent malware on my pc/router. I have always noticed strange connected IPs from netstat, weird drivers, strange hidden host files and DHCPs listed in registry pointing to a local IP address block (192.168.64.x and I'm on a 10.x.x.x) when I netstat the LOCAL address it shows hops to public IP addresses in between/open ports, which makes absolutely no sense. My public IP address will have open ports during a port scan, but only randomly, then I'll run it again and they'll all be closed/filtered. But my public IP is always pingable, no matter what I change in firewall/router. I have even talked to ISP to no prevail (comcast). I Randomly see evidence of weird subnets and routing tables. Even when I run like a live Linux distro, I see these anomalies. I have, at one point lost months/year into freaking out over this, but the past 3-5 years or so, I just ignore it... I just couldn't handle it anymore. The thing that brought my attention back to this issues was I was on DSLreports website, testing my network speed and bufferbloat, and it wouldn't run the test on any browser and it stated that there were "alien scripts" running on my PC. I've scanned it with everything under the sun with no results. However, when I use a different connection, like my cellphone hotspot, the message about alien scripts disappears. I've also tried multiple computers/Cellphones connected to my home router and they all say "alien scripts detected." So, I believe this malware has taken over my router as well. I've tried everything, except asking you guys for help. So, I'm hopeful.

----------------------------

I hate doing this but it said in the instructions to post the logs right to the message instead of attaching file so here it is:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022 (ATTENTION: ====> FRST version is 31 days old and could be outdated)

Ran by brock (administrator) on _NOPE (30-09-2022 05:05:07)

Running from C:\Users\brock\Desktop

Loaded Profiles: brock

Platform: Microsoft Windows 11 Pro Version 21H2 22000.978 (X64) Language: English (United States)

Default browser: Opera

Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Users\brock\Documents\Android Platform Tools\adb.exe

(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe

(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>

(C:\Program Files\Alienware\Alienware Command Center\AWCC.Service.exe ->) (Dell Inc -> Dell Technologies) C:\Program Files\Alienware\Alienware Command Center\AWCC.Background.Server.exe

(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe

(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe

(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe

(C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_10.0.4447.0_x64__8wekyb3d8bbwe\PAD.Console.Host.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_10.0.4447.0_x64__8wekyb3d8bbwe\PAD.Designer.exe

(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.53\msedgewebview2.exe <6>

(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCopyAccelerator.exe

(C:\Users\brock\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\brock\AppData\Local\Programs\Opera GX\90.0.4480.117\opera_crashreporter.exe

(C:\Windows\runSW.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Windows\SwUSB.exe

(explorer.exe ->) (Cloudflare, Inc. -> Cloudflare) C:\Program Files\Cloudflare\Cloudflare WARP\Cloudflare WARP.exe

(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>

(explorer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2208.25.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe

(explorer.exe ->) (VS Revo Group Ltd. -> VS Revo Group) C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe

(FanControl) [File not signed] C:\Users\brock\Desktop\OC Programs\FanControl\FanControl.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\105.0.1343.53\identity_helper.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <11>

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe

(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe

(Opera Norway AS -> Opera Software) C:\Users\brock\AppData\Local\Programs\Opera GX\opera.exe <48>

(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe

(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe

(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe

(services.exe ->) (Cloudflare, Inc. -> ) C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe

(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe

(services.exe ->) (Dell Inc -> Dell Technologies) C:\Program Files\Alienware\Alienware Command Center\AWCC.Service.exe

(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe

(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe

(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe

(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_6.69.19001.0_x64__8wekyb3d8bbwe\gamingservices.exe

(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_6.69.19001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe

(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe

(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe

(services.exe ->) (Novawave Inc. -> Novawave Inc.) D:\Novabench\NovabenchService.exe

(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>

(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe <2>

(services.exe ->) (Nvidia Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe

(services.exe ->) (Oculus VR, LLC -> Facebook Technologies, LLC) Z:\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe

(services.exe ->) (Open Source Developer, Frans van Dorsselaer -> Frans van Dorsselaer) C:\Program Files\usbipd-win\usbipd.exe

(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe

(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe

(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe

(services.exe ->) (Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe

(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>

(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe

(sihost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_10.0.4447.0_x64__8wekyb3d8bbwe\PAD.Console.Host.exe

(sihost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_22207.1401.9.0_x64__8wekyb3d8bbwe\WinStore.DesktopExtension\StoreDesktopExtension.exe

(svchost.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe

(svchost.exe ->) (EVGA Corp. -> EVGA Co., Ltd.) C:\Program Files\EVGA\Precision X1\PrecisionX_x64.exe

(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2209.1001.5.0_x64__8wekyb3d8bbwe\XboxAppServices.exe

(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2209.1001.5.0_x64__8wekyb3d8bbwe\XboxPcApp.exe

(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_22207.1401.9.0_x64__8wekyb3d8bbwe\WinStore.App.exe

(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe

(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe

(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe

(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>

(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>

(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\UtcDecoderHost.exe

(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe

(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

(vmcompute.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\vmwp.exe <2>

(Z:\Oculus\Support\oculus-runtime\OVRServer_x64.exe ->) (Oculus VR, LLC) [File not signed] Z:\Oculus\Support\oculus-client\OculusClient.exe <3>

(Z:\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Oculus VR, LLC -> Facebook Technologies, LLC) Z:\Oculus\Support\oculus-runtime\OVRRedir.exe

(Z:\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Oculus VR, LLC -> Facebook Technologies, LLC) Z:\Oculus\Support\oculus-runtime\OVRServer_x64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1081648 2020-06-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.53\Installer\setup.exe [3324328 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4235112 2022-09-27] (Valve Corp. -> Valve Corporation)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [Discord] => C:\Users\brock\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [Opera GX Stable] => C:\Users\brock\AppData\Local\Programs\Opera GX\launcher.exe [2474440 2022-09-16] (Opera Norway AS -> Opera Software)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\brock\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1089872 2022-09-16] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [MicrosoftEdgeAutoLaunch_B14A27EE796ACE5934214E974B5AF8A3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795376 2022-09-24] (Microsoft Corporation -> Microsoft Corporation)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [GalaxyClient] => [X]

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13663208 2022-09-07] (GOG Sp. z o.o. -> GOG.com)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [Synapse3] => [X]

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2022-09-27] (Logitech Inc -> Logitech, Inc.)

HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3536912 2022-08-30] (Razer USA Ltd. -> Razer Inc.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Cloudflare WARP.lnk [2022-09-02]

ShortcutTarget: Cloudflare WARP.lnk -> C:\Program Files\Cloudflare\Cloudflare WARP\Cloudflare WARP.exe (Cloudflare, Inc. -> Cloudflare)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C3D6E1F-9B17-4500-ABBB-999B6F3E4859} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (No File)

Task: {1D4596F6-F021-4B37-B460-2DBCBDC15BFC} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)

Task: {2A13F737-6049-45C7-B958-9D9E1FAB784D} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (No File)

Task: {324ECEE5-0412-47C7-B57E-94ECCA10A25B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {3341BE0F-1C57-41D9-B3C2-20839D764938} - System32\Tasks\Microsoft\Windows\PLA\New Data Collector Set => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\Windows\system32\pla.dll [1544192 2021-06-05] (Microsoft Windows -> Microsoft Corporation)

Task: {372E5347-E85B-4887-84F5-0314D64198F7} - System32\Tasks\FanControl => cmd.exe /C start /B FanControl.exe

Task: {3BE3F1B5-D0FA-46FE-B72B-CEA4885E3534} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2021-03-24] () [File not signed]

Task: {3E35B080-4CCB-477F-AEF2-A16903AA608A} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [669320 2022-03-23] (Advanced Micro Devices Inc. -> )

Task: {52AEAE74-C568-464C-A3EB-11482A9393B7} - System32\Tasks\Opera GX scheduled Autoupdate 1654159511 => C:\Users\brock\AppData\Local\Programs\Opera GX\launcher.exe [2474440 2022-09-16] (Opera Norway AS -> Opera Software)

Task: {58807FD7-862B-46CC-9C83-CA1DCBF66113} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

Task: {5AC7E3E6-AEF1-4E81-8575-8C5963DF23CE} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [658936 2022-03-22] (Advanced Micro Devices Inc. -> AMD)

Task: {5B3FA953-AA54-45EC-B0DE-D44F8AF03ECB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

Task: {5D516653-A228-467A-9FC8-0B52427731C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {5E5E9AB7-8474-4757-9AE4-B81A04E2B2B1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

Task: {60DD3A4A-0B80-4FC9-B285-4E73B85268AF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

Task: {6178907C-D1FE-4EFC-AA09-E53D4DDA79E1} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1654764357 => C:\Users\brock\AppData\Local\Programs\Opera GX\launcher.exe [2474440 2022-09-16] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\brock\AppData\Local\Programs\Opera GX\assistant" $(Arg0)

Task: {63471930-157B-47C4-8AC9-B2BCD326ACC6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log

Task: {67BAB7D4-F4E7-418F-995B-EFD836E4E1EE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

Task: {67CC202F-4E50-47B0-9701-22FFF99CE2FF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

Task: {79744852-C0AF-4D37-99D1-F95BEA363879} - System32\Tasks\AWCC\Update => C:\Program Files (x86)\InstallShield Installation Information\{D2DA930B-CB5D-4DD6-BF62-BE6C310A353D}\Update\IMSilentUpdate.exe [4608 2022-04-11] () [File not signed]

Task: {7BABF7BC-7C78-4180-A7D7-A8311047F346} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

Task: {A4207858-331C-4A89-816C-0E9C881CE204} - System32\Tasks\EVGAPrecisionX => C:\Program Files\EVGA\Precision X1\PrecisionX_x64.exe [20736928 2022-07-05] (EVGA Corp. -> EVGA Co., Ltd.)

Task: {AA6CEC9C-3140-4264-A50C-4263145B68CE} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\105.0.1343.53\Installer\setup.exe [3324328 2022-09-28] (Microsoft Corporation -> Microsoft Corporation)

Task: {BCB943BB-5CAD-4D5D-B9E6-D7BF25694DC8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {C8E86F3B-4641-49AD-8962-E2B689D20647} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

Task: {CFFB61A1-CA49-4A3B-9CCF-26F83AAEBB8D} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe (No File)

Task: {D89786F6-D257-4CD0-97D8-09A22376211E} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (No File)

Task: {ED61EE02-F6CE-4F60-898A-0C7105307B2C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.220.232

Tcpip\..\Interfaces\{0e7d5937-8101-4869-b85d-9439eaf71b15}: [NameServer] 8.8.8.8,8.8.4.4

Tcpip\..\Interfaces\{0e7d5937-8101-4869-b85d-9439eaf71b15}: [DhcpNameServer] 192.168.20.57

Tcpip\..\Interfaces\{3aac104e-9bd2-4acb-8d50-d22164e26ef6}: [NameServer] 4.2.2.4,2.4.4.2

Tcpip\..\Interfaces\{4cca7cae-0c51-4fac-999d-f357712495a3}: [DhcpNameServer] 75.75.75.75 75.75.76.76

Tcpip\..\Interfaces\{61054e69-0c86-4fe5-ac11-146e808a9963}: [NameServer] 1.1.1.1,1.0.0.1

Tcpip\..\Interfaces\{61054e69-0c86-4fe5-ac11-146e808a9963}: [DhcpNameServer] 192.168.220.232

Tcpip\..\Interfaces\{671451b1-67c9-417e-be99-50e266dc8b9b}: [NameServer] 1.1.1.1,1.0.0.1

Tcpip\..\Interfaces\{671451b1-67c9-417e-be99-50e266dc8b9b}: [DhcpNameServer] 75.75.75.75 75.75.76.76

Tcpip\..\Interfaces\{c445d695-9572-4216-bf7e-98bd154006d2}: [DhcpNameServer] 75.75.75.75 75.75.76.76

Edge:

=======

Edge DefaultProfile: Default

Edge Profile: C:\Users\brock\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-30]

Edge Notifications: Default -> hxxps://duo.google.com; hxxps://messages.google.com; hxxps://voice.google.com

Edge DefaultSearchURL: Default -> hxxps://www.startpage.com/sp/search?query={searchTerms}&cat=web&pl=opensearch&language=english

Edge DefaultSearchKeyword: Default -> startpage.com

Edge DefaultSuggestURL: Default -> hxxps://www.startpage.com/suggestions?q={searchTerms}&format=opensearch

Edge Extension: (PayPal Honey: Automatic Coupons & Cash Back) - C:\Users\brock\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\amnbcmdbanbkjhnfoeceemmmdiepnbpp [2022-08-24]

Edge Extension: (Microsoft Power Automate) - C:\Users\brock\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\njjljiblognghfjfpcdpdbpbfcmhgafg [2022-09-30]

Edge HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [njjljiblognghfjfpcdpdbpbfcmhgafg]

Chrome:

=======

CHR HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gjgfobnenmnljakmhboildkafdkicala]

Opera:

=======

StartMenuInternet: (HKU\S-1-5-21-2079999945-3144571470-3643686681-1001) Opera GXStable - "C:\Users\brock\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R4 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2022-02-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)

R4 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2021-09-30] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)

S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [845256 2022-09-28] (ASUSTeK Computer Inc. -> )

R2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe [505336 2022-03-22] (Advanced Micro Devices Inc. -> AMD)

R2 AWCCService; C:\Program Files\Alienware\Alienware Command Center\AWCC.Service.exe [20904 2022-08-26] (Dell Inc -> Dell Technologies)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-07-28] (BattlEye Innovations e.K. -> )

R2 CloudflareWARP; C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe [19048320 2022-09-01] (Cloudflare, Inc. -> )

S3 dcsvc; C:\Windows\system32\dcsvc.dll [831488 2022-09-14] (Microsoft Windows -> Microsoft Corporation)

R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [44448 2022-04-27] (Dell Inc -> )

R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [9557080 2022-09-29] (Electronic Arts, Inc. -> Electronic Arts)

S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-08-30] (EasyAntiCheat Oy -> Epic Games, Inc)

S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-08-27] (EasyAntiCheat Oy -> Epic Games, Inc.)

S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-06-25] (Epic Games Inc. -> Epic Games, Inc.)

S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2128360 2022-09-07] (GOG Sp. z o.o. -> GOG.com)

S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-06-01] (GOG Sp. z o.o. -> GOG.com)

R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10078976 2022-09-27] (Logitech Inc -> Logitech, Inc.)

S3 mracsvc; C:\Windows\System32\mracsvc.exe [23954152 2022-05-29] (My.Com B.V. -> My.com B.V.)

R2 NovabenchService; D:\Novabench\NovabenchService.exe [1229808 2020-08-30] (Novawave Inc. -> Novawave Inc.)

S3 OVRLibraryService; Z:\Oculus\Support\oculus-librarian\OVRLibraryService.exe [148032 2022-09-26] (Oculus VR, LLC -> Facebook Technologies, LLC)

R2 OVRService; Z:\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [514624 2022-09-26] (Oculus VR, LLC -> Facebook Technologies, LLC)

R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2022-05-25] (Even Balance, Inc. -> )

R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-15] (Razer USA Ltd. -> Razer Inc)

R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300560 2022-08-29] (Razer USA Ltd. -> Razer Inc.)

S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2579840 2022-09-17] (Rockstar Games, Inc. -> Rockstar Games)

R2 RunSwUSB; C:\Windows\runSW.exe [44760 2022-06-03] (Realtek Semiconductor Corp -> )

R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [537912 2022-08-12] (Razer USA Ltd. -> Razer Inc.)

S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [245208 2022-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5938216 2022-07-30] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

R2 usbipd; C:\Program Files\usbipd-win\usbipd.exe [160232 2022-04-27] (Open Source Developer, Frans van Dorsselaer -> Frans van Dorsselaer)

R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [9959072 2022-08-10] (PUBG CORPORATION -> KRAFTON, Inc)

R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )

R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2021-09-30] (ASUSTeK Computer Inc. -> )

S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-06-11] (Activision Publishing Inc -> Activision Blizzard, Inc.)

S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [2313480 2022-09-22] (Activision Publishing Inc -> Activision Blizzard, Inc.)

R3 AWCCDriver; C:\Windows\System32\drivers\AWCCDriver.sys [43496 2022-09-24] (IndiLogic LLC -> Dell Inc.)

R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32304 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)

R2 Driver; C:\Program Files (x86)\EVGA\Kernel\driver-x64.sys [39856 2022-02-07] (EVGA Corp. -> )

R0 fse; C:\Windows\System32\drivers\fse.sys [193888 2022-05-26] (Microsoft Windows -> Microsoft Corporation)

S3 HWiNFO_172; C:\Users\brock\AppData\Local\Temp\HWiNFO64A_172.SYS [56888 2022-09-25] (Microsoft Windows Hardware Compatibility Publisher -> REALiX™) <==== ATTENTION

R2 inpoutx64; C:\Windows\System32\Drivers\inpoutx64.sys [15008 2022-06-01] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])

R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-22] (Logitech Inc -> Logitech)

R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-22] (Logitech Inc -> Logitech)

R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-22] (Logitech Inc -> Logitech)

S3 mracdrv; C:\Windows\System32\drivers\mracdrv1.sys [23190616 2022-05-29] (My.Com B.V. -> My.com B.V.)

R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)

R3 NovabenchDriver; D:\Novabench\NovabenchDriverWin10.sys [28216 2018-03-28] (Microsoft Windows Hardware Compatibility Publisher -> )

R1 npcap; C:\Windows\system32\DRIVERS\npcap.sys [71720 2021-06-22] (Insecure.Com LLC -> Insecure.Com LLC.)

S4 npcap_wifi; C:\Windows\system32\DRIVERS\npcap.sys [71720 2021-06-22] (Insecure.Com LLC -> Insecure.Com LLC.)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-10-31] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)

R3 oculusvad_oculusvad; C:\Windows\System32\drivers\oculusvad.sys [75280 2022-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Windows ® Win 7 DDK provider)

R3 Oculus_ViGEmBus; C:\Windows\System32\drivers\Oculus_ViGEmBus.sys [32856 2022-05-25] (Oculus VR, LLC -> Facebook Inc.)

R3 R0FanControl; C:\Users\brock\Desktop\OC Programs\FanControl\FanControl.sys [14544 2022-09-28] (Noriyuki MIYAZAKI -> OpenLibSys.org)

S3 R0HYDRA; C:\Program Files (x86)\PROJECT HYDRA\HYDRA.sys [14544 2022-09-25] (Noriyuki MIYAZAKI -> OpenLibSys.org)

S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_d2a498d51a4f7bec\rtcx21x64.sys [409000 2021-06-01] (Realtek Semiconductor Corp. -> Realtek)

R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [55128 2021-06-10] (Razer USA Ltd. -> Razer Inc)

R3 RzDev_007a; C:\Windows\System32\drivers\RzDev_007a.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)

S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [175800 2022-04-26] (Oracle Corporation -> Oracle Corporation)

S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [90112 2022-05-29] (Microsoft Windows -> )

S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)

R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)

S3 WinRing0_1_2_2; C:\Windows\system32\drivers\WinRing0_1_2_2.sys [31152 2022-09-25] (PAIPTAC Driver -> )

S3 xhunter1; C:\Windows\xhunter1.sys [1431328 2022-07-30] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

S3 5ZcGEemE; \??\C:\Windows\Temp\5ZcGEemE.sys [X]

S3 cpuz153; \??\C:\Windows\temp\cpuz153\cpuz153_x64.sys [X]

S3 LMAM86TY; \??\C:\Windows\Temp\LMAM86TY.sys [X]

S3 yPiJpsq9; \??\C:\Windows\Temp\yPiJpsq9.sys [X]

S3 ZfOexuFN; \??\C:\Windows\Temp\ZfOexuFN.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-30 05:05 - 2022-09-30 05:05 - 000031715 _____ C:\Users\brock\Desktop\FRST.txt

2022-09-30 05:02 - 2022-09-30 05:02 - 002371072 _____ (Farbar) C:\Users\brock\Desktop\FRST64 (1).exe

2022-09-30 03:42 - 2022-09-30 03:44 - 048594699 _____ C:\Users\brock\Downloads\BS2_menu_integration_for_Interactive_Training (1).zip

2022-09-30 03:15 - 2022-09-30 03:15 - 000027204 _____ C:\Users\brock\Downloads\ABRIS_Nav_Update.zip

2022-09-30 03:10 - 2022-09-30 03:10 - 048594699 _____ C:\Users\brock\Downloads\BS2_menu_integration_for_Interactive_Training.zip

2022-09-30 02:37 - 2022-09-30 02:37 - 000000222 _____ C:\Users\brock\Desktop\Hearts of Iron IV.url

2022-09-29 23:55 - 2022-09-29 23:55 - 000000222 _____ C:\Users\brock\Desktop\DCS World Steam Edition.url

2022-09-28 16:58 - 2022-09-28 17:06 - 000000000 ____D C:\Users\brock\Desktop\3d Print Files

2022-09-28 16:32 - 2022-09-28 16:32 - 000000000 ____D C:\Users\brock\AppData\Roaming\cura

2022-09-28 16:32 - 2022-09-28 16:32 - 000000000 ____D C:\Users\brock\AppData\Local\Ultimaker B.V

2022-09-28 16:32 - 2022-09-28 16:32 - 000000000 ____D C:\Users\brock\AppData\Local\cura

2022-09-28 16:32 - 2022-09-28 16:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultimaker Cura

2022-09-28 16:31 - 2022-09-28 16:32 - 000000000 ____D C:\Program Files\Ultimaker Cura 5.1.1

2022-09-28 16:02 - 2022-08-30 21:03 - 000040784 _____ C:\Users\brock\Desktop\one.stl

2022-09-28 15:27 - 2022-09-28 15:27 - 000843056 _____ C:\Users\brock\Downloads\Unconfirmed 687887.crdownload

2022-09-27 22:07 - 2022-09-27 22:07 - 004700244 _____ C:\Users\brock\Downloads\698677_Soldering_Iron_Stand.zip

2022-09-27 12:47 - 2022-09-27 12:47 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk

2022-09-27 12:47 - 2022-09-27 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi

2022-09-27 12:47 - 2022-09-27 12:47 - 000000000 ____D C:\Program Files\LGHUB

2022-09-26 15:20 - 2022-09-26 15:21 - 000000000 ____D C:\Users\brock\Documents\ArduinoData

2022-09-26 15:20 - 2022-09-26 15:20 - 000000000 ____D C:\Users\brock\Documents\Arduino

2022-09-26 15:20 - 2022-09-26 15:20 - 000000000 ____D C:\ProgramData\Oracle

2022-09-26 01:49 - 2022-09-30 05:05 - 000000000 ____D C:\FRST

2022-09-25 20:27 - 2022-09-25 20:27 - 000058038 _____ C:\Users\brock\Downloads\Sample-Act-4-1.png.crdownload

2022-09-25 10:55 - 2022-09-25 10:55 - 000003654 _____ C:\Windows\system32\Tasks\HYDRA

2022-09-25 10:41 - 2022-09-25 10:48 - 000031152 _____ C:\Windows\system32\Drivers\WinRing0_1_2_2.sys

2022-09-25 02:14 - 2022-09-25 10:55 - 000000000 ____D C:\Program Files (x86)\PROJECT HYDRA

2022-09-25 02:14 - 2022-09-25 02:14 - 000001096 _____ C:\Users\Public\Desktop\PROJECT HYDRA.lnk

2022-09-25 02:14 - 2022-09-25 02:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PROJECT HYDRA

2022-09-25 02:12 - 2022-09-25 02:13 - 281066993 _____ (1USMUS) C:\Users\brock\Downloads\Hydra_Setup_1_0_0_7 (1).exe

2022-09-25 01:59 - 2022-09-25 02:00 - 281066993 _____ (1USMUS) C:\Users\brock\Downloads\Unconfirmed 137461.crdownload

2022-09-24 19:47 - 2022-09-24 19:47 - 000000000 ____D C:\Users\brock\AppData\Roaming\FreeFixer

2022-09-24 19:47 - 2022-09-24 19:47 - 000000000 ____D C:\Users\brock\AppData\Local\FreeFixer

2022-09-24 19:35 - 2022-09-24 19:35 - 002608259 _____ C:\Users\brock\Downloads\freefixer_portable-1.19.zip

2022-09-24 17:18 - 2022-09-24 17:18 - 000000000 ____D C:\Windows\system32\Tasks\AWCC

2022-09-24 17:18 - 2022-09-24 17:18 - 000000000 ____D C:\ProgramData\Alienware

(Video) Virus, Worms and Trojan Horses Brief Introduction and Difference between their Functionality

2022-09-24 17:17 - 2022-09-24 17:18 - 000000000 ____D C:\ProgramData\Dell

2022-09-24 17:17 - 2022-09-24 17:17 - 000043496 _____ (Dell Inc.) C:\Windows\system32\Drivers\AWCCDriver.sys

2022-09-24 17:17 - 2022-09-24 17:17 - 000000000 ____D C:\Users\Public\Documents\Downloaded Installations

2022-09-24 17:17 - 2022-09-24 17:17 - 000000000 ____D C:\Program Files (x86)\Dell

2022-09-24 17:16 - 2022-09-24 17:16 - 009995432 _____ C:\Users\brock\Downloads\hwi_730.zip

2022-09-24 01:16 - 2022-09-24 01:16 - 028089802 _____ C:\Users\brock\Downloads\DRV_LAN_Realtek_8111_SZ-TSD_W11_64_V116896142022_20220913R.zip

2022-09-24 01:09 - 2022-09-24 01:09 - 000110316 _____ C:\Users\brock\Documents\HWiNFO64_settings.reg

2022-09-24 00:54 - 2022-09-24 00:54 - 000000588 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novabench.lnk

2022-09-24 00:54 - 2022-09-24 00:54 - 000000000 ____D C:\Users\brock\AppData\Roaming\Novabench

2022-09-24 00:54 - 2022-09-24 00:54 - 000000000 ____D C:\Users\brock\AppData\Local\Novabench

2022-09-24 00:54 - 2022-09-24 00:54 - 000000000 ____D C:\ProgramData\Novabench

2022-09-24 00:52 - 2022-09-24 00:52 - 107651072 _____ C:\Users\brock\Downloads\novabench.msi

2022-09-22 18:51 - 2022-09-22 18:51 - 000000223 _____ C:\Users\brock\Desktop\Land of the Vikings Demo.url

2022-09-22 18:51 - 2022-09-22 18:51 - 000000000 ____D C:\Users\brock\AppData\LocalLow\Pixel Chest Games

2022-09-22 15:22 - 2022-09-22 15:22 - 000000000 ____D C:\Users\brock\Documents\Call of Duty

2022-09-22 14:21 - 2022-09-27 12:47 - 000000000 ____D C:\Program Files\LGHUB.0b97aad2-d907-4d9e-8df5-365304b0cc36

2022-09-22 14:21 - 2022-09-22 14:21 - 000073040 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_xlcore.sys

2022-09-22 14:21 - 2022-09-22 14:21 - 000044880 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_bus_enum.sys

2022-09-22 14:21 - 2022-09-22 14:21 - 000032080 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_vir_hid.sys

2022-09-22 14:21 - 2022-09-22 14:21 - 000000000 ____D C:\Program Files\Logitech

2022-09-22 01:27 - 2022-09-22 01:27 - 000000443 _____ C:\Users\Public\Desktop\Call of Duty Modern Warfare II Beta.lnk

2022-09-22 01:27 - 2022-09-22 01:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare II Beta

2022-09-21 20:22 - 2022-09-21 20:22 - 000000000 ____D C:\Users\brock\AppData\Roaming\Godot

2022-09-21 20:20 - 2022-09-21 20:22 - 000000000 ____D C:\Users\brock\Documents\Star Swarm

2022-09-21 20:14 - 2022-09-21 20:14 - 000000137 _____ C:\Users\brock\Desktop\SteamVR Performance Test.url

2022-09-20 13:03 - 2022-09-20 13:04 - 234196488 _____ (Cisco Systems, Inc. ) C:\Users\brock\Downloads\Cisco_Packet_Tracer_820_Windows_64bit_1048513af2.exe

2022-09-19 15:03 - 2022-09-19 15:03 - 000000000 ____D C:\Users\brock\AppData\LocalLow\Ludeon Studios

2022-09-19 15:02 - 2022-09-19 15:02 - 000000222 _____ C:\Users\brock\Desktop\RimWorld.url

2022-09-19 00:06 - 2022-09-19 00:06 - 000000000 ___HD C:\$WinREAgent

2022-09-17 20:00 - 2022-09-17 20:41 - 000000000 ____D C:\Users\brock\AppData\Roaming\CitizenFX

2022-09-17 19:57 - 2022-09-17 19:57 - 005146088 _____ (Cfx.re) C:\Users\brock\Downloads\FiveM.exe

2022-09-17 18:05 - 2022-09-17 20:10 - 000002136 _____ C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk

2022-09-17 18:05 - 2022-09-17 20:00 - 000000000 ____D C:\Users\brock\AppData\Local\DigitalEntitlements

2022-09-17 18:05 - 2022-09-17 18:05 - 000002128 _____ C:\Users\brock\Desktop\FiveM.lnk

2022-09-17 18:05 - 2022-09-17 18:05 - 000002128 _____ C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM - Cfx.re Development Kit (FxDK).lnk

2022-09-17 18:05 - 2022-09-17 18:05 - 000000000 ____D C:\Users\brock\AppData\Local\FiveM

2022-09-17 14:52 - 2022-09-17 14:52 - 000000222 _____ C:\Users\brock\Desktop\Grand Theft Auto V.url

2022-09-17 10:25 - 2022-09-17 10:25 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS

2022-09-17 03:29 - 2022-09-17 03:29 - 000002204 _____ C:\Users\brock\Desktop\wsl usbipd.txt

2022-09-17 02:58 - 2022-09-17 02:58 - 000000000 ____D C:\Program Files\usbipd-win

2022-09-17 02:58 - 2022-04-26 22:47 - 000189256 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys

2022-09-16 22:51 - 2022-09-27 21:33 - 000000000 ____D C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubuntu

2022-09-16 16:45 - 2022-09-16 16:45 - 001272105 _____ C:\Users\brock\Downloads\Unconfirmed 735673.crdownload

2022-09-16 06:12 - 2022-09-17 23:44 - 000000000 ____D C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\kali-linux

2022-09-16 01:54 - 2022-09-16 01:55 - 000000000 ____D C:\Windows\system32\Tasks\PowerToys

2022-09-16 01:54 - 2022-09-16 01:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)

2022-09-16 01:54 - 2022-09-16 01:54 - 000000000 ____D C:\Program Files\PowerToys

2022-09-16 01:31 - 2022-09-16 01:36 - 000000000 ____D C:\Users\brock\Desktop\apknah

2022-09-15 16:58 - 2022-09-15 16:58 - 000025632 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_694373240526898.dll

2022-09-15 16:16 - 2022-09-15 16:16 - 000000376 _____ C:\Users\brock\Desktop\The Captain.url

2022-09-15 16:16 - 2022-09-15 16:16 - 000000000 ____D C:\Users\brock\AppData\LocalLow\Sysiac Games

2022-09-14 01:20 - 2022-09-14 01:20 - 000214376 _____ C:\Windows\system32\IsolatedWindowsEnvironmentUtils.dll

2022-09-14 01:20 - 2022-09-14 01:20 - 000015030 _____ C:\Windows\system32\DrtmAuthTxt.wim

2022-09-14 01:19 - 2022-09-14 01:19 - 000335872 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll

2022-09-13 23:37 - 2022-09-13 23:37 - 000060772 _____ C:\Users\brock\energy-report.html

2022-09-13 15:06 - 2022-09-13 15:06 - 000000000 ____D C:\Users\brock\AppData\Local\BANDAI NAMCO Entertainment

2022-09-12 18:51 - 2022-09-12 18:51 - 000000000 ____D C:\Users\brock\Documents\Virtual Machines

2022-09-12 13:06 - 2022-09-13 10:24 - 000000000 ____D C:\Users\brock\AppData\Local\VMware

2022-09-12 13:06 - 2022-09-12 20:57 - 000000000 ____D C:\Users\brock\AppData\Roaming\VMware

2022-09-12 13:01 - 2022-09-16 19:02 - 000000000 ____D C:\ProgramData\VMware

2022-09-12 13:01 - 2022-09-12 13:01 - 000867028 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

2022-09-12 13:01 - 2022-09-12 13:01 - 000000000 ____D C:\Program Files (x86)\VMware

2022-09-12 13:01 - 2022-07-10 23:11 - 001303792 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll

2022-09-12 13:01 - 2022-07-10 23:10 - 000119792 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll

2022-09-12 13:01 - 2022-07-10 23:05 - 000060344 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmkbd.sys

2022-09-12 13:01 - 2021-08-16 18:23 - 000048224 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll

2022-09-12 13:01 - 2021-08-16 18:23 - 000044128 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll

2022-09-12 00:10 - 2022-09-12 00:10 - 000000000 ____D C:\Users\brock\AppData\Roaming\ImgBurn

2022-09-12 00:09 - 2022-09-12 00:09 - 000001968 _____ C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk

2022-09-12 00:09 - 2022-09-12 00:09 - 000001938 _____ C:\Users\brock\Desktop\ImgBurn.lnk

2022-09-12 00:09 - 2022-09-12 00:09 - 000000000 ____D C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn

2022-09-12 00:08 - 2022-09-12 00:08 - 003101913 _____ (LIGHTNING UK!) C:\Users\brock\Downloads\SetupImgBurn_2.5.8.0.exe

2022-09-12 00:08 - 2022-09-12 00:08 - 000000000 ____D C:\Program Files (x86)\ImgBurn

2022-09-11 21:35 - 2022-09-28 15:55 - 000000000 ____D C:\Users\brock\AppData\Roaming\LGHUB

2022-09-11 21:35 - 2022-09-28 15:55 - 000000000 ____D C:\Users\brock\AppData\Local\LGHUB

2022-09-11 21:35 - 2022-09-11 21:35 - 000000000 ____D C:\ProgramData\Logishrd

2022-09-11 21:35 - 2022-09-11 21:35 - 000000000 ____D C:\ProgramData\LGHUB

2022-09-11 21:34 - 2022-09-11 21:34 - 041463040 _____ (Logitech, Inc.) C:\Users\brock\Downloads\lghub_installer (1).exe

2022-09-11 21:33 - 2022-09-11 21:33 - 041463040 _____ (Logitech, Inc.) C:\Users\brock\Downloads\lghub_installer.exe

2022-09-11 00:20 - 2022-09-11 00:22 - 000000000 ____D C:\AdwCleaner

2022-09-11 00:18 - 2022-09-11 00:18 - 002371072 _____ (Farbar) C:\Users\brock\Downloads\FRST64.exe

2022-09-11 00:17 - 2022-09-11 00:17 - 008551608 _____ (Malwarebytes) C:\Users\brock\Downloads\AdwCleaner.exe

2022-09-10 03:36 - 2022-09-10 03:36 - 000000000 ____D C:\Users\brock\AppData\LocalLow\CorvoStudio

2022-09-10 03:35 - 2022-09-10 03:35 - 000000223 _____ C:\Users\brock\Desktop\Easy Red 2.url

2022-09-10 03:14 - 2022-09-10 03:14 - 000000222 _____ C:\Users\brock\Desktop\Arma 3.url

2022-09-09 22:09 - 2022-07-21 21:25 - 000043184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll

2022-09-09 22:08 - 2022-07-28 00:28 - 001905920 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe

2022-09-09 22:08 - 2022-07-28 00:28 - 001905920 _____ C:\Windows\system32\vulkaninfo.exe

2022-09-09 22:08 - 2022-07-28 00:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe

2022-09-09 22:08 - 2022-07-28 00:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo.exe

2022-09-09 22:08 - 2022-07-28 00:27 - 001471992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2022-09-09 22:08 - 2022-07-28 00:27 - 001432320 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll

2022-09-09 22:08 - 2022-07-28 00:27 - 001432320 _____ C:\Windows\system32\vulkan-1.dll

2022-09-09 22:08 - 2022-07-28 00:27 - 001213432 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2022-09-09 22:08 - 2022-07-28 00:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll

2022-09-09 22:08 - 2022-07-28 00:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1.dll

2022-09-09 22:08 - 2022-07-28 00:24 - 000865776 _____ C:\Windows\system32\nvofapi64.dll

2022-09-09 22:08 - 2022-07-28 00:24 - 000687608 _____ C:\Windows\SysWOW64\nvofapi.dll

2022-09-09 22:08 - 2022-07-28 00:23 - 002127872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2022-09-09 22:08 - 2022-07-28 00:23 - 001607680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2022-09-09 22:08 - 2022-07-28 00:23 - 001536504 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2022-09-09 22:08 - 2022-07-28 00:23 - 001182712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2022-09-09 22:08 - 2022-07-28 00:23 - 000714752 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe

2022-09-09 22:08 - 2022-07-28 00:22 - 010269688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2022-09-09 22:08 - 2022-07-28 00:22 - 008803832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2022-09-09 22:08 - 2022-07-28 00:22 - 005362672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2022-09-09 22:08 - 2022-07-28 00:22 - 001059328 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2022-09-09 22:08 - 2022-07-28 00:22 - 000456176 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe

2022-09-09 22:08 - 2022-07-28 00:21 - 005735920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2022-09-09 22:08 - 2022-07-28 00:21 - 000852976 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe

2022-09-09 22:08 - 2022-07-28 00:20 - 006367440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2022-09-09 22:08 - 2022-07-21 21:25 - 000093241 _____ C:\Windows\system32\nvinfo.pb

2022-09-09 03:08 - 2022-09-09 03:09 - 000000000 ____D C:\Users\brock\Documents\Sound Recordings

2022-09-08 19:27 - 2022-09-08 19:27 - 000000000 ____D C:\Users\brock\AppData\Local\UniCompactView

2022-09-08 19:26 - 2022-09-08 19:26 - 000000000 ____D C:\Users\brock\AppData\Roaming\CC

2022-09-08 19:25 - 2022-09-08 19:25 - 000000000 ____D C:\Users\brock\AppData\Local\UniSDK_FirstOpen

2022-09-08 19:25 - 2022-09-08 19:25 - 000000000 ____D C:\Users\brock\AppData\Local\UniSDK

2022-09-08 18:39 - 2022-09-08 18:39 - 000000223 _____ C:\Users\brock\Desktop\Lost Light.url

2022-09-06 00:00 - 2022-09-06 00:00 - 000000220 _____ C:\Users\brock\Desktop\Men of War.url

2022-09-05 23:50 - 2022-09-05 23:50 - 028809891 _____ C:\Users\brock\Downloads\Realism_4.5.7z

2022-09-05 23:48 - 2022-09-05 23:48 - 000199064 _____ C:\Users\brock\Downloads\Unconfirmed 897854.crdownload

2022-09-05 18:26 - 2022-09-05 18:26 - 033548238 _____ C:\Users\brock\Downloads\Realism 3Mediafire.7z

2022-09-05 18:05 - 2022-09-05 18:05 - 033548238 _____ C:\Users\brock\Downloads\Realism_3.7z

2022-09-05 17:58 - 2022-09-05 17:59 - 020802517 _____ C:\Users\brock\Downloads\mc2.rar

2022-09-05 17:56 - 2022-09-05 17:58 - 019349927 _____ C:\Users\brock\Downloads\mc25dev.rar

2022-09-04 02:30 - 2022-09-04 02:30 - 000000846 _____ C:\Users\brock\Desktop\G.A.M.M.A..lnk

2022-09-03 22:43 - 2022-09-03 22:43 - 000471040 _____ C:\firewall

2022-09-03 22:01 - 2022-09-03 22:01 - 000000000 ____D C:\Users\brock\AppData\Local\CrashRpt

2022-09-03 22:01 - 2022-09-03 22:01 - 000000000 ____D C:\ProgramData\LopeSoft

2022-09-03 16:02 - 2022-09-03 16:02 - 000000017 _____ C:\Users\brock\AppData\Local\resmon.resmoncfg

2022-09-03 16:02 - 2022-09-03 16:02 - 000000000 ____D C:\Users\brock\Documents\WPA Files

2022-09-03 16:02 - 2022-09-03 16:02 - 000000000 ____D C:\SymCache

2022-09-03 13:23 - 2022-09-03 13:23 - 085316056 _____ C:\Users\brock\Downloads\Unconfirmed 903144.crdownload

2022-09-03 10:48 - 2022-09-03 10:48 - 000000000 ____D C:\Users\brock\Downloads\world_in_conflict_online (1)

2022-09-03 10:47 - 2022-09-03 10:47 - 009583312 _____ C:\Users\brock\Downloads\world_in_conflict_online (1).zip

2022-09-03 10:47 - 2022-09-03 10:47 - 009583312 _____ C:\Users\brock\Downloads\Unconfirmed 4533.crdownload

2022-09-03 02:20 - 2022-09-03 02:20 - 000000101 _____ C:\Users\brock\Downloads\settings.sav

2022-09-03 01:14 - 2018-10-11 12:49 - 000041984 _____ (Lee 'FordGT90Concept' Glasser) C:\Users\brock\Downloads\Large Address Aware.exe

2022-09-03 01:12 - 2022-09-03 01:12 - 000013287 _____ C:\Users\brock\Downloads\Large_Address_Aware.rar

2022-09-03 01:11 - 2022-09-03 01:11 - 000014037 _____ C:\Users\brock\Downloads\Unconfirmed 991783.crdownload

2022-09-03 00:35 - 2022-09-03 11:55 - 000000000 ____D C:\Users\Public\Documents\World in Conflict

2022-09-02 22:27 - 2022-09-02 22:27 - 000000000 ____D C:\Users\brock\AppData\Local\World in Conflict

2022-09-02 22:26 - 2022-09-03 10:57 - 000000000 ____D C:\Users\brock\Documents\World in Conflict

2022-09-02 22:26 - 2022-09-02 22:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World in Conflict [GOG.com]

2022-09-02 15:14 - 2022-09-02 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cloudflare

2022-09-02 15:14 - 2022-09-02 15:14 - 000000000 ____D C:\Program Files\Cloudflare

2022-09-02 15:04 - 2022-09-30 01:24 - 000000000 ____D C:\ProgramData\Cloudflare

2022-09-02 15:04 - 2022-09-30 00:56 - 000000000 ____D C:\Users\brock\AppData\Local\Cloudflare

2022-09-02 15:04 - 2022-09-02 15:04 - 000000000 ____D C:\Users\brock\AppData\Local\ToastNotificationManagerCompat

2022-09-02 00:08 - 2022-09-02 00:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RazerCentral

2022-08-31 19:05 - 2022-08-31 19:05 - 000000000 ____D C:\Users\brock\AppData\Local\POLYGON

2022-08-31 19:02 - 2022-08-31 19:02 - 000000223 _____ C:\Users\brock\Desktop\POLYGON.url

2022-08-31 18:41 - 2022-08-31 18:41 - 000000222 _____ C:\Users\brock\Desktop\Unturned.url

2022-08-31 16:49 - 2022-09-01 02:45 - 000000038 _____ C:\Users\brock\Desktop\EYE APT.txt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-30 04:58 - 2022-05-24 13:48 - 000000000 ____D C:\Program Files (x86)\Steam

2022-09-30 04:51 - 2021-06-05 05:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2022-09-30 03:49 - 2022-05-25 10:58 - 000000000 ____D C:\Program Files\WinRAR

2022-09-30 03:49 - 2022-05-24 13:05 - 000000000 ____D C:\Users\brock\AppData\Local\Packages

2022-09-30 03:49 - 2022-05-24 13:03 - 000000000 ____D C:\Users\brock

2022-09-30 03:49 - 2022-05-24 13:01 - 000000000 ____D C:\ProgramData\Packages

2022-09-30 03:49 - 2021-06-05 05:10 - 000000000 ___HD C:\Program Files\WindowsApps

2022-09-30 03:49 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\AppReadiness

2022-09-30 03:48 - 2022-05-25 20:04 - 000000000 ____D C:\XboxGames

2022-09-30 03:48 - 2022-05-24 22:17 - 000000000 ____D C:\Users\brock\AppData\Local\CrashDumps

2022-09-30 03:45 - 2022-05-24 13:07 - 000848788 _____ C:\Windows\system32\PerfStringBackup.INI

2022-09-30 03:45 - 2022-05-24 13:05 - 000000000 ____D C:\Users\brock\AppData\Local\D3DSCache

2022-09-30 03:45 - 2021-06-05 05:09 - 000000000 ____D C:\Windows\INF

2022-09-30 03:41 - 2022-05-30 00:22 - 000000648 _____ C:\Windows\system32\Drivers\etc\hosts.ics

2022-09-30 02:37 - 2022-05-24 18:25 - 000000000 ____D C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2022-09-30 02:29 - 2022-05-24 13:06 - 000000000 ____D C:\Users\brock\AppData\Local\PlaceholderTileLogoFolder

2022-09-30 02:21 - 2022-05-24 12:57 - 000000000 ____D C:\Windows\system32\SleepStudy

2022-09-30 02:06 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\SystemTemp

2022-09-29 12:25 - 2022-05-24 13:41 - 000000000 ____D C:\ProgramData\NVIDIA

2022-09-28 20:38 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\ServiceState

2022-09-28 15:55 - 2022-05-25 02:23 - 000000000 ____D C:\Users\brock\AppData\Local\Oculus

2022-09-28 15:55 - 2022-05-24 12:57 - 000901328 _____ () C:\Windows\system32\wpbbin.exe

2022-09-28 15:55 - 2022-05-24 12:57 - 000845256 _____ C:\Windows\system32\AsusUpdateCheck.exe

2022-09-28 15:55 - 2022-05-24 12:57 - 000012288 ___SH C:\DumpStack.log.tmp

2022-09-28 15:55 - 2022-05-24 12:57 - 000000006 ____H C:\Windows\Tasks\SA.DAT

2022-09-28 15:40 - 2021-06-05 05:01 - 000524288 _____ C:\Windows\system32\config\BBI

2022-09-28 13:13 - 2022-05-24 12:59 - 000004784 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask

2022-09-28 13:13 - 2022-05-24 12:57 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk

2022-09-28 13:13 - 2022-05-24 12:57 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk

2022-09-27 21:24 - 2022-05-25 02:52 - 000000000 ____D C:\Users\brock\AppData\Roaming\OculusClient

2022-09-27 02:26 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\LiveKernelReports

2022-09-26 21:44 - 2022-05-25 02:35 - 000000000 ____D C:\Users\brock\AppData\Roaming\Oculus

2022-09-26 15:35 - 2022-05-24 13:06 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2079999945-3144571470-3643686681-1001

2022-09-26 15:35 - 2022-05-24 13:06 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2079999945-3144571470-3643686681-1001

2022-09-26 15:35 - 2022-05-24 13:06 - 000002383 _____ C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2022-09-26 11:57 - 2022-06-02 01:45 - 000004158 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1654159511

2022-09-26 11:57 - 2022-06-02 01:45 - 000001438 _____ C:\Users\brock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera GX Browser.lnk

2022-09-25 21:43 - 2021-06-05 07:30 - 000000000 ____D C:\Windows\system32\FxsTmp

2022-09-25 19:24 - 2022-05-30 00:06 - 000001607 _____ C:\Windows\system32\config\VSMIDK

2022-09-25 16:57 - 2022-05-24 13:01 - 000000000 ____D C:\Program Files (x86)\Razer

2022-09-25 00:34 - 2022-05-25 20:04 - 002835944 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll

2022-09-25 00:34 - 2022-05-25 20:04 - 000447976 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll

2022-09-25 00:34 - 2022-05-25 20:04 - 000234984 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll

2022-09-25 00:34 - 2022-05-25 20:04 - 000198096 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll

2022-09-25 00:34 - 2022-05-25 20:04 - 000153064 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll

2022-09-25 00:34 - 2022-05-25 20:04 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll

2022-09-25 00:34 - 2022-05-25 20:04 - 000067048 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe

2022-09-24 22:16 - 2022-05-24 23:46 - 000000000 ____D C:\Users\brock\AppData\Roaming\discord

2022-09-24 21:53 - 2022-05-24 23:46 - 000000000 ____D C:\Users\brock\AppData\Local\Discord

2022-09-24 19:44 - 2022-06-01 02:03 - 000000000 ____D C:\Users\brock\Desktop\OC Programs

2022-09-24 17:18 - 2022-05-28 01:56 - 000000000 ____D C:\Program Files\Alienware

2022-09-24 17:18 - 2022-05-24 13:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2022-09-24 01:04 - 2022-06-11 16:09 - 000000000 ____D C:\Users\brock\AppData\Local\Battle.net

2022-09-24 01:04 - 2022-06-10 13:22 - 000000000 ____D C:\Users\brock\AppData\Local\Arma 3 Launcher

2022-09-23 20:37 - 2022-06-10 13:42 - 000000000 ____D C:\Users\brock\AppData\Local\Arma 3

2022-09-23 09:37 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\system32\SecurityHealth

2022-09-22 15:22 - 2022-07-25 21:12 - 000000000 ____D C:\Users\brock\AppData\Local\Activision

2022-09-22 14:50 - 2022-06-04 20:20 - 000003506 _____ C:\Windows\system32\Tasks\FanControl

2022-09-22 01:23 - 2022-06-11 16:26 - 000000000 ____D C:\ProgramData\Battle.net_components

2022-09-22 01:20 - 2022-06-11 16:09 - 000000000 ____D C:\Program Files (x86)\Battle.net

2022-09-22 01:04 - 2022-07-25 00:58 - 000000000 ____D C:\Users\brock\Downloads\Games

2022-09-21 13:23 - 2022-07-29 12:23 - 000000000 ____D C:\Users\brock\AppData\Local\DayZ Launcher

2022-09-21 12:32 - 2022-07-29 12:49 - 000000000 ____D C:\Users\brock\AppData\Local\DayZ

2022-09-21 00:22 - 2022-07-29 12:49 - 000000000 ____D C:\Users\brock\Documents\DayZ

2022-09-20 20:07 - 2022-06-10 13:22 - 000000000 ____D C:\Users\brock\AppData\Local\Bohemia_Interactive

2022-09-20 17:09 - 2022-08-25 13:28 - 000002528 ____H C:\Users\brock\Documents\Default.rdp

2022-09-20 17:08 - 2022-05-25 20:36 - 000000000 ____D C:\Users\brock\AppData\Local\UnrealEngine

2022-09-19 00:07 - 2021-06-05 05:01 - 000000000 ____D C:\Windows\CbsTemp

2022-09-17 17:19 - 2022-07-01 19:24 - 000000000 ____D C:\Users\brock\AppData\Local\Rockstar Games

2022-09-17 15:56 - 2022-07-01 19:24 - 000000000 ____D C:\Users\brock\Documents\Rockstar Games

2022-09-17 15:55 - 2022-07-01 19:18 - 000000000 ____D C:\Program Files\Rockstar Games

2022-09-17 15:55 - 2022-07-01 19:18 - 000000000 ____D C:\Program Files (x86)\Rockstar Games

2022-09-17 15:05 - 2022-05-29 07:16 - 000000120 _____ C:\Users\brock\AppData\Roaming\BattleBitConfig.ini

2022-09-16 23:24 - 2021-06-05 05:10 - 000000000 ___SD C:\Windows\SysWOW64\lxss

2022-09-16 23:24 - 2021-06-05 05:10 - 000000000 ___SD C:\Windows\system32\lxss

2022-09-16 01:54 - 2022-05-24 13:34 - 000000000 ____D C:\ProgramData\Package Cache

2022-09-15 22:24 - 2022-05-24 12:57 - 000302344 _____ C:\Windows\system32\FNTCACHE.DAT

2022-09-15 22:23 - 2022-06-02 15:53 - 000000000 ____D C:\Program Files\Hyper-V

2022-09-15 22:23 - 2021-06-05 07:30 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\SysWOW64\Dism

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\SystemResources

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\system32\setup

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\system32\oobe

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\system32\Dism

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\system32\DDFs

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\system32\appraiser

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\Provisioning

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\PolicyDefinitions

2022-09-15 22:23 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\bcastdvr

2022-09-15 16:58 - 2022-08-27 12:14 - 000000000 ____D C:\Users\brock\AppData\Roaming\EasyAntiCheat

2022-09-14 02:26 - 2022-06-29 22:31 - 000000000 ____D C:\Users\brock\Desktop\Rat Scanner

2022-09-14 01:50 - 2022-05-26 13:54 - 000000000 ____D C:\Windows\system32\MRT

2022-09-14 01:48 - 2022-05-26 13:54 - 141646296 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

2022-09-14 01:21 - 2021-06-05 05:08 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll

2022-09-14 01:21 - 2021-06-05 05:08 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll

2022-09-14 01:19 - 2022-05-24 12:59 - 003103744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll

2022-09-14 01:17 - 2022-06-14 01:07 - 000000000 ____D C:\Program Files\dotnet

2022-09-13 12:22 - 2022-06-07 01:47 - 000000000 ____D C:\Users\brock\AppData\Local\ElevatedDiagnostics

2022-09-13 12:22 - 2021-06-05 05:10 - 000000000 ____D C:\Windows\system32\NDF

2022-09-12 16:19 - 2022-06-07 02:14 - 000872476 _____ C:\Windows\gethelp_audiotroubleshooter_latestpackage.zip

2022-09-12 00:06 - 2022-05-30 13:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer

2022-09-09 22:11 - 2022-05-24 13:41 - 000000000 ____D C:\Users\brock\AppData\Local\NVIDIA

2022-09-07 18:19 - 2022-07-25 01:17 - 000000000 ____D C:\ProgramData\USVFS

2022-09-07 16:48 - 2022-08-01 20:40 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy

2022-09-07 15:56 - 2022-05-27 15:19 - 000000000 ____D C:\Users\brock\AppData\Local\EpicGamesLauncher

2022-09-07 01:23 - 2022-05-24 12:57 - 000000000 ____D C:\Windows\system32\Drivers\wd

2022-09-06 00:39 - 2022-07-07 20:39 - 000000000 ____D C:\Users\brock\.zenmap

2022-09-06 00:36 - 2022-05-24 21:35 - 000000000 ____D C:\Users\brock\Documents\My Games

2022-09-05 01:57 - 2021-06-05 05:10 - 000000000 ____D C:\PerfLogs

2022-09-04 18:21 - 2022-06-12 18:15 - 000000000 ____D C:\Users\brock\AppData\Local\BeamNG.drive

2022-09-04 18:21 - 2022-06-12 18:12 - 000000000 ____D C:\Users\brock\AppData\Roaming\BeamMP Launcher

2022-09-03 22:23 - 2022-07-30 15:21 - 000000000 ____D C:\Users\brock\AppData\Local\Sysinternals

2022-09-03 14:10 - 2021-06-05 07:29 - 000000000 ____D C:\Windows\system32\OpenSSH

2022-09-02 02:23 - 2022-05-28 10:05 - 000000000 ____D C:\Users\brock\AppData\Local\SquadGame

2022-09-02 00:35 - 2022-05-24 13:01 - 000000000 ____D C:\ProgramData\Razer

2022-09-02 00:16 - 2022-05-30 13:47 - 000000000 ____D C:\Users\brock\AppData\Local\Razer

==================== Files in the root of some directories ========

(Video) How to Remove a Trojan/Virus/Miner (Windows)

2022-05-29 07:16 - 2022-09-17 15:05 - 000000120 _____ () C:\Users\brock\AppData\Roaming\BattleBitConfig.ini

2022-05-31 03:54 - 2022-05-31 03:54 - 000004350 _____ () C:\Users\brock\AppData\Local\2613946761

2022-09-03 16:02 - 2022-09-03 16:02 - 000000017 _____ () C:\Users\brock\AppData\Local\resmon.resmoncfg

2022-07-07 20:39 - 2022-09-27 21:18 - 000000572 _____ () C:\Users\brock\AppData\Local\zenmap.exe.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

------------------

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022

Ran by brock (30-09-2022 05:05:52)

Running from C:\Users\brock\Desktop

Microsoft Windows 11 Pro Version 21H2 22000.978 (X64) (2022-05-24 19:58:59)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2079999945-3144571470-3643686681-500 - Administrator - Disabled)

brock (S-1-5-21-2079999945-3144571470-3643686681-1001 - Administrator - Enabled) => C:\Users\brock

DefaultAccount (S-1-5-21-2079999945-3144571470-3643686681-503 - Limited - Disabled)

Guest (S-1-5-21-2079999945-3144571470-3643686681-501 - Limited - Disabled)

WDAGUtilityAccount (S-1-5-21-2079999945-3144571470-3643686681-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)

Alienware CC Components for AWCC (1.1.30.0) (HKLM\...\Alienware CC Components for AWCC) (Version: 1.1.30.0 - Dell Inc) Hidden

Alienware Command Center Package Manager (HKLM-x32\...\{D2DA930B-CB5D-4DD6-BF62-BE6C310A353D}) (Version: 5.5.14.0 - Dell Inc.)

Alienware Command Center Suite (HKLM\...\{67A2D055-7769-4B7A-9165-7FEFDAB666DC}) (Version: 5.5.14.0 - Dell Inc.) Hidden

Alienware Command Center Suite (HKLM-x32\...\InstallShield_{67A2D055-7769-4B7A-9165-7FEFDAB666DC}) (Version: 5.5.14.0 - Dell Inc.) Hidden

AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.)

AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden

AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.83 - Advanced Micro Devices, Inc.) Hidden

AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden

AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.4.4 - Advanced Micro Devices, Inc.) Hidden

AMD Ryzen Master (HKLM\...\{02247819-03CD-414E-AC8D-FD518BFBA445}) (Version: 2.9.0.2093 - Advanced Micro Devices, Inc.) Hidden

AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.9.0.2093 - Advanced Micro Devices, Inc.)

AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden

AMD_Chipset_Drivers (HKLM-x32\...\{cf77cf6b-71ff-4a71-802d-43adb9b271b7}) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.) Hidden

AutoHotkey 1.1.34.03 (HKLM\...\AutoHotkey) (Version: 1.1.34.03 - Lexikos)

Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)

Battlestate Games Launcher 12.12.2.1944 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.12.2.1944 - Battlestate Games)

BeamMP Launcher (HKLM\...\{0D8B7A7C-5EA7-41FF-8736-FEF9CF648661}) (Version: 1.80.5 - BeamMP) Hidden

BeamMP Launcher (HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\BeamMP Launcher 1.80.5) (Version: 1.80.5 - BeamMP)

Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)

Call of Duty Modern Warfare II Beta (HKLM-x32\...\Call of Duty Modern Warfare II Beta) (Version: - Blizzard Entertainment)

Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)

Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)

Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)

Cloudflare WARP (HKLM\...\{490CA762-C63E-42F8-8022-62751BFF5163}) (Version: 22.8.624.1 - Cloudflare, Inc.)

Discord (HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Discord) (Version: 1.0.9004 - Discord Inc.)

DZSALauncher version 0.0.5.3 (HKLM-x32\...\DZSALauncher_is1) (Version: 0.0.5.3 - Maca134)

EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.11.0.5268 - Electronic Arts) Hidden

EA app (HKLM-x32\...\{f560d256-e3a9-4f04-8bde-5ef2213bf85d}) (Version: 12.11.0.5268 - Electronic Arts)

ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.39.18 - Ene Tech.) Hidden

ENE RGB HAL (HKLM-x32\...\{cf6be873-4fda-41b6-87c1-54f5f726365d}) (Version: 1.1.39.18 - Ene Tech.) Hidden

Epic Games Launcher (HKLM-x32\...\{FAC47927-1A6A-4C6E-AD7D-E9756794A4BC}) (Version: 1.3.23.0 - Epic Games, Inc.)

Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.)

Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.12.31.19428 - Battlestate Games)

EVGA Precision X1 (HKLM\...\EVGA Precision X1) (Version: 1.3.6.0 - EVGA Corporation)

FiveM (HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\CitizenFX_FiveM) (Version: - Cfx.re)

GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)

ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)

Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden

Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.9.315009 - Logitech)

Microsoft .NET Host - 6.0.9 (x64) (HKLM\...\{C30ABA3F-32C0-43D1-B3B8-9AEFD58A15D9}) (Version: 48.39.47157 - Microsoft Corporation) Hidden

Microsoft .NET Host FX Resolver - 6.0.9 (x64) (HKLM\...\{FD10B803-97FD-4867-9753-8784BC35D2F8}) (Version: 48.39.47157 - Microsoft Corporation) Hidden

Microsoft .NET Runtime - 6.0.9 (x64) (HKLM\...\{0B4F742D-2D47-4E95-B756-402822D31C48}) (Version: 48.39.47157 - Microsoft Corporation) Hidden

Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 105.0.1343.53 - Microsoft Corporation)

Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 105.0.1343.53 - Microsoft Corporation)

Microsoft GameInput (HKLM-x32\...\{A9CFD6A1-C0D3-7F37-C220-8B104867EF15}) (Version: 10.1.22621.1011 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\OneDriveSetup.exe) (Version: 22.186.0904.0001 - Microsoft Corporation)

Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)

Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)

Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden

Microsoft Windows Desktop Runtime - 6.0.9 (x64) (HKLM\...\{C1CD2FC1-92E6-4DE2-89D8-6D309881856F}) (Version: 48.39.47171 - Microsoft Corporation) Hidden

Microsoft Windows Desktop Runtime - 6.0.9 (x64) (HKLM-x32\...\{569b351b-451b-48db-a2c7-7beb63411666}) (Version: 6.0.9.31620 - Microsoft Corporation)

Nmap 7.92 (HKLM-x32\...\Nmap) (Version: 7.92 - Nmap Project)

Novabench (HKLM\...\{32D01ECE-310C-4220-B2E9-AC4B1B34BAC7}) (Version: 4.0.9 - Novawave Inc.)

Npcap (HKLM-x32\...\NpcapInst) (Version: 1.50 - Nmap Project)

NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation)

NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation)

NVIDIA Graphics Driver 516.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.94 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.39.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.14 - NVIDIA Corporation)

NVIDIA PhysX System Software 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)

Oculus (HKLM\...\Oculus) (Version: <3 - Facebook Technologies, LLC)

Opera GX Stable 90.0.4480.117 (HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\Opera GX 90.0.4480.117) (Version: 90.0.4480.117 - Opera Software)

PowerToys (Preview) (HKLM\...\{DCE33190-922B-4235-9187-61FD995F0285}) (Version: 0.62.1 - Microsoft Corporation) Hidden

PowerToys (Preview) x64 (HKLM-x32\...\{4eb6cdf7-0d8c-41ed-9412-e0c35ed476f9}) (Version: 0.62.1 - Microsoft Corporation)

PROJECT HYDRA (HKLM-x32\...\{AE2C3DD2-8894-4C23-90E0-36166AD2B81B}) (Version: 1.0.0.7 - 1USMUS)

PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)

Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.7.0831.083015 - Razer Inc.)

Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8971.1 - Realtek Semiconductor Corp.)

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.50.511.2021 - Realtek)

Realtek USB Wireless LAN Driver (HKLM-x32\...\InstallShield_{DBCC4C27-F949-482b-B786-7B3B67587CD2}) (Version: Drv_3.00.0019 - REALTEK Semiconductor Corp.)

REDlauncher (HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - GOG.com)

Revo Uninstaller 2.3.8 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.8 - VS Revo Group, Ltd.)

Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.63.962 - Rockstar Games)

Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.5.1 - Rockstar Games)

Shadow Warrior Complete (HKLM-x32\...\1207659142_is1) (Version: 2.1.0.8 - GOG.com)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)

UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden

usbipd-win (HKLM\...\{EA1D5623-E6A7-4E4A-9259-E39722020300}) (Version: 2.3.0 - Frans van Dorsselaer)

VAICOM PRO for DCS World (HKLM\...\{F8B884A0-4E5B-4AB8-A4FF-59DF65B4BCA6}) (Version: 2.5.26 - 315 Interactive Software)

VoiceAttack version 1.8.9 (HKLM-x32\...\{D6EDF6DB-029E-4A34-A3A0-D960CB0FCB2A}_is1) (Version: 1.8.9 - VoiceAttack.com)

Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden

Windows Subsystem for Linux Update (HKLM\...\{F8474A47-8B5D-4466-ACE3-78EAB3BF21A8}) (Version: 5.10.102.1 - Microsoft Corporation)

Windows Subsystem for Linux WSLg Preview (HKLM\...\{E04B0005-A349-4BCC-9662-CA0132007E14}) (Version: 1.0.26 - Microsoft Corporation)

WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)

World in Conflict - Complete Edition (HKLM-x32\...\1438332414_is1) (Version: 2.0.0.3 - GOG.com)

World in Conflict MW Mod 6.0 (HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\World in Conflict MW Mod 6.0) (Version: - )

Packages:

=========

Arduino IDE -> C:\Program Files\WindowsApps\ArduinoLLC.ArduinoIDE_1.8.57.0_x86__mdqgnx93n4wtt [2022-09-04] (Arduino LLC)

Crosshair X Extension -> C:\Program Files\WindowsApps\47492CenterpointGaming.ProSightCrosshairExtension_1.0.25.0_x64__rz8d8f65gztyc [2022-06-02] (Centerpoint Gaming)

Deep Rock Galactic -> C:\Program Files\WindowsApps\CoffeeStainStudios.DeepRockGalactic_36.1.10254.0_x64__496a1srhmar9w [2022-09-22] (Coffee Stain Publishing)

Kali Linux -> C:\Program Files\WindowsApps\KaliLinux.54290C8133FEE_1.13.1.0_x64__ey8k8hqnwqnmg [2022-09-17] (Kali Linux)

Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-19] (Microsoft Studios) [MS Ad]

Microsoft.PowerToys.ImageResizerContextMenu -> C:\Program Files\PowerToys\modules\ImageResizer [2022-09-16] (0)

Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.19.3004.0_x64__8wekyb3d8bbwe [2022-09-20] (Microsoft Studios)

Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.1.28.0_x64__8wekyb3d8bbwe [2022-08-23] (Microsoft Studios)

NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-09-09] (NVIDIA Corp.)

Power Automate -> C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_10.0.4447.0_x64__8wekyb3d8bbwe [2022-09-30] (Microsoft Corporation) [Startup Task]

PowerRenameContextMenu -> C:\Program Files\PowerToys\modules\PowerRename [2022-09-16] (0)

Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2022-05-24] (Realtek Semiconductor Corp)

Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.545.435.0_x86__55nm5eh3cm0pr [2022-09-25] (ROBLOX Corporation)

Rufus -> C:\Program Files\WindowsApps\19453.net.Rufus_3.20.1930.0_x64__y8nh7bq2a8dtt [2022-08-15] (Akeo Consulting)

TreeSize Free -> C:\Program Files\WindowsApps\JAMSoftware.TreeSizeFree_4.5.3.0_x86__37s2tpab2h9zg [2022-06-02] (JAM Software)

Ubuntu on Windows -> C:\Program Files\WindowsApps\CanonicalGroupLimited.UbuntuonWindows_2004.2022.1.0_x64__79rhkp1fndgsc [2022-09-19] (Canonical Group Limited)

Virustotal Scan -> C:\Program Files\WindowsApps\56424Roast247.WinAntivirus_1.0.0.0_neutral__tvnndvqfdvvsa [2022-09-30] (Roast247)

Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2022.917.917.193_neutral__8wekyb3d8bbwe [2022-09-17] (Microsoft Corporation)

Windows Performance Analyzer (Preview) -> C:\Program Files\WindowsApps\Microsoft.WindowsPerformanceAnalyzerPreview_10.0.25145.0_x64__8wekyb3d8bbwe [2022-09-03] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{23B3E3D8-C162-4A8B-AB0C-0905DCB1DF19}\InprocServer32 -> C:\Users\brock\AppData\Local\Packages\Microsoft.PowerAutomateDesktop_8wekyb3d8bbwe\TempState\RDP\DVCPlugin\x64\Microsoft.Flow.RPA.Desktop.UIAutomation.RDP.DVC.Plugin.dll (Microsoft Corporation -> )

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{36B27788-A8BB-4698-A756-DF9F11F64F84}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.SvgThumbnailProvider.comhost.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{45769bcc-e8fd-42d0-947e-02beef77a1f5}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.MarkdownPreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{8BC8AFC2-4E7C-4695-818E-8C1FFDCEA2AF}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.StlThumbnailProvider.comhost.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{afbd5a44-2520-4ae0-9224-6cfce8fe4400}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.MonacoPreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{BFEE99B4-B74D-4348-BCA5-E757029647FF}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.GcodeThumbnailProvider.comhost.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{ddee2b8a-6807-48a6-bb20-2338174ff779}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.SvgPreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{ec52dea8-7c9f-4130-a77b-1737d0418507}\InprocServer32 -> C:\Program Files\PowerToys\modules\FileExplorerPreview\PowerToys.GcodePreviewHandler.comhost.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2079999945-3144571470-3643686681-1001_Classes\CLSID\{f9517764-05a4-a748-620a-95087d06a241}\localserver32 -> C:\Program Files\Cloudflare\Cloudflare WARP\Cloudflare WARP.exe (Cloudflare, Inc. -> Cloudflare)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [File not signed]

ContextMenuHandlers3: [PowerRenameExt] -> {0440049F-D1DC-4E46-B27B-98393D79486B} => C:\Program Files\PowerToys\modules\PowerRename\PowerToys.PowerRenameExt.dll [2022-09-13] (Microsoft Corporation -> Microsoft Corporation)

ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [File not signed]

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\nvshext.dll [2022-07-28] (Nvidia Corporation -> NVIDIA Corporation)

ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [File not signed]

ContextMenuHandlers2_.DEFAULT: [FileLocatorPro] -> {1ED0F018-76B9-4DB9-9C06-CA0F3088F04F} => -> No File

ContextMenuHandlers4_.DEFAULT: [FileLocatorPro] -> {1ED0F018-76B9-4DB9-9C06-CA0F3088F04F} => -> No File

ContextMenuHandlers5_.DEFAULT: [FileLocatorPro] -> {1ED0F018-76B9-4DB9-9C06-CA0F3088F04F} => -> No File

ContextMenuHandlers6_.DEFAULT: [FileLocatorPro] -> {1ED0F018-76B9-4DB9-9C06-CA0F3088F04F} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-09-27 12:47 - 2022-09-27 02:49 - 000156160 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node

2022-02-15 21:49 - 2022-02-15 21:49 - 000912896 _____ () [File not signed] C:\Program Files\AMD\Performance Profile Client\aws-cpp-sdk-core.dll

2022-02-15 21:49 - 2022-02-15 21:49 - 003109888 _____ () [File not signed] C:\Program Files\AMD\Performance Profile Client\aws-cpp-sdk-s3.dll

2019-06-24 01:57 - 2019-06-24 01:57 - 000626688 _____ () [File not signed] C:\Program Files\EVGA\Precision X1\scanner.dll

2022-09-02 15:14 - 2022-09-02 15:14 - 001646080 _____ () [File not signed] C:\Users\brock\AppData\Local\Temp\.net\Cloudflare WARP\PfgPEd4Vt4JwF9u1M1ul5mB_JbZV7ag=\e_sqlite3.DLL

2022-05-25 02:33 - 2022-05-25 02:33 - 001830912 _____ () [File not signed] Z:\Oculus\Support\oculus-client\ffmpeg.dll

2022-05-25 02:33 - 2022-05-25 02:33 - 000017408 _____ () [File not signed] Z:\Oculus\Support\oculus-client\libegl.dll

2022-05-25 02:33 - 2022-05-25 02:33 - 003852800 _____ () [File not signed] Z:\Oculus\Support\oculus-client\libglesv2.dll

2022-09-26 18:41 - 2022-09-26 18:41 - 000273920 _____ () [File not signed] Z:\Oculus\Support\oculus-client\resources\app.asar.unpacked\output\FocusManager.node

2022-09-26 18:41 - 2022-09-26 18:41 - 000297472 _____ () [File not signed] Z:\Oculus\Support\oculus-client\resources\app.asar.unpacked\output\OafIpc.node

2022-02-15 21:49 - 2022-02-15 21:49 - 000683520 _____ (Advanced Micro Devices) [File not signed] C:\Program Files\AMD\Performance Profile Client\Device.dll

2022-02-15 21:49 - 2022-02-15 21:49 - 000065024 _____ (Advanced Micro Devices) [File not signed] C:\Program Files\AMD\Performance Profile Client\Platform.dll

2022-05-30 22:02 - 2008-01-01 01:00 - 000097792 _____ (Google, inc) [File not signed] C:\users\brock\Documents\Android Platform Tools\AdbWinApi.dll

2022-05-30 22:02 - 2008-01-01 01:00 - 000062976 _____ (Google, inc) [File not signed] C:\users\brock\Documents\Android Platform Tools\AdbWinUsbApi.dll

2022-05-25 02:49 - 2021-12-26 07:00 - 000093696 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000011264 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Configuration.Abstractions.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000019968 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Configuration.Binder.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000011264 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Configuration.CommandLine.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000017408 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Configuration.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000007680 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Configuration.EnvironmentVariables.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000013824 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Configuration.FileExtensions.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000012800 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Configuration.Json.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000011776 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Configuration.UserSecrets.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000017920 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.DependencyInjection.Abstractions.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000059904 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.DependencyInjection.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000008704 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.FileProviders.Abstractions.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000026112 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.FileProviders.Physical.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000029696 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.FileSystemGlobbing.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000014336 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Hosting.Abstractions.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000036352 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Hosting.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000012800 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Hosting.WindowsServices.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000027648 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Logging.Abstractions.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000013824 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Logging.Configuration.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000033280 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Logging.Console.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000007168 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Logging.Debug.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000025600 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Logging.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000011776 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Logging.EventLog.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000019968 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Logging.EventSource.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000008192 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Options.ConfigurationExtensions.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000018432 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Options.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000017920 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Extensions.Primitives.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000008192 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Win32.Primitives.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000028160 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\Microsoft.Win32.Registry.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000040448 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Collections.Concurrent.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000028160 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Collections.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000014336 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Collections.Specialized.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000154112 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.CommandLine.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000005120 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.ComponentModel.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000015360 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.ComponentModel.Primitives.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000091136 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.ComponentModel.TypeConverter.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000038912 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Console.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000060928 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Diagnostics.DiagnosticSource.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000036352 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Diagnostics.EventLog.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000088064 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Diagnostics.Process.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000023552 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.IO.FileSystem.Watcher.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000069120 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Linq.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000067584 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Net.Primitives.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000101888 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Net.Sockets.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 002281472 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Private.CoreLib.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000008192 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Runtime.InteropServices.RuntimeInformation.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000028160 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.ServiceProcess.ServiceController.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000113152 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Text.Json.dll

2022-04-26 22:50 - 2022-04-26 22:50 - 000032256 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\usbipd-win\System.Threading.Channels.dll

2022-05-25 02:33 - 2022-05-25 02:33 - 018578944 _____ (Node.js) [File not signed] Z:\Oculus\Support\oculus-client\node.dll

2022-09-29 22:15 - 2022-09-29 22:15 - 002815488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll

2022-09-29 22:15 - 2022-09-29 22:15 - 000678400 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libssl-1_1-x64.dll

2022-09-29 22:15 - 2022-09-29 22:15 - 000046592 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\bearer\qgenericbearer.dll

2022-09-29 22:15 - 2022-09-29 22:15 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Core.dll

2022-09-29 22:15 - 2022-09-29 22:15 - 001389568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Network.dll

2022-09-29 22:15 - 2022-09-29 22:15 - 000157184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebSockets.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:err [890]

AlternateDataStreams: C:\Users\All Users:err [890]

AlternateDataStreams: C:\Users\brock:Heroes & Generals [38]

AlternateDataStreams: C:\ProgramData\Application Data:err [890]

AlternateDataStreams: C:\Users\brock\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]

AlternateDataStreams: C:\Users\brock\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6078]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\Software\Classes\.reg: => <==== ATTENTION

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\Software\Classes\.bat: => <==== ATTENTION

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\Software\Classes\.cmd: => <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2021-06-05 05:08 - 2021-06-05 05:08 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

2022-05-30 00:22 - 2022-09-30 03:41 - 000000648 _____ C:\Windows\system32\drivers\etc\hosts.ics

172.30.0.1 _Nope.mshome.net # 2027 9 3 29 10 41 33 485

172.23.102.176 bodhi.mshome.net # 2022 10 1 3 3 19 36 6

172.23.108.70 manjaro.mshome.net # 2022 10 2 4 19 46 51 217

172.23.108.70 manjaro.mshome.net # 2022 10 2 4 19 46 51 217

==================== Other Areas ===========================

(Video) How to Remove Trojan Virus from Windows?

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> Z:\Oculus\Support\oculus-runtime;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Cloudflare\Cloudflare WARP\;C:\Program Files\usbipd-win\

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg

DNS Servers: 1.1.1.1 - 1.0.0.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )

Windows Firewall is enabled.

Network Binding:

=============

vEthernet (Ethernet 4): Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)

vEthernet (WSL): Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)

vEthernet (Default Switch): Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)

Ethernet 2: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)

Ethernet 4: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)

Bluetooth Network Connection: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B14A27EE796ACE5934214E974B5AF8A3"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "OneDrive"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "Steam"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "Discord"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "Battle.net"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "GogGalaxy"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "Opera GX Stable"

HKU\S-1-5-21-2079999945-3144571470-3643686681-1001\...\StartupApproved\Run: => "Synapse3"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{0097AB39-52E0-4906-80AD-29880C430823}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe => No File

FirewallRules: [{0A53FD9D-3495-464F-BDD7-A2CD799D101B}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe => No File

FirewallRules: [{8AD61671-9343-4B74-9A3B-912836D1DFF8}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe => No File

FirewallRules: [{05C913E3-C210-40A9-B2D2-071970FE98F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)

FirewallRules: [{55199637-DF77-4114-974F-8A241E7803E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)

FirewallRules: [{20041950-A63A-4B78-8DF8-B6335AF9D57F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)

FirewallRules: [{8C3A0100-F1AF-402F-AACC-1C053574AD81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)

FirewallRules: [{15B7042B-1818-496F-A0AD-749A6EAE14FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)

FirewallRules: [{3EF0766F-4BFA-4DCD-BCA2-74C1F272B546}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)

FirewallRules: [TCP Query User{6EF8E0D6-DD34-4265-A356-1246E3996B7D}C:\users\brock\appdata\local\packages\b9eced6f.armourycrate_qmba6cd70vzyy\localstate\gridupdatefile\asusgcdriverupdateclient.exe] => (Allow) C:\users\brock\appdata\local\packages\b9eced6f.armourycrate_qmba6cd70vzyy\localstate\gridupdatefile\asusgcdriverupdateclient.exe => No File

FirewallRules: [UDP Query User{51D2A2F1-2931-410E-9AF2-0CF6A61F2735}C:\users\brock\appdata\local\packages\b9eced6f.armourycrate_qmba6cd70vzyy\localstate\gridupdatefile\asusgcdriverupdateclient.exe] => (Allow) C:\users\brock\appdata\local\packages\b9eced6f.armourycrate_qmba6cd70vzyy\localstate\gridupdatefile\asusgcdriverupdateclient.exe => No File

FirewallRules: [{003C9E3A-CD1D-4F4C-B7E9-D065B224ED1E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)

FirewallRules: [{223F2581-0D77-4FEC-A2D9-08F1D8F39EFE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)

FirewallRules: [{C738F562-89A0-4779-B462-EDC553DC5265}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)

FirewallRules: [{AEDDB3FB-3356-40C0-9013-B52912E34B53}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)

FirewallRules: [TCP Query User{156C878D-A021-4645-8644-6576C7AFB7C4}C:\program files (x86)\steam\steamapps\common\arma reforger\armareforgersteam.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma reforger\armareforgersteam.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive Studio)

FirewallRules: [UDP Query User{703E85AE-A59E-4FE4-96F2-281755955DCA}C:\program files (x86)\steam\steamapps\common\arma reforger\armareforgersteam.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma reforger\armareforgersteam.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive Studio)

FirewallRules: [{F6C946B9-93C0-46EB-9463-EC67E8C99952}] => (Allow) Z:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe => No File

FirewallRules: [{A2002947-0AC0-4882-A595-9F508BB772A3}] => (Allow) Z:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe => No File

FirewallRules: [{502571B4-C3DA-482B-87C5-0AD3CE50E238}] => (Allow) Z:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe => No File

FirewallRules: [{038BBB74-910F-4D4E-BA85-3F0D9A6F979C}] => (Allow) Z:\SteamLibrary\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe => No File

FirewallRules: [{3A3D9A92-6162-47DD-BCD8-65D5F5EF3D8E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )

FirewallRules: [{FC93715A-7B11-476A-804D-D2C48E04F967}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )

FirewallRules: [{AB87BB1F-F5AD-436C-BD84-05DBC170E029}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )

FirewallRules: [{78F1CDF6-6DCA-4ADD-B224-3E208C3716CD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )

FirewallRules: [{EFE55422-2900-490D-B063-C0FB175D08AD}] => (Allow) Z:\SteamLibrary\steamapps\common\Squad\squad_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)

FirewallRules: [{8A69850A-02AE-43B9-86C4-99D4DFE07B4B}] => (Allow) Z:\SteamLibrary\steamapps\common\Squad\squad_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)

FirewallRules: [{F40D6B3C-6DF7-41E6-8AE0-1DE53CB895BF}] => (Allow) Z:\SteamLibrary\steamapps\common\Post Scriptum\Launch_PostScriptum.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)

FirewallRules: [{71B4B9A1-724D-4A28-ABD6-8E2D2DA51531}] => (Allow) Z:\SteamLibrary\steamapps\common\Post Scriptum\Launch_PostScriptum.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)

FirewallRules: [{4E74194E-F127-4E30-8D3E-89FA78706549}] => (Allow) Z:\SteamLibrary\steamapps\common\Ground Branch\GroundBranch.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{1C1550EE-5AF2-4389-AE17-BBBC463AF5FA}] => (Allow) Z:\SteamLibrary\steamapps\common\Ground Branch\GroundBranch.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{F243850D-1F81-47E6-A755-C4F333342B0E}] => (Allow) Z:\SteamLibrary\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)

FirewallRules: [{3969E2E7-B0C1-4A70-9ED1-9057E5FB66A0}] => (Allow) Z:\SteamLibrary\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)

FirewallRules: [{CB275FC0-98C8-4D20-B58E-81AAEE7B1411}] => (Allow) Z:\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{1E1FF1AB-E0AA-4F3B-B3A8-5597EB8D224E}] => (Allow) Z:\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{2EF65D3C-8D44-4B30-8D36-4CAB67A7C1A5}] => (Allow) Z:\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{E26707CC-3F2D-4D30-87DB-0BB60CF54702}] => (Allow) Z:\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{B5E17FF8-D1DB-4D9E-8427-3A8958D6A389}] => (Allow) Z:\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{0C7AA6A9-8405-4867-8C65-46DCC5DE0E12}] => (Allow) Z:\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{ABF4BD10-B1B1-45AE-9AD2-F44684AE6C25}] => (Allow) Z:\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> )

FirewallRules: [{732322A1-F341-46CE-A7DD-6E0D28BA8375}] => (Allow) Z:\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> )

FirewallRules: [{A94D6B71-40D7-4760-957D-7D997DEFBB53}] => (Allow) Z:\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{735734C9-3FC2-4AE1-A631-EE6713978109}] => (Allow) Z:\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{CE06F39A-784F-4408-9FF8-B9C3BB3F4C50}] => (Allow) Z:\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)

FirewallRules: [{3D989E40-EFF6-48FA-981B-0D199ABBA101}] => (Allow) Z:\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)

FirewallRules: [{D6DA07C7-E254-4033-AC8F-14F4CE4722A5}] => (Allow) Z:\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{C62EC8AC-6911-4A2C-9E35-92DF72D34948}] => (Allow) Z:\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{8A074D05-ACD0-4A28-A30E-15B16F3F1638}] => (Allow) Z:\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [File not signed]

FirewallRules: [{31C3CD87-4951-4F56-AFE9-61C56647DD04}] => (Allow) Z:\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [File not signed]

FirewallRules: [{97B6A424-B824-43BD-8EDB-D2C43C74741A}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22133.500.1346.3200_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{A86C355F-2CC0-424C-A206-17C9F08A08D2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22133.500.1346.3200_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [TCP Query User{DCA11F44-7B15-4FF7-B234-74EA26876134}C:\program files\ea games\star wars squadrons\starwarssquadrons.exe] => (Allow) C:\program files\ea games\star wars squadrons\starwarssquadrons.exe => No File

FirewallRules: [UDP Query User{7066E527-4499-4A42-92B2-B0E9AAFE60A4}C:\program files\ea games\star wars squadrons\starwarssquadrons.exe] => (Allow) C:\program files\ea games\star wars squadrons\starwarssquadrons.exe => No File

FirewallRules: [TCP Query User{E98B2C16-56D6-4F34-99D6-A1A22695981F}Z:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) Z:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [UDP Query User{18138A36-48CD-4D0A-8C3D-9FA9B84B8DB8}Z:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) Z:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [TCP Query User{05580D02-0BDD-4E38-AD4F-60B4791F3E27}C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe => No File

FirewallRules: [UDP Query User{36AED8AF-B145-48C9-B1B3-AD1BFD07F2D3}C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe => No File

FirewallRules: [TCP Query User{54427917-0606-49D1-8721-939E5EB065B0}Z:\steamlibrary\steamapps\common\post scriptum\postscriptum\binaries\win64\postscriptum.exe] => (Allow) Z:\steamlibrary\steamapps\common\post scriptum\postscriptum\binaries\win64\postscriptum.exe (periscope-games.com -> Sas Periscope Games) [File not signed]

FirewallRules: [UDP Query User{98F25E69-BFFE-41E7-A2F7-6C906EE2B86F}Z:\steamlibrary\steamapps\common\post scriptum\postscriptum\binaries\win64\postscriptum.exe] => (Allow) Z:\steamlibrary\steamapps\common\post scriptum\postscriptum\binaries\win64\postscriptum.exe (periscope-games.com -> Sas Periscope Games) [File not signed]

FirewallRules: [TCP Query User{7342D48F-0689-47EC-AC45-F7728F17D6A0}Z:\steamlibrary\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe] => (Allow) Z:\steamlibrary\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe (Offworld Industries -> Offworld Industries Ltd.)

FirewallRules: [UDP Query User{6C63FC02-ABED-4F80-8A69-BC6E5A896A25}Z:\steamlibrary\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe] => (Allow) Z:\steamlibrary\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe (Offworld Industries -> Offworld Industries Ltd.)

FirewallRules: [TCP Query User{98972C7A-8B91-4B1E-86F9-47D26E3DE8DB}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => No File

FirewallRules: [UDP Query User{232D1C46-C0F8-47BB-91AE-3A97CB2FB760}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => No File

FirewallRules: [TCP Query User{54120DBF-8F0E-482C-9D8C-8CBF974FBDEC}C:\program files (x86)\steam\steamapps\common\world war 3\13_2002999\ww3\binaries\win64\ww3-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\world war 3\13_2002999\ww3\binaries\win64\ww3-win64-shipping.exe => No File

FirewallRules: [UDP Query User{8D6A6B48-8E8B-4B44-BBE8-C88DC7104019}C:\program files (x86)\steam\steamapps\common\world war 3\13_2002999\ww3\binaries\win64\ww3-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\world war 3\13_2002999\ww3\binaries\win64\ww3-win64-shipping.exe => No File

FirewallRules: [TCP Query User{ED5ACB79-B85F-46BB-A9EA-85F4684C8122}Z:\steamlibrary\steamapps\common\rising storm 2\binaries\win64\vngame.exe] => (Allow) Z:\steamlibrary\steamapps\common\rising storm 2\binaries\win64\vngame.exe => No File

FirewallRules: [UDP Query User{EBA461C5-8A70-4849-8676-C12B6B95B686}Z:\steamlibrary\steamapps\common\rising storm 2\binaries\win64\vngame.exe] => (Allow) Z:\steamlibrary\steamapps\common\rising storm 2\binaries\win64\vngame.exe => No File

FirewallRules: [{79336630-3BEE-4B0B-9661-73E0E700313F}] => (Allow) Z:\SteamLibrary\steamapps\common\Hell Let Loose\Launch_HLL.exe (EasyAntiCheat Oy -> Epic Games, Inc)

FirewallRules: [{1E6F5194-A222-4B0A-9033-BFE3432390F4}] => (Allow) Z:\SteamLibrary\steamapps\common\Hell Let Loose\Launch_HLL.exe (EasyAntiCheat Oy -> Epic Games, Inc)

FirewallRules: [{0E62A680-2E48-4B04-BEDB-CCE7C21803AD}] => (Allow) Z:\SteamLibrary\steamapps\common\StickFightTheGame\StickFight.exe () [File not signed]

FirewallRules: [{711E189F-1836-4B08-8B97-653A0F776A0C}] => (Allow) Z:\SteamLibrary\steamapps\common\StickFightTheGame\StickFight.exe () [File not signed]

FirewallRules: [{ACCC13FF-C8D1-4033-8891-DC5CF85B6819}] => (Allow) Z:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)

FirewallRules: [{AC8DD4FA-EFC0-4620-BD2E-0904A8270CDF}] => (Allow) Z:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)

FirewallRules: [TCP Query User{43D6024A-8766-4331-B336-81EA79A7A6E7}Z:\battlefield 2042\bf2042trial.exe] => (Allow) Z:\battlefield 2042\bf2042trial.exe => No File

FirewallRules: [UDP Query User{DCC8F441-4A07-4EB1-AE3F-EF13E6056EB0}Z:\battlefield 2042\bf2042trial.exe] => (Allow) Z:\battlefield 2042\bf2042trial.exe => No File

FirewallRules: [{6BD8C9A7-873D-4A3D-AFDA-58D90B679915}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)

FirewallRules: [{56A039E7-E94B-4C0C-85A6-165319F454AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)

FirewallRules: [{FF3D694F-B54B-4914-B38A-9CAF74E5DD57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )

FirewallRules: [{C864B556-22CD-40E8-BF63-E29C10B6ED81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )

FirewallRules: [{48373252-FBF3-4500-80C9-5AF5FE13297C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )

FirewallRules: [{B1958E1F-D993-4C26-B634-7B01A4664921}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )

FirewallRules: [TCP Query User{F6C140CA-4A6C-4DC5-A7D8-CFAFC60AEB14}\\wsl.localhost\kali-linux\usr\lib\win-kex\pulse\pulseaudio.exe] => (Allow) \\wsl.localhost\kali-linux\usr\lib\win-kex\pulse\pulseaudio.exe () [File not signed]

FirewallRules: [UDP Query User{5A4B938C-03AC-4474-91BB-57E57DFBE686}\\wsl.localhost\kali-linux\usr\lib\win-kex\pulse\pulseaudio.exe] => (Allow) \\wsl.localhost\kali-linux\usr\lib\win-kex\pulse\pulseaudio.exe () [File not signed]

FirewallRules: [{15B121D1-24A8-4046-AF7E-EA421441B58F}] => (Block) \\wsl.localhost\kali-linux\usr\lib\win-kex\pulse\pulseaudio.exe () [File not signed]

FirewallRules: [{092944B7-72EF-47F8-8C23-00B4D5A512B9}] => (Block) \\wsl.localhost\kali-linux\usr\lib\win-kex\pulse\pulseaudio.exe () [File not signed]

FirewallRules: [TCP Query User{394E9707-832E-4AE8-B671-A1CD8FD7BCDB}\\wsl.localhost\kali-linux\usr\lib\win-kex\vcxsrv\vcxsrv.exe] => (Allow) \\wsl.localhost\kali-linux\usr\lib\win-kex\vcxsrv\vcxsrv.exe => No File

FirewallRules: [UDP Query User{836A7497-2AE2-41D4-9952-69EB2C4A8237}\\wsl.localhost\kali-linux\usr\lib\win-kex\vcxsrv\vcxsrv.exe] => (Allow) \\wsl.localhost\kali-linux\usr\lib\win-kex\vcxsrv\vcxsrv.exe => No File

FirewallRules: [TCP Query User{62A64657-8CEE-4DCD-825E-2BED760D2E2D}Z:\steamlibrary\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Block) Z:\steamlibrary\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe (BLACK MATTER PTY. LTD.) [File not signed]

FirewallRules: [UDP Query User{B3C84F62-602C-4A4F-A5C1-EFEAE599430D}Z:\steamlibrary\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Block) Z:\steamlibrary\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe (BLACK MATTER PTY. LTD.) [File not signed]

FirewallRules: [TCP Query User{49C78A1F-D5CA-499C-BF9C-0ACCE91254B5}C:\users\brock\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\brock\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)

FirewallRules: [UDP Query User{6C80BC53-64B3-45F5-9089-B4D235BD1ECD}C:\users\brock\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\brock\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)

FirewallRules: [TCP Query User{804C95E7-C0D2-4DEF-8200-82A4EA19D0C9}Z:\call of duty modern warfare\modernwarfare.exe] => (Allow) Z:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)

FirewallRules: [UDP Query User{169F8253-1111-4606-BFBA-AC1CA6DB751F}Z:\call of duty modern warfare\modernwarfare.exe] => (Allow) Z:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)

FirewallRules: [{E147E559-B687-49CB-B68E-F050460DE638}] => (Block) Z:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)

FirewallRules: [{CDE7D36C-0981-484B-9D98-5FA8F8434D5C}] => (Block) Z:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)

FirewallRules: [{E3421826-7075-467B-A89F-73B1CE3B13A8}] => (Allow) Z:\Oculus\Software\Software\vertigo-games-arizona-sunshine\UnityCrashHandler64.exe => No File

FirewallRules: [{236E6795-998D-41D5-BC1E-63FE8329C001}] => (Allow) Z:\Oculus\Software\Software\vertigo-games-arizona-sunshine\UnityCrashHandler64.exe => No File

FirewallRules: [{0081B3A6-B3E1-4FBD-8FD2-947595C6DC1A}] => (Allow) Z:\Oculus\Software\Software\vertigo-games-arizona-sunshine\ArizonaSunshine.exe => No File

FirewallRules: [{9BA43D84-6920-4AC9-8E8C-2855CD82C1DC}] => (Allow) Z:\Oculus\Software\Software\vertigo-games-arizona-sunshine\ArizonaSunshine.exe => No File

FirewallRules: [{EAC1FA2F-A68C-48E8-B216-9FEEFB080066}] => (Allow) Z:\Oculus\Software\Software\creative-mobile-games-project-radius\IntoTheRadius.exe => No File

FirewallRules: [{CDEE2BE9-169F-4A2B-AC6C-7FB67C61C76C}] => (Allow) Z:\Oculus\Software\Software\creative-mobile-games-project-radius\IntoTheRadius.exe => No File

FirewallRules: [{C7C5B678-6215-4CA5-B4D6-AA5E04692C96}] => (Allow) Z:\Oculus\Software\Software\creative-mobile-games-project-radius\IntoTheRadius\Binaries\Win64\IntoTheRadius-Win64-Shipping.exe => No File

FirewallRules: [{227A8370-547A-450D-BC3A-65D2D10DECB5}] => (Allow) Z:\Oculus\Software\Software\creative-mobile-games-project-radius\IntoTheRadius\Binaries\Win64\IntoTheRadius-Win64-Shipping.exe => No File

FirewallRules: [{52472E06-DAD4-4455-96DD-34AF052BCB7D}] => (Allow) Z:\Oculus\Software\Software\creative-mobile-games-project-radius\Engine\Extras\Redist\en-us\UE4PrereqSetup_x64.exe => No File

FirewallRules: [{B4359016-7CA6-4438-94C8-0DE40F91C7E7}] => (Allow) Z:\Oculus\Software\Software\creative-mobile-games-project-radius\Engine\Extras\Redist\en-us\UE4PrereqSetup_x64.exe => No File

FirewallRules: [TCP Query User{83CB4B4F-8777-4514-9C73-921AC571C659}C:\users\brock\appdata\roaming\beammp launcher\beammp-launcher.exe] => (Allow) C:\users\brock\appdata\roaming\beammp launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]

FirewallRules: [UDP Query User{2861F9A6-A08B-46B1-9426-8D9CEF8DE069}C:\users\brock\appdata\roaming\beammp launcher\beammp-launcher.exe] => (Allow) C:\users\brock\appdata\roaming\beammp launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]

FirewallRules: [{B95E37E7-80D2-4F4F-AE77-D0C908428D0B}] => (Block) C:\users\brock\appdata\roaming\beammp launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]

FirewallRules: [{B62CACA3-DEDC-4AE4-8DB1-BD0A56409E3B}] => (Block) C:\users\brock\appdata\roaming\beammp launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]

FirewallRules: [TCP Query User{3AD366D5-D853-4C23-BFEB-EEDC6D2AF96C}Z:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) Z:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)

FirewallRules: [UDP Query User{18629224-B659-4BAF-8C93-B3502C649698}Z:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) Z:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)

FirewallRules: [{4208019B-E071-48F1-A1CF-7A7BB4BA9472}] => (Block) Z:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)

FirewallRules: [{0DD3D590-09B4-4354-9647-AC9A582EDE48}] => (Block) Z:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)

FirewallRules: [TCP Query User{7FE30091-EEB2-497D-9DAF-2BF50385C34C}C:\users\brock\desktop\beammp\beammp-server.exe] => (Allow) C:\users\brock\desktop\beammp\beammp-server.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]

FirewallRules: [UDP Query User{D9499774-E518-4A66-BD22-F419E1B89672}C:\users\brock\desktop\beammp\beammp-server.exe] => (Allow) C:\users\brock\desktop\beammp\beammp-server.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]

FirewallRules: [{AB0DD755-07E2-4C2D-B0CB-D9145F61522D}] => (Block) C:\users\brock\desktop\beammp\beammp-server.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]

FirewallRules: [{2A04C563-0B01-4390-9AC9-596D052A270F}] => (Block) C:\users\brock\desktop\beammp\beammp-server.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]

FirewallRules: [TCP Query User{A5C4E702-DA0F-42CF-B980-53071E7ACE21}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe => No File

FirewallRules: [UDP Query User{BB82B595-A73E-4418-A00B-0FE5A1D117E0}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe => No File

FirewallRules: [TCP Query User{1E1EF108-DDDA-4594-B124-AE1890CDF2A2}Z:\oculus\software\software\downpour-interactive-llc-onward\onward.exe] => (Block) Z:\oculus\software\software\downpour-interactive-llc-onward\onward.exe (Dante Buckley -> ) [File not signed]

FirewallRules: [UDP Query User{EFF88D7F-B867-4CA6-AD38-E63C0FCF359B}Z:\oculus\software\software\downpour-interactive-llc-onward\onward.exe] => (Block) Z:\oculus\software\software\downpour-interactive-llc-onward\onward.exe (Dante Buckley -> ) [File not signed]

FirewallRules: [TCP Query User{25D0C34B-86E2-4E26-B9DC-DE07C6491B79}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe => No File

FirewallRules: [UDP Query User{895143FB-5023-4A41-AFD3-FB4B37C893E8}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe => No File

FirewallRules: [{80116EF0-278A-4852-97BF-53DC5F3ABFDA}] => (Block) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe => No File

FirewallRules: [{56282C95-D2AD-442D-9744-5C93BE63D3D1}] => (Block) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe => No File

FirewallRules: [TCP Query User{F32FCB17-90A1-49C7-8CF9-74D551D14640}Z:\failguys\fallguys\fallguys_client_game.exe] => (Block) Z:\failguys\fallguys\fallguys_client_game.exe => No File

FirewallRules: [UDP Query User{8D29D99B-7788-4963-B599-50C06E7153F1}Z:\failguys\fallguys\fallguys_client_game.exe] => (Block) Z:\failguys\fallguys\fallguys_client_game.exe => No File

FirewallRules: [{45C69703-1154-48E1-8146-6D7539DC7332}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)

FirewallRules: [{D6A127CF-194C-4CF3-9BCF-0B71FC02D13A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)

FirewallRules: [TCP Query User{893644CA-458B-457F-8229-418C4074F1C4}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File

FirewallRules: [UDP Query User{CC3C15E5-2913-4C9D-BDE3-13DDD4FABB61}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File

FirewallRules: [{605C6109-D221-405F-BC1A-1FF909FD03B6}] => (Block) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File

FirewallRules: [{C75EA62B-26A0-4CDD-939F-B61104EC8A1C}] => (Block) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File

FirewallRules: [TCP Query User{3C36ABFB-4BD8-4FAB-B2C7-1B8CF1BC36BF}Z:\program files\epic games\killingfloor2\binaries\win64\kfgame.exe] => (Allow) Z:\program files\epic games\killingfloor2\binaries\win64\kfgame.exe => No File

FirewallRules: [UDP Query User{E1E72940-A6C5-4CDC-86B1-486AB70D1CA0}Z:\program files\epic games\killingfloor2\binaries\win64\kfgame.exe] => (Allow) Z:\program files\epic games\killingfloor2\binaries\win64\kfgame.exe => No File

FirewallRules: [{ECCC6998-EB67-44F4-87D3-79A3FFF05A0D}] => (Block) Z:\program files\epic games\killingfloor2\binaries\win64\kfgame.exe => No File

FirewallRules: [{B7DB9DDE-1359-40C1-9431-9325B28377EB}] => (Block) Z:\program files\epic games\killingfloor2\binaries\win64\kfgame.exe => No File

FirewallRules: [{4A19EEC5-79FB-48F3-BE61-31BA29156B91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Teardown\teardown.exe () [File not signed]

FirewallRules: [{0C540786-052F-4125-A511-EC3BADFB922E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Teardown\teardown.exe () [File not signed]

FirewallRules: [{ED48B361-9EA0-41AA-A2DC-576DED4092EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brick Rigs\BrickRigs.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{C592DDE9-47AE-4634-85C6-3998337D0C9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brick Rigs\BrickRigs.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [TCP Query User{2D3BA93E-A6BA-4507-B2FB-E3134A88C9A4}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Block) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe => No File

FirewallRules: [UDP Query User{C8A60C35-FDEA-4AA2-8699-9CC7AF48AB78}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Block) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe => No File

FirewallRules: [TCP Query User{402CADBC-AB15-4294-8BDF-FF31DFAF7529}C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe] => (Allow) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed]

FirewallRules: [UDP Query User{8CDF794B-6FC2-4924-AFFF-03FCA29E9AA3}C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe] => (Allow) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed]

FirewallRules: [{688DEEB2-CC2E-4D79-AEDD-83B380D21A69}] => (Block) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed]

FirewallRules: [{EF15DC26-00E5-47BD-BAB4-FADE7DBC52F1}] => (Block) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed]

FirewallRules: [TCP Query User{0D200788-003B-40A5-8072-10126C6ED4AC}Z:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) Z:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [UDP Query User{E05BCB19-7A1C-4AE4-BE93-BFAC38C81320}Z:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) Z:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [{EC207D6E-8C3B-4823-8A34-72F65C2DD9FE}] => (Block) Z:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [{0C67F079-FC1B-40D9-973A-657DDA84EEF9}] => (Block) Z:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [TCP Query User{6F447C2D-4094-4C10-8095-D204F1B167BD}Z:\call of duty vanguard\vanguard.exe] => (Allow) Z:\call of duty vanguard\vanguard.exe => No File

FirewallRules: [UDP Query User{60441C9E-97CC-4B76-BDDF-C9BA2BDD96E3}Z:\call of duty vanguard\vanguard.exe] => (Allow) Z:\call of duty vanguard\vanguard.exe => No File

FirewallRules: [{AC289DF0-B97B-49FF-88F8-67D61A566B19}] => (Block) Z:\call of duty vanguard\vanguard.exe => No File

FirewallRules: [{690E3689-DA8F-4BF9-81C8-4B920F406D7F}] => (Block) Z:\call of duty vanguard\vanguard.exe => No File

FirewallRules: [TCP Query User{F6BB6C07-C846-46B6-BBD2-EF0BAD63D390}Z:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) Z:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe => No File

FirewallRules: [UDP Query User{ED88C6FC-EDBF-4187-B651-DEE14E357FA6}Z:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) Z:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe => No File

FirewallRules: [{99B92BB9-90A6-4395-9F09-834B6767D83D}] => (Block) Z:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe => No File

FirewallRules: [{4D08875B-014F-474A-915E-E0F4946DB484}] => (Block) Z:\steamlibrary\steamapps\common\conan exiles\conansandbox\binaries\win64\conansandbox.exe => No File

FirewallRules: [{B08A43C5-BFF0-480A-954F-2507DFC2AC18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Whos Your Daddy\Remake\WhosYourDaddy.exe => No File

FirewallRules: [{23DAC051-9D3F-4E1C-9964-448E9A7EC1D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Whos Your Daddy\Remake\WhosYourDaddy.exe => No File

FirewallRules: [{D2C6DCA6-F0DB-418D-A4D6-2CD6421A701C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Whos Your Daddy\Classic\WhosYourDaddy.exe => No File

FirewallRules: [{66552326-6B0B-4AA5-87CD-307B75C17B29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Whos Your Daddy\Classic\WhosYourDaddy.exe => No File

FirewallRules: [TCP Query User{3A2C97B3-4D35-4677-93FF-F09F38CE81F7}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File

FirewallRules: [UDP Query User{8B9F1DEE-D982-4359-A62B-C337882618BA}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File

FirewallRules: [{ABF9F945-9CF1-4E6D-92DE-253FC244146F}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File

FirewallRules: [{8E4CB2DE-A958-4287-B5F1-5F384FCED393}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File

FirewallRules: [TCP Query User{C83630C7-4D8F-4DC0-B70A-D9D6D4ECF35A}C:\program files (x86)\steam\steamapps\common\pavlovvr\pavlov\binaries\win64\pavlov-win64-shipping.exe] => (Block) C:\program files (x86)\steam\steamapps\common\pavlovvr\pavlov\binaries\win64\pavlov-win64-shipping.exe => No File

FirewallRules: [UDP Query User{28095F39-BC6E-4AB6-B134-94A2C2BC1A83}C:\program files (x86)\steam\steamapps\common\pavlovvr\pavlov\binaries\win64\pavlov-win64-shipping.exe] => (Block) C:\program files (x86)\steam\steamapps\common\pavlovvr\pavlov\binaries\win64\pavlov-win64-shipping.exe => No File

FirewallRules: [TCP Query User{4459BF41-485D-4452-8CB7-86F470FECB4D}Z:\steamlibrary\steamapps\common\project wingman\projectwingman\binaries\win64\projectwingman-win64-shipping.exe] => (Allow) Z:\steamlibrary\steamapps\common\project wingman\projectwingman\binaries\win64\projectwingman-win64-shipping.exe => No File

FirewallRules: [UDP Query User{977E605B-4C29-43B3-92AB-CF0288EF1829}Z:\steamlibrary\steamapps\common\project wingman\projectwingman\binaries\win64\projectwingman-win64-shipping.exe] => (Allow) Z:\steamlibrary\steamapps\common\project wingman\projectwingman\binaries\win64\projectwingman-win64-shipping.exe => No File

FirewallRules: [{ED8018F8-E9FA-4BD6-AED8-2F89DD8F5AD8}] => (Block) Z:\steamlibrary\steamapps\common\project wingman\projectwingman\binaries\win64\projectwingman-win64-shipping.exe => No File

FirewallRules: [{221A9EA6-6BF5-4485-89B2-D35D7E5D27E2}] => (Block) Z:\steamlibrary\steamapps\common\project wingman\projectwingman\binaries\win64\projectwingman-win64-shipping.exe => No File

FirewallRules: [{7D64E574-FFD8-4A2E-A1F8-0C438CE1B061}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma Reforger\ArmaReforger_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)

FirewallRules: [{437898E2-874B-467D-B290-1662AF4E73FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma Reforger\ArmaReforger_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)

FirewallRules: [{99801264-78CB-468D-B91A-718521B7DF6C}] => (Allow) Z:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)

FirewallRules: [{FDF7D08C-1E40-46C9-9BD5-0CEBEBE503CD}] => (Allow) Z:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)

FirewallRules: [TCP Query User{D8F88AF5-F2F9-4EE9-8BC0-3A5A4DE2270C}C:\program files (x86)\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File

FirewallRules: [UDP Query User{A2D63496-93C3-45CE-950B-EBFD4D8C89CD}C:\program files (x86)\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File

FirewallRules: [{5C9276B5-1D90-4B81-AFE0-212F216012B0}] => (Block) C:\program files (x86)\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File

FirewallRules: [{33DC9202-3EB0-4A03-8F96-3EB6A34B869D}] => (Block) C:\program files (x86)\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File

FirewallRules: [{E90955B5-B1DA-480A-890A-7FECB0CF674D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBit Remastered Playtest\BattleBitEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)

FirewallRules: [{0B03392E-8CED-4722-B4AD-0397E7862AA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBit Remastered Playtest\BattleBitEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)

FirewallRules: [{E04AB6A0-0FC3-4E17-900A-DFB11218CD24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBit Remastered Playtest\EACRepair.exe () [File not signed]

FirewallRules: [{37597836-E458-490E-BDB7-37FA18083EBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBit Remastered Playtest\EACRepair.exe () [File not signed]

FirewallRules: [{3706E804-D285-43D6-BF5D-AEDE677A7EF8}] => (Allow) Z:\SteamLibrary\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)

FirewallRules: [{016FE610-EB8F-449A-B003-546FF78E3F32}] => (Allow) Z:\SteamLibrary\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> Epic Games, Inc.)

FirewallRules: [{FF69F00F-65C9-4992-8704-DC239B6826E9}] => (Allow) Z:\SteamLibrary\steamapps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)

FirewallRules: [{F70E0EAB-2F2B-4D8F-B216-4E7067A8073E}] => (Allow) Z:\SteamLibrary\steamapps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)

FirewallRules: [TCP Query User{E8B81472-6E73-40FD-9B7C-90982793BE8F}Z:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Block) Z:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)

FirewallRules: [UDP Query User{613A1B50-37AA-49E2-AA78-E192D2FF2E88}Z:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Block) Z:\steamlibrary\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)

FirewallRules: [{C22485CF-4ED7-4EA2-BDB6-47999095E7F3}] => (Allow) Z:\SteamLibrary\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)

FirewallRules: [{582188FB-E62B-42B3-A957-DAC1FB9E0D18}] => (Allow) Z:\SteamLibrary\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)

FirewallRules: [{3FA9976C-C14F-441A-A59D-2B941CEEF9E2}] => (Allow) Z:\SteamLibrary\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> )

FirewallRules: [{A7F7D82C-6B9A-4225-95B0-7D01838B9120}] => (Allow) Z:\SteamLibrary\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> )

FirewallRules: [{B10F36BB-091C-4BA2-9D2B-B340C165ABA1}] => (Allow) Z:\SteamLibrary\steamapps\common\POLYGON\POLYGON.exe (EasyAntiCheat Oy -> Epic Games, Inc.)

FirewallRules: [{E71A8580-3C41-468A-A248-3FA86971D678}] => (Allow) Z:\SteamLibrary\steamapps\common\POLYGON\POLYGON.exe (EasyAntiCheat Oy -> Epic Games, Inc.)

FirewallRules: [{28AE2629-F9E6-4CE4-B6FF-A2F8C1DE592B}] => (Allow) C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe (Cloudflare, Inc. -> )

FirewallRules: [TCP Query User{6221A1E0-1266-49F5-B7A3-1E95CA108B14}C:\program files (x86)\gog galaxy\games\world in conflict - complete edition\wic.exe] => (Allow) C:\program files (x86)\gog galaxy\games\world in conflict - complete edition\wic.exe (Massive Entertainment -> Massive Entertainment) [File not signed]

FirewallRules: [UDP Query User{C12443E5-A4D1-40F4-9531-53AE7491A819}C:\program files (x86)\gog galaxy\games\world in conflict - complete edition\wic.exe] => (Allow) C:\program files (x86)\gog galaxy\games\world in conflict - complete edition\wic.exe (Massive Entertainment -> Massive Entertainment) [File not signed]

FirewallRules: [{F1053831-E97A-414F-A464-1F88DD7708B6}] => (Block) C:\program files (x86)\gog galaxy\games\world in conflict - complete edition\wic.exe (Massive Entertainment -> Massive Entertainment) [File not signed]

FirewallRules: [{1289BDC5-131A-4046-B593-A49890A2E401}] => (Block) C:\program files (x86)\gog galaxy\games\world in conflict - complete edition\wic.exe (Massive Entertainment -> Massive Entertainment) [File not signed]

FirewallRules: [{144B4963-096A-4BD1-95AB-93208EF72E05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBit Remastered Playtest\BattleBit.exe () [File not signed]

FirewallRules: [{F9BADB2D-C468-4108-8907-534E1B18A924}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBit Remastered Playtest\BattleBit.exe () [File not signed]

FirewallRules: [{C77B117A-4262-4FC2-AF90-7E38BF8F2C10}] => (Allow) LPort=3004

FirewallRules: [{1319502C-3C3A-4F64-9772-E0A303D533E3}] => (Allow) LPort=52999

FirewallRules: [{B924E76F-CE64-433B-8300-D0F1BBCA9823}] => (Allow) LPort=52999

FirewallRules: [{10CA8104-A413-4EC4-BFC3-307DE0E58924}] => (Allow) LPort=22996

FirewallRules: [TCP Query User{9448981B-6BA6-4D93-941C-A910AAD3144F}Z:\steamlibrary\steamapps\common\ready or not\readyornot\binaries\win64\readyornot-win64-shipping.exe] => (Allow) Z:\steamlibrary\steamapps\common\ready or not\readyornot\binaries\win64\readyornot-win64-shipping.exe => No File

FirewallRules: [UDP Query User{F47D89AA-BB01-45EB-BD1F-539B2868DAFE}Z:\steamlibrary\steamapps\common\ready or not\readyornot\binaries\win64\readyornot-win64-shipping.exe] => (Allow) Z:\steamlibrary\steamapps\common\ready or not\readyornot\binaries\win64\readyornot-win64-shipping.exe => No File

FirewallRules: [{D2D9F7B7-1CE4-48E8-81ED-FB48DC6040F7}] => (Allow) Z:\SteamLibrary\steamapps\common\Men of War\mow.exe ("Best Way" Corp) [File not signed]

FirewallRules: [{8DE2A3E0-D453-4113-86A9-E5A5252AB766}] => (Allow) Z:\SteamLibrary\steamapps\common\Men of War\mow.exe ("Best Way" Corp) [File not signed]

FirewallRules: [{618F544F-814D-4F71-9D91-976B91265B2C}] => (Allow) Z:\SteamLibrary\steamapps\common\Men of War\mow_editor.exe ("Best Way" Corp) [File not signed]

FirewallRules: [{09B8CF0D-87F4-4450-BE68-29AC230F9198}] => (Allow) Z:\SteamLibrary\steamapps\common\Men of War\mow_editor.exe ("Best Way" Corp) [File not signed]

FirewallRules: [TCP Query User{1EE46B37-8716-4967-ADC3-1F8B05A71A1E}Z:\steamlibrary\steamapps\common\ground branch\groundbranch\binaries\win64\groundbranch-win64-shipping.exe] => (Allow) Z:\steamlibrary\steamapps\common\ground branch\groundbranch\binaries\win64\groundbranch-win64-shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [UDP Query User{2E14235F-5BAE-4A8D-9127-F42327DAB8A1}Z:\steamlibrary\steamapps\common\ground branch\groundbranch\binaries\win64\groundbranch-win64-shipping.exe] => (Allow) Z:\steamlibrary\steamapps\common\ground branch\groundbranch\binaries\win64\groundbranch-win64-shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{8980FE76-E059-403E-BD7C-7D4F8CF0E33A}] => (Block) Z:\steamlibrary\steamapps\common\ground branch\groundbranch\binaries\win64\groundbranch-win64-shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{CDC46718-7922-435E-95CB-8EA815D4A5D1}] => (Block) Z:\steamlibrary\steamapps\common\ground branch\groundbranch\binaries\win64\groundbranch-win64-shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{D43BFBB0-A6BE-4324-92DA-C46D55DDA54B}] => (Allow) Z:\SteamLibrary\steamapps\common\Lost Light\launcher.exe (NetEase) [File not signed]

FirewallRules: [{2632A967-98DC-439C-A70D-52F44E28652B}] => (Allow) Z:\SteamLibrary\steamapps\common\Lost Light\launcher.exe (NetEase) [File not signed]

FirewallRules: [{195631EA-06C2-4492-B0A4-E0DB57DAE16F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe => No File

FirewallRules: [{DFE0BBDC-74A0-4A1D-BF09-4D41C87D3D30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe => No File

FirewallRules: [{A0A8D7A1-CFC5-4636-92E3-A7C2F4CD3A12}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe => No File

FirewallRules: [{7B7C7AEC-C1AC-46EE-A8C1-2C8C757C66B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe => No File

FirewallRules: [TCP Query User{18E82648-C54C-48F2-8590-6D2B8DF923BC}Z:\steamlibrary\steamapps\common\lost light\engine\binaries\win64\game_x64r.exe] => (Block) Z:\steamlibrary\steamapps\common\lost light\engine\binaries\win64\game_x64r.exe () [File not signed]

FirewallRules: [UDP Query User{7DA71F83-2709-426C-BAA3-135F52B9A1F4}Z:\steamlibrary\steamapps\common\lost light\engine\binaries\win64\game_x64r.exe] => (Block) Z:\steamlibrary\steamapps\common\lost light\engine\binaries\win64\game_x64r.exe () [File not signed]

FirewallRules: [TCP Query User{CBECD776-6908-4673-AE4F-CB103EEBD3E0}Z:\steamlibrary\steamapps\common\lost light\engine\binaries\win64\cc\ccmini.exe] => (Block) Z:\steamlibrary\steamapps\common\lost light\engine\binaries\win64\cc\ccmini.exe (NetEase(Hangzhou) Network Co. Ltd. -> 网易公司)

FirewallRules: [UDP Query User{C78FC7C5-FA43-47DE-A3F5-899E3385561A}Z:\steamlibrary\steamapps\common\lost light\engine\binaries\win64\cc\ccmini.exe] => (Block) Z:\steamlibrary\steamapps\common\lost light\engine\binaries\win64\cc\ccmini.exe (NetEase(Hangzhou) Network Co. Ltd. -> 网易公司)

FirewallRules: [{15866560-C1D8-4926-B573-E263A9F61D11}] => (Allow) Z:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)

FirewallRules: [{6EF6C408-D533-44C2-AD68-04454B2CE538}] => (Allow) Z:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)

FirewallRules: [{F7769D0D-6AF4-4331-A5BA-E1155E80E3CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Easy Red 2\Easy Red 2.exe () [File not signed]

FirewallRules: [{86644596-284D-4ECE-9737-99DD4E330D69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Easy Red 2\Easy Red 2.exe () [File not signed]

FirewallRules: [TCP Query User{2A8BB812-3CC0-4C20-8B6A-5246EC262784}Z:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe] => (Allow) Z:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)

FirewallRules: [UDP Query User{3862DB1E-D834-46D3-AC77-4ED4CC5582E2}Z:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe] => (Allow) Z:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)

FirewallRules: [{BCE521C5-9217-4F53-B973-1E87B88C1F33}] => (Block) Z:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)

FirewallRules: [{4771E8F2-3509-44A8-8744-5F667BF00F2B}] => (Block) Z:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)

FirewallRules: [{7CE49AA6-BBC8-4096-84A5-86BAB2E859D5}] => (Allow) C:\Program Files\usbipd-win\usbipd.exe (Open Source Developer, Frans van Dorsselaer -> Frans van Dorsselaer)

FirewallRules: [{74BF30B0-8E5B-4DAD-A466-8EBA5E78CCAA}] => (Allow) Z:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)

FirewallRules: [{06DE49F5-7B51-423A-B1E8-A9B087CEEE6A}] => (Allow) Z:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)

FirewallRules: [TCP Query User{DD4F7B71-3A53-45E9-9663-3B1D5F2CC529}Z:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Block) Z:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)

FirewallRules: [UDP Query User{FD4A8769-E966-482D-94F3-F3ECE47A2AA3}Z:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Block) Z:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)

FirewallRules: [{66F5D59C-25A5-4A74-AB5E-9D3E1D407684}] => (Allow) Z:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [File not signed]

FirewallRules: [{FE187418-5C2E-4052-AA64-6A6AB653F0DE}] => (Allow) Z:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [File not signed]

FirewallRules: [{C0499CD0-4239-4D59-9411-810ED9B50DF2}] => (Allow) Z:\SteamLibrary\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe () [File not signed]

(Video) How to remove computer virus, malware, spyware, full computer clean and maintenance 2021

FirewallRules: [{37D689B0-16F0-4681-8C1C-67FCDCDE8B80}] => (Allow) Z:\SteamLibrary\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe () [File not signed]

FirewallRules: [TCP Query User{E9B4E02C-0ADC-4DD0-B0DE-C3C5C16627D3}Z:\call of duty\_beta_\cod.exe] => (Allow) Z:\call of duty\_beta_\cod.exe (Activision Publishing Inc -> Activision)

FirewallRules: [UDP Query User{41E4239F-A23D-475B-A43E-8A14552D42A4}Z:\call of duty\_beta_\cod.exe] => (Allow) Z:\call of duty\_beta_\cod.exe (Activision Publishing Inc -> Activision)

FirewallRules: [{F29D9DF3-7B40-4311-AF87-D0EF9FFB1DD9}] => (Allow) Z:\SteamLibrary\steamapps\common\Land of the Vikings Demo\VikingOyunu.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{42BF3FC9-52ED-4B01-98A1-34181E20B003}] => (Allow) Z:\SteamLibrary\steamapps\common\Land of the Vikings Demo\VikingOyunu.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [TCP Query User{1F51F09E-E0FA-4EB0-9EF8-04B745A44030}C:\program files\windowsapps\arduinollc.arduinoide_1.8.57.0_x86__mdqgnx93n4wtt\java\bin\javaw.exe] => (Block) C:\program files\windowsapps\arduinollc.arduinoide_1.8.57.0_x86__mdqgnx93n4wtt\java\bin\javaw.exe

FirewallRules: [UDP Query User{C6603BD0-1DEB-497B-B25F-92D339D58870}C:\program files\windowsapps\arduinollc.arduinoide_1.8.57.0_x86__mdqgnx93n4wtt\java\bin\javaw.exe] => (Block) C:\program files\windowsapps\arduinollc.arduinoide_1.8.57.0_x86__mdqgnx93n4wtt\java\bin\javaw.exe

FirewallRules: [TCP Query User{61C220C8-DCC3-4407-BB11-9B21682B5D2E}C:\program files\ultimaker cura 5.1.1\ultimaker-cura.exe] => (Allow) C:\program files\ultimaker cura 5.1.1\ultimaker-cura.exe () [File not signed]

FirewallRules: [UDP Query User{1A2DF562-F55E-4B1A-BE11-11EA7E3D631C}C:\program files\ultimaker cura 5.1.1\ultimaker-cura.exe] => (Allow) C:\program files\ultimaker cura 5.1.1\ultimaker-cura.exe () [File not signed]

FirewallRules: [{BFFA5A7D-1694-4FC2-A738-DB38BBEABD16}] => (Block) C:\program files\ultimaker cura 5.1.1\ultimaker-cura.exe () [File not signed]

FirewallRules: [{1E5B56B9-250D-47C7-9C00-3330C631706F}] => (Block) C:\program files\ultimaker cura 5.1.1\ultimaker-cura.exe () [File not signed]

FirewallRules: [{F01301EE-877B-48C9-B876-6ACFAA459339}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.53\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{F1D124D4-EB2C-47D6-8278-90C53B8B01CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DCSWorld\bin\DCS.exe (Eagle Dynamics SA -> Eagle Dynamics)

FirewallRules: [{96D255CC-CC17-4476-92A7-5610B1349553}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DCSWorld\bin\DCS.exe (Eagle Dynamics SA -> Eagle Dynamics)

FirewallRules: [{78F7ADCD-BEB3-4463-9213-DF4D31403436}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> )

FirewallRules: [{C763337A-3355-4987-B537-776AADF7C892}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> )

FirewallRules: [{4A852473-322B-42C1-80D3-A3E22744564F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)

FirewallRules: [{559EDFB0-AE8A-41C5-B6A5-B633C5AF47F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)

==================== Restore Points =========================

30-09-2022 03:46:34 Revo Uninstaller's restore point - Windows Subsystem for Android™

==================== Faulty Device Manager Devices ============

Name: Realtek PCIe GbE Family Controller #2

Description: Realtek PCIe GbE Family Controller

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Realtek

Service: rt640x64

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bluetooth Device (Personal Area Network)

Description: Bluetooth Device (Personal Area Network)

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: BthPan

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: ========================

Application errors:

==================

Error: (09/30/2022 03:48:46 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: Virustotal Scan.exe, version: 1.0.0.0, time stamp: 0xebfa6ecc

Faulting module name: KERNELBASE.dll, version: 10.0.22000.978, time stamp: 0x8803a2c1

Exception code: 0x8007000e

Fault offset: 0x00140b42

Faulting process id: 0x1664

Faulting application start time: 0x01d8d4b9c2b7d1ec

Faulting application path: C:\Program Files\WindowsApps\56424Roast247.WinAntivirus_1.0.0.0_neutral__tvnndvqfdvvsa\Virustotal Scan\Virustotal Scan.exe

Faulting module path: C:\Windows\System32\KERNELBASE.dll

Report Id: d5f48127-4c53-4aa1-a405-a4e93a7d18fb

Faulting package full name: 56424Roast247.WinAntivirus_1.0.0.0_neutral__tvnndvqfdvvsa

Faulting package-relative application ID: App

Error: (09/30/2022 03:48:45 AM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Application: Virustotal Scan.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: exception code 8007000e, exception address 74F00B42

Stack:

at System.Windows.Forms.UnsafeNativeMethods.DispatchMessageW(MSG ByRef)

at System.Windows.Forms.Application+ComponentManager.System.Windows.Forms.UnsafeNativeMethods.IMsoComponentManager.FPushMessageLoop(IntPtr, Int32, Int32)

at System.Windows.Forms.Application+ThreadContext.RunMessageLoopInner(Int32, System.Windows.Forms.ApplicationContext)

at System.Windows.Forms.Application+ThreadContext.RunMessageLoop(Int32, System.Windows.Forms.ApplicationContext)

at System.Windows.Forms.Application.Run(System.Windows.Forms.Form)

at Virustotal_Scan.Program.Main()

Error: (09/30/2022 03:46:34 AM) (Source: VSS) (EventID: 8194) (User: )

Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.

.

This is often caused by incorrect security settings in either the writer or requestor process.

Operation:

Gathering Writer Data

Context:

Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}

Writer Name: System Writer

Writer Instance ID: {475f2d44-0500-4de2-9799-b4ec78a85f61}

Error: (09/30/2022 03:41:36 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: AWCC.exe, version: 5.5.14.0, time stamp: 0x630896a2

Faulting module name: Windows.UI.Xaml.dll, version: 10.0.22000.978, time stamp: 0x82655b66

Exception code: 0xc000027b

Fault offset: 0x0000000000834c10

Faulting process id: 0x1404

Faulting application start time: 0x01d8d38db569d769

Faulting application path: C:\Program Files\WindowsApps\DellInc.AlienwareCommandCenter_5.5.14.0_x64__htrsf667h5kn2\AWCC.exe

Faulting module path: C:\Windows\System32\Windows.UI.Xaml.dll

Report Id: 3578c75b-3c4a-4792-8f35-0f662afe1fb0

Faulting package full name: DellInc.AlienwareCommandCenter_5.5.14.0_x64__htrsf667h5kn2

Faulting package-relative application ID: App

Error: (09/30/2022 03:11:44 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: DllHost.exe, version: 10.0.22000.1, time stamp: 0x93f44fbf

Faulting module name: KERNELBASE.dll, version: 10.0.22000.918, time stamp: 0xb42fa627

Exception code: 0xc0000005

Fault offset: 0x000000000002ed20

Faulting process id: 0x4ddc

Faulting application start time: 0x01d8d4b50a907c23

Faulting application path: C:\Windows\system32\DllHost.exe

Faulting module path: C:\Windows\System32\KERNELBASE.dll

Report Id: 0deb7e5e-97cb-457d-a2e8-80899e42e18e

Faulting package full name: Microsoft.PowerToys.ImageResizerContextMenu_1.0.0.0_neutral__8wekyb3d8bbwe

Faulting package-relative application ID: ImageResizerContextMenu

Error: (09/30/2022 02:35:42 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: EAConnect_microsoft.exe, version: 12.11.0.5268, time stamp: 0x632e2b83

Faulting module name: ntdll.dll, version: 10.0.22000.918, time stamp: 0x57b668f2

Exception code: 0xc0000374

Fault offset: 0x000000000010c509

Faulting process id: 0x4ac8

Faulting application start time: 0x01d8d48ba0ebf2a1

Faulting application path: C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe

Faulting module path: C:\Windows\SYSTEM32\ntdll.dll

Report Id: 6b88c8db-ca25-4516-92c5-e02256cf5079

Faulting package full name:

Faulting package-relative application ID:

Error: (09/28/2022 03:55:44 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: AWCC.exe, version: 5.5.14.0, time stamp: 0x630896a2

Faulting module name: twinapi.appcore.dll, version: 10.0.22000.593, time stamp: 0xa5a9468c

Exception code: 0xc000027b

Fault offset: 0x000000000010a594

Faulting process id: 0x2bd8

Faulting application start time: 0x01d8d38d70f45424

Faulting application path: C:\Program Files\WindowsApps\DellInc.AlienwareCommandCenter_5.5.14.0_x64__htrsf667h5kn2\AWCC.exe

Faulting module path: C:\Windows\SYSTEM32\twinapi.appcore.dll

Report Id: 549546dc-de69-4af0-aa57-d10dcb8c6ae8

Faulting package full name: DellInc.AlienwareCommandCenter_5.5.14.0_x64__htrsf667h5kn2

Faulting package-relative application ID: App

Error: (09/28/2022 03:55:43 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: AWCC.exe, version: 5.5.14.0, time stamp: 0x630896a2

Faulting module name: twinapi.appcore.dll, version: 10.0.22000.593, time stamp: 0xa5a9468c

Exception code: 0xc000027b

Fault offset: 0x000000000010a594

Faulting process id: 0x3078

Faulting application start time: 0x01d8d38d6c95ebdb

Faulting application path: C:\Program Files\WindowsApps\DellInc.AlienwareCommandCenter_5.5.14.0_x64__htrsf667h5kn2\AWCC.exe

Faulting module path: C:\Windows\SYSTEM32\twinapi.appcore.dll

Report Id: 773b85f0-ac95-4f10-a07e-abfab9ff1218

Faulting package full name: DellInc.AlienwareCommandCenter_5.5.14.0_x64__htrsf667h5kn2

Faulting package-relative application ID: App

System errors:

=============

Error: (09/30/2022 03:41:33 AM) (Source: Microsoft-Windows-Hyper-V-VmSwitch) (EventID: 32) (User: NT AUTHORITY)

Description: Failed to connect NIC 1F9AC8B5-45C3-458F-8436-09AB5824D6AC--71423E2C-0AEA-4097-A92D-171A4196A710 (Friendly Name: ) to port 555EF8F2-A20F-4495-AB91-E1DF6F63DE4A (Friendly Name: ) on switch 2EFA18FC-6C14-43E4-AA9E-6674EE378C3A (Friendly Name: ), status = 3221225524. UniqueEvent = 80.

Error: (09/30/2022 03:41:33 AM) (Source: NetBT) (EventID: 4311) (User: )

Description: Initialization failed because the driver device could not be created.

Use the string "00155DE4AD1D" to identify the interface for which initialization

failed. It represents the MAC address of the failed interface or the

Globally Unique Interface Identifier (GUID) if NetBT was unable to

map from GUID to MAC address. If neither the MAC address nor the GUID were

available, the string represents a cluster device name.

Error: (09/30/2022 03:41:33 AM) (Source: NetBT) (EventID: 4311) (User: )

Description: Initialization failed because the driver device could not be created.

Use the string "00155DE4AD1D" to identify the interface for which initialization

failed. It represents the MAC address of the failed interface or the

Globally Unique Interface Identifier (GUID) if NetBT was unable to

map from GUID to MAC address. If neither the MAC address nor the GUID were

available, the string represents a cluster device name.

Error: (09/30/2022 03:41:33 AM) (Source: NetBT) (EventID: 4311) (User: )

Description: Initialization failed because the driver device could not be created.

Use the string "00155DD330C9" to identify the interface for which initialization

failed. It represents the MAC address of the failed interface or the

Globally Unique Interface Identifier (GUID) if NetBT was unable to

map from GUID to MAC address. If neither the MAC address nor the GUID were

available, the string represents a cluster device name.

Error: (09/30/2022 03:41:33 AM) (Source: NetBT) (EventID: 4311) (User: )

Description: Initialization failed because the driver device could not be created.

Use the string "00155DD330C9" to identify the interface for which initialization

failed. It represents the MAC address of the failed interface or the

Globally Unique Interface Identifier (GUID) if NetBT was unable to

map from GUID to MAC address. If neither the MAC address nor the GUID were

available, the string represents a cluster device name.

Error: (09/30/2022 03:41:33 AM) (Source: NetBT) (EventID: 4311) (User: )

Description: Initialization failed because the driver device could not be created.

Use the string "00155DDB21D6" to identify the interface for which initialization

failed. It represents the MAC address of the failed interface or the

Globally Unique Interface Identifier (GUID) if NetBT was unable to

map from GUID to MAC address. If neither the MAC address nor the GUID were

available, the string represents a cluster device name.

Error: (09/30/2022 03:41:33 AM) (Source: NetBT) (EventID: 4311) (User: )

Description: Initialization failed because the driver device could not be created.

Use the string "00155DDB21D6" to identify the interface for which initialization

failed. It represents the MAC address of the failed interface or the

Globally Unique Interface Identifier (GUID) if NetBT was unable to

map from GUID to MAC address. If neither the MAC address nor the GUID were

available, the string represents a cluster device name.

Error: (09/30/2022 03:41:31 AM) (Source: NetBT) (EventID: 4311) (User: )

Description: Initialization failed because the driver device could not be created.

Use the string "2A02567370B8" to identify the interface for which initialization

failed. It represents the MAC address of the failed interface or the

Globally Unique Interface Identifier (GUID) if NetBT was unable to

map from GUID to MAC address. If neither the MAC address nor the GUID were

available, the string represents a cluster device name.

Windows Defender:

================

Date: 2022-09-28 14:00:56

Description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2022-09-27 02:36:27

Description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2022-09-24 01:45:43

Description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2022-09-23 09:39:40

Description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2022-09-21 02:13:25

Description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Event[0]

Date: 2022-09-25 17:22:10

Description:

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version:

Previous security intelligence Version: 1.375.995.0

Update Source: Microsoft Update Server

Security intelligence Type: AntiVirus

Update Type: Full

Current Engine Version:

Previous Engine Version: 1.1.19600.3

Error code: 0x8024402c

Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2022-09-24 15:05:10

Description:

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version:

Previous security intelligence Version: 1.375.905.0

Update Source: Microsoft Update Server

Security intelligence Type: AntiVirus

Update Type: Full

Current Engine Version:

Previous Engine Version: 1.1.19600.3

Error code: 0x8024402c

Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

CodeIntegrity:

===============

Date: 2022-09-19 22:31:50

Description:

Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume3\Windows\Temp\yPiJpsq9.sys that is not compatible with hypervisor enforcement. Failure bitmap 0x28. Status 0xC000004E.

Date: 2022-09-16 02:14:23

Description:

Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume3\Windows\Temp\LMAM86TY.sys that is not compatible with hypervisor enforcement. Failure bitmap 0x28. Status 0xC000004E.

Date: 2022-09-14 17:55:17

Description:

Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume3\Windows\Temp\5ZcGEemE.sys that is not compatible with hypervisor enforcement. Failure bitmap 0x28. Status 0xC000004E.

Date: 2022-09-12 16:00:24

Description:

Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume3\Windows\Temp\ZfOexuFN.sys that is not compatible with hypervisor enforcement. Failure bitmap 0x28. Status 0xC000004E.

Date: 2022-09-10 03:17:15

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\SteamLibrary\steamapps\downloading\107410\BattlEye\BEService.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2022-09-07 04:26:02

Description:

Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\fcon.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 4403 04/28/2022

Motherboard: ASUSTeK COMPUTER INC. PRIME X570-P

Processor: AMD Ryzen 5 5600X 6-Core Processor

Percentage of memory in use: 83%

Total physical RAM: 16298.97 MB

Available physical RAM: 2675.98 MB

Total Virtual: 35541.95 MB

Available Virtual: 11841.01 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.06 GB) (Free:24.4 GB) (Model: WDS500G3X0C-00SJG0) NTFS

Drive d: (Slow Spinner) (Fixed) (Total:931.51 GB) (Free:520.26 GB) (Model: WDC WD10EADS-00L5B1) NTFS

Drive z: () (Fixed) (Total:931.51 GB) (Free:18.61 GB) (Model: SanDisk Ultra 3D NVMe) NTFS

\\?\Volume{635c8a92-0bd8-48e9-8931-0454811eee24}\ () (Fixed) (Total:0.59 GB) (Free:0.08 GB) NTFS

\\?\Volume{cab7933d-560f-44bf-a855-137289d23ff0}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

(Video) How to Remove ANY Virus from Windows 2022 | NEW How to Remove ANY Virus from Windows 10 in ONE STEP

==================== End of Addition.txt =======================


Edited by hamluis, 30 September 2022 - 08:16 AM.
Deleted 4 duplicate topics - Hamluis.

FAQs

What should be used to remove malware from a computer? ›

How to remove a virus from a PC
  1. Download antivirus software. There are two main types of antivirus software that can detect and remove computer viruses and malware: real-time and on-demand. ...
  2. Run a virus scan. ...
  3. Delete or quarantine infected files. ...
  4. Restart your computer.
14 Mar 2022

How do I check for malware on my computer? ›

Open your Windows Security settings. Select Virus & threat protection > Scan options. Select Windows Defender Offline scan, and then select Scan now.

How do I remove a Trojan virus from my computer Windows 11? ›

STEP 1: Uninstall malicious programs from Windows 11
  1. Open Windows Settings. First, open Windows Settings by pressing Windows+I on your keyboard. ...
  2. Click on “Apps”, then select “Apps and Features“. ...
  3. Search for malicious programs and uninstall them. ...
  4. Follow the on-screen prompts to uninstall program.
10 Dec 2021

How do you know if your computer has a virus Windows 10? ›

Run a quick scan in Windows Security
  1. Select Start > Settings > Update & Security > Windows Security and then Virus & threat protection. Open Windows Security settings.
  2. Under Current threats, select Quick scan (or in early versions of Windows 10, under Threat history, select Scan now).

Can Trojan virus be removed? ›

Trojan viruses can be removed in various ways. If you know which software contains the malware, you can simply uninstall it. However, the most effective way to remove all traces of a Trojan virus is to install antivirus software capable of detecting and removing Trojans.

Why does my computer keep saying I have a virus? ›

How a Computer Gets a Virus. There are several ways a computer can get infected by a virus and most of them involve downloading – either intentionally or unintentionally – infected files. Pirated music or movies, photos, free games and toolbars are common culprits, as are phishing/spammy emails with attachments.

Will resetting PC remove Trojan? ›

For the most part yes, nearly all existing malware infects normal files on your PC, and a full operating system re-install will either replace those files (if they are Windows system files) or remove any existing “hooks” that was causing Windows to load third-party malicious files.

How can I remove virus from my computer without antivirus? ›

Stop the virus on your device without Antivirus

To do that, press Ctrl + Alt + Delete and open the task manager. Then, go to 'Processes' and check for any unfamiliar programs running. To confirm if it is a virus, search online. If confirmed, highlight it and press 'End Process' to stop it.

How do I remove a Trojan virus for free? ›

The best way to clean up a Trojan infection is to use Malwarebytes' free trojan scanner, and then consider Malwarebytes Premium for proactive protection against future Trojan infections. Malwarebytes Premium will initiate a scan for Trojans and then remove Trojans so they can't cause further damage.

How do I permanently turn off real time protection? ›

To permanently disable real-time protection:
  1. Open Local Group Policy Editor (type gpedit. msc in the search box)
  2. Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender Antivirus > Real-time Protection.
  3. Enable Turn off real-time protection.
  4. Restart the computer.
3 Jun 2020

How do you tell if a process is a virus? ›

3 Ways to Tell if the Exe of a Windows Process Is Safe
  1. Scan the EXE with an Antivirus. Perhaps one of the quickest ways to tell if a file is a virus is by scanning it with your antivirus. ...
  2. Scan the EXE With VirusTotal. Another way to find out if the EXE is legit is to scan it with VirusTotal. ...
  3. Check the Certificate.
22 Jan 2022

How do you check if you have a virus on your phone? ›

To run a virus scan on your Android phone, you'll need to download a mobile security software app . Most phones don't come with one installed. Android is an open-source platform, so there are many options for virus scanners, including McAfee Mobile Security.

What to do if you suspect your computer is infected? ›

If your PC has a virus, following these ten simple steps will help you to get rid of it:
  1. Step 1: Download and install a virus scanner. ...
  2. Step 2: Disconnect from internet. ...
  3. Step 3: Reboot your computer into safe mode. ...
  4. Step 4: Delete any temporary files. ...
  5. Step 5: Run a virus scan. ...
  6. Step 6: Delete or quarantine the virus.

How do I remove malware from my phone? ›

  1. Step 1: Make sure Google Play Protect is turned on. Open the Google Play Store app . ...
  2. Step 2: Check for Android device & security updates. Get the latest Android updates available for you. ...
  3. Step 3: Remove untrusted apps. ...
  4. Step 4: Do a Security Checkup.

How do I know if I have a Trojan virus? ›

Signs of a Trojan Virus. Slow computer. Blue screen of death. Strange pop-ups.

Can a Trojan virus access camera? ›

Beware of malicious files called Trojans that could give hackers access to your computer webcam without your knowledge. Just like the wooden horse of Greek mythology, a Trojan is a type of malware that is often disguised, in this case as legitimate software or program.

What does a Trojan virus do to your phone? ›

Trojan horse: A trojan horse on your cell phone will typically appear as a text message. From there, they'll send messages at a premium, often increasing your phone bill. Most recently, a banking trojan infiltrated Android devices and intercepted messages about personal financial information.

How can I find hidden antivirus software? ›

The status of your antivirus software is typically displayed in Windows Security Center. Open Security Center by clicking the Start button , clicking Control Panel, clicking Security, and then clicking Security Center. Click Malware protection.

What do fake virus alerts look like? ›

Fake virus warnings commonly appear on your screen as pop-ups warning you about some urgent malware threat and encouraging you to act immediately and download their product. Fake virus warnings can also appear as fake spyware warnings or fake system notifications.

Can you get a virus without downloading anything? ›

Yes, you can get a virus just from visiting a website. These days, it's very easy to be overconfident in our abilities to avoid computer viruses. After all, many of us were told that we simply had to avoid files and programs we didn't recognize.

Does a factory reset delete everything? ›

A factory data reset erases your data from the phone. While data stored in your Google Account can be restored, all apps and their data will be uninstalled. To be ready to restore your data, make sure that it's in your Google Account.

Will a factory reset remove spyware? ›

A factory reset will delete everything on your phone, including the spyware. Make sure you have a backup of your phone before you do this to prevent losing your photos, apps, and other data. You'll need to restore your phone to a backup from before you started experiencing the spyware issues.

Does resetting my PC delete everything? ›

This reset option will reinstall Windows operating system and keeps your personal files, such as photos, music, videos or personal files. However, it will remove apps and drivers you installed, and also removes the changes you made to the settings.

How do I remove malware manually? ›

How to Remove Malware From Your PC
  1. Step 1: Disconnect your PC from the Internet. ...
  2. Step 2: Enter safe mode. ...
  3. Step 3: Refrain from logging into accounts. ...
  4. Step 4: Delete temporary files. ...
  5. Step 5: Check your activity monitor. ...
  6. Step 6: Run a malware scanner. ...
  7. Step 7: Fix your web browser. ...
  8. Step 8: Clear your cache.
1 Aug 2019

Can a virus delete files? ›

A computer virus is a small software program that spreads from one computer to another and interferes with computer operation. A computer virus might corrupt or delete data on a computer, use an email program to spread the virus to other computers, or even delete everything on the hard disk.

Which antivirus is best free download? ›

Avira Free Security is the best free antivirus for Windows, with an impressive track record in tests performed by leading industry experts. It also includes a free VPN for private and secure browsing and built-in performance optimization tools to keep your system running fast and efficiently.

Does Norton remove Trojans? ›

Norton Antivirus can successfully detect and remove Trojan horses. By using LiveUpdate, administrators available can download to a computer the latest virus definition which can help the scan engine with needed information to find any existing and emerging threats on the system.

Can Avast Remove Trojan virus? ›

Trojans are disguised as harmless files, but start to wreak havoc once they sneak into your system. Thankfully, Avast's free antivirus is one of the fastest and most accurate Trojan scanners on the market. There's simply no better choice to remove trojans ASAP.

Can McAfee Remove Trojan virus? ›

Can McAfee remove Trojan viruses and malware? Yes, our experts can detect and remove Trojan viruses and malware by remotely accessing your PC while you watch. You can even ask them questions while they work.

How do I disable anti tampering? ›

In the search box on the taskbar, type Windows Security and then selct Windows Security in the list of results. In Windows Security, select Virus & threat protection and then under Virus & threat protection settings, select Manage settings. Change the Tamper Protection setting to On or Off.

What is disable anti spyware? ›

DisableAntiSpyware specifies whether to disable Microsoft Defender Antivirus. Microsoft Defender Antivirus is an application that can prevent, remove, and quarantine malicious software, including spyware.

Why can't I turn off my real-time protection? ›

Windows will not let you turn off basic built-in protection from Defender and Firewall, unless another is installed in it's place which should switch it off.

Can you get a virus from opening a text message? ›

Infected text messages sometimes steal the subject line from a message you've received from a friend, which of course increases the likelihood of your opening it -- but opening the message isn't enough to get infected.

What do viruses look like in Task Manager? ›

It is not possible to detect virus from task manager. There are several kind of virus. Virus, Trojan, rootkit, adware/puk etc. Some virus hide themselves from task manager.So, it doesn't appear in task manager.

How do I find virus files? ›

To scan your PC with Windows Defender
  1. Tap or click to open Windows Defender.
  2. Under Scan options, pick the type of scan you want to run: A Quick scan checks only the areas on your PC that malicious software is most likely to infect, and any apps currently running. ...
  3. Tap or click Scan now.

What do I dial to see if my phone has been hacked? ›

Use the code *#21# to see if hackers track your phone with malicious intent. You can also use this code to verify if your calls, messages, or other data are being diverted. It also shows your diverted information's status and the number to which the information is transferred.

Can you tell if your phone is hacked? ›

If you find apps you haven't downloaded, or calls, texts, and emails that you didn't send, that's a red flag. A hacker may have hijacked your phone to send premium-rate calls or messages or to spread malware to your contacts. Similarly, if you see spikes in your data usage, that could be a sign of a hack as well.

Does my phone have spyware? ›

The quickest and easiest way to check your phone for spyware is to scan it with an anti-spyware app. Apps like AVG and Anti Spy for Android and Certo for iPhone offer spyware scanning and removal capabilities. However, spyware scanners aren't completely reliable and it's possible they can miss new or advanced spyware.

› watch ›

Worried that your Android smartphone might have a virus? Jim explains how to check if your phone has been infected with a virus or malware, either by using A...
Head into your antivirus app and select a scan, which should then flag the exact apps that are presenting a threat to your device. You may be able to remove the...
Learn how to remove viruses from your Android phone and iPhone with our expert guide. Scan and remove mobile malware, then protect against future threats.

How do I remove malware virus? ›

If your PC has a virus, following these ten simple steps will help you to get rid of it:
  1. Step 1: Download and install a virus scanner. ...
  2. Step 2: Disconnect from internet. ...
  3. Step 3: Reboot your computer into safe mode. ...
  4. Step 4: Delete any temporary files. ...
  5. Step 5: Run a virus scan. ...
  6. Step 6: Delete or quarantine the virus.

Can you remove malware? ›

Luckily, running a malware scanner is usually enough to get rid of most standard infections. If you already had an antivirus program on your device, you should download an on-demand malware scanner that's different than what you're using for antivirus.

How do you remove and prevent malware? ›

How to prevent malware
  1. Keep your computer and software updated. ...
  2. Use a non-administrator account whenever possible. ...
  3. Think twice before clicking links or downloading anything. ...
  4. Be careful about opening email attachments or images. ...
  5. Don't trust pop-up windows that ask you to download software. ...
  6. Limit your file-sharing.

What is the easiest way to clean an infected computer? ›

Before you flip out, try these simple steps to clean up your infected computer.
  1. Computer acting suspect? ...
  2. Use protection: Enter safe mode. ...
  3. Back up your files. ...
  4. Download an on-demand malware scanner such as Malwarebytes. ...
  5. Run the scan. ...
  6. Restart your computer.
22 Jun 2015

How do I check my phone for malware? ›

  1. Step 1: Make sure Google Play Protect is turned on. Open the Google Play Store app . ...
  2. Step 2: Check for Android device & security updates. Get the latest Android updates available for you. ...
  3. Step 3: Remove untrusted apps. ...
  4. Step 4: Do a Security Checkup.

How can I check to see if my phone has a virus? ›

A good way to check for malware on your Android phone is to run an antivirus scan. Before buying antivirus software for your phone, make sure you consider the most comprehensive product that's available for your device. There are many antivirus software choices available on the market. Some are free, and some are sold.

How do I know if my phone has malware? ›

Signs Your Phone May Be Infected
  1. Pop-Up Ads That Won't Go Away. ...
  2. Unexplained Fees on Your Bill.
  3. Your Battery Drains Faster Than Expected. ...
  4. Your Phone Is Overheating. ...
  5. Your Phone Is Slower Than Normal. ...
  6. Dropped Calls and Poor Connections. ...
  7. An Unexpected App Appears.
13 Dec 2021

What is Omacp on my phone? ›

OMACP is a browser hijacking app that Android users may find on their smartphone or tablet. You can easily spot this software since it usually gives itself away by filling the screen of your device with various aggressive ads, pop-ups, and banners that are “Powered by OMACP”.

Where can I find suspicious Android apps? ›

Follow these simple steps:
  1. Go to the Google Play Store app.
  2. Open the menu button. You can do this by tapping on the three-line icon found in the top-left corner of your screen.
  3. Select Play Protect.
  4. Tap Scan. ...
  5. If your device uncovers harmful apps, it will provide an option for removal.

Can you get a virus from opening a text message on Android? ›

Simply opening and reading an SMS text message is unlikely to infect your phone, but you can get a virus or malware if you download an infected attachment or click a link to a compromised website. SMS phishing attacks — known as smishing — use this technique.

Can you get a virus from opening a text message? ›

Infected text messages sometimes steal the subject line from a message you've received from a friend, which of course increases the likelihood of your opening it -- but opening the message isn't enough to get infected.

Can your phone get a virus from visiting a website? ›

The most common way for a smartphone to get a virus is by downloading a third-party app. However, this isn't the only way. You can also get them by downloading Office documents, PDFs, by opening infected links in emails, or by visiting a malicious website. Both Android and Apple products can get viruses.

Can opening an email give you a virus? ›

Can I get a virus by reading my email messages? Most viruses, Trojan horses, and worms are activated when you open an attachment or click a link contained in an email message. If your email client allows scripting, then it is possible to get a virus by simply opening a message.

What does Malwarebytes scan for? ›

Scan and remove viruses and malware free. Malwarebytes free antivirus includes multiple layers of malware-crushing tech. Our anti-malware finds and removes threats like viruses, ransomware, spyware, adware, and Trojans.

How do I manually remove a Trojan virus? ›

How to Remove Trojan Virus from Windows? - YouTube

Can you get a virus without downloading anything? ›

Yes, you can get a virus just from visiting a website. These days, it's very easy to be overconfident in our abilities to avoid computer viruses. After all, many of us were told that we simply had to avoid files and programs we didn't recognize.

Videos

1. How To Remove A Mac Computer Virus, Malware, Spyware, Maintenance, And Cleaning 2020
(Full Speed Mac & PC)
2. What is Malware | Types of Malware | Computer Malware in Hindi | Part-1/2
(Arora Educator)
3. How To Detect Malware | Do I have a virus? - How To Check PC Viruses & Malware | Best Virus Scanner
(Nico Knows Tech)
4. Different Types of Malware Explained | How does Anti-malware Detects them?
(MalwareFox)
5. How to Remove ANY Virus from Windows 10 in ONE STEP in 2021
(Nico Knows Tech)
6. 10 Signs of Malware on Computer | How to Know if you're Infected?
(MalwareFox)

Top Articles

You might also like

Latest Posts

Article information

Author: Lilliana Bartoletti

Last Updated: 10/28/2022

Views: 5887

Rating: 4.2 / 5 (73 voted)

Reviews: 88% of readers found this page helpful

Author information

Name: Lilliana Bartoletti

Birthday: 1999-11-18

Address: 58866 Tricia Spurs, North Melvinberg, HI 91346-3774

Phone: +50616620367928

Job: Real-Estate Liaison

Hobby: Graffiti, Astronomy, Handball, Magic, Origami, Fashion, Foreign language learning

Introduction: My name is Lilliana Bartoletti, I am a adventurous, pleasant, shiny, beautiful, handsome, zealous, tasty person who loves writing and wants to share my knowledge and understanding with you.