[CODE title="FRST Log" highlight="622"]Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-01-2022
Ran by User (23-01-2022 21:31:33)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Pro Version 21H1 19043.1466 (X64) (2021-03-12 17:37:51)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2260555867-3952145973-3367740535-500 - Administrator - Disabled)
Guest (S-1-5-21-2260555867-3952145973-3367740535-501 - Limited - Disabled)
User (S-1-5-21-2260555867-3952145973-3367740535-1001 - Administrator - Enabled) => C:\Users\User
VarsayılanHesap (S-1-5-21-2260555867-3952145973-3367740535-503 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2260555867-3952145973-3367740535-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AV: Norton Security (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D}
FW: Norton Security (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Application Verifier x64 External Package (HKLM\...\{8A4CD158-E6B3-6D91-D7DE-10098BC980E2}) (Version: 10.1.19041.685 - Microsoft) Hidden
Avoid (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\601864041731719189) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BUFF (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\Overwolf_caboggillkkpgkiokbjmgldfkedbfnpkgadakcdl) (Version: 0.5.0.37 - Overwolf app)
Cocos Dashboard (HKLM-x32\...\{5B686938-99D9-4ED6-94E2-59E5CC7C3D94}) (Version: 1.0.14.2515 - Xiamen Yaji Software Co., Ltd.) Hidden
Cocos Dashboard 1.0.14.2515 (HKLM-x32\...\Cocos Dashboard 1.0.14.2515) (Version: 1.0.14.2515 - Xiamen Yaji Software Co., Ltd.)
CopperCube 6.5.1 (remove only) (HKLM-x32\...\CopperCube 6.5.1) (Version: - Ambiera)
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0644 - Disc Soft Ltd)
DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{A145B7AE-0C6A-4B62-8B34-D273EDF26339}) (Version: 1.2.17.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.71 - Google LLC)
icecap_collection_neutral (HKLM-x32\...\{38424975-F5F7-4D65-9C6A-26B128F68EDA}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{72EC729A-49E8-4CCD-9637-6E19D7AB2992}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{529A010F-BB28-420B-8095-A7D9E7FCD5C3}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{80572AFF-4189-4331-8B0E-742CB0AD1EC5}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel® Yonga Kümesi Aygıt Yazılımı (HKLM-x32\...\{bd366c5e-00cd-46ed-b647-0b9874f32140}) (Version: 10.1.17809.8096 - Intel(R) Corporation) Hidden
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Kaspersky Anti-Virus (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)
Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky)
Kits Configuration Installer (HKLM-x32\...\{E75A9998-E979-760B-6AEB-49763F279EDD}) (Version: 10.1.19041.685 - Microsoft) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.69 - Microsoft Corporation)
Microsoft Edge WebView2 Çalışma Zamanı (HKLM-x32\...\Microsoft EdgeWebView) (Version: 97.0.1072.69 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\Teams) (Version: 1.4.00.22976 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.30.30704 (HKLM-x32\...\{57a73df6-4ba9-4c1d-bbbb-517289ff6c13}) (Version: 14.30.30704.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.62.2 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.0.4488.46238 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{733C3ACB-432D-4880-B0E1-660000D7974D}) (Version: 1.0.0.0 - Mojang)
MSI Afterburner 4.6.4 Beta 3 (HKLM-x32\...\Afterburner) (Version: 4.6.4 Beta 3 - MSI Co., LTD)
MSI Development Tools (HKLM-x32\...\{7AAC93B0-F3D7-6B24-6B37-9E74980C1C81}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Need for Speed Payback (HKLM-x32\...\Need for Speed Payback_is1) (Version: 1.0.51.15364 - Electronic Arts)
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation)
NVIDIA Grafik Sürücüsü 471.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.96 - NVIDIA Corporation)
NVIDIA HD Ses Sürücüsü 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA PhysX Sistem Yazılımı 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.5.105.49133 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.187.1.13 - Overwolf Ltd.)
paint.net (HKLM\...\{1A59F8A6-6AB4-4522-9340-F420B9155A31}) (Version: 4.2.16 - dotPDN LLC)
Paradox Launcher v2 (HKLM\...\{A92DB5D9-A24D-4678-9F91-B4FA6D895718}) (Version: 2.0.4.0 - Paradox Interactive)
Plarium Play (HKLM-x32\...\{536E551F-1DDD-4F01-887B-DB393D95B8DA}) (Version: 6.7.0 - Plarium) Hidden
Plarium Play (HKLM-x32\...\{66632618-f9fd-457d-9be4-9db1bb3ceaf4}) (Version: 6.7.0 - Plarium)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
RivaTuner Statistics Server 7.3.2 Beta 2 (HKLM-x32\...\RTSS) (Version: 7.3.2 Beta 2 - Unwinder)
Roblox Player for User (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.45.416 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.9 - Rockstar Games)
SDK ARM Additions (HKLM-x32\...\{FCF9D89E-6F79-64FB-B08D-B0E69FF54DEE}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{72DB07D6-E166-5A3F-B6E6-4664383781B8}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Speedtest by Ookla (HKLM\...\{18B03B47-804B-425F-A466-8620D0B45D2F}) (Version: 1.10.163.001 - Ookla)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sufi 3.0 sürümü (HKLM-x32\...\{6648AE1C-CB44-4F6A-87CA-23B773604C57}_is1) (Version: 3.0 - ArıcanSoft Company)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.24.5 - TeamViewer)
TLauncher (HKLM-x32\...\TLauncher2.8) (Version: 2.8 - TLauncher Inc.)
TLauncher (HKLM-x32\...\TLauncher2.83) (Version: 2.83 - TLauncher Inc.)
Twitch Studio (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ummy Light (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\fcd4959d-0164-5205-b6c0-9e1609e8558a) (Version: 1.9.73 - ITPRODUCTDEV LTD)
Universal CRT Extension SDK (HKLM-x32\...\{4D69FB64-4443-F2DD-DE1C-F14FD98AAC59}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{6B56745A-F6A4-C51C-933A-AD96C00683EA}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{A57CD0A6-4297-FD30-34A4-34758B6F5F69}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{CD06199B-41C1-AE6D-7567-984CC68792C3}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{BD75F257-50A4-E0CD-9942-C3550CA3E66A}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{A7E95C47-B5F4-110C-D27A-DECB03412B96}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
VALORANT (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
vcpp_crt.redist.clickonce (HKLM-x32\...\{BCFD9845-4B38-44A0-A12C-0D6B8BB7DF48}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Visual Studio Community 2022 RC (HKLM-x32\...\720cc8af) (Version: 17.0.0 RC - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
VS Script Debugging Common (HKLM\...\{9EC852BD-33D2-457C-99BB-ED3099B8176F}) (Version: 17.0.114.0 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{9B448877-5157-4BF6-A8D4-79A181566423}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_communitysharedmsi (HKLM-x32\...\{1B26EFBC-7A31-4A43-9283-4919E3F82532}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_communityx64msi (HKLM\...\{25DF2B02-C761-49C6-81D9-B29B7838A9AC}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_CoreEditorFonts (HKLM-x32\...\{38F4C3E9-4FDE-4A87-BB9C-D62046412F0D}) (Version: 17.0.31804 - Microsoft Corporation) Hidden
vs_devenvsharedmsi (HKLM-x32\...\{EE27C912-1811-45F8-A221-CFF90A37A69F}) (Version: 17.0.31804 - Microsoft Corporation) Hidden
vs_devenx64vmsi (HKLM\...\{DC2F8F18-31B5-42F1-A52A-04644329CE90}) (Version: 17.0.31804 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{CCFBC305-8495-4A7D-B20F-BB0439A12AFB}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{60C647C8-7865-410D-A947-E98578028922}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{38371BF8-3A6A-4C76-B2C5-403CF3FA711B}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{FA204D88-4A70-45B8-BBAC-0EC29BF41595}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{54F489A2-2370-4849-89EB-4291A393920C}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_minshellinteropsharedmsi (HKLM-x32\...\{2B4801DC-34F8-4706-A5D6-109EE99675FD}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_minshellinteropx64msi (HKLM\...\{E8E7F587-35C1-4E2C-BE2A-605FC9F82D9F}) (Version: 17.0.31804 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{973D8B0C-47AC-43FF-99E0-25E5D7090261}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_minshellsharedmsi (HKLM-x32\...\{7FEC4935-AB34-488D-BF33-38C816525040}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_minshellx64msi (HKLM\...\{EFF69C65-9C29-46D2-B1F2-3B07C82C7958}) (Version: 17.0.31808 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{AD4BFA50-ABD0-4C12-94E9-645FD304A8F3}) (Version: 17.0.31804 - Microsoft Corporation) Hidden
WhatsApp (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\WhatsApp) (Version: 2.2147.16 - WhatsApp)
WinAppDeploy (HKLM-x32\...\{2ADF1977-BF31-E127-B651-AC28A8658317}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows PC Sistem Durumu Denetimi (HKLM\...\{1DA39BB7-2053-4218-AC92-E71DBA32D7F1}) (Version: 3.1.2109.29003 - Microsoft Corporation)
Windows SDK AddOn (HKLM-x32\...\{E18618EC-D9DB-4BCE-B382-85ADA2CBB340}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.19041.685 (HKLM-x32\...\{4591faf1-a2db-4a3d-bfda-aa5a4ebb1587}) (Version: 10.1.19041.685 - Microsoft Corporation)
WinRAR 6.02 (64 bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{BCF7CA0F-E53C-2A4F-B128-A751EC9A1016}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{B42BF427-AFDB-C00F-DB60-6F51395D74A1}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{3335615C-ABEB-960E-2226-4274CD28E046}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{216D5F47-257D-6284-5849-B51037875EFA}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{443FF51E-16C3-F23B-18FC-0D1D66024B0B}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{15E29AFF-CB19-A20B-9A81-B0765A63115F}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{FF2B49B7-0254-3D6A-4BE0-EF4C59DBCC2B}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{0AF3B821-474B-1885-473A-6E3FB4F1CF71}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{8832F8ED-1035-9ABE-FD73-4E5ABAA84A5C}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Zoom (HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\ZoomUMX) (Version: 5.8.3 (1581) - Zoom Video Communications, Inc.)
Packages:
=========
Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_3.2.200.2_x86__h6adky7gbf63m [2021-12-15] (Gameloft SE)
Forza Street -> C:\Program Files\WindowsApps\Microsoft.331194F9F13CC_40.0.5.2_x64__8wekyb3d8bbwe [2022-01-10] (Microsoft Studios)
Fotoğraflar Eklentisi -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-26] (Microsoft Corporation)
Fotoğraflar Medya Altyapısı Eklentisi -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-14] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-21] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_51.10913.5796.0_x64__8wekyb3d8bbwe [2021-12-01] (Microsoft Corporation)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.0.113.0_x64__8wekyb3d8bbwe [2022-01-21] (Microsoft Studios)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-21] (NVIDIA Corp.)
Raid: Shadow Legends -> C:\Program Files\WindowsApps\PlariumGlobal.RaidShadowLegends_0.1.44.0_x64__mfbnfvhg4da4g [2022-01-21] (Plarium Global)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.509.219.0_x86__55nm5eh3cm0pr [2022-01-21] (ROBLOX Corporation)
Satranç -> C:\Program Files\WindowsApps\00141F67.CHESSFRIENDSONLINECHESS_2.4.79.0_neutral__8ykx2f62075fc [2022-01-21] (NetVisions.r.o.)
Scratch 3 -> C:\Program Files\WindowsApps\ScratchFoundation.ScratchDesktop_3.27.0.0_x64__wmbdy4q6dbx4t [2021-12-27] (Scratch Foundation)
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.15.163.0_x64__43tkc6nmykmb6 [2022-01-21] (Ookla)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0 [2022-01-22] (Spotify AB) [Startup Task]
Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_3.4.8.0_x64__t4vj0pshhgkwm [2022-01-21] (Telegram Messenger LLP) [Startup Task]
Windbg Preview -> C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2111.9001.0_neutral__8wekyb3d8bbwe [2021-12-09] (Microsoft Corporation)
Word Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.Word_16001.14326.20734.0_x64__8wekyb3d8bbwe [2022-01-12] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2260555867-3952145973-3367740535-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21161.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2260555867-3952145973-3367740535-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2260555867-3952145973-3367740535-1001_Classes\CLSID\{e41a3aef-5c40-4832-922f-c8c0a8720acf}\localserver32 -> "C:\Program Files\TechSmith\Camtasia 2021\CamtasiaStudio.exe" -ToastActivated => No File
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2021-10-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2021-10-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2021-10-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b8346c359fcd6093\nvshext.dll [2021-08-28] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2021-10-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b42be1c9c51179ef\Sonsuzarkadaşlar06 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 7"
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\188f5ec9d11ded56\Kişisel - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\System32:tdsrinu.gfc [5882]
AlternateDataStreams: C:\WINDOWS\System32:tdsrset_i.gfc [1455]
AlternateDataStreams: C:\Users\User:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\DP45977C.lfl:677104FCAA [10]
AlternateDataStreams: C:\ProgramData\merjmevq.cmt:65433143E6 [10]
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [10]
AlternateDataStreams: C:\ProgramData\ntuser.dat
4F6BC83AF [10]
AlternateDataStreams: C:\ProgramData\ntuser.dat.LOG1:94949E25BC [10]
AlternateDataStreams: C:\ProgramData\ntuser.dat.LOG2:CCE2DBB696 [10]
AlternateDataStreams: C:\ProgramData\ntuser.dat{a40bc706-eb8c-11eb-adc2-3c7c3fb92a0d}.TM.blf:AF632DBFD6 [10]
AlternateDataStreams: C:\ProgramData\ntuser.dat{a40bc706-eb8c-11eb-adc2-3c7c3fb92a0d}.TMContainer00000000000000000001.regtrans-ms:1885FF7985 [10]
AlternateDataStreams: C:\ProgramData\ntuser.dat{a40bc706-eb8c-11eb-adc2-3c7c3fb92a0d}.TMContainer00000000000000000002.regtrans-ms:C4846A0B06 [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [10]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4386]
AlternateDataStreams: C:\Users\User\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\User\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKU\.DEFAULT -> DefaultScope {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630
SearchScopes: HKU\.DEFAULT -> {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630
SearchScopes: HKU\S-1-5-21-2260555867-3952145973-3367740535-1001 -> DefaultScope {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630
SearchScopes: HKU\S-1-5-21-2260555867-3952145973-3367740535-1001 -> {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2021-05-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2021-05-16] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 07:49 - 2022-01-21 19:35 - 000000940 ____N C:\WINDOWS\system32\drivers\etc\hosts
51.68.172.243 authserver.mojang.com
51.68.172.243 sessionserver.mojang.com
51.68.172.243 launchermeta.mojang.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKCU\Environment\\Path -> C:\Users\User\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\StartupFolder: => "NimoPC.lnk"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\StartupFolder: => "Discord.lnk"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "PlariumPlay"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "NZXT.CAM"
HKU\S-1-5-21-2260555867-3952145973-3367740535-1001\...\StartupApproved\Run: => "Overwolf"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{41A90518-8269-41FA-9FA7-B5B9E6E85675}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7B98FD23-9760-4F15-98BA-761D1A53B9ED}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{08183B4E-25D1-484F-9251-A86E16B23E01}C:\program files (x86)\epic games\gtav\gta5.exe] => (Block) C:\program files (x86)\epic games\gtav\gta5.exe => No File
FirewallRules: [TCP Query User{01340285-FC4C-43AF-A587-52ADCC29617F}C:\program files (x86)\epic games\gtav\gta5.exe] => (Block) C:\program files (x86)\epic games\gtav\gta5.exe => No File
FirewallRules: [{2CD3412F-F6C0-4639-8E49-ADFAAF929193}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => No File
FirewallRules: [{D0076D1C-6F1F-40E0-9529-324E09E34517}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => No File
FirewallRules: [{4C5CFBA9-2B7A-4ADD-8173-3E707A22C20B}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => No File
FirewallRules: [{C8323B67-14E1-450E-8181-25449D5D293F}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => No File
FirewallRules: [{CEF0C852-F6B7-4C86-B680-26E0FB6FB274}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => No File
FirewallRules: [{5B107F87-401F-4005-9F38-AE60B30D52B5}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe => No File
FirewallRules: [{1F69BC2A-C78D-43B2-978B-CBFA4AAE550A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D79A7BE2-6E78-4C5B-BC44-F523E8B38733}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D4CDE392-D199-4009-BCFC-20B95DF6F01A}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{164BD91B-2603-4284-82F4-0B07E27600A2}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [TCP Query User{41A62334-4960-4A64-8689-963413A62657}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{3958FB7E-8327-4888-864F-DC25AC694ACF}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{E964E570-079F-464C-A962-D1DBCDE2AF0F}C:\users\user\appdata\local\ummy_light\ummy light.exe] => (Allow) C:\users\user\appdata\local\ummy_light\ummy light.exe (ITPRODUCTDEV LTD -> ITPRODUCTDEV LTD)
FirewallRules: [UDP Query User{27ACCC67-4DD7-4295-8569-C1D0386E599D}C:\users\user\appdata\local\ummy_light\ummy light.exe] => (Allow) C:\users\user\appdata\local\ummy_light\ummy light.exe (ITPRODUCTDEV LTD -> ITPRODUCTDEV LTD)
FirewallRules: [TCP Query User{4798F609-AC63-4C88-B173-F777DE5C1B2A}C:\users\user\runtime\jdk-x64\1.8.0_51\bin\javaw.exe] => (Block) C:\users\user\runtime\jdk-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{782E77A0-07B2-4D75-B9C1-18EBD9E54B40}C:\users\user\runtime\jdk-x64\1.8.0_51\bin\javaw.exe] => (Block) C:\users\user\runtime\jdk-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [{6ABEBF99-493A-441B-9BA5-509ABEA4111D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]
FirewallRules: [{C2C1E4FB-0471-4A5F-8DCD-9FAC616FAFC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]
FirewallRules: [{6A14925A-F23F-418E-9E5E-50E3B089BC65}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{FDE2529C-2989-4067-8374-B18179D9FE09}C:\users\user\appdata\roaming\.craftrise\java\jdk-x64\bin\javaw.exe] => (Block) C:\users\user\appdata\roaming\.craftrise\java\jdk-x64\bin\javaw.exe
FirewallRules: [UDP Query User{58036407-CDE3-49D1-A367-E6941AA0B8FE}C:\users\user\appdata\roaming\.craftrise\java\jdk-x64\bin\javaw.exe] => (Block) C:\users\user\appdata\roaming\.craftrise\java\jdk-x64\bin\javaw.exe
FirewallRules: [TCP Query User{2A74CD34-4D78-488D-A800-A4CC80A3CAF0}C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{2D563025-9AD9-4577-9E43-0A7C19301B0D}C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [TCP Query User{0CD90C66-B45B-4AF3-A19A-E65A2FB14158}C:\users\user\appdata\roaming\.minecraft\runtime\java-runtime-alpha\wındows\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.minecraft\runtime\java-runtime-alpha\wındows\java-runtime-alpha\bin\javaw.exe
FirewallRules: [UDP Query User{C6B47420-10D0-4AD2-BF8F-4E024F448231}C:\users\user\appdata\roaming\.minecraft\runtime\java-runtime-alpha\wındows\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.minecraft\runtime\java-runtime-alpha\wındows\java-runtime-alpha\bin\javaw.exe
FirewallRules: [TCP Query User{FA0E850D-2B1B-42D3-9B7E-03885335A422}C:\users\user\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe] => (Allow) C:\users\user\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe => No File
FirewallRules: [UDP Query User{81EFC168-B010-4719-9D98-CB60874CF8A6}C:\users\user\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe] => (Allow) C:\users\user\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe => No File
FirewallRules: [TCP Query User{4F4DC7F9-0C6B-40EB-8162-B24A47CA876A}C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\wındows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\wındows\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{209CB0B5-7856-45E6-8E3C-C6816B4ADC18}C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\wındows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\user\appdata\roaming\.minecraft\runtime\jre-legacy\wındows\jre-legacy\bin\javaw.exe
FirewallRules: [{B0953563-3DDA-46FD-8707-FA402DDED257}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{AF457533-337C-449E-B22F-59051E98BE4D}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{E6B69BAE-0D37-4526-8F50-29AE7A21673D}C:\program files (x86)\epic games\fortnite\amongus\among us.exe] => (Block) C:\program files (x86)\epic games\fortnite\amongus\among us.exe => No File
FirewallRules: [UDP Query User{F26DA16F-74F9-43DB-969C-ACAA6BA264C1}C:\program files (x86)\epic games\fortnite\amongus\among us.exe] => (Block) C:\program files (x86)\epic games\fortnite\amongus\among us.exe => No File
FirewallRules: [TCP Query User{318C08A9-3A14-488D-9EA1-EE4FE9D9DA05}C:\program files (x86)\valve\half-life\hl.exe] => (Allow) C:\program files (x86)\valve\half-life\hl.exe => No File
FirewallRules: [UDP Query User{A5AB6DE3-2A3A-40AF-980D-D9608EC9F414}C:\program files (x86)\valve\half-life\hl.exe] => (Allow) C:\program files (x86)\valve\half-life\hl.exe => No File
FirewallRules: [TCP Query User{C2BDFA91-D13A-4F11-B78D-1C10D047D5B8}D:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe => No File
FirewallRules: [UDP Query User{1F25442B-FACB-4F00-B85C-CEDDB9B1EF70}D:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe => No File
FirewallRules: [TCP Query User{3DE07F2A-B899-438A-9BF3-C61912E640C7}D:\steamlibrary\steamapps\common\sabotaj\sabotaj\binaries\win64\sabotaj.exe] => (Allow) D:\steamlibrary\steamapps\common\sabotaj\sabotaj\binaries\win64\sabotaj.exe => No File
FirewallRules: [UDP Query User{35C13A98-6C70-4136-AA2F-FE2F34E2B826}D:\steamlibrary\steamapps\common\sabotaj\sabotaj\binaries\win64\sabotaj.exe] => (Allow) D:\steamlibrary\steamapps\common\sabotaj\sabotaj\binaries\win64\sabotaj.exe => No File
FirewallRules: [TCP Query User{49049C9B-3A96-4D57-AAF1-678C2C0F7C1F}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => No File
FirewallRules: [UDP Query User{43BC309C-EA5D-4E7A-B4AB-15C2F8E4552C}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => No File
FirewallRules: [TCP Query User{B91A44F6-B6D1-410E-8B98-AE475C1FA0A5}C:\program files (x86)\epic games\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files (x86)\epic games\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{28851D91-B7F0-4E6E-877D-E5F3150568EB}C:\program files (x86)\epic games\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files (x86)\epic games\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [TCP Query User{941F1257-0FAF-4A1E-86D4-231AE6BDF2DB}D:\steamlibrary\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) D:\steamlibrary\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{24BA80D0-DDDA-4E74-93B9-27EF64BE0829}D:\steamlibrary\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) D:\steamlibrary\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [{00C6B55C-741C-4905-89C3-33882A87CD27}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{63EB5A6D-6C78-4857-A626-90877A2BC445}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{BAAB12DB-C075-4390-986F-8641124E29F2}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{28275605-4E74-44CB-B0C1-64045C9FA2EF}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{0FB642EF-D78E-4F49-A189-64F32DB7A3C4}] => (Allow) D:\SteamLibrary\steamapps\common\Modern Combat Versus\ModernCombatVersus.exe => No File
FirewallRules: [{490042C9-8EC7-402F-82B3-F897D1785BE7}] => (Allow) D:\SteamLibrary\steamapps\common\Modern Combat Versus\ModernCombatVersus.exe => No File
FirewallRules: [{A70FE4BA-26C2-47D2-A224-E401F2CF0E4D}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{8895D929-06C2-4D74-B8D2-6DC0D3B5F378}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{4A6E9808-F0D5-4736-8233-2E999538AFBF}] => (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{58693614-C7CE-4BCD-814D-CD45108E5498}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe => No File
FirewallRules: [UDP Query User{CD90642C-0A70-455E-A0DE-5D48B7F9F2A5}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe => No File
FirewallRules: [TCP Query User{01464F7C-6A29-4045-858D-6788D099F8B8}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe => No File
FirewallRules: [UDP Query User{828EC955-1E38-4EFD-BF1D-F5BB601DF04A}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe => No File
FirewallRules: [{9E9EC5BF-85B8-496C-96CC-981E5D20A86C}] => (Allow) D:\SteamLibrary\steamapps\common\War Planet Online\WarPlanetOnline.exe () [File not signed]
FirewallRules: [{D7E2711F-475E-4BCF-9986-0B0F12EAA2F2}] => (Allow) D:\SteamLibrary\steamapps\common\War Planet Online\WarPlanetOnline.exe () [File not signed]
FirewallRules: [TCP Query User{CF4995EC-F785-4A14-A1CB-A8D0FE615BE5}C:\users\user\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\user\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [UDP Query User{84E338F0-BF1C-4755-A1C3-23675D6AC14C}C:\users\user\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\user\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [TCP Query User{60C4DFA6-B587-48BE-9D04-C258970419EF}C:\users\user\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\user\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe
FirewallRules: [UDP Query User{A93B9DFC-FA92-4CB8-92AE-5A562AA96666}C:\users\user\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\user\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe
FirewallRules: [{34D4BCED-C1EC-4A0E-A152-B8048F16BFC9}] => (Allow) D:\SteamLibrary\steamapps\common\Contraband Police Prologue\launcher\playway-launcher.exe => No File
FirewallRules: [{B52EC278-B851-4107-92A4-2AEA688F8F7D}] => (Allow) D:\SteamLibrary\steamapps\common\Contraband Police Prologue\launcher\playway-launcher.exe => No File
FirewallRules: [{7E151129-1354-44C0-B11E-3F6BEE4EA5CC}] => (Allow) D:\SteamLibrary\steamapps\common\Coloring Game 4\game.exe => No File
FirewallRules: [{2AF16D9F-9102-495C-B02A-D847701183FD}] => (Allow) D:\SteamLibrary\steamapps\common\Coloring Game 4\game.exe => No File
FirewallRules: [{28E47E0A-E0F6-4927-A94B-1A272575A01E}] => (Allow) D:\SteamLibrary\steamapps\common\Exploratombe\tombrumble.exe => No File
FirewallRules: [{C1AFBF3B-A07C-4704-956A-E5E3A6A15854}] => (Allow) D:\SteamLibrary\steamapps\common\Exploratombe\tombrumble.exe => No File
FirewallRules: [TCP Query User{A66DC460-7189-4535-BD9E-81FFF8439B03}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [UDP Query User{D2C75AE8-D6C7-4242-8670-347A661D1CF6}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [{EFA097F3-87D7-433D-9915-DC86041D144E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Modern Combat Versus\ModernCombatVersus.exe () [File not signed]
FirewallRules: [{5031B015-7484-4E18-BE2A-A3604D19BD7C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Modern Combat Versus\ModernCombatVersus.exe () [File not signed]
FirewallRules: [{F0E8206F-35C8-4FFF-BD64-E9F740D8F31B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [TCP Query User{06319C80-08E9-4784-91F0-1F48DA523B34}C:\users\user\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [UDP Query User{D927AEF6-CE5B-4E09-9322-D77DA2EE1972}C:\users\user\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\user\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [{E81DB6E4-CA7C-4845-AF68-9908A72CB73B}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe => No File
FirewallRules: [{EA00946C-C650-40A4-87EB-DF19AE68FC06}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe => No File
FirewallRules: [{243D97C9-D5D6-4705-BDE4-D90F41ED89D6}] => (Allow) D:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
FirewallRules: [{80D36442-1DAB-4EC1-BFF2-FD396A05EE68}] => (Allow) D:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS)
FirewallRules: [{1F972D24-8EC0-4564-9859-7C3C9E1785EB}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{5E63B387-15F4-4BF8-87B7-BF9E979DA5DB}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [TCP Query User{E56EAFE2-3894-4A3F-9263-D0419A2432AD}D:\riot games\riot client\riotclientservices.exe] => (Allow) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{1B84BB67-9649-4F0F-B2D7-72ABE5DFDBB7}D:\riot games\riot client\riotclientservices.exe] => (Allow) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{B61ECFBF-BDAC-407C-85CE-6D251411F959}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2111.9001.0_neutral__8wekyb3d8bbwe\x86\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{11F5C955-351B-45E4-A5B9-B90A95F953D1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2111.9001.0_neutral__8wekyb3d8bbwe\x86\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{02EE7118-36C4-4179-9F5A-62EEEC73A0B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2111.9001.0_neutral__8wekyb3d8bbwe\amd64\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{254C42B8-4D44-4B79-9876-F2839468E4DE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2111.9001.0_neutral__8wekyb3d8bbwe\amd64\EngHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{83801998-0186-4444-AD8F-A5D9509D8093}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{67922732-6787-4DF2-959B-ACF16FB1C564}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CF329E7F-9E49-40A3-8A1F-9178BACABA25}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6EA16949-D911-4C82-9CDC-5BDCBAA22EE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D390DEB9-903D-4BAA-899F-1CEB27E7D9AD}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FB0DA088-F88C-46DF-A217-A054B33C0704}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0DFC4D68-A014-44F4-AC59-F38693F7FA04}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1DABD623-C349-4F57-906C-15F42E05CF3F}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B1B2D545-95D9-412C-A682-CBE7D1B974D9}] => (Allow) D:\SteamLibrary\steamapps\common\Coloring Game The Little City\game.exe (The NWJS Community) [File not signed]
FirewallRules: [{95E6FFD6-F860-422C-937F-CE90801D322C}] => (Allow) D:\SteamLibrary\steamapps\common\Coloring Game The Little City\game.exe (The NWJS Community) [File not signed]
FirewallRules: [{517BCC9A-59E5-49F8-9FB2-3DD332224AB9}] => (Allow) D:\SteamLibrary\steamapps\common\RISK Global Domination\RISK.exe () [File not signed]
FirewallRules: [{34D1D3D4-F480-4639-9085-5B26DA498229}] => (Allow) D:\SteamLibrary\steamapps\common\RISK Global Domination\RISK.exe () [File not signed]
FirewallRules: [{A4267B2C-3A15-4025-A8D0-E6EA1EF11F10}] => (Allow) D:\SteamLibrary\steamapps\common\Press Any Button\PAB.exe () [File not signed]
FirewallRules: [{B371DFD1-18CE-40EC-A4EA-7C33A3BE317F}] => (Allow) D:\SteamLibrary\steamapps\common\Press Any Button\PAB.exe () [File not signed]
FirewallRules: [{44F38A4F-5DFB-4C0E-B95C-A7DB58E32B58}] => (Allow) D:\SteamLibrary\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [File not signed]
FirewallRules: [{62379C3E-B08C-481D-BB5B-BCFBFD9E3D39}] => (Allow) D:\SteamLibrary\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [File not signed]
FirewallRules: [{0DC16E94-64F8-4534-BD30-B405C645B58A}] => (Allow) C:\Program Files (x86)\Overwolf\0.185.0.12\OverwolfBrowser.exe => No File
FirewallRules: [{89C97349-E9EB-4EAC-B506-0026A98E14E9}] => (Allow) C:\Program Files (x86)\Overwolf\0.185.0.12\OverwolfBrowser.exe => No File
FirewallRules: [{21BC3737-4428-4554-AC4A-E73AA4ED5BEF}] => (Block) C:\Program Files (x86)\Overwolf\0.185.0.12\OverwolfBrowser.exe => No File
FirewallRules: [{D561E367-F6C2-4A58-886C-C525FBDC6473}] => (Block) C:\Program Files (x86)\Overwolf\0.185.0.12\OverwolfBrowser.exe => No File
FirewallRules: [{21E93FF1-F2C6-49F1-8258-E104A9424B97}] => (Allow) C:\Program Files (x86)\Overwolf\0.187.1.13\OverwolfBrowser.exe => No File
FirewallRules: [{72358B8D-503F-487C-8E00-B0E258BBE7E2}] => (Allow) C:\Program Files (x86)\Overwolf\0.187.1.13\OverwolfBrowser.exe => No File
FirewallRules: [{41E5C715-92FE-4420-89B5-8546F099A196}] => (Block) C:\Program Files (x86)\Overwolf\0.187.1.13\OverwolfBrowser.exe => No File
FirewallRules: [{BA46B8C2-B90A-4C59-A4C0-7E728065DAD4}] => (Block) C:\Program Files (x86)\Overwolf\0.187.1.13\OverwolfBrowser.exe => No File
FirewallRules: [{CB444BEB-0C30-4835-AD02-E09E6FAF4C9E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2767B041-3721-4C32-8090-0C5CDF0D7A4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8A265E68-FE49-4042-9FC6-F5DF0946BAEC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{2E74E999-7315-4CA7-953A-B61C6080CE9E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{39C514EA-CC76-4E83-ADC3-989BE9C54567}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{B20C97E3-90EB-46A9-8B9E-AF515AF6D02F}C:\users\user\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\user\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe
FirewallRules: [UDP Query User{E5ECFC70-D3D0-4999-9AB7-A83F0F92A264}C:\users\user\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\user\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe
FirewallRules: [TCP Query User{2EF698D0-DCE7-4110-B379-F0B39E84820F}C:\users\user\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\user\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{AC9FC873-F711-4BE9-8E4F-F73C832087AC}C:\users\user\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\user\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{348D2ACF-AA89-450F-902A-F35BB78A9AAC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6F214644-BE41-49DE-AD64-2DB13AFCFCC8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5BCBE3C3-2E21-4253-8376-B81B83FF7758}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2ABACDF3-15FF-42FE-A729-C2C03FA4AE1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BF8CE6AE-8844-4850-A9E5-174D2BD4372F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{64AF4254-BAB4-4C11-A1EE-F4A9FB2A9E2A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3A7E6034-554A-4544-8959-109A859F90CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B5461015-E3FE-4C3A-A91E-CF4107C012D4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{68675189-2299-4365-AE55-72F8299456CE}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.69\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
21-01-2022 19:55:51 Installed DirectX
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/23/2022 08:59:44 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Lisans Etkinleştirme (slui.exe) şu hata koduyla başarısız oldu:
hr=0x803F7001
Komut satırı bağımsız değişkenleri:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (01/23/2022 08:59:44 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Lisans Etkinleştirme (slui.exe) şu hata koduyla başarısız oldu:
hr=0x803F7001
Komut satırı bağımsız değişkenleri:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (01/23/2022 08:58:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Birim Gölge Kopyası Hizmeti bilgileri: CLSID'si {4e14fba2-2e22-11d1-9964-00c04fbbb345} olan CEventSystem adlı COM Sunucusu başlatılamadı.[0x8007045b, Sistem kapatma işlemi sürüyor.
]
Error: (01/23/2022 08:32:27 PM) (Source: MsiInstaller) (EventID: 11721) (User: DESKTOP-7BL2UG3)
Description: Product: paint.net -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: _8FBBBB09_39E3_48BB_9E6C_620898EF3CD9, location: C:\Program Files\paint.net\SetupNgen.exe, command: /delete DESKTOPSHORTCUT= PDNUPDATING= SKIPCLEANUP= "PROGRAMSGROUP=" QUEUENGEN=
Error: (01/23/2022 08:32:06 PM) (Source: MsiInstaller) (EventID: 11721) (User: DESKTOP-7BL2UG3)
Description: Product: paint.net -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: _8FBBBB09_39E3_48BB_9E6C_620898EF3CD9, location: C:\Program Files\paint.net\SetupNgen.exe, command: /delete DESKTOPSHORTCUT=1 PDNUPDATING= SKIPCLEANUP=1 "PROGRAMSGROUP=" QUEUENGEN=
Error: (01/23/2022 08:31:56 PM) (Source: MsiInstaller) (EventID: 11721) (User: DESKTOP-7BL2UG3)
Description: Product: paint.net -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: _8FBBBB09_39E3_48BB_9E6C_620898EF3CD9, location: C:\Program Files\paint.net\SetupNgen.exe, command: /delete DESKTOPSHORTCUT=1 PDNUPDATING= SKIPCLEANUP=1 "PROGRAMSGROUP=" QUEUENGEN=
Error: (01/23/2022 08:31:37 PM) (Source: MsiInstaller) (EventID: 11721) (User: DESKTOP-7BL2UG3)
Description: Product: paint.net -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: _8FBBBB09_39E3_48BB_9E6C_620898EF3CD9, location: C:\Program Files\paint.net\SetupNgen.exe, command: /delete DESKTOPSHORTCUT=1 PDNUPDATING= SKIPCLEANUP=1 "PROGRAMSGROUP=" QUEUENGEN=
Error: (01/23/2022 08:31:33 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Birim Gölge Kopyası Hizmeti hatası: QueryFullProcessImageNameW yordamı çağrılırken beklenmeyen hata. hr = 0x8007001f, Sisteme bağlı bir aygıt çalışmıyor.
.
İşlem:
Zaman Uyumsuz İşlem Yapılıyor
Bağlam:
Geçerli Durum: DoSnapshotSet
System errors:
=============
Error: (01/23/2022 09:01:16 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: TLS istemci kimlik bilgisi oluşturulurken önemli bir hata oluştu. İç hata durumu: 10013.
Error: (01/23/2022 09:01:15 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: TLS istemci kimlik bilgisi oluşturulurken önemli bir hata oluştu. İç hata durumu: 10013.
Error: (01/23/2022 08:59:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Origin Web Helper Service hizmeti şu hata nedeniyle başlatılamadı:
Sistem belirtilen dosyayı bulamıyor.
Error: (01/23/2022 08:58:41 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Preshutdown denetimi alındıktan sonra AsusUpdateCheck hizmeti düzgün kapatılmadı.
Error: (01/23/2022 08:36:15 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: TLS istemci kimlik bilgisi oluşturulurken önemli bir hata oluştu. İç hata durumu: 10013.
Error: (01/23/2022 08:31:49 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: TLS istemci kimlik bilgisi oluşturulurken önemli bir hata oluştu. İç hata durumu: 10013.
Error: (01/23/2022 08:31:49 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: TLS istemci kimlik bilgisi oluşturulurken önemli bir hata oluştu. İç hata durumu: 10013.
Error: (01/23/2022 07:37:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7BL2UG3)
Description: {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} sunucusu belirtilen zaman aşımı süresi içinde DCOM'a kayıt yaptıramadı.
Windows Defender:
================
Date: 2022-01-03 22:01:13
Description:
Microsoft Defender Virüsten Koruma taraması tamamlanmadan durduruldu.
Tarama Kimliği: {197FAE29-FB47-45D4-BE0A-97BE6B169A5C}
Tarama Türü: Kötü Amaçlı Yazılımdan Koruma
Tarama Parametreleri: Hızlı Tarama
Kullanıcı: NT AUTHORITY\SYSTEM
Date: 2022-01-03 10:59:59
Description:
Microsoft Defender Virüsten Koruma taraması tamamlanmadan durduruldu.
Tarama Kimliği: {E4CC6A88-B1C0-4F60-9338-D64AFE5FFF00}
Tarama Türü: Kötü Amaçlı Yazılımdan Koruma
Tarama Parametreleri: Hızlı Tarama
Kullanıcı: NT AUTHORITY\SYSTEM
Date: 2022-01-02 10:48:13
Description:
Microsoft Defender Virüsten Koruma taraması tamamlanmadan durduruldu.
Tarama Kimliği: {620B0CE3-13C8-46D9-8E43-4F92E601A3E0}
Tarama Türü: Kötü Amaçlı Yazılımdan Koruma
Tarama Parametreleri: Hızlı Tarama
Kullanıcı: NT AUTHORITY\SYSTEM
Date: 2021-12-31 21:38:58
Description:
Microsoft Defender Virüsten Koruma taraması tamamlanmadan durduruldu.
Tarama Kimliği: {E6B70EF0-0A36-4339-A3AF-CB201169D30D}
Tarama Türü: Kötü Amaçlı Yazılımdan Koruma
Tarama Parametreleri: Hızlı Tarama
Kullanıcı: NT AUTHORITY\SYSTEM
Date: 2021-12-31 08:54:01
Description:
Microsoft Defender Virüsten Koruma taraması tamamlanmadan durduruldu.
Tarama Kimliği: {D84AF351-A367-4988-AF42-7C5060CC1A97}
Tarama Türü: Kötü Amaçlı Yazılımdan Koruma
Tarama Parametreleri: Hızlı Tarama
Kullanıcı: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2022-01-23 21:01:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-01-23 21:01:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2022-01-23 21:01:16
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2022-01-23 21:01:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1605 07/14/2020
Motherboard: ASUSTeK COMPUTER INC. PRIME B365M-K
Processor: Intel(R) Core(TM) i5-9400F CPU @ 2.90GHz
Percentage of memory in use: 60%
Total physical RAM: 8122.53 MB
Available physical RAM: 3197.8 MB
Total Virtual: 12474.53 MB
Available Virtual: 5487.35 MB
==================== Drives ================================
Drive c: (Yerel Disk) (Fixed) (Total:446.5 GB) (Free:300.96 GB) NTFS
Drive d: (Yerel Disk) (Fixed) (Total:223.55 GB) (Free:86.46 GB) NTFS
\\?\Volume{55eb8e07-c9c2-4bdd-82df-cc7f988fbb7e}\ (Kurtarma) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{accf2efd-eebc-d015-c312-8aa29d41c55f}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS
\\?\Volume{291aa64c-a115-428f-abdb-700131a6d4ae}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt =======================[/CODE]