WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93083 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

My Pc works slower than before, am i infected_?

Started by Antediluvian , Jan 06 2020 06:52 AM

Spyware malware virus

This topic is locked

18 replies to this topic

#1 Antediluvian

Authentic Member

Authentic Member
53 posts

Posted 06 January 2020 - 06:52 AM

Hi,

My Pc significantly began to operate slower. Even when i play dota 2, my fps dropped below 30 fps as i was able to play it more than 50 fps before. I have avast free antivirus and i think a few days before it warned me about a threat and quarantine it. Thanks in advance for any replies. Here are my logs ;

Run date: 2020-01-06 15:25:33

-----------------------------

15:25:33.698 OS Version: Windows x64 6.2.9200

15:25:33.698 Number of processors: 8 586 0x3C03

15:25:33.699 ComputerName: VOLCANO UserName: Volkan

15:25:34.032 Initialize success

15:25:34.035 VM: initialized successfully

15:25:34.035 VM: outdated driver version !

15:27:29.678 AVAST engine defs: 17030301

15:27:35.422 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000045

15:27:35.424 Disk 0 Vendor: Samsung_SSD_860_EVO_M.2_250GB RVT22B6Q Size: 238475MB BusType: 11

15:27:35.428 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000046

15:27:35.431 Disk 1 Vendor: WDC_WD10JPVX-22JC3T0 01.01A01 Size: 953869MB BusType: 11

15:27:35.439 Disk 0 MBR read successfully

15:27:35.442 Disk 0 MBR scan

15:27:35.448 Disk 0 unknown MBR code

15:27:35.451 Disk 0 Partition 1 00 EE GPT 2097151 MB offset 1

15:27:35.464 Disk 0 scanning C:\Windows\system32\drivers

15:27:45.588 Service scanning

15:28:03.786 Modules scanning

15:28:03.799 Disk 0 trace - called modules:

15:28:03.813 ntoskrnl.exe CLASSPNP.SYS disk.sys storport.sys hal.dll storahci.sys

15:28:03.821 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffe0010c2a4060]

15:28:03.825 3 CLASSPNP.SYS[fffff8005961de10] -> nt!IofCallDriver -> \Device\00000045[0xffffe0010c0a2060]

15:28:04.168 AVAST engine scan C:\Windows

15:28:04.820 AVAST engine scan C:\Windows\system32

15:30:02.247 AVAST engine scan C:\Windows\system32\drivers

15:30:11.739 AVAST engine scan C:\Users\Volkan Pc

15:31:49.033 AVAST engine scan C:\ProgramData

15:32:16.006 Disk 0 statistics 5391783/0/0 @ 53,74 MB/s

15:32:16.013 Scan finished successfully

15:32:40.952 Disk 0 MBR has been saved successfully to "C:\Users\Volkan Pc\Desktop\MBR.dat"

15:32:40.957 The log file has been saved successfully to "C:\Users\Volkan Pc\Desktop\aswMBR.txt"

----------------------------------------------------------------------------------------------------------------------------------------------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-12-2019

Ran by Volkan (administrator) on VOLCANO (Acer Aspire VN7-791) (06-01-2020 15:34:57)

Running from C:\Users\Volkan Pc\Downloads

Loaded Profiles: Volkan (Available Profiles: Volkan)

Platform: Windows 8.1 Single Language (Update) (X64) Language: Türkçe (Türkiye)

Default browser: Chrome

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLiveUpdate.exe

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe

(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe

(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe

(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe

(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe

(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe

(Autodesk, Inc -> Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe

(Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe

(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe

(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe

(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe

(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe

(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe

(Qualcomm Atheros -> ) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe

(Qualcomm Atheros -> Atheros Communications) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe

(Qualcomm Atheros -> Windows ® Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(SafeNet, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplms.exe

(Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"

HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [6532560 2019-11-28] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [92928 2015-05-06] (Acer Incorporated -> )

HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6268224 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.)

HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-04-29] (Qualcomm Atheros -> Atheros Communications) [File not signed]

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [BingSvc] => C:\Users\Volkan Pc\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (Microsoft Corporation -> © 2015 Microsoft Corporation)

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [GoogleChromeAutoLaunch_AA4AE4B776C70B4211A6A651CB9F30E9] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18385368 2018-06-24] (Piriform Ltd -> Piriform Ltd)

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [ECigStats] => C:\Users\Volkan Pc\AppData\Roaming\Evolv\ECigStats\ECigStats.exe [185480 2018-04-26] (Dimension Engineering LLC -> Evolv LLC)

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [Discord] => C:\Users\Volkan Pc\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [Akamai NetSession Interface] => "C:\Users\Volkan Pc\AppData\Local\Akamai\netsession_win.exe"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [Chromium] => "c:\users\volkan pc\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [CyberGhost] => "C:\Program Files\CyberGhost 7\CyberGhost.exe" /autostart /min

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [Octoshape Streaming Services] => C:\Users\Volkan Pc\AppData\Roaming\Octoshape\Octoshape Streaming Services\InfiniteMediaAcceleration.exe [267048 2016-10-13] (Akamai Technologies, Inc. -> Akamai Inc.)

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Run: [Windscribe] => C:\Program Files (x86)\Windscribe\Windscribe.exe [10106544 2019-01-19] (Windscribe Limited -> Windscribe Limited)

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Policies\Explorer: []

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\MountPoints2: {f84694a2-5a06-11e5-8280-206a8a9befdc} - "E:\LaunchU3.exe" -a

HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1193352 2014-02-08] (Autodesk, Inc -> Autodesk, Inc.)

HKU\S-1-5-18\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18385368 2018-06-24] (Piriform Ltd -> Piriform Ltd)

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-18] (Google LLC -> Google LLC)

HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2014-04-29] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]

HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2014-04-29] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-04-07]

ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)

Startup: C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\N.lnk [2017-05-25]

ShortcutTarget: N.lnk -> C:\Users\Volkan Pc\AppData\Roaming\eeTpRT5nR9.exe (No File)

Startup: C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk [2019-12-07]

ShortcutTarget: Samsung Magician.lnk -> C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

Startup: C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Shortcut to Primary output from Start (Active).lnk [2018-07-04]

ShortcutTarget: Shortcut to Primary output from Start (Active).lnk -> C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Installer\{D66F6F24-652D-4405-A0D3-C568F825FE66}\_64A90423D4124B9A5633D3.exe (No File)

FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0697E537-6BB9-4880-9067-5D7B5C862465} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65824 2017-09-26] (Acer Incorporated -> Acer Incorporated)

Task: {0C5AFB66-6F78-4999-BA9A-F92211182BE6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

Task: {0D406EAF-11B1-4F77-8E15-FDCA3761D20C} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41728 2014-08-29] (Acer Incorporated -> )

Task: {2E253B7F-0E59-49F4-A773-BD95FE0DA3E9} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474344 2014-06-08] (Acer Incorporated -> Acer Incorporated)

Task: {2E3F5E73-7A57-4A30-802A-6DA60C75986B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {3123F665-BB05-424F-8251-7EE040792E15} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [2610160 2019-09-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

Task: {34C6F0D8-FFEA-455B-AEB6-AFA74C175D8A} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe [585600 2014-04-08] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)

Task: {35376512-60D9-4140-BA02-E4617520EABC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Task: {3B4B60B9-716B-434C-A98B-83AE22B77D6F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {3E346BEB-E408-44D5-93E4-E66C52A0BB8D} - System32\Tasks\CareCenter\Dropbox_Reg_HKLMWow6432Run => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6268224 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.)

Task: {401ED442-163C-4A3B-AB4E-03432BD0A012} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel® Update Manager -> Intel Corporation)

Task: {48424DA0-9A16-4AE0-BB23-D0D7DD1A01E1} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {53DDCB69-21A9-4429-A9B0-3C06CAA10109} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13594584 2018-06-24] (Piriform Ltd -> Piriform Ltd)

Task: {5585E704-008A-442B-9953-D6BB2D095AC6} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [100608 2014-08-29] (Acer Incorporated -> )

Task: {5DA6CB5E-E537-4E1F-A9B1-9EE78D383F4D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

Task: {5F6BEAC3-F73D-4F6D-B47E-E1F2C704AADF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {663FD770-D03F-4664-95A9-B3D32A012BA2} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [324328 2014-10-17] (Acer Incorporated -> Acer Incorporate)

Task: {67D0C3BE-4975-4414-8632-56FA659BB586} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-15] (Dropbox, Inc -> Dropbox, Inc.)

Task: {751D84ED-991C-4506-959E-213A78E20711} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Task: {80DE8ED3-A4C5-435C-AD33-CD14C9B340E9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Task: {84072F64-C73B-4525-A1AC-BF0731D987A6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {913E85CF-9C78-40B4-BE95-05BC6379E75B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {97DAFD30-6120-441E-B988-2D757131CAAC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {9D385955-8436-4C54-825C-41E7D18FC2B6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

Task: {9F8A7AE6-33B1-41C6-8EE4-12252BAA1212} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {AEC29143-171C-43A5-97DF-5012EA863CB5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-06-23] (Google Inc -> Google Inc.)

Task: {B535D9F7-C655-468E-B71B-73B520A20E1E} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [384256 2015-05-14] (Acer Incorporated -> Acer Incorporated)

Task: {B55F66E3-08D1-460B-AA35-B668AB5933A0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel® Update Manager -> Intel Corporation)

Task: {C4A804FA-7F31-4776-AD89-8B2BEE3B170D} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [419048 2014-12-30] (Acer Incorporated -> Acer Incorporate)

Task: {C4DCD3D8-DEE1-4160-A08C-DF723E884BD3} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [324328 2014-10-17] (Acer Incorporated -> Acer Incorporate)

Task: {C55C5DB4-30B7-4DC3-9260-AFA534D64109} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-15] (Dropbox, Inc -> Dropbox, Inc.)

Task: {CAE38A20-D1A6-4318-9FF6-7ED024F58F4C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)

Task: {CE2517DA-6933-46D7-8A1F-7A9B54986B92} - System32\Tasks\updater => C:\Program Files (x86)\Superonline\SuperDestek\updater.exe [378688 2016-06-09] (SUPERONLINE ILETISIM HIZMETLERI A.S. -> Superonline)

Task: {D150BFA5-5A29-4169-A110-EE94C6B0120D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-06-23] (Google Inc -> Google Inc.)

Task: {E3AEF4B1-8BE4-467F-9CCD-B983C98DC73B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {E3BD1BCC-CA0D-4D7B-A6A4-0243355E4A57} - System32\Tasks\Microsoft Office 15 Sync Maintenance for VOLCANO-Volkan VOLCANO => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

Task: {E82021FC-8ACD-4FCD-9B9D-E797F24CD604} - System32\Tasks\SuperDestekStartup => C:\Program Files (x86)\Superonline\SüperDestek\SüperDestek.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\SuperDestekStartup.job => C:\Program Files (x86)\Superonline\SüperDestek\SüperDestek.exe

Task: C:\Windows\Tasks\updater.job => C:\Program Files (x86)\Superonline\SuperDestek\updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0

Tcpip\..\Interfaces\{10F0820B-30A0-49EC-89DE-1B82EE5D21D9}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Tcpip\..\Interfaces\{21AA8050-C5FF-4ED3-9F35-E51ECB3B60B7}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Tcpip\..\Interfaces\{2B50FE23-DFF7-46E7-BD45-466E337D9637}: [DhcpNameServer] 185.156.172.178 185.93.180.131 83.143.245.42

Internet Explorer:

==================

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=ACJB

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB

SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-21-2812564318-4242938739-427151021-1001 -> DefaultScope {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2261465

SearchScopes: HKU\S-1-5-21-2812564318-4242938739-427151021-1001 -> {2D47CF7A-9CE4-4C2A-9F29-435118D50983} URL = hxxp://www.google.com/search?q={searchTerms}

SearchScopes: HKU\S-1-5-21-2812564318-4242938739-427151021-1001 -> {78BEF917-9FA7-4F06-BBC6-CE6A2BD7B887} URL =

SearchScopes: HKU\S-1-5-21-2812564318-4242938739-427151021-1001 -> {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2261465

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-12-06] (McAfee, LLC -> McAfee, Inc.)

BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-12-06] (McAfee, LLC -> McAfee, Inc.)

BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FireFox:

========

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi

FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-12-06]

FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi

FF HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Volkan Pc\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi

FF Extension: (Ace Script) - C:\Users\Volkan Pc\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2018-11-26]

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-20] (Intel® Identity Protection Technology Software -> Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-20] (Intel® Identity Protection Technology Software -> Intel Corporation)

FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] (WildTangent Inc -> )

FF Plugin HKU\S-1-5-21-2812564318-4242938739-427151021-1001: @citrixonline.com/appdetectorplugin -> C:\Users\Volkan Pc\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2016-04-29] (Citrix Online -> Citrix Online)

FF Plugin HKU\S-1-5-21-2812564318-4242938739-427151021-1001: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Volkan Pc\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1702150-0-npoctoshape.dll [2017-02-15] (Octoshape -> Octoshape ApS)

FF Plugin ProgramFiles/Appdata: C:\Users\Volkan Pc\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2019-02-27]

Chrome:

=======

CHR DefaultProfile: Default

CHR HomePage: Default -> hxxps://www.google.com/

CHR StartupUrls: Default -> "hxxps://www.google.com/"

CHR Notifications: Default -> hxxps://esigaramus.onesignal.com; hxxps://esigaramus.os.tc; hxxps://mail.google.com; hxxps://web.skype.com; hxxps://www.aerobilet.com.tr; hxxps://www.sanalmarket.com.tr; hxxps://www.youtube.com

CHR Profile: C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default [2020-01-06]

CHR Extension: (Slaytlar) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]

CHR Extension: (Dokümanlar) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]

CHR Extension: (Google Drive) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]

CHR Extension: (YouTube) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]

CHR Extension: (Google Search) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]

CHR Extension: (E-Tablolar) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]

CHR Extension: (McAfee® WebAdvisor) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-12-05]

CHR Extension: (Google Dokümanlar Çevrimdışı) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-19]

CHR Extension: (The Camelizer) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghnomdcacenbmilgjigehppbamfndblo [2018-06-23]

CHR Extension: (Avast Online Security) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-12-20]

CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2019-12-25]

CHR Extension: (PowerPoint Online) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkgcbpnhp [2015-06-23]

CHR Extension: (Into The Mist) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgihmkgobaljfehcadcckdggpeojaadh [2015-06-23]

CHR Extension: (Chrome Web Mağazası Ödemeleri) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-09]

CHR Extension: (Speedtest by Ookla) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2019-04-09]

CHR Extension: (Gmail) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]

CHR Extension: (Chrome Media Router) - C:\Users\Volkan Pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-16]

CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx

CHR HKU\S-1-5-21-2812564318-4242938739-427151021-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion]

CHR HKU\S-1-5-21-2812564318-4242938739-427151021-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]

CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk, Inc -> Autodesk Inc.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-04-29] (Qualcomm Atheros -> Windows ® Win 7 DDK provider) [File not signed]

S4 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-15] (Dropbox, Inc -> Dropbox, Inc.)

S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-15] (Dropbox, Inc -> Dropbox, Inc.)

R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.)

R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated -> Acer Incorporated)

S4 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (FUTUREMARK INC -> Futuremark)

S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-25] (WildTangent Inc -> WildTangent)

R2 hasplms; C:\Windows\system32\hasplms.exe [4574520 2017-02-10] (SafeNet, Inc. -> SafeNet, Inc.)

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315352 2014-06-17] (Intel Corporation - pGFX -> Intel Corporation)

S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-02-01] (Intel® Trusted Connect Service -> Intel® Corporation)

R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-02-20] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)

S3 iumsvc; C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel® Update Manager -> Intel Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-02-20] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)

R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporated -> Acer Incorporate)

S4 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [6436392 2019-11-28] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

S4 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [913208 2019-12-06] (McAfee, LLC -> McAfee, Inc.)

R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-10-17] (Acer Incorporated -> Acer Incorporate)

S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187824 2016-04-19] (Razer USA Ltd. -> )

S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] (CyberLink -> )

R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-10-17] (Acer Incorporated -> Acer Incorporate)

S4 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [132864 2016-04-29] (Razer USA Ltd. -> Razer Inc.)

S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11293936 2018-04-03] (TeamViewer GmbH -> TeamViewer GmbH)

S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (Acer Incorporated -> acer)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited)

R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

S3 NvStreamNetworkSvc; "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" [X]

S2 NvStreamSvc; "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe" [X]

R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 akshasp; C:\Windows\system32\DRIVERS\akshasp.sys [87864 2017-02-10] (SafeNet, Inc. -> SafeNet, Inc.)

S3 akshhl; C:\Windows\system32\DRIVERS\akshhl.sys [86328 2017-02-10] (SafeNet, Inc. -> SafeNet, Inc.)

S3 aksusb; C:\Windows\system32\DRIVERS\aksusb.sys [332088 2017-02-10] (SafeNet, Inc. -> SafeNet, Inc.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3893248 2014-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)

S3 AX88772; C:\Windows\system32\DRIVERS\ax88772.sys [113864 2013-07-18] (WDKTestCert asix,130126255272009909 -> ASIX Electronics Corp.)

S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows ® Win 7 DDK provider)

S3 DESerialPort; C:\Windows\system32\DRIVERS\DimensionSerialPort.sys [24576 2016-11-12] () [File not signed]

S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [1287496 2017-02-10] (SafeNet, Inc. -> SafeNet, Inc.)

R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated -> Acer Incorporated)

R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [116736 2014-02-20] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)

S3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [38432 2017-06-18] (SoftEther Corporation -> SoftEther Corporation)

S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation -> NVIDIA Corporation)

R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2019-05-06] (NVIDIA Corporation -> NVIDIA Corporation)

R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )

S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )

R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated -> Acer Incorporated)

R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-03-10] (Razer Inc. -> Razer, Inc.)

R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-04-17] (Razer Inc. -> Razer, Inc.)

R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)

R1 SeLow; C:\Windows\system32\DRIVERS\SeLow_x64.sys [51232 2017-06-18] (SoftEther Corporation -> SoftEther Corporation)

S3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Windows -> Microsoft Corporation)

R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)

R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [46408 2017-06-02] (SteelSeries ApS -> SteelSeries ApS)

R3 sshid; C:\Windows\System32\drivers\sshid.sys [54560 2018-01-09] (SteelSeries ApS -> SteelSeries ApS)

S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [42736 2014-07-10] (Synaptics Incorporated -> Synaptics Incorporated)

R3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [40664 2017-06-18] (OpenVPN Technologies, Inc. -> The OpenVPN Project)

R3 tapwindscribe0901; C:\Windows\system32\DRIVERS\tapwindscribe0901.sys [45560 2018-07-06] (Windscribe Limited -> The OpenVPN Project)

S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)

U1 aswbdisk; no ImagePath

S3 DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [X]

S3 GPU-Z; \??\C:\Users\VOLKAN~1\AppData\Local\Temp\GPU-Z.sys [X] <==== ATTENTION

S3 WinRing0_1_2_0; \??\C:\Users\VOLKAN~1\AppData\Local\Temp\Rar$EXa0.093\WinRing0x64.sys [X] <==== ATTENTION

S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

U3 aswMBR; \??\C:\Users\VOLKAN~1\AppData\Local\Temp\aswMBR.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-06 15:34 - 2020-01-06 15:35 - 000046362 _____ C:\Users\Volkan Pc\Downloads\FRST.txt

2020-01-06 15:32 - 2020-01-06 15:32 - 000002019 _____ C:\Users\Volkan Pc\Desktop\aswMBR.txt

2020-01-06 15:32 - 2020-01-06 15:32 - 000000512 _____ C:\Users\Volkan Pc\Desktop\MBR.dat

2020-01-06 15:24 - 2020-01-06 15:24 - 000411568 _____ C:\Windows\Minidump\010620-7984-01.dmp

2020-01-06 15:14 - 2020-01-06 15:14 - 002272256 _____ (Farbar) C:\Users\Volkan Pc\Downloads\FRST64.exe

2020-01-06 15:13 - 2020-01-06 15:13 - 005198336 _____ (AVAST Software) C:\Users\Volkan Pc\Downloads\aswMBR.exe

2020-01-05 04:04 - 2020-01-05 04:04 - 000000000 ___HD C:\Users\Volkan Pc\Documents\v&s

2020-01-04 16:08 - 2020-01-04 16:08 - 000421024 _____ C:\Users\Volkan Pc\Downloads\lazyflasher-no-verity-opt-encrypt.zip

2020-01-04 16:03 - 2020-01-04 16:15 - 1989839886 _____ C:\Users\Volkan Pc\Downloads\miui_MI8Global_V11.0.6.0.PEAMIXM_45261e66d2_9.0.zip

2020-01-04 15:47 - 2020-01-04 15:47 - 000000000 ___HD C:\$AV_ASW

2020-01-04 15:05 - 2020-01-04 15:05 - 005477110 _____ C:\Users\Volkan Pc\Downloads\Magisk-v20.1.zip

2020-01-04 15:05 - 2020-01-04 15:05 - 002143331 _____ C:\Users\Volkan Pc\Downloads\MagiskManager-v7.5.0.apk

2019-12-27 00:35 - 2019-12-27 00:35 - 000000000 ____D C:\Users\Volkan Pc\AppData\Roaming\NVIDIA

2019-12-22 21:04 - 2019-12-23 00:27 - 000102400 _____ C:\Users\Volkan Pc\Desktop\P.M.A.F-VOLKAN ÖZDİNÇ.xls

2019-12-22 21:04 - 2019-12-23 00:15 - 000095744 _____ C:\Users\Volkan Pc\Desktop\P.P.D.F-VOLKAN ÖZDİNÇ.xls

2019-12-22 02:38 - 2019-12-07 04:21 - 005562208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2019-12-22 02:38 - 2019-12-07 04:21 - 002652712 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll

2019-12-22 02:38 - 2019-12-07 04:21 - 001768456 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll

2019-12-22 02:38 - 2019-12-07 04:21 - 000670744 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll

2019-12-22 02:38 - 2019-12-07 04:21 - 000455152 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll

2019-12-22 02:38 - 2019-12-07 04:21 - 000129392 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

2019-12-22 02:38 - 2019-12-07 04:21 - 000083392 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll

2019-12-22 02:38 - 2019-12-04 13:50 - 008800072 _____ C:\Windows\system32\nvcoproc.bin

2019-12-22 02:38 - 2019-11-05 22:59 - 000001951 _____ C:\Windows\NvContainerRecovery.bat

2019-12-22 02:37 - 2019-12-22 02:37 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation

2019-12-22 02:36 - 2019-12-09 00:26 - 001729440 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe

2019-12-22 02:36 - 2019-12-09 00:26 - 001729440 _____ C:\Windows\system32\vulkaninfo.exe

2019-12-22 02:36 - 2019-12-09 00:26 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe

2019-12-22 02:36 - 2019-12-09 00:26 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo.exe

2019-12-22 02:36 - 2019-12-09 00:25 - 027571328 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll

2019-12-22 02:36 - 2019-12-09 00:25 - 011843488 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll

2019-12-22 02:36 - 2019-12-09 00:25 - 010167736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll

2019-12-22 02:36 - 2019-12-09 00:25 - 001079200 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll

2019-12-22 02:36 - 2019-12-09 00:25 - 001079200 _____ C:\Windows\system32\vulkan-1.dll

2019-12-22 02:36 - 2019-12-09 00:25 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll

2019-12-22 02:36 - 2019-12-09 00:25 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1.dll

2019-12-22 02:36 - 2019-12-09 00:25 - 000449248 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2019-12-22 02:36 - 2019-12-09 00:25 - 000353408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 126778064 _____ (NVIDIA Corp.) C:\Windows\system32\nvoptix.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 040310400 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 029931384 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 029543024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 025238472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 022838928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2019-12-22 02:36 - 2019-12-09 00:24 - 017461192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 004994632 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 004450208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 002075040 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 001728128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444166.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 001568480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 001491680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444166.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 001483720 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 001371856 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 001145760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 001065048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 000633432 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 000545832 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 000524456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 000474056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 000429200 _____ C:\Windows\system32\nvofapi64.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 000381056 _____ C:\Windows\SysWOW64\nvofapi.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 000177264 _____ (NVIDIA Corporation) C:\Windows\system32\nvdlistx.dll

2019-12-22 02:36 - 2019-12-09 00:24 - 000155720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvdlist.dll

2019-12-22 02:36 - 2019-12-09 00:23 - 040510424 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2019-12-22 02:36 - 2019-12-09 00:23 - 035380264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2019-12-22 02:36 - 2019-12-09 00:23 - 015030928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2019-12-22 02:36 - 2019-12-09 00:23 - 000528456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll

2019-12-22 02:36 - 2019-12-08 20:20 - 039826224 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2019-12-22 02:36 - 2019-12-08 20:20 - 034363176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2019-12-22 02:36 - 2019-12-08 20:20 - 022093592 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2019-12-22 02:36 - 2019-12-08 20:20 - 018406736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2019-12-22 02:36 - 2019-12-08 20:20 - 004806784 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2019-12-22 02:36 - 2019-12-08 20:20 - 004249384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2019-12-22 02:36 - 2019-12-07 05:44 - 000052765 _____ C:\Windows\system32\nvinfo.pb

2019-12-22 02:36 - 2019-12-07 05:44 - 000000671 _____ C:\Windows\SysWOW64\nv-vk32.json

2019-12-22 02:36 - 2019-12-07 05:44 - 000000671 _____ C:\Windows\system32\nv-vk64.json

2019-12-21 01:24 - 2019-12-21 01:24 - 000000000 ____D C:\adb

2019-12-21 01:23 - 2019-12-21 01:23 - 009560052 _____ () C:\Users\Volkan Pc\Downloads\adb-setup-1.3.exe

2019-12-21 00:43 - 2019-12-21 00:44 - 074025309 _____ C:\Users\Volkan Pc\Downloads\Mi8 Root ve Driver_cookkolay.com.rar

2019-12-21 00:25 - 2020-01-04 15:50 - 000000000 ____D C:\twrp

2019-12-21 00:23 - 2019-12-21 00:23 - 002127433 _____ C:\Users\Volkan Pc\Downloads\MIUI Türkiye_Twrp_aracı_V2 (2).zip

2019-12-20 00:41 - 2019-12-20 00:41 - 000000000 ____D C:\dipper_global_images_V10.3.5.0.PEAMIXM_20190912.0000.00_9.0_global_17165d3032

2019-12-18 22:01 - 2019-12-18 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox

2019-12-17 22:30 - 2019-12-17 22:30 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe

2019-12-17 22:30 - 2019-12-17 22:30 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys

2019-12-17 22:30 - 2019-12-17 22:30 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys

2019-12-17 22:30 - 2019-12-17 22:30 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys

2019-12-13 18:32 - 2019-12-13 18:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windscribe

2019-12-10 23:16 - 2019-11-28 13:26 - 001368072 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2019-12-10 23:16 - 2019-11-28 08:20 - 004171264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2019-12-10 23:16 - 2019-11-28 08:20 - 000432128 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2019-12-10 23:16 - 2019-11-28 07:03 - 001085440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2019-12-10 23:16 - 2019-11-21 05:16 - 000580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2019-12-10 23:16 - 2019-11-21 05:16 - 000496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2019-12-10 23:16 - 2019-11-19 23:56 - 025753088 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2019-12-10 23:16 - 2019-11-19 23:18 - 000797184 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2019-12-10 23:16 - 2019-11-19 23:17 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2019-12-10 23:16 - 2019-11-19 22:49 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll

2019-12-10 23:16 - 2019-11-19 22:41 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2019-12-10 23:16 - 2019-11-19 22:36 - 015445504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2019-12-10 23:16 - 2019-11-19 22:26 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2019-12-10 23:16 - 2019-11-19 22:15 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2019-12-10 23:16 - 2019-11-19 22:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2019-12-10 23:16 - 2019-11-19 11:17 - 020290048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2019-12-10 23:16 - 2019-11-19 10:49 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2019-12-10 23:16 - 2019-11-19 10:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll

2019-12-10 23:16 - 2019-11-19 10:26 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2019-12-10 23:16 - 2019-11-19 10:23 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2019-12-10 23:16 - 2019-11-19 10:20 - 013838336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2019-12-10 23:16 - 2019-11-19 10:05 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2019-12-10 23:16 - 2019-11-19 10:01 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2019-12-10 23:16 - 2019-11-19 10:00 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2019-12-10 23:16 - 2019-11-15 18:54 - 001756672 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll

2019-12-10 23:16 - 2019-11-15 18:40 - 001492992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll

2019-12-10 23:16 - 2019-11-13 08:54 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll

2019-12-10 23:16 - 2019-11-13 08:54 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2019-12-10 23:16 - 2019-11-13 08:52 - 000113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll

2019-12-10 23:16 - 2019-11-13 08:52 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2019-12-10 23:16 - 2019-11-11 23:15 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll

2019-12-10 23:16 - 2019-11-11 22:37 - 000881152 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe

2019-12-10 23:16 - 2019-11-09 11:49 - 000409728 _____ (Microsoft Corporation) C:\Windows\system32\services.exe

2019-12-10 23:16 - 2019-11-09 04:12 - 003551232 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2019-12-10 23:16 - 2019-11-05 07:21 - 000162392 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2019-12-10 23:16 - 2019-11-05 03:06 - 000805376 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2019-12-10 23:16 - 2019-11-05 03:03 - 000611432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2019-12-10 23:16 - 2019-10-27 02:17 - 001717760 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2019-12-09 21:28 - 2019-03-28 12:11 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll

2019-12-09 21:28 - 2019-03-28 12:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll

2019-12-09 21:28 - 2019-03-28 12:09 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll

2019-12-09 21:28 - 2019-03-28 12:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll

2019-12-09 21:28 - 2019-02-21 05:53 - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll

2019-12-09 21:28 - 2019-02-21 05:53 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll

2019-12-09 21:28 - 2019-02-21 05:53 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll

2019-12-09 21:28 - 2019-02-21 05:53 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll

2019-12-09 21:27 - 2019-02-21 05:53 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll

2019-12-09 21:27 - 2019-02-21 05:53 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll

2019-12-08 15:29 - 2019-12-08 15:29 - 001140421 _____ C:\Users\Volkan Pc\Downloads\doc01306820191204113434.pdf

2019-12-07 02:39 - 2019-12-07 17:54 - 000003274 _____ C:\Windows\system32\Tasks\SamsungMagician

2019-12-07 02:39 - 2019-12-07 02:39 - 000000000 ____D C:\ProgramData\Samsung

2019-12-07 02:39 - 2019-12-07 02:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician

2019-12-07 02:39 - 2019-12-07 02:39 - 000000000 ____D C:\Program Files (x86)\Samsung

2019-12-07 02:38 - 2019-12-07 02:38 - 046700096 _____ C:\Users\Volkan Pc\Downloads\Samsung_Magician_Installer.zip

2019-12-07 02:26 - 2019-12-07 02:26 - 000266871 _____ C:\Users\Volkan Pc\Downloads\AS-SSD-Benchmark2.0.6821.zip

2019-12-07 02:12 - 2019-12-20 00:54 - 000000000 ____D C:\Program Files (x86)\Windscribe

2019-12-07 02:12 - 2019-12-13 18:32 - 000001087 _____ C:\Users\Public\Desktop\Windscribe.lnk

2019-12-07 02:12 - 2019-12-13 18:32 - 000001087 _____ C:\ProgramData\Desktop\Windscribe.lnk

2019-12-07 02:12 - 2019-12-07 02:12 - 016899544 _____ (Windscribe Limited ) C:\Users\Volkan Pc\Downloads\Windscribe.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-06 15:35 - 2018-08-05 00:22 - 000000000 ____D C:\FRST

2020-01-06 15:28 - 2016-10-01 15:50 - 000000394 _____ C:\Windows\Tasks\updater.job

2020-01-06 15:28 - 2016-09-24 05:34 - 000000000 ____D C:\ProgramData\NVIDIA

2020-01-06 15:24 - 2017-08-15 21:59 - 000000924 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job

2020-01-06 15:24 - 2017-08-15 21:59 - 000000920 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job

2020-01-06 15:24 - 2016-10-01 15:50 - 000000340 _____ C:\Windows\Tasks\SuperDestekStartup.job

2020-01-06 15:24 - 2015-10-08 02:43 - 000000000 ____D C:\Windows\Minidump

2020-01-06 15:24 - 2015-06-23 05:02 - 000000000 ____D C:\Users\Volkan Pc

2020-01-06 15:24 - 2013-08-22 17:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT

2020-01-06 15:15 - 2019-12-02 18:36 - 000004956 _____ C:\Windows\system32\Tasks\Microsoft Office 15 Sync Maintenance for VOLCANO-Volkan VOLCANO

2020-01-06 15:15 - 2018-09-19 19:27 - 000003442 _____ C:\Windows\system32\Tasks\BacKGroundAgent

2020-01-06 15:15 - 2018-08-05 16:53 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software

2020-01-06 15:15 - 2018-08-05 00:40 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update

2020-01-06 15:15 - 2018-06-08 03:49 - 000003922 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-01-06 15:15 - 2017-10-26 14:04 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-01-06 15:15 - 2017-10-26 14:04 - 000003814 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-01-06 15:15 - 2017-10-26 14:04 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-01-06 15:15 - 2017-10-26 14:01 - 000003738 _____ C:\Windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-01-06 15:15 - 2017-10-26 14:01 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-01-06 15:15 - 2017-10-26 14:01 - 000003730 _____ C:\Windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-01-06 15:15 - 2017-10-26 14:01 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-01-06 15:15 - 2017-08-15 21:59 - 000003896 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA

2020-01-06 15:15 - 2017-08-15 21:59 - 000003660 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore

2020-01-06 15:15 - 2017-07-27 02:29 - 000003174 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2812564318-4242938739-427151021-1001

2020-01-06 15:15 - 2016-10-01 15:50 - 000002594 _____ C:\Windows\system32\Tasks\updater

2020-01-06 15:15 - 2016-10-01 15:50 - 000002512 _____ C:\Windows\system32\Tasks\SuperDestekStartup

2020-01-06 15:15 - 2016-06-11 20:18 - 000002930 _____ C:\Windows\system32\Tasks\Power Management

2020-01-06 15:15 - 2015-07-29 15:51 - 000002790 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC

2020-01-06 15:15 - 2015-06-23 00:17 - 000003456 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA

2020-01-06 15:15 - 2015-06-23 00:17 - 000003328 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

2020-01-06 15:15 - 2015-06-22 22:21 - 000003016 _____ C:\Windows\system32\Tasks\Quick Access Quick Launcher

2020-01-06 15:15 - 2015-06-22 22:21 - 000002896 _____ C:\Windows\system32\Tasks\Quick Access

2020-01-06 15:15 - 2014-09-27 17:25 - 000003594 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2812564318-4242938739-427151021-500

2020-01-06 15:15 - 2014-09-27 17:05 - 000002904 _____ C:\Windows\system32\Tasks\Launch Manager

2020-01-06 15:15 - 2014-09-27 16:57 - 000003272 _____ C:\Windows\system32\Tasks\DolbySelectorTask

2020-01-06 15:15 - 2014-09-27 16:54 - 000003718 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473

2020-01-06 15:15 - 2014-09-27 16:54 - 000003476 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon

2020-01-06 15:15 - 2014-07-26 05:53 - 000005314 _____ C:\Windows\system32\Tasks\Software Update Application

2020-01-06 15:15 - 2014-07-26 05:53 - 000004562 _____ C:\Windows\system32\Tasks\ACCAgent

2020-01-06 15:15 - 2014-07-26 05:53 - 000003812 _____ C:\Windows\system32\Tasks\ACC

2020-01-06 15:10 - 2014-09-27 17:08 - 000080676 _____ C:\Windows\system32\perfh01F.dat

2020-01-06 15:10 - 2014-09-27 17:08 - 000017986 _____ C:\Windows\system32\perfc01F.dat

2020-01-06 15:10 - 2014-03-18 12:53 - 000166898 _____ C:\Windows\system32\PerfStringBackup.INI

2020-01-06 15:10 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\Inf

2020-01-06 03:50 - 2016-10-26 02:56 - 000000000 ____D C:\Program Files (x86)\Steam

2020-01-06 03:08 - 2013-08-22 16:25 - 000262144 ___SH C:\Windows\system32\config\BBI

2020-01-04 15:33 - 2019-12-04 22:13 - 000000000 _____ C:\Windows\system32\last.dump

2019-12-22 21:09 - 2015-06-23 05:03 - 000000000 ____D C:\Users\Volkan Pc\AppData\Local\Packages

2019-12-22 21:04 - 2014-09-27 16:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation

2019-12-22 13:06 - 2015-06-23 05:09 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2812564318-4242938739-427151021-1001

2019-12-22 02:38 - 2014-09-27 16:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation

2019-12-22 02:38 - 2013-08-22 18:36 - 000000000 ____D C:\Windows\Help

2019-12-21 01:18 - 2017-02-12 16:01 - 000000000 ____D C:\Users\Volkan Pc\MiCloud

2019-12-21 01:13 - 2018-12-04 03:16 - 000000000 ____D C:\Users\Volkan

2019-12-21 00:29 - 2018-12-04 01:41 - 000000000 ____D C:\Users\Volkan Pc\AppData\Roaming\.ACEStream

2019-12-21 00:29 - 2018-12-04 01:40 - 000000000 ____D C:\Users\Volkan Pc\AppData\Roaming\ACEStream

2019-12-20 02:10 - 2015-06-26 04:39 - 002231296 ___SH C:\Users\Volkan Pc\Desktop\Thumbs.db

2019-12-18 22:02 - 2017-08-15 21:59 - 000000000 ____D C:\Program Files (x86)\Dropbox

2019-12-18 18:01 - 2015-06-23 00:20 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2019-12-18 18:01 - 2015-06-23 00:20 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2019-12-18 18:01 - 2015-06-23 00:20 - 000002203 _____ C:\ProgramData\Desktop\Google Chrome.lnk

2019-12-13 19:15 - 2018-08-05 00:43 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update

2019-12-13 18:58 - 2013-08-22 18:36 - 000000000 ____D C:\Windows\rescache

2019-12-13 01:02 - 2013-08-22 18:20 - 000000000 ____D C:\Windows\CbsTemp

2019-12-12 23:32 - 2013-08-22 17:44 - 000574376 _____ C:\Windows\system32\FNTCACHE.DAT

2019-12-12 03:03 - 2015-06-23 03:42 - 000000000 ____D C:\Windows\system32\MRT

2019-12-12 02:59 - 2015-06-23 03:42 - 129221664 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

2019-12-08 15:29 - 2015-07-08 19:16 - 004897280 ___SH C:\Users\Volkan Pc\Downloads\Thumbs.db

2019-12-07 15:30 - 2019-02-04 23:47 - 000002325 _____ C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive İş.lnk

==================== Files in the root of some directories ========

2018-01-01 16:23 - 2018-04-29 17:11 - 000000006 _____ () C:\Users\Volkan Pc\AppData\Roaming\.nfe_lock

2019-12-05 10:59 - 2019-12-05 10:59 - 000269570 _____ () C:\Users\Volkan Pc\AppData\Roaming\cmx_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt

2015-07-08 20:10 - 2015-07-08 20:10 - 000004147 _____ () C:\Users\Volkan Pc\AppData\Local\recently-used.xbel

2015-07-01 05:12 - 2015-07-01 05:12 - 000000017 _____ () C:\Users\Volkan Pc\AppData\Local\resmon.resmoncfg

2019-04-13 17:00 - 2019-04-13 17:02 - 000000075 _____ () C:\Users\Volkan Pc\AppData\Local\update_progress.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2019-12-26 18:12

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-12-2019

Ran by Volkan (06-01-2020 15:35:51)

Running from C:\Users\Volkan Pc\Downloads

Windows 8.1 Single Language (Update) (X64) (2015-06-23 02:02:04)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2812564318-4242938739-427151021-500 - Administrator - Disabled)

Guest (S-1-5-21-2812564318-4242938739-427151021-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-2812564318-4242938739-427151021-1003 - Limited - Enabled)

Volkan (S-1-5-21-2812564318-4242938739-427151021-1001 - Administrator - Enabled) => C:\Users\Volkan Pc

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark (HKLM\...\{A4F25B0E-C0F2-4CA6-A481-AC123A0B4D85}) (Version: 1.5.915.0 - Futuremark) Hidden

3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)

7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)

abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.07.2004 - Acer Incorporated)

abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2000 - Acer Incorporated)

abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.03.2003 - Acer Incorporated)

abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.08.2003.3 - Acer Incorporated)

abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.00.2005.6 - Acer Incorporated)

Acer Care Center (HKLM\...\{A424844F-CDB3-45E2-BB77-1DDE4A091E76}) (Version: 1.00.3013 - Acer Incorporated)

Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Acer Incorporated)

Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8115 - Acer Incorporated)

Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated)

Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8109 - Acer Incorporated)

Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.01.3018 - Acer Incorporated)

Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8108 - Acer Incorporated)

Acer User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.02.3005 - Acer Incorporated)

Acer User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.02.3005 - Acer Incorporated)

Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2005.0 - Acer Incorporated)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)

Aloha TriPeaks (HKLM-x32\...\WTA-2c1e8d7a-ed19-4f75-92e6-dce67adc9746) (Version: 2.2.0.98 - WildTangent) Hidden

AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated)

AutoCAD 2015 - English (HKLM\...\{5783F2D7-E001-0000-0102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden

AutoCAD 2015 - English (HKLM\...\{5783F2D7-E001-0409-2102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden

AutoCAD 2015 Language Pack - English (HKLM\...\{5783F2D7-E001-0409-1102-0060B0CE6BBA}) (Version: 20.0.51.0 - Autodesk) Hidden

Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.0.27.1100 - Autodesk)

Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)

Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 5.0.142.14 - Autodesk)

Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk)

Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)

Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)

Autodesk Content Service (HKLM-x32\...\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden

Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)

Autodesk Content Service Language Pack (HKLM-x32\...\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden

Autodesk Featured Apps (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)

Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)

Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)

Autodesk ReCap (HKLM\...\{31ABA3F2-0000-1033-0102-111D43815377}) (Version: 1.3.1.39 - Autodesk) Hidden

Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.3.1.39 - Autodesk)

Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)

Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)

Bejeweled 2 Deluxe (HKLM-x32\...\WTA-8e5f3cb5-d340-4e8a-83db-0118bbea4f4a) (Version: 2.2.0.95 - WildTangent) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform)

Citrix Online Launcher (HKLM-x32\...\{09DA5EE2-7E46-4DC4-96F9-BFEE50D40659}) (Version: 1.0.408 - Citrix)

CPUID CPU-Z 1.83 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.83 - CPUID, Inc.)

Crystal Reports Basic Runtime for Visual Studio 2008 (HKLM-x32\...\{CE26F10F-C80F-4377-908B-1B7882AE2CE3}) (Version: 10.5.0.0 - Business Objects)

CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4917 - CyberLink Corp.)

CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.4218 - CyberLink Corp.)

CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.4220 - CyberLink Corp.)

Discord (HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)

Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc)

Dropbox (HKLM-x32\...\Dropbox) (Version: 87.4.138 - Dropbox, Inc.)

Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden

ECigStats (HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\ECigStats) (Version: - Evolv)

EScribe Suite (HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\EScribe) (Version: - Evolv)

Farm to Fork Collector's Edition (HKLM-x32\...\WTA-16699c0e-5a6d-4c4c-b0ec-2f4bb5638e4b) (Version: 3.0.2.59 - WildTangent) Hidden

Foxit PhantomPDF (HKLM-x32\...\{2DF18CA8-86F2-4F3A-A1BF-A2A7D39B9161}) (Version: 7.0.49.127 - Foxit Software Inc.)

Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)

Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 11.0.0.7 - WildTangent, Inc.)

Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 11.0.0.7 - WildTangent, Inc.)

GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.6.5260 - Gretech Corporation)

GOM Remote (HKLM-x32\...\GOM Remote) (Version: 2.1.1.6 - GOM & Company)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.88 - Google LLC)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden

Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-5333bd65-4384-4b05-917f-92c457d9487e) (Version: 3.0.2.59 - WildTangent) Hidden

HWiNFO64 Version 6.14 (HKLM\...\HWiNFO64_is1) (Version: 6.14 - Martin Malik - REALiX)

ideCAD Statik 7 ( x64) (HKLM\...\{30FEC3A0-3650-4A67-B5BC-B5B1D877E772}) (Version: 7.022.0001 - ideYAPI)

Infinite Media Acceleration (HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Octoshape Streaming Services) (Version: - Akamai Inc.)

Intel® Chipset Device Software (HKLM-x32\...\{d370215a-d003-43ae-a3b6-1028af64d5a1}) (Version: 10.0.20 - Intel® Corporation) Hidden

Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1168 - Intel Corporation)

Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3643 - Intel Corporation)

Intel® Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)

Jewel Match 3 (HKLM-x32\...\WTA-8d9b7b2e-2c59-48ba-b0d2-644b7e5f54b6) (Version: 3.0.2.59 - WildTangent) Hidden

King Oddball (HKLM-x32\...\WTA-51737d9f-b0ba-426e-845b-42730e89f178) (Version: 3.0.2.48 - WildTangent) Hidden

League of Legends (HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)

LUXOR Evolved (HKLM-x32\...\WTA-78b7a28b-da9e-4bb0-9324-8eca929875b7) (Version: 2.2.0.98 - WildTangent) Hidden

Macrium Reflect Free Edition (HKLM\...\{86151339-E0F2-432F-842D-B6885957EEEA}) (Version: 7.2.4557 - Paramount Software (UK) Ltd.) Hidden

Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 7.2 - Paramount Software (UK) Ltd.)

Macromedia Flash Player 8 (HKLM-x32\...\ShockwaveFlash) (Version: 8 - Macromedia)

Magic Academy (HKLM-x32\...\WTA-97598c25-ff55-4037-a159-28e10347a211) (Version: 2.2.0.98 - WildTangent) Hidden

McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.52 - McAfee, LLC.)

Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)

Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)

Microsoft Project Professional 2013 (HKLM\...\Office15.PRJPRO) (Version: 15.0.4420.1017 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)

Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)

MiniTool Partition Wizard Free 11 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited)

MiPhoneAssistant °æ±¾ 3.0.330.134 (HKLM-x32\...\{A312195C-46AF-4208-9C6E-F4E2F20883B5}_is1) (Version: 3.0.330.134 - Xiaomi, Inc.)

Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.6.1 - Notepad++ Team)

NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)

NVIDIA Grafik Sürücüsü 441.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.66 - NVIDIA Corporation)

NVIDIA PhysX Sistem Yazılımı 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)

Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden

Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

Peggle Nights (HKLM-x32\...\WTA-a1e0938f-7b2e-42e8-922c-63d30f938304) (Version: 2.2.0.98 - WildTangent) Hidden

Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-8d279364-c36c-442f-8d64-64fead584dcc) (Version: 3.0.2.59 - WildTangent) Hidden

Polar Bowler 1st Frame (HKLM-x32\...\WTA-dc44c76a-46b8-438a-8741-aa9259aedd19) (Version: 3.0.2.59 - WildTangent) Hidden

PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.16291 - Kakao Corp.)

Prezi Classic (HKLM-x32\...\{9f2e46d8-6316-41c3-81af-660627ec7f03}) (Version: 6.24.0 - Prezi)

Prezi Classic (HKLM-x32\...\{FECDCB8A-7ACF-4029-80C9-CE5A7ADE5B0C}) (Version: 6.24.0 - Prezi) Hidden

Primavera P6 Professional (HKLM-x32\...\{2b15d1f9-da3e-4ccd-9137-9ed8fa51787c}) (Version: 17.12.1.26606 - Oracle Corporation)

Primavera P6 Professional (x64) (HKLM\...\{2B84FFE1-0AF1-46E2-B2F1-0A5CE86D718B}) (Version: 17.12.1.26606 - Oracle Corporation) Hidden

Qualcomm Atheros 61x4 Wireless LAN&Bluetooth Installer (HKLM-x32\...\{3241744A-BA36-41F0-B4AA-EF3946D00632}) (Version: 11.0.0.619A - Qualcomm Atheros)

Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.322 - Qualcomm Atheros Communications)

Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.33 - Qualcomm Atheros)

Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39059 - Realtek Semiconductor Corp.)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7260 - Realtek Semiconductor Corp.)

RogueKiller version 12.12.29.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.12.29.0 - Adlice Software)

Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 6.0.0.100 - Samsung Electronics)

SketchUp Import (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)

Skype 8.31 sürümü (HKLM-x32\...\Skype_is1) (Version: 8.31 - Skype Technologies S.A.)

Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)

SportZone (HKLM-x32\...\{5AE24741-DE0F-6E31-203E-160CBE9F475B}) (Version: 1.5.1 - UNKNOWN) Hidden

SportZone (HKLM-x32\...\com.sportplanet.sportzone) (Version: 1.5.1 - UNKNOWN)

Spotify (HKLM-x32\...\Spotify) (Version: 0.9.6.81.gd359a796 - Spotify AB)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

SteelSeries Engine 3.12.2 (HKLM\...\SteelSeries Engine 3) (Version: 3.12.2 - SteelSeries ApS)

SüperDestek (HKLM-x32\...\{055C8E86-C862-40EB-95DA-5FABE54BB37E}) (Version: 2.1.10 - Superonline)

TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.3629 - TeamViewer)

The Chronicles of Emerland Solitaire (HKLM-x32\...\WTA-ba48131d-c541-4864-a053-a72e7b36ee5f) (Version: 3.0.2.51 - WildTangent) Hidden

Trinklit Supreme (HKLM-x32\...\WTA-e2522e9f-f3ea-4f07-b88c-abf2eea98d45) (Version: 2.2.0.98 - WildTangent) Hidden

Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden

VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)

WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)

WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.11.13 - WildTangent) Hidden

Windows Sürücü Paketi - Google, Inc. (WinUSB) AndroidUsbDeviceClass (01/27/2014 9.0.0000.00000) (HKLM\...\9CA77E2A8332A0824C54DA611BBE4CA24AB1F750) (Version: 01/27/2014 9.0.0000.00000 - Google, Inc.)

Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited)

WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Zuma's Revenge (HKLM-x32\...\WTA-6cfc31dd-d743-41aa-88b7-2d97e30569a5) (Version: 2.2.0.97 - WildTangent) Hidden

小米云服务 (HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\MiCloudPC) (Version: 0.1.16 - xiaomi)

Packages:

=========

- Games App - -> C:\Program Files\WindowsApps\WildTangentGames.-GamesApp-_1.0.3.28_x86__qt5r5pa5dyg8m [2015-06-27] (WildTangent Games)

AccuWeather for Windows 8 -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_4.1.0.31_x64__8zz2pj9h1h1d8 [2016-08-03] (AccuWeather)

Acer Explorer -> C:\Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4 [2015-06-23] (Acer Incorporated)

Anı Videoları -> C:\Program Files\WindowsApps\Microsoft.MovieMoments_6.3.9654.20464_x64__8wekyb3d8bbwe [2015-06-23] (Microsoft Corporation)

eBay -> C:\Program Files\WindowsApps\eBayInc.eBay_1.6.0.34_neutral__1618n3s9xq8tw [2015-06-23] (eBay, Inc)

Evernote Touch -> C:\Program Files\WindowsApps\Evernote.Evernote_3.3.0.102_x86__q4d96b2w5wcc2 [2016-01-18] (Evernote)

Flipboard -> C:\Program Files\WindowsApps\Flipboard.Flipboard_2.1.3.0_neutral__3f5azkryzdbc4 [2017-07-16] (Flipboard)

Fresh Paint -> C:\Program Files\WindowsApps\Microsoft.FreshPaint_2.0.15133.0_x86__8wekyb3d8bbwe [2016-01-12] (Microsoft Corporation)

Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-23] (AMZN Mobile LLC)

MSN Finans -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-27] (Microsoft Corporation) [MS Ad]

MSN Haber -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-27] (Microsoft Corporation) [MS Ad]

MSN Hava Durumu -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-22] (Microsoft Corporation) [MS Ad]

MSN Sağlık ve Fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]

MSN Seyahat -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]

MSN Spor -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-04-29] (Microsoft Corporation) [MS Ad]

MSN Yeme - İçme -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]

Müzik -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-06-23] (Microsoft Corporation) [MS Ad]

Oyunlar -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-03-18] (Microsoft Corporation) [MS Ad]

TeamViewer Touch -> C:\Program Files\WindowsApps\TeamViewer.TeamViewer_10.0.52946.0_x86__89446h4zmeyyt [2015-12-16] (TeamViewer)

TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_1.1.0.0_neutral__6bhtb546zcxnj [2014-09-27] (TuneIn)

Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-07] (Microsoft Corporation) [MS Ad]

Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2014-09-27] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Volkan Pc\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll => No File

CustomCLSID: HKU\S-1-5-21-2812564318-4242938739-427151021-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc -> Autodesk, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)

ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)

ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]

ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2014-02-07] (Autodesk, Inc -> Autodesk)

ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-12-12] (Notepad++ -> )

ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvAppExt.dll [2014-04-29] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]

ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-01-27] (Foxit Software Incorporated -> Foxit Software Inc.)

ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]

ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\Windows\system32\igfxOSP.dll [2014-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)

ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]

ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-04] (AVAST Software s.r.o. -> AVAST Software)

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )

HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )

HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )

HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )

HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )

HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\6ba478f6faf86bd4\ZenMate VPN - Best Cyber Security & Unblock.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=fdcgdnkidjaadafnichfpabhfomcebme

ShortcutWithArgument: C:\Users\Public\Desktop\Dropbox.lnk -> C:\Program Files\Dropbox\StartURL.exe () -> hxxps://www.dropbox.com/partners/acer2014/download

==================== Loaded Modules (Whitelisted) =============

2014-04-29 12:38 - 2014-04-29 12:38 - 000011264 _____ () [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll

2014-04-29 12:35 - 2014-04-29 12:35 - 000086016 _____ () [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll

2018-12-19 06:55 - 2018-04-30 15:00 - 000075776 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

2014-04-29 12:42 - 2014-04-29 12:42 - 000107648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvAppExt.dll

2014-04-29 12:42 - 2014-04-29 12:42 - 000033408 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\CommApi.dll

2014-04-29 12:42 - 2014-04-29 12:42 - 000203392 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\FolderViewImpl.dll

2014-04-29 12:42 - 2014-04-29 12:42 - 000085632 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\GattI.dll

2014-04-29 12:42 - 2014-04-29 12:42 - 000126592 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\gatts.DLL

2014-04-29 12:42 - 2014-04-29 12:42 - 000083072 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Handsfree.dll

2014-04-29 12:43 - 2014-04-29 12:43 - 000034432 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ipc.dll

2014-04-29 12:43 - 2014-04-29 12:43 - 000063104 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ModuleManager.dll

2014-04-29 12:43 - 2014-04-29 12:43 - 001067648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\OutLookLib.dll

2014-04-29 12:43 - 2014-04-29 12:43 - 000027264 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\TCPConnection.dll

2014-04-29 12:43 - 2014-04-29 12:43 - 000116352 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\utils.dll

2014-04-29 12:36 - 2014-04-29 12:36 - 000308224 _____ (Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\LE\LE.dll

2014-04-29 12:37 - 2014-04-29 12:37 - 000210432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Audio\audio.dll

2014-04-29 12:38 - 2014-04-29 12:38 - 000162304 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\BasicPrintProfile\BPP.dll

2014-04-29 12:38 - 2014-04-29 12:38 - 000177152 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\BIP\BIP.dll

2014-04-29 12:36 - 2014-04-29 12:36 - 000018432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\DID\DId.dll

2014-04-29 12:35 - 2014-04-29 12:35 - 000035840 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\FAX\Fax.dll

2014-04-29 12:37 - 2014-04-29 12:37 - 000421888 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\FileTransfer\FileTransfer.dll

2014-04-29 12:38 - 2014-04-29 12:38 - 000096256 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\GapSdp\GapSdp.dll

2014-04-29 12:33 - 2014-04-29 12:33 - 000097792 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\goep\goep.dll

2014-04-29 12:35 - 2014-04-29 12:35 - 000029696 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\HCRP\Hcrp.dll

2014-04-29 12:36 - 2014-04-29 12:36 - 000142848 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\HealthDevice\HDP.dll

2014-04-29 12:38 - 2014-04-29 12:38 - 000091136 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\L2capLib\l2caplib.dll

2014-04-29 12:38 - 2014-04-29 12:38 - 000066048 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\OppOperation\OppOperation.dll

2014-04-29 12:37 - 2014-04-29 12:37 - 000067072 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\pbap\pbap.dll

2014-04-29 12:38 - 2014-04-29 12:38 - 000063488 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\RfcommLib\rfcommlib.dll

2014-04-29 12:37 - 2014-04-29 12:37 - 000097280 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\sap\sap.dll

2014-04-29 12:38 - 2014-04-29 12:38 - 000087552 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\SesMgr\sesmgr.dll

2014-04-29 12:37 - 2014-04-29 12:37 - 000055296 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\spp\spp.dll

2014-04-29 12:37 - 2014-04-29 12:37 - 000064512 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Sync\Sync.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\hmip => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-20 03:43 - 2020-01-06 03:24 - 000000000 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Acer\abFiles\;C:\Program Files\Intel\Intel® Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL;C:\Program Files\Intel\Intel® Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\RogueKiller;;C:\adb

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper

DNS Servers: 192.168.1.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)

Windows Firewall is enabled.

Network Binding:

=============

Wi-Fi: SoftEther Lightweight Network Protocol -> selow (enabled)

Ethernet: SoftEther Lightweight Network Protocol -> selow (enabled)

Ethernet 2: SoftEther Lightweight Network Protocol -> selow (enabled)

Yerel Ağ Bağlantısı 4: SoftEther Lightweight Network Protocol -> selow (enabled)

Yerel Ağ Bağlantısı 3: SoftEther Lightweight Network Protocol -> selow (enabled)

Yerel Ağ Bağlantısı 2: SoftEther Lightweight Network Protocol -> selow (disabled)

Yerel Ağ Bağlantısı: SoftEther Lightweight Network Protocol -> selow (disabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: Autodesk Content Service => 2

MSCONFIG\Services: c2cautoupdatesvc => 2

MSCONFIG\Services: c2cpnrsvc => 2

MSCONFIG\Services: CG6Service => 2

MSCONFIG\Services: ClickToRunSvc => 2

MSCONFIG\Services: dbupdate => 2

MSCONFIG\Services: dbupdatem => 3

MSCONFIG\Services: DbxSvc => 2

MSCONFIG\Services: Futuremark SystemInfo Service => 3

MSCONFIG\Services: GamesAppIntegrationService => 2

MSCONFIG\Services: GamesAppService => 3

MSCONFIG\Services: MacriumService => 2

MSCONFIG\Services: McAfee WebAdvisor => 2

MSCONFIG\Services: Razer Game Scanner Service => 2

MSCONFIG\Services: RichVideo => 2

MSCONFIG\Services: RzKLService => 2

MSCONFIG\Services: SkypeUpdate => 2

MSCONFIG\Services: Steam Client Service => 3

MSCONFIG\Services: TeamViewer => 2

MSCONFIG\Services: WindscribeService => 2

HKLM\...\StartupApproved\StartupFolder: => "AutoCAD Startup Accelerator.lnk"

HKLM\...\StartupApproved\StartupFolder: => "SteelSeries Engine 3.lnk"

HKLM\...\StartupApproved\StartupFolder: => "SüperDestek.lnk"

HKLM\...\StartupApproved\Run: => "WindowsDefender"

HKLM\...\StartupApproved\Run: => "Reflect UI"

HKLM\...\StartupApproved\Run32: => "BacKGround Agent"

HKLM\...\StartupApproved\Run32: => "abDocsDllLoader"

HKLM\...\StartupApproved\Run32: => "ADSKAppManager"

HKLM\...\StartupApproved\Run32: => "Dropbox"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\StartupFolder: => "N.lnk"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\StartupFolder: => "Shortcut to Primary output from Start (Active).lnk"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\StartupFolder: => "Samsung Magician.lnk"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_AA4AE4B776C70B4211A6A651CB9F30E9"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Spotify Web Helper"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Steam"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "CCleaner Monitoring"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Octoshape Streaming Services"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "BingSvc"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Skype"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Autodesk Sync"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "CyberGhost"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "MiPhoneManager"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Discord"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "ECigStats"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Chromium"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "AceStream"

HKU\S-1-5-21-2812564318-4242938739-427151021-1001\...\StartupApproved\Run: => "Windscribe"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{998FA844-8F29-424D-950B-1243E5B91B88}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [{EB32E665-3B11-4546-86F4-73F71C39D5B1}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{AD23C4D8-74D2-4455-93B6-E87CEE122FC7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{DCB913ED-9C05-40DB-9FCA-38C4761508FA}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)

FirewallRules: [{586C8EE1-5751-4483-BC56-DDC6837C35C9}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)

FirewallRules: [{2295CA75-6196-4529-89E0-99D959C5B45E}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{E93FC3F3-1BDB-474C-B04A-2053BF90766A}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{733D4D9F-366B-4D91-A7DB-083E33E94A9A}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)

FirewallRules: [{0161FCB0-FAD9-4EC6-B2B7-6FB83B337B3C}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)

FirewallRules: [{09C6CB6D-C262-4A0E-ADE6-828C71F31EE4}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{D2DB28D1-BB84-4BDA-9974-876BD846F8A0}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{807E004D-26BF-46C9-A8D0-DC0E35CD34F1}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{B1F5AA54-F8ED-4217-A8B6-EB153DBD5DF8}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{A8BFF23E-457C-4069-B6F1-0E24B3695500}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Play.exe (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [{2864D8C6-964D-475C-BF73-50A4814507BC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [{4679FBE0-4C6D-4669-9BA6-0D9EC9EB36B2}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{75C87DC0-3345-4901-A53F-0B1DF7AB01BD}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{23895629-91DF-44CF-A676-0BBB7763FAD4}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer)

FirewallRules: [{B90E82D6-4BE9-4004-8370-2E1D83138F2F}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer)

FirewallRules: [{9A1F4B91-6DE9-4FE3-8C2A-482B67CD16B7}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{1B0C296B-6242-4600-9EAF-E181A6EA75B3}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{3EDE80DB-8592-4B88-BC57-5115F48BC4FD}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer)

FirewallRules: [{A5510623-97DA-457C-BB67-162510111D66}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer)

FirewallRules: [{A415E46E-A1E4-415C-A8CF-5228A9425AC0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)

FirewallRules: [{A01E70E5-846B-4206-A9AA-91779B8B9319}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)

FirewallRules: [{9EC1215C-0A68-4750-9C23-F8FE09A8A817}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe No File

FirewallRules: [{57744AA5-2C65-44F7-9ACC-64837E41DBB1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe No File

FirewallRules: [{5A80E890-40CB-48A8-8C7F-A5C940B32793}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe (Valve -> )

FirewallRules: [{8A4E6BB9-4DD2-43D3-938F-B09984D42791}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe (Valve -> )

FirewallRules: [{C441AEAC-DC0F-47BB-BF29-A4F67636D436}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)

FirewallRules: [{98876F12-572B-41C3-9B4E-C28CCB06FDAA}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)

FirewallRules: [{6455DAD7-7A4A-4E03-8356-AF68B0AFE85D}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{CA978131-D5BE-42F9-A4DE-8350F8C2A02F}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{B34847E7-CAAD-4421-B8E8-E400361181C3}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer)

FirewallRules: [{111E3CEC-C5F5-48D2-AFAB-C8CF00B9504E}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer)

FirewallRules: [{BFBFDCE8-E059-4C94-B9A2-4533D206A62D}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{5E19E39B-5B93-4163-AD1E-A3E28EDC7231}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer)

FirewallRules: [{BD9C145E-7D55-4DCD-9A89-E46915A7A5A8}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer)

FirewallRules: [{71CB7950-3DCC-467E-855F-E886D9AF4ACB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer)

FirewallRules: [TCP Query User{D7654FAF-3C14-4FCE-8199-0D8590F627ED}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe No File

FirewallRules: [UDP Query User{DAE18F60-CED6-4CBD-BF10-A1CA358020A6}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe No File

FirewallRules: [TCP Query User{1C51BD35-AC87-4B22-BAA3-C957A8B804E5}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe No File

FirewallRules: [UDP Query User{575CA8DA-4035-41E9-997C-094378606766}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe No File

FirewallRules: [TCP Query User{C78F8EDD-6A1F-46EC-8DA0-990C0966B8FA}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe No File

FirewallRules: [UDP Query User{30A802B7-59F1-4A65-8EBC-BC2F7363260A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe No File

FirewallRules: [{C7168FD5-F6C2-4DAD-85B5-068E2B96015F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe No File

FirewallRules: [{78ACE51A-3489-4F3D-8C9E-48DD7C62D085}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe No File

FirewallRules: [{11DA4CE2-FEF5-4687-A2A0-D856B56E3D86}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File

FirewallRules: [{60E73925-6016-40F8-B558-3FC8C1EF6952}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{17249EE7-00CA-421E-A233-8047620AAD1A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [TCP Query User{E40F8A5A-6217-49BB-A6EC-A00DB70B26FB}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe No File

FirewallRules: [UDP Query User{3644A64F-5FB1-42A0-8BDB-6B2BAC9C948E}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe No File

FirewallRules: [{4A98DBFA-E810-4D65-B2E4-5429A98C5BED}] => (Allow) LPort=50248

FirewallRules: [{C817E98F-6CFA-4440-B755-D2A78CF9C31C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E2DD5B0B-998A-490C-8152-9F545B381743}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [TCP Query User{58610F06-FE79-48F4-BB9C-2038F7EA982F}C:\phantom\phantomjs.exe] => (Allow) C:\phantom\phantomjs.exe (SUPERONLINE ILETISIM HIZMETLERI A.S. -> )

FirewallRules: [UDP Query User{AD45157A-63A9-4C08-ACB2-80E8B6596741}C:\phantom\phantomjs.exe] => (Allow) C:\phantom\phantomjs.exe (SUPERONLINE ILETISIM HIZMETLERI A.S. -> )

FirewallRules: [TCP Query User{BE6EC514-197F-42E2-AA2F-C34BEB366E6F}C:\users\volkan pc\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Allow) C:\users\volkan pc\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)

FirewallRules: [UDP Query User{1530E441-236E-4046-9B78-17FB00D63FF9}C:\users\volkan pc\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Allow) C:\users\volkan pc\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)

FirewallRules: [{2B29E4AE-F65D-4844-818E-487BBA8DC7D3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe (Valve -> )

FirewallRules: [{DA8B1D7B-F253-4718-92D2-A8E99F6EFB3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe (Valve -> )

FirewallRules: [{053546A0-AC2C-4365-939F-59AF49718394}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{DDD853FF-5B0D-4F39-B763-892D4D4C7678}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B88E12FD-0B10-4F23-B1C0-BBB84BBD260D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{28219785-6D40-4E22-9F71-8F09D42D51AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9C6FD79C-6153-4A59-B57A-CFAE5750E11D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{19BEFD49-2C63-4B4B-922A-9516D671D53E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{5F9B3E64-6F81-4738-BE1A-7763587BA1A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{617290C9-72FD-4373-8A06-283A64DAC48C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E1CE6DC4-6976-4218-A144-2CC4850FEAC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{28BA7922-DE8B-4BE3-BE42-1626404CA5F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{272D5125-EA8C-4523-B810-75D9089DABD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{67D14F36-8C46-4999-8356-1E5CCFC4D249}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6DD5E896-2E74-4C36-B38B-CDB8ADF99115}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{1EB22E92-A820-4699-BFC2-158AF1C3DB77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{89FFCC3F-A230-41F3-A72E-71CED3859DB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{CD33DBB1-D880-40C4-BC3A-0E8A94EB78FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{318EBD81-CE9F-4206-A721-83AFD254B15E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{EE25645F-263B-4383-8E74-3D1F93C825A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6E1BAB00-66A6-4DC4-8E03-48C5DA32329A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B9A84D8F-3E70-4FDA-A361-A1EDBB0A19C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{13C46CCF-FD05-4D49-87C6-BD3E77634153}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{2B822DA3-016F-43CE-9362-B60742341061}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C101301A-B1E6-4E60-B397-39A2592FDD73}] => (Allow) C:\Users\Volkan Pc\AppData\Local\MiPhoneManager\main\MiPCSuite.exe No File

FirewallRules: [{C3C030C1-FB1E-4B0F-84CA-F733F941D0EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{1DAA9FA1-6B3D-4E32-AA00-DAD971D571DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{25140909-8806-4C29-8442-9F194445F4C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B71C1B4F-3585-4727-A9DD-551B229E5E61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{5CF8055D-3A90-493E-B32E-4DC851AE33F5}] => (Allow) LPort=58172

FirewallRules: [{CE60867E-6404-4BF8-BA3E-48CCF5063FA0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D2915FAB-CD42-4E91-A932-126AAD4BD5AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E3AC1892-82F9-4E06-8A52-9C78D641E623}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9046487D-5046-47ED-ADAD-D1D9355D9B9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{34E8050E-3560-4CDE-B3BA-5C01E995232F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B6CD3ACB-83AB-46C3-8F0B-53BFD45D86F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{FC433F54-171B-47DC-BF6D-8A342AE824DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{4BF7D60B-07B9-42AE-AAA4-BEA183ECC72D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E97DAC4B-11A9-40C2-AD1B-38D16B3EAA58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D6B503A9-2EFE-4DC9-A6E2-B0641660496A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{53C39BBF-9B31-432B-9E0F-62FEF2D268CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{0B69B2B1-97E9-4A47-84FB-17499BEE47CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E63133AB-F4B1-41F5-8686-F4230F925DB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C635EB3D-8486-4DB3-854F-E1E4EB3BCF93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{7B0D8B92-738C-4F76-8B0A-1C150FA78DD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{31CABD51-F822-49B6-AA17-561939231FB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{418036E9-D5A6-4FB0-B957-4D3CB6727D7C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{A15F07B3-7A5E-45E8-B8CF-AE40AA9357EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{36986F54-1DCE-4CAA-9D18-69E4B2C83827}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{69CEA240-92C8-4F1E-8F80-52645F08B047}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{06DC681B-4F11-4143-9247-7C9984FB45F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D3E50B51-3C9F-4FDF-9BD9-B2A301CACB41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{42A3E718-34C9-40BD-B222-A9F0771884BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{65649D52-F344-4E3F-8F24-42590A25BCE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{22E9DCB6-0828-4839-A089-E6042320D9EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{23FABFCB-C3E7-4A00-916D-E2E3288182CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{AD34AE4F-F722-40E4-8B3B-329D16511A3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D6C1368E-7320-4414-ABF7-195FD7860E75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{413075B5-677A-4C05-BCFA-E799B20FE452}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{80B0800C-1D3F-4BA3-88BD-F8F43F384FCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E19608CC-3A06-4A7B-B835-0F11B51A7D75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F6DB7EE3-34A7-44A2-8F08-4E6C5402B01D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{2058F8EF-B849-4B51-BDF9-1FB914AA07B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6A562516-CADB-48E7-B5F5-C34674B79689}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{648811F9-F2CB-4FEC-A798-BF8B095BC7C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{7297C311-3502-45BC-BB6B-C8E91DA08545}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{39D027AC-E86A-4396-AC90-64E9832DEDE6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{5BC1553A-DEF0-4715-A5FF-7863BAB51A3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{FBF922B6-A1C9-4ADF-8469-A744D1A7E8D8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{FA5077EC-C1FD-4664-A119-B820F0AA7803}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{BBE92102-83DC-4CB7-9798-B8982306448B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{14408948-02D1-46E6-91A1-931E910D11D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6613BD6F-E9A9-4F52-9BC8-560C08844F97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E04EF9F8-D026-4727-AA61-1CE612D2805E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6A50C7CC-670F-4E7F-A8B4-3BE75799FA64}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{FC8287CE-E386-4F0F-80F3-D7157C075DDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{8B24EB18-4F9A-4D4A-9229-19C5988062B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{046B80F0-1F62-4D14-8BF5-F935688D29DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9BD150F7-8DFE-4313-A3B4-F6CEA5B3A336}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C4832F43-254F-4981-A53C-DD5680CD8412}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{CD126CF5-2861-490E-83F1-5868767B61DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{988B628D-7421-449D-BE50-3E5D536444E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F6D277E2-D317-4EAF-A01C-1372902722C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{7D9A1F2C-E2AF-4483-BC4A-C7FB378982D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{AAAB0414-FDF4-4EFB-88F2-8BF6E2B6B73E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{872F6AE0-568D-4440-941D-D67FD02DFDA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6ABA8285-9C14-46CF-BFB5-C30C8B6F56C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{8ED24357-447F-4494-A19A-9C4A75FDE575}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C62980D8-DE57-40EA-9AD9-35509DA597FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{01F55E38-63FA-42A3-8051-8E4B95C0742D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{EF6821FC-78B2-4248-B554-B9FD5CBB185E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{FFBFC161-97AD-4E33-B024-7BAEECDD84D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D72F5DC8-0B99-470B-9A02-D7FC8FE627D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{A46F7276-25D2-4B46-8C97-6881C3C554D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9980107E-14ED-41B6-BC12-37AC199364EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C842AC1C-B762-4261-8C9A-D3FDB22BEC8A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B7FC5B72-C650-42F5-A218-9459574372B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{8231250A-AD2B-4A55-88F3-32E0BAF74C1B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E3DAE001-F646-47C9-9EE4-69982D51C812}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9071A3C9-8DB9-49CE-97E5-495B9CD3E5C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{FFDF0032-C78E-48F8-9C5D-6872C35CCBC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{908F8E05-98B5-4511-9A4E-63F75E4993A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{0A5475B6-EAE5-4C6C-BC99-0E8EBDBB63E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F8BADDFA-8E63-45F3-8ED9-26E7018A2FD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{8699031B-5334-4270-B94E-62FA07DF7B3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6046F369-D12E-4462-8019-D3DFBF883A9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{933A9B91-C3F0-4834-A40D-0B0F10BE3692}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{7F3B6603-D636-44B0-9DE6-24D2C275BDF2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{865B8DA3-C961-4203-B570-3806B33152E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{1DB58882-3DCA-444E-89E2-5329B47286E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C2FAE8DD-DF20-4D52-9D19-51F2A73E8EEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C5CBAC7B-7DC3-4629-BC22-6AE95C8DE4FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{7F7C4F1A-6AAF-44C4-A3D1-336392F9523B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C7DB03E3-59F4-4240-9FB4-1EEE2DCB8F56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{2A586DF3-F355-4501-A5C0-3DBD23F5A913}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{A2AC2129-D0A4-4CE4-B0AA-350F6DAFD18B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9FE208B2-3444-4CEA-8440-34F4C184C436}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{45C71A47-301C-45A4-9F56-B3FF03AEBD26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{A86E555D-F5B1-4D0C-BC66-4069502B2A6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D8E27608-1280-4D8A-A3D1-C82E1D227A38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{576BE1D1-7C6C-4285-9340-CD64D7370425}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{994013C8-BB18-48F0-822A-D0E4BC394028}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D6E504B2-96AB-4680-A591-E0FA33DE4BFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{BA1C84F2-DC02-4551-BEF0-650900BE6BE9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{5A56DB6F-E4C1-4F5B-9540-513A1B31DBB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{326024F7-0ADB-479C-B29F-7AA7CBF8124E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{CE6670C6-7CC5-4311-8EBC-0756D785DC8A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{19879D71-8E84-4D43-8B3E-46573D6D254A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{44FBF39A-1176-4C17-9139-DBEA80C8D314}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{58664F25-F62B-4778-8491-A1BC2F2E42BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{7B17DD9C-F3E5-44CA-9C5B-A4F47324A889}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{A5AD18C3-7B52-4E45-900C-723030C777C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E0606E83-9CFF-4D7A-A0C0-07863DABFE68}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9E33F3E5-C3D9-4276-889C-E1558B892D12}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{7CCA0203-FD07-4267-A8C7-1F56E1B4BBBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{56493A31-7AD7-44DA-AC5C-F730982A1F8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{15E5BE86-8E3A-403C-A601-A7F369E5936B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{35CA6C06-DDEE-4901-8575-DAEC04A16CE6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{509B5140-9A7C-4084-9436-27D4299B7FC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{AAD47B4C-AD13-400C-91DE-648A96F641A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D9A56477-7D88-4BA9-8C2A-22D45A38A2A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D783D03F-9C06-49FA-94E7-91085ACA35DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{CA8EAC2E-72FE-48F6-9E10-24B144AD036F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{5B2481CF-ACC2-43C9-BE08-B3117A9198DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{BBDF931F-DE0C-4584-BD96-D2B5787584B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{8AF83E25-001E-4E1B-97B8-45DA5D8A1293}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{06C5143E-CF76-4072-B3F9-8C38D5DFB469}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B125F033-C1AA-4CFC-AC22-7305710A2A28}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B9FE941A-D1C7-4769-B2DE-A3C84A11A273}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E04C900E-67D8-475A-9F54-7769D8DE0D45}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6325628B-209C-4980-B676-9B73BF27881D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{7FDD4F2F-5923-468D-BB9F-FBFBB177DD05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D67FE522-D23D-497C-B8B6-4859E45469A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C3A8596E-CC7B-4BCF-A0B1-5D93CB9F8BFC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{CE6A9DC7-B4A3-4C25-8CB2-50895609C79D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{4D60D7D9-B09B-4346-A017-3463492E9601}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{58749267-422C-4C8F-808A-7B9B94F930AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{5608520C-CAD1-4A52-A861-11B42C1944F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{58864D6D-2544-44CC-A525-ABF8EA19464F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{53EE7BE2-4227-4E62-8143-C305BA06CFB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6C7109C5-DAD6-4F7C-AAF0-3689DF05ABA3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{09A77ABB-EE12-46BA-A8CE-26D50C76049B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E160A028-940A-4397-BAEC-0D14123CDEF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{2F270BEF-84FF-425B-954C-5B3B728E56FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{FED9D4E6-B82A-427D-9696-B8CBA5FFB71B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{8D680F3D-3D40-449E-8BFC-7F6BA926F12F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{1DE9F1AA-1923-4C8E-84E1-B67CD3258296}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D0825697-3B05-4AB8-8DEB-295DFCC7C9C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D07C0618-D515-4163-ACFF-51234FF0F20B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{A5A29A10-77FB-4CD2-B1CB-4F1BA1474948}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B42DC60A-352C-42B2-9F9C-75505F082B6E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{CA31E963-758F-48D3-8EC6-C67A7D8ACF01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{DE079BBD-207F-46D6-ADC5-F034B2026F07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{0C23C55A-24B7-498D-BE50-C249E7E7B89F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{AD185BEA-B539-4465-B862-E7568D00E093}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E1AC9556-AB86-4C7F-87D8-A2D210C2DB50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{FA167265-7A8D-47C5-989A-670821A2A129}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{0C97304C-69DD-4D83-A3B0-92F19B86A064}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{13B2A945-36EC-4817-BD21-8EF4A4A6EE00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{960C743B-EA3A-4087-AF43-A105C1CE4714}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{862E32FC-7963-43D1-B48D-CED8ADC99BD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{05AA191C-8EDC-46D8-A8C5-B56D3259C0D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9E2302ED-3C6A-4C5E-9140-4BFC05A624EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E6FB7279-598B-4C5D-BDD0-D563A706AFD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B1B6EE55-CD45-4EC3-839C-2B5DA4CFBF28}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{4C526E32-E323-43F4-A9E5-1959EFFE05A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{4C2ED923-31CB-45FF-8D79-DA506861D481}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{700B01C5-85C2-46BB-BD6E-DFBC904301CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{CDA2CF9D-9ECA-4F0F-BA80-2DF22B0F172C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F490D51F-DC26-440F-A6FC-5CE799C7F0F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{4DEFB057-A50F-49A7-83DB-3DCAF4FBE33B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{0AC36439-1963-4A8B-8AED-A6F24F5F67DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{75B2E633-AD58-40F7-B096-4607E937D9BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{6B66D2F9-9A06-4896-A269-7B7C31F4C4F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{8203CD99-60DC-42EF-A621-59C8A1FE51E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{AC8D91B9-9DEA-4FAA-AE6B-D4FC45798817}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F18EA2A3-352A-49A2-96DD-1B2B3E9EEAB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B79F26CB-9189-49FB-8F56-3CF64F2D2C7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9DDCB9F3-6DB6-48B6-AAD6-CD5A38622C15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C5CD9645-0472-4C27-ABAD-427BD16EAFDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{A3FE3E9E-6BFB-4361-AB9C-85B73F3A9948}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{57BA974B-1F61-4847-BD24-24BE1CB8A606}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F3A2EFA4-A5A8-4388-A568-9C48A65F6975}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{26359BFE-17ED-4851-9959-FAA5E6EE7ABF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{700AFA37-9248-4A79-B090-9FF018D6ABFC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{11F0BBE5-AB24-428A-9A05-22403EF33488}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9746578C-DB17-4DBB-AABE-AAB189B80073}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{247C8FC3-4E43-4C92-AED7-F26CE5CD7CEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{1D0E7881-EA5E-47CB-94F1-281BAAC5BE20}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{C5474541-C41D-4F17-B768-4EB75F2A7906}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{D321641D-AD70-4769-8603-89EFDCB99EB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9DF40555-CF5D-4200-9041-4890FEA40ECC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{673FDA70-6C85-4057-BD70-0B25C4E0AA4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B6E135C6-1242-45B2-9523-9510C13B67A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [TCP Query User{3F5FB085-7772-405F-99E1-403D1BC1D3B5}C:\users\volkan pc\downloads\tvpn64.exe] => (Allow) C:\users\volkan pc\downloads\tvpn64.exe No File

FirewallRules: [UDP Query User{D903A15E-7965-4DAA-BC1E-E064F8F67A7B}C:\users\volkan pc\downloads\tvpn64.exe] => (Allow) C:\users\volkan pc\downloads\tvpn64.exe No File

FirewallRules: [{2F6A649F-C2BC-444F-8CDC-C73F035BDDA9}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe No File

FirewallRules: [{6FE32F63-3D01-4F45-8F8C-838A17BB77D3}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe No File

FirewallRules: [{B4FB45AB-A134-4708-848A-75CC3510F92E}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe No File

FirewallRules: [{B47571FC-A691-41B4-9D8D-5862C2E53930}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe No File

FirewallRules: [{EECFF176-AD66-4FA4-BBD0-EFDB9F0F1C6F}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe No File

FirewallRules: [{0CC93ED1-0D93-43F6-939A-9EF8BB89A7C5}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe No File

FirewallRules: [TCP Query User{15A46D53-38FB-4896-8749-85B1D1AA1330}C:\users\volkan pc\downloads\tvpn64 (1).exe] => (Allow) C:\users\volkan pc\downloads\tvpn64 (1).exe No File

FirewallRules: [UDP Query User{08E0AC7F-3595-4CCD-BE7A-EE4BF4024E13}C:\users\volkan pc\downloads\tvpn64 (1).exe] => (Allow) C:\users\volkan pc\downloads\tvpn64 (1).exe No File

FirewallRules: [{FA5E3E6C-3BD8-41A6-BCD7-4696215245AE}] => (Block) C:\users\volkan pc\downloads\tvpn64 (1).exe No File

FirewallRules: [{9A731D5C-B8F2-4167-95D7-701DFD82F5FE}] => (Block) C:\users\volkan pc\downloads\tvpn64 (1).exe No File

FirewallRules: [{29B95D36-D278-4DD0-9792-27A32C01BBEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{BB3C6A60-3907-40DA-ADBD-31BFBBB7B090}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{19EEC837-F61F-4145-A7B5-4D189D7F16EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{ACAE6333-638C-443B-A9B7-91BF835B0BC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{73984392-1C9D-4EE2-BD64-FD1977ACA37D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{A7A6C97D-6AFD-431A-AF63-AFD61B7736A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E9D8E7D8-8001-4851-BB65-E7741A384A61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F331611E-2EE7-4FB4-818C-C14730503301}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F1876CC1-FEED-4E6E-AEEA-AE850503B614}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{DB52690E-A063-4048-A01C-1E462B7ABFB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{B43BE8B2-4264-4BB1-BF17-8FABBCA8B795}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{156D1495-829B-4941-8D0B-1E8BA286DCC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{E3BA8797-12FB-46F0-A582-6DE73E6CF82E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{EE1F10E0-AAAE-4FE5-A714-6EC78A2835E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{0E0F55C4-FB77-4EE8-B078-297443361975}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{BC1A2DFC-288F-4E7C-9900-A76DB7D56889}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{84A99FCC-6FE9-4C41-ABDA-24FA5C7895D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{F3365182-2FBF-4910-85C6-503BF19E7969}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{74A84FB6-9D8E-4A6B-B09D-355ED5C9193B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{1FA715E6-AB3C-42DA-8717-D73240A80DFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{94AA0664-C0F5-4203-9D13-0F8B04778D64}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{95A5FAB2-C813-42D5-8110-3CD4545ED385}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{CFB3AEF7-6FFF-4891-924E-3366048D8CB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{9275464B-8314-438B-AB34-03DFCA3E82C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )

FirewallRules: [{356A73D3-89B4-447D-8FBD-15984758C0D5}] => (Allow) C:\Nexon\Library\combatarms\appdata\NMService.exe (NEXON Korea Corporation. -> Nexon Corp.)

FirewallRules: [{3B3D7BDD-DAE1-4A5A-9BA0-67B3923B0688}] => (Allow) C:\Nexon\Library\combatarms\appdata\NMService.exe (NEXON Korea Corporation. -> Nexon Corp.)

FirewallRules: [{BE809B53-9371-471C-AD28-BC1174912781}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe No File

FirewallRules: [{7C5A6A21-213D-47F7-A044-2BB0D4FDD44E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe No File

FirewallRules: [{6663F4C7-37C8-439B-87C6-25C7F84AC793}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe No File

FirewallRules: [{B8E19A45-4741-4C47-AEBF-4A1BF4F0FB0E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe No File

FirewallRules: [{55CB3637-4DA2-42CA-912C-85F62EA6347B}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{70A23172-7B96-4ABE-8163-55AC290A7AAC}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{E9BD157A-2C10-4937-8CA7-D8ED24604D06}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{3F31BCF1-C64C-4248-A954-35A7468C41B7}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{65A9BDB2-7EB8-4563-A562-EA22871A6515}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{BBACF415-C203-4CB0-991C-FAF2D184289F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{D2348898-F9C1-4EEE-BE73-CD80C686B6F8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{4941E560-B584-49F1-8785-CF85D9367B83}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{7D7BB48D-7AC0-4B1B-8028-6747F653CE68}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{52C9EEC9-E722-4D1D-AF49-D68364A040E7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)

FirewallRules: [{E5E631D6-EFEB-4B33-A3C4-FEE21FA1C06B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{79E1279E-7CD1-482F-9C40-991BB884C303}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{609F8694-1330-4CA6-83A8-E1A152E9FFF2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{8F07EA34-44E6-4632-A36C-EC724EF8D696}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{81933635-ABC3-4BA2-9894-0DAB2861E844}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{BE3D515F-CB49-448E-8142-46903417C370}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [TCP Query User{7CED99A5-4E1A-4225-B743-9B4693708E00}C:\users\volkan pc\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\volkan pc\appdata\local\akamai\netsession_win.exe No File

FirewallRules: [UDP Query User{A2670628-4F33-441F-A430-DB3570242AF4}C:\users\volkan pc\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\volkan pc\appdata\local\akamai\netsession_win.exe No File

FirewallRules: [{88CA03B2-FA6F-4B5B-B156-22DB60447BB0}] => (Block) C:\users\volkan pc\appdata\local\akamai\netsession_win.exe No File

FirewallRules: [{00A2342B-B968-4AB9-A1E0-0BAFACC8D7F0}] => (Block) C:\users\volkan pc\appdata\local\akamai\netsession_win.exe No File

FirewallRules: [{32A41AA3-AD20-4F72-85DD-678D77F81B9A}] => (Allow) C:\Users\Volkan Pc\AppData\Local\Chromium\Application\chrome.exe No File

FirewallRules: [{DAA87964-AD9F-4C06-855C-5C530C51A596}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{EF887E86-3DA3-4C55-AC28-1F8E8734DDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [TCP Query User{D67C4C57-0F53-4527-AEB9-7CBDAF3FEB33}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe No File

FirewallRules: [UDP Query User{D15FB53C-3530-4833-9EC6-7748F1C2658C}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe No File

FirewallRules: [TCP Query User{BA338D55-AF5F-4E5D-9491-4E561A869A06}C:\users\volkan pc\appdata\roaming\kodi\userdata\addon_data\program.plexus\acestream\ace_engine.exe] => (Allow) C:\users\volkan pc\appdata\roaming\kodi\userdata\addon_data\program.plexus\acestream\ace_engine.exe No File

FirewallRules: [UDP Query User{6E2D64FF-EFFF-4C03-B0D8-3EC577C05947}C:\users\volkan pc\appdata\roaming\kodi\userdata\addon_data\program.plexus\acestream\ace_engine.exe] => (Allow) C:\users\volkan pc\appdata\roaming\kodi\userdata\addon_data\program.plexus\acestream\ace_engine.exe No File

FirewallRules: [TCP Query User{BD703C5F-4A56-41A6-B695-40B74F6CC088}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe No File

FirewallRules: [UDP Query User{38EF5D9D-812D-49D6-922F-FD5E2E2B35E0}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe No File

FirewallRules: [{37093C05-6F07-4C64-AC46-6BC980498E5E}] => (Allow) C:\Program Files (x86)\GRETECH\GOMRemote2\GomRemote2.exe (GRETECH -> GOM & Company)

FirewallRules: [TCP Query User{2CACDCA3-810D-49A6-A09A-613C94857C82}C:\users\volkan pc\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Allow) C:\users\volkan pc\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)

FirewallRules: [UDP Query User{E6917E6F-6C2D-4568-9009-51488FB88ED5}C:\users\volkan pc\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Allow) C:\users\volkan pc\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)

FirewallRules: [TCP Query User{190E7CDE-A867-4ED7-B21A-EC82CAE99506}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\infinitemediaacceleration.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\infinitemediaacceleration.exe (Akamai Technologies, Inc. -> Akamai Inc.)

FirewallRules: [UDP Query User{39CF0FF4-9ED8-4778-94AF-0A661F7B0FAE}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\infinitemediaacceleration.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\infinitemediaacceleration.exe (Akamai Technologies, Inc. -> Akamai Inc.)

FirewallRules: [TCP Query User{896817DE-3047-4384-BC1C-9F183A2ECBAD}C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe No File

FirewallRules: [UDP Query User{75F1C4F3-E803-4900-9221-32E979F49937}C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe No File

FirewallRules: [{C5D9C7FB-1A70-438E-9AA4-E05A8A4FD98C}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe No File

FirewallRules: [{49779DD2-F166-488B-B3CF-6782C3039D65}] => (Allow) C:\Program Files (x86)\\Bignox\\BigNoxVM\\RT\NoxVMHandle.exe No File

FirewallRules: [TCP Query User{CD1883FA-D5A9-42C7-B983-5846EA379BEB}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)

FirewallRules: [UDP Query User{403F563F-01B9-476C-B083-505DC98544C9}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)

FirewallRules: [TCP Query User{5B403E08-EFE0-47D2-ABB6-7AD98358CCA9}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )

FirewallRules: [UDP Query User{B593117F-2F20-434F-91C5-216FFA12F6A8}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )

FirewallRules: [TCP Query User{C8F06FB6-B6C3-4CE2-B039-0993CD51A4CB}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Block) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)

FirewallRules: [UDP Query User{717CE81F-4884-4FA3-80E7-19F81BAAE06F}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Block) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)

FirewallRules: [{CCD25F78-0BA8-4E6A-80FA-1C4864C8942F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

FirewallRules: [{4FF26FAB-2AD0-4EDC-B28B-C27536E1C76E}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:

==================

Error: (01/06/2020 03:24:00 AM) (Source: RasClient) (EventID: 20227) (User: )

Description: CoId={FB941B61-DE76-4E50-9AEC-F3582FF15F9E}: The user VOLCANO\Volkan dialed a connection named Windscribe IKEv2 which has failed. The error code returned on failure is 809.

Error: (01/06/2020 03:23:55 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: VOLCANO)

Description: Atlanıyor: Eap method DLL path doğrulaması başarısız. Hata: typeId=254, authorId=311, vendorId=14122, vendorType=1

Error: (01/06/2020 03:23:55 AM) (Source: RasClient) (EventID: 20227) (User: )

Description: CoId={2D104B2A-B704-4E1B-8743-5BABEF648DE8}: The user VOLCANO\Volkan dialed a connection named Windscribe IKEv2 which has failed. The error code returned on failure is 809.

Error: (01/06/2020 03:23:50 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: VOLCANO)

Description: Atlanıyor: Eap method DLL path doğrulaması başarısız. Hata: typeId=254, authorId=311, vendorId=14122, vendorType=1

Error: (01/06/2020 03:23:49 AM) (Source: RasClient) (EventID: 20227) (User: )

Description: CoId={2D0D91F4-CC36-4BD0-AFFE-0B54AD5C052A}: The user VOLCANO\Volkan dialed a connection named Windscribe IKEv2 which has failed. The error code returned on failure is 809.

Error: (01/06/2020 03:23:44 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: VOLCANO)

Description: Atlanıyor: Eap method DLL path doğrulaması başarısız. Hata: typeId=254, authorId=311, vendorId=14122, vendorType=1

Error: (01/06/2020 03:19:35 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )

Description: Event-ID 0

Error: (01/05/2020 03:10:09 AM) (Source: RasClient) (EventID: 20227) (User: )

Description: CoId={2E2ADE00-8BF2-4509-8AE9-CBF2FD872288}: The user VOLCANO\Volkan dialed a connection named Windscribe IKEv2 which has failed. The error code returned on failure is 809.

System errors:

=============

Error: (01/06/2020 03:24:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Windows Defender Hizmeti hizmeti şu hata nedeniyle başlatılamadı:

Windows bu dosyanın dijital imzasını doğrulayamıyor. Yeni yapılan bir yazılım ve donanım değişikliği, hatalı imzalanmış ya da bozuk veya bilinmeyen kaynaktan gelen kötü niyetli yazılım olan bir dosya yüklemiş olabilir.

Error: (01/06/2020 03:24:34 PM) (Source: BugCheck) (EventID: 1001) (User: )

Description: Bu bilgisayar bir hata denetiminde yeniden başlatıldı. Yapılan hata denetimi: 0x00000667 (0xffffffffc000020d, 0x0000000080000021, 0x0000000000000000, 0x0000000000000000). Döküm şuraya kaydedildi: C:\Windows\MEMORY.DMP. Rapor Kimliği: 010620-7984-01.

Error: (01/06/2020 03:24:34 PM) (Source: EventLog) (EventID: 6008) (User: )

Description: 03:50:01, ‎6.‎1.‎2020 tarihinde gerçekleşen önceki sistem kapanışı beklenmiyordu.

Error: (01/06/2020 03:14:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)

Description: Yükleme Hatası: Windows, şu güncelleştirmeyi 0x80070643 hatası ile yükleyemedi: Windows Defender Antivirus İçin Güvenlik Zekâsı Güncelleştirmesi - KB2267602 (Sürüm 1.307.1817.0).

Error: (01/06/2020 03:14:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Windows Defender Hizmeti hizmeti şu hata nedeniyle başlatılamadı:

Error: (01/06/2020 03:09:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Windows Defender Hizmeti hizmeti şu hata nedeniyle başlatılamadı:

Error: (01/05/2020 02:01:25 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)

Error: (01/05/2020 02:01:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Windows Defender Hizmeti hizmeti şu hata nedeniyle başlatılamadı:

Windows Defender:

===================================

Date: 2018-08-05 01:12:12.617

Description:

Windows Defender Gerçek Zamanlı Koruma özelliği bir hatayla karşılaştı ve başarısız oldu.

Özellik: Erişimde

Hata Kodu: 0x80070057

Hata açıklaması: Parametre hatalı.

Neden: Kötü amaçlı yazılımdan koruma hizmeti bilinmeyen bir nedenle durdu. Bazı durumlarda hizmeti yeniden başlatmak sorunu çözebilir.

Date: 2017-05-10 23:49:46.058

Description:

Windows Defender imzaları yüklemeyi denerken hatayla karşılaştı, iyi olduğu bilinen imza kümesine geri dönmeyi deneyecek.

Denenen İmzalar: Geçerli

Hata Kodu: 0x80073aba

Hata açıklaması: Kaynak uyumlu olamayacak kadar eski.

İmza sürümü: 1.169.55.0;1.169.55.0

Altyapı sürümü: 1.1.10401.0

CodeIntegrity:

===================================

Date: 2020-01-06 15:24:43.226

Description:

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-01-06 15:14:34.232

Description:

Date: 2020-01-06 03:09:48.746

Description:

Date: 2020-01-05 14:01:19.903

Description:

Date: 2020-01-05 13:59:14.912

Description:

Date: 2020-01-04 14:40:30.930

Description:

Date: 2020-01-04 14:37:14.361

Description:

Date: 2019-12-27 20:35:59.518

Description:

==================== Memory info ===========================

BIOS: Insyde Corp. V1.07 09/05/2014

Motherboard: Acer Aspire VN7-791

Processor: Intel® Core™ i7-4710HQ CPU @ 2.50GHz

Percentage of memory in use: 27%

Total physical RAM: 16307.27 MB

Available physical RAM: 11791.8 MB

Total Virtual: 32691.27 MB

Available Virtual: 27898.84 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:231.88 GB) (Free:80.98 GB) NTFS

Drive e: () (Fixed) (Total:931.51 GB) (Free:638.84 GB) NTFS

\\?\Volume{0d3d3947-1e93-4ab6-bdee-3651e4dd39f1}\ (Recovery) (Fixed) (Total:0.59 GB) (Free:0.31 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================

Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================

Disk: 1 (Size: 931.5 GB) (Disk ID: 76B8B69C)

Partition: GPT.

==================== End of Addition.txt =======================

Advertisements

Register to Remove

#2 Juliet

SuperHelper

Retired Classroom Teacher
7,686 posts

Interests:Boo!....

Posted 07 January 2020 - 05:36 AM

Start Farbar Recovery Scan Tool with Administrator privileges
(Right click on the FRST icon and select Run as administrator)

highlight on the text below and select Copy.
beginning with Start:: and finishing with End::
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Highlight the entire content of the quote box below and select Copy.

Start::
CloseProcesses:
CreateRestorePoint:
ShortcutTarget: N.lnk -> C:\Users\Volkan Pc\AppData\Roaming\eeTpRT5nR9.exe (No File)
ShortcutTarget: Shortcut to Primary output from Start (Active).lnk -> C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Installer\{D66F6F24-652D-4405-A0D3-C568F825FE66}\_64A90423D4124B9A5633D3.exe (No File)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2812564318-4242938739-427151021-1001 -> DefaultScope {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2261465
SearchScopes: HKU\S-1-5-21-2812564318-4242938739-427151021-1001 -> {78BEF917-9FA7-4F06-BBC6-CE6A2BD7B887} URL =
SearchScopes: HKU\S-1-5-21-2812564318-4242938739-427151021-1001 -> {8C3078A0-9AAB-4371-85D1-656CA8E46EE8} URL = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2261465
S3 GPU-Z; \??\C:\Users\VOLKAN~1\AppData\Local\Temp\GPU-Z.sys [X] <==== ATTENTION
S3 WinRing0_1_2_0; \??\C:\Users\VOLKAN~1\AppData\Local\Temp\Rar$EXa0.093\WinRing0x64.sys [X] <==== ATTENTION
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
U3 aswMBR; \??\C:\Users\VOLKAN~1\AppData\Local\Temp\aswMBR.sys [X] <==== ATTENTION
S3 DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [X]
ShortcutWithArgument: C:\Users\Volkan Pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\6ba478f6faf86bd4\ZenMate VPN - Best Cyber Security & Unblock.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=fdcgdnkidjaadafnichfpabhfomcebme
ShortcutWithArgument: C:\Users\Public\Desktop\Dropbox.lnk -> C:\Program Files\Dropbox\StartURL.exe () -> hxxps://www.dropbox.com/partners/acer2014/download
FirewallRules: [TCP Query User{D7654FAF-3C14-4FCE-8199-0D8590F627ED}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe No File
FirewallRules: [UDP Query User{DAE18F60-CED6-4CBD-BF10-A1CA358020A6}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe No File
FirewallRules: [TCP Query User{1C51BD35-AC87-4B22-BAA3-C957A8B804E5}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe No File
FirewallRules: [UDP Query User{575CA8DA-4035-41E9-997C-094378606766}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe No File
FirewallRules: [TCP Query User{C78F8EDD-6A1F-46EC-8DA0-990C0966B8FA}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe No File
FirewallRules: [UDP Query User{30A802B7-59F1-4A65-8EBC-BC2F7363260A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe No File
FirewallRules: [{C7168FD5-F6C2-4DAD-85B5-068E2B96015F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe No File
FirewallRules: [{78ACE51A-3489-4F3D-8C9E-48DD7C62D085}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe No File
FirewallRules: [{11DA4CE2-FEF5-4687-A2A0-D856B56E3D86}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [TCP Query User{E40F8A5A-6217-49BB-A6EC-A00DB70B26FB}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe No File
FirewallRules: [UDP Query User{3644A64F-5FB1-42A0-8BDB-6B2BAC9C948E}C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\volkan pc\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe No File
FirewallRules: [UDP Query User{D903A15E-7965-4DAA-BC1E-E064F8F67A7B}C:\users\volkan pc\downloads\tvpn64.exe] => (Allow) C:\users\volkan pc\downloads\tvpn64.exe No File
FirewallRules: [{2F6A649F-C2BC-444F-8CDC-C73F035BDDA9}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe No File
FirewallRules: [{6FE32F63-3D01-4F45-8F8C-838A17BB77D3}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe No File
FirewallRules: [{B4FB45AB-A134-4708-848A-75CC3510F92E}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe No File
FirewallRules: [{B47571FC-A691-41B4-9D8D-5862C2E53930}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe No File
FirewallRules: [{EECFF176-AD66-4FA4-BBD0-EFDB9F0F1C6F}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe No File
FirewallRules: [{0CC93ED1-0D93-43F6-939A-9EF8BB89A7C5}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe No File
FirewallRules: [{FA5E3E6C-3BD8-41A6-BCD7-4696215245AE}] => (Block) C:\users\volkan pc\downloads\tvpn64 (1).exe No File
FirewallRules: [{9A731D5C-B8F2-4167-95D7-701DFD82F5FE}] => (Block) C:\users\volkan pc\downloads\tvpn64 (1).exe No File
FirewallRules: [{BE809B53-9371-471C-AD28-BC1174912781}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe No File
FirewallRules: [{7C5A6A21-213D-47F7-A044-2BB0D4FDD44E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe No File
FirewallRules: [{6663F4C7-37C8-439B-87C6-25C7F84AC793}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe No File
FirewallRules: [{B8E19A45-4741-4C47-AEBF-4A1BF4F0FB0E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe No File
FirewallRules: [TCP Query User{7CED99A5-4E1A-4225-B743-9B4693708E00}C:\users\volkan pc\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\volkan pc\appdata\local\akamai\netsession_win.exe No File
FirewallRules: [UDP Query User{A2670628-4F33-441F-A430-DB3570242AF4}C:\users\volkan pc\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\volkan pc\appdata\local\akamai\netsession_win.exe No File
FirewallRules: [{88CA03B2-FA6F-4B5B-B156-22DB60447BB0}] => (Block) C:\users\volkan pc\appdata\local\akamai\netsession_win.exe No File
FirewallRules: [{00A2342B-B968-4AB9-A1E0-0BAFACC8D7F0}] => (Block) C:\users\volkan pc\appdata\local\akamai\netsession_win.exe No File
FirewallRules: [{32A41AA3-AD20-4F72-85DD-678D77F81B9A}] => (Allow) C:\Users\Volkan Pc\AppData\Local\Chromium\Application\chrome.exe No File
FirewallRules: [TCP Query User{BA338D55-AF5F-4E5D-9491-4E561A869A06}C:\users\volkan pc\appdata\roaming\kodi\userdata\addon_data\program.plexus\acestream\ace_engine.exe] => (Allow) C:\users\volkan pc\appdata\roaming\kodi\userdata\addon_data\program.plexus\acestream\ace_engine.exe No File
FirewallRules: [UDP Query User{6E2D64FF-EFFF-4C03-B0D8-3EC577C05947}C:\users\volkan pc\appdata\roaming\kodi\userdata\addon_data\program.plexus\acestream\ace_engine.exe] => (Allow) C:\users\volkan pc\appdata\roaming\kodi\userdata\addon_data\program.plexus\acestream\ace_engine.exe No File
FirewallRules: [TCP Query User{BD703C5F-4A56-41A6-B695-40B74F6CC088}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe No File
FirewallRules: [UDP Query User{38EF5D9D-812D-49D6-922F-FD5E2E2B35E0}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe No File
FirewallRules: [TCP Query User{896817DE-3047-4384-BC1C-9F183A2ECBAD}C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe No File
FirewallRules: [UDP Query User{75F1C4F3-E803-4900-9221-32E979F49937}C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe No File
FirewallRules: [{C5D9C7FB-1A70-438E-9AA4-E05A8A4FD98C}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe No File
FirewallRules: [{49779DD2-F166-488B-B3CF-6782C3039D65}] => (Allow) C:\Program Files (x86)\\Bignox\\BigNoxVM\\RT\NoxVMHandle.exe No File
EmptyTemp:
C:\Windows\Temp\*.*
End::

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Start FRST (FRST64) with Administrator privileges
Press the Fix button. FRST will process the lines copied above from the clipboard.
When finished, a log file Fixlog.txt will pop up and saved in the same location the tool was ran from.

Please copy and paste its contents in your next reply.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~``

Download AdwCleaner and move it to your Desktop
Right-click on AdwCleaner.exe and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users)
Accept the EULA (I accept), then click on Scan Now
Let the scan complete. Once it's done, make sure that every item listed in the different tabs is checked and click on the Repair and restart button. This will kill all active processes
Once the cleaning process is complete, AdwCleaner will ask to restart your computer, do it
After the restart, a log will open when logging in. Please copy/paste the content of that log in your next reply

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

RogueKiller

Download the right version of RogueKiller for your Windows version (32 or 64-bit)
Once done, move the executable file to your Desktop, right-click on it and select Run as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users)
Click on the Start Scan button in the right panel, which will bring you to another tab, and click on it again (this time it'll be in the bottom right corner)
Wait for the scan to complete
On completion, the results will be displayed
Check every single entry (threat found), and click on the Remove Selected button
On completion, the results will be displayed. Click on the Open Report button in the bottom left corner, followed by the Open TXT button (also in the bottom left corner)
This will open the report in Notepad. Copy/paste its content in your next reply.

Please post these 3 logs when finished.

Sometimes the angels fly close enough to you that you can hear the flutter of their wings...

MS - MVP Consumer Security 2009 - 2016, WI-MVP 2016-17
Antivirus Scanners Online Scanners Firewalls Slow Computer??

#3 Antediluvian

Authentic Member

Authentic Member
53 posts

Posted 07 January 2020 - 07:17 AM

I completed everything you mentioned above. Thanks you very much for your help. Logs are below :

Fix result of Farbar Recovery Scan Tool (x64) Version: 28-12-2019

Ran by Volkan (07-01-2020 15:47:36) Run:1

Running from C:\Users\Volkan Pc\Downloads\SPYWARE MALWARE

Loaded Profiles: Volkan (Available Profiles: Volkan)

Boot Mode: Normal

==============================================

fixlist content:

*****************

CloseProcesses:

CreateRestorePoint: