Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by can (16-03-2018 14:15:59)
Running from C:\Users\can\Desktop\prg
Windows 10 Home Version 1709 16299.309 (X64) (2017-10-18 06:52:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2940121450-94073726-4050923498-500 - Administrator - Disabled)
can (S-1-5-21-2940121450-94073726-4050923498-1002 - Administrator - Enabled) => C:\Users\can
DefaultAccount (S-1-5-21-2940121450-94073726-4050923498-503 - Limited - Disabled)
Guest (S-1-5-21-2940121450-94073726-4050923498-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2940121450-94073726-4050923498-1004 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-2940121450-94073726-4050923498-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Internet Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Internet Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Güvenlik Duvarı (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM\...\{7565710A-C97D-44A4-A030-768957F9F2C1}) (Version: 7.1 - Intel) Hidden
Age of Redemption 2017 (HKLM-x32\...\{A745707D-E374-4CD1-90B4-62AFBE44901D}) (Version: 16.4.009 - By Javokis)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.41 - Piriform)
ComicRack v0.9.178 (HKLM\...\ComicRack) (Version: v0.9.178 - cYo Soft)
Control Center 5.0000.0.24 (HKLM-x32\...\{2F385B5D-5F23-4513-B3CE-9F5E4F4B882A}) (Version: 5.0000.0.24 - )
Dashlane (HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\Dashlane) (Version: 5.8.0.17084 - Dashlane, Inc.)
Discord (HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\Discord) (Version: 0.0.300 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.01 - NVIDIA Corporation) Hidden
DriverMax 9 (HKLM-x32\...\DMX5_is1) (Version: 9.43.0.280 - Innovative Solutions)
EgisTec Fingerprint Driver (HKLM-x32\...\InstallShield_{E8C889B8-0A8B-46BA-B433-F7D6968A6543}) (Version: 3.5.1.0 - Egis Technology Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Error Lookup (HKLM-x32\...\errorlookup) (Version: 2.3.1 - Henry++)
ESET Security (HKLM\...\{37E67F0A-50BB-430A-A2A5-F5E2F6EE96DB}) (Version: 11.0.159.0 - ESET, spol. s r.o.)
Fingerprint Driver (HKLM-x32\...\{E8C889B8-0A8B-46BA-B433-F7D6968A6543}) (Version: 3.5.1.0 - Egis Technology Inc.) Hidden
Game Mouse version 1.0.7 (HKLM-x32\...\{2F606408-495F-4772-A3A7-BE0A31C4B261}_is1) (Version: 1.0.7 - )
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Insyde Airplane Mode HID Mini-Driver (HKLM\...\AirplaneModeHid) (Version: 1.4.0.3 - Insyde Corporation)
Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.10.0 - Intel)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1050 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4901 - Intel Corporation)
Intel(R) Product Improvement Program (HKLM-x32\...\{59801D62-FD8D-45AD-865D-6FC80C4C70DF}) (Version: 2.1.26 - Intel) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.9.0.1015 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Update Manager (HKLM-x32\...\{AA8BC571-E96E-4478-927F-CB44CC7D7D07}) (Version: 3.5.2247 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000030-0200-1055-84C8-B8D95FA3C8C3}) (Version: 20.30.0 - Intel Corporation)
Intel® PROSet/Kablosuz Yazılımı (HKLM-x32\...\{1b3fcb8d-3d2b-4477-b722-0b3e2c1195ba}) (Version: 20.30.1 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.5.1.400 - Intel Corporation)
Intel® Yonga Kümesi Aygıt Yazılımı (HKLM-x32\...\{49bc1e38-39b4-4728-9e75-cbe67ba9a329}) (Version: 10.1.1.42 - Intel(R) Corporation) Hidden
Iris - Software for eye protection (HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\IrisTech Iris) (Version: "0.9.4" - "IrisTech")
itch (HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\itch) (Version: 23.6.1 - Itch Corp)
KC Softwares SUMo (HKLM-x32\...\KC Softwares SUMo_is1) (Version: 5.5.6.387 - KC Softwares)
K-Lite Codec Pack 14.0.4 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.0.4 - KLCP)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 3.4.4.2398 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.4.2398 - Malwarebytes)
Mem Reduct (HKLM-x32\...\memreduct) (Version: 3.3 - Henry++)
Metro Last Light Redux Türkçe Yama v1.00 (HKLM-x32\...\Metro Last Light Redux TR) (Version: 1.00 - OyunCeviri.com)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.9029.2253 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - tr-tr (HKLM\...\ProPlusRetail - tr-tr) (Version: 16.0.9029.2253 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 59.0 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0 (x64 en-US)) (Version: 59.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.4 - Mozilla)
NVIDIA 3D Vision Sürücüsü 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.01 - NVIDIA Corporation)
NVIDIA Grafik Sürücüsü 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.01 - NVIDIA Corporation)
NVIDIA HD Ses Sürücüsü 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA PhysX Sistem Yazılımı 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9029.2253 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9029.2253 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9029.2253 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.9029.2253 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-041F-0000-0000000FF1CE}) (Version: 16.0.9029.2253 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.12.32066 - Electronic Arts, Inc.)
PerfectDisk Professional Business (HKLM\...\{C4E01CDC-0063-493C-B383-9C4FCF7A89F7}) (Version: 14.0.891 - Raxco Software Inc.)
PUSAT (HKLM-x32\...\{A1B9692E-B573-4AE0-A539-544382C70C3C}) (Version: 1.0.0 - FOKUS BILGISAYAR)
qBittorrent 4.0.4 (HKLM-x32\...\qBittorrent) (Version: 4.0.4 - The qBittorrent project)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8393 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.2.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.2.0 - VS Revo Group, Ltd.)
RogueKiller version 12.12.8.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.12.8.0 - Adlice Software)
Sound Blaster X-Fi MB5 (HKLM-x32\...\{918A4598-866C-4B8F-8901-13F8593EBED6}) (Version: 1.00.13 - Creative Technology Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spotify (HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\Spotify) (Version: 1.0.75.483.g7ff4a0dc - Spotify AB)
Star Wars Knights of the Old Republic Türkçe Yama v1.00 (HKLM-x32\...\Star Wars Knights of the Old Republic TR) (Version: 1.00 - KotorProjesi.com)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.0.15.42049 - Electronic Arts)
Steam Customizer (HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\Steam Customizer) (Version: 1.00.00.00 - Blumont)
Steganos Online Shield (HKLM-x32\...\{896614ED-00BD-4E0C-99AB-01C76EE416D9}) (Version: 1.6.3 - Steganos Software GmbH)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.72 - Synaptics Incorporated)
The Witcher Türkçe Yama Kaldır (HKLM\...\The Witcher Türkçe Yama) (Version: v4.90 - Donanımhaber - The Witcher 1 Türkçe Çeviri Takımı)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 4.0.15 - Tweaking.com)
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 25.0.1 - Ubisoft)
Vampire The Masquerade - Redemption (HKLM-x32\...\1207658831_is1) (Version: 2.1.0.5 - GOG.com)
VdhCoApp 1.1.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version:  - DownloadHelper)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows Driver Package - C-MEDIA Inc. (PUSAT USB AUDIO SERVICE) Media  (05/12/2017 10.0.01.01) (HKLM\...\FE4E71B33ED3BB624FF12447375107BD7F3901C8) (Version: 05/12/2017 10.0.01.01 - C-MEDIA Inc.)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wolfenstein II (HKLM-x32\...\Wolfenstein II_is1) (Version:  - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-03] (Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> No File
ContextMenuHandlers4: [EncryptionMenu] -> {A470F8CF-A1E8-4f65-8335-227475AA5C46} =>  -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_daa5fd44d52a5762\igfxDTCM.dll [2017-12-27] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-02-23] (NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-03] (Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {22767F0C-F8CF-4F20-B364-AF4A30142F78} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation)
Task: {312451C4-FBA5-43A9-AD8F-49F5348A4E7B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-03-15] (Microsoft Corporation)
Task: {323C8080-EE29-4ABD-9743-375C33A1A833} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-12-21] (Intel Corporation)
Task: {3B607AA1-2C2E-4D4D-B59D-3AE7595347E1} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation)
Task: {42A34101-B0B6-4F2A-A4E0-510B823F86BB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-03-15] (Microsoft Corporation)
Task: {4C23FE93-33B6-443B-AE73-A5F0AC65E10A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-03-12] (Microsoft Corporation)
Task: {4E2D69AA-1FE7-4FB5-9AED-09EB40D41B83} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2017-05-02] (Tweaking.com)
Task: {5237959C-FB9B-4605-8A4C-95E011ED77D0} - System32\Tasks\Flexera® Software Manager => C:\Program Files (x86)\Common Files\InstallShield\Update\Agent.exe [2017-09-22] (Flexera Software LLC)
Task: {5557438A-EA8D-453D-B77F-F110164BE41B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-03-12] (Microsoft Corporation)
Task: {583422AA-F4F2-4DFA-B744-A185AFA5072E} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2017-09-21] (Intel(R) Corporation)
Task: {64D68461-8611-4DA2-9C24-A53F1801F20C} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-18] (Intel Corporation)
Task: {6A4F8B26-D7A3-4E3B-9A9A-DFD9AF4E9AD6} - System32\Tasks\DriverMax Notification => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe [2018-03-07] (Innovative Solutions)
Task: {77AD64B6-1966-417A-959F-DDDF2B84DF49} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-03-15] (Microsoft Corporation)
Task: {82ADC0EF-CF3A-42DB-88A7-4724F431B4BF} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {8D204B83-8BEA-4A47-B9A1-A730EE678E3C} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2018-02-19] ()
Task: {94960E9C-DBDC-43F1-9F9A-E96FCB653AFE} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {9E9A649F-8319-480B-9706-77283FCFD3B5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-03-07] (Piriform Ltd)
Task: {B2D60530-1FA5-4D1B-A932-28B25BBB5949} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [2016-01-12] (@ByELDI)
Task: {C37F1643-60BE-45A1-87A6-83CBAFA58C6C} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation)
Task: {C7B12394-0899-425E-BF05-1F5D3A79E89A} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-12-21] (Intel Corporation)
Task: {C956E6F4-6E32-4B4A-A49A-010C354A9FFF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-03-07] (Piriform Ltd)
Task: {D4C1EB87-323A-47FE-8C1E-57BDBDDBDB48} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-03-15] (Microsoft Corporation)
Task: {E4454797-8491-462D-8D83-AA68442CD883} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation)
Task: {EDFFB09F-EB0A-4697-AFBF-87DFD8B0D90A} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {F5F69270-CC65-405F-9706-12858957E91F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-01-10] (NVIDIA Corporation)
Task: {FE53D2BC-2686-4704-A18C-EB11AC2F43AC} - \Optimize Desktop Icon Cache -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-09-29 16:41 - 2017-09-29 16:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-01-11 09:15 - 2018-02-24 07:36 - 000543248 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll
2018-03-05 17:51 - 2018-02-13 19:19 - 000168600 _____ () C:\WINDOWS\system32\IntelWifiIhv06.dll
2016-04-04 16:31 - 2015-07-31 17:34 - 000089600 _____ () C:\WINDOWS\SYSTEM32\CmdRtr64.DLL
2016-04-04 16:31 - 2015-07-31 17:33 - 000366080 _____ () C:\WINDOWS\SYSTEM32\APOMgr64.DLL
2018-03-01 06:46 - 2018-03-01 06:47 - 000477696 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-03-01 06:46 - 2018-03-01 06:47 - 059575808 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-04 04:45 - 2017-10-04 04:45 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-02-16 09:12 - 2018-02-16 09:13 - 000010240 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-03-01 06:46 - 2018-03-01 06:47 - 003741184 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2017-12-14 02:27 - 2017-12-14 02:28 - 002270720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-03-01 06:46 - 2018-03-01 06:47 - 015986688 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-03-01 06:46 - 2018-03-01 06:47 - 003592704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-03-01 06:46 - 2018-03-01 06:46 - 003231232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-03-01 06:46 - 2018-03-01 06:47 - 001369088 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2018-02-04 23:45 - 2018-02-04 23:45 - 004601048 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-03-01 06:46 - 2018-03-01 06:46 - 000094208 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\BendRealityNode.dll
2018-02-16 09:12 - 2018-02-16 09:13 - 000043520 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2018-03-01 06:46 - 2018-03-01 06:47 - 000628736 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-03-01 06:46 - 2018-03-01 06:47 - 000152064 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe\SKU.dll
2018-03-16 12:13 - 2018-03-16 12:14 - 000173568 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11802.1001.11.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-03-09 02:48 - 2018-03-09 02:49 - 002250240 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11802.1001.11.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-03-05 17:10 - 2018-03-07 08:20 - 000010824 _____ () C:\Program Files (x86)\Innovative Solutions\DriverMax\sync.dll
2017-10-23 16:50 - 2017-10-23 16:50 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-06-08 16:31 - 2017-11-29 08:09 - 000781088 _____ () C:\Steam\SDL2.dll
2016-06-08 16:31 - 2017-12-15 22:59 - 002558752 _____ () C:\Steam\video.dll
2016-06-08 16:31 - 2016-09-01 04:02 - 004969248 _____ () C:\Steam\v8.dll
2017-12-14 06:02 - 2017-11-04 04:54 - 000695584 _____ () C:\Steam\libavformat-57.dll
2017-12-14 06:02 - 2017-11-04 04:54 - 005137696 _____ () C:\Steam\libavcodec-57.dll
2017-12-14 06:02 - 2017-11-04 04:54 - 000351520 _____ () C:\Steam\libavresample-3.dll
2017-12-14 06:02 - 2017-11-04 04:54 - 000847136 _____ () C:\Steam\libavutil-55.dll
2017-12-14 06:02 - 2017-11-04 04:54 - 000783648 _____ () C:\Steam\libswscale-4.dll
2016-06-08 16:31 - 2016-09-01 04:02 - 001563936 _____ () C:\Steam\icui18n.dll
2016-06-08 16:31 - 2016-09-01 04:02 - 001195296 _____ () C:\Steam\icuuc.dll
2016-06-08 16:32 - 2017-12-15 22:59 - 000904992 _____ () C:\Steam\bin\chromehtml.DLL
2016-06-08 16:31 - 2016-07-05 01:17 - 000266560 _____ () C:\Steam\openvr_api.dll
2017-06-08 15:51 - 2017-09-07 05:04 - 000678400 _____ () C:\Steam\bin\cef\cef.win7\SDL2.dll
2016-12-04 08:45 - 2017-10-31 07:44 - 071471904 _____ () C:\Steam\bin\cef\cef.win7\libcef.dll
2016-06-08 16:31 - 2015-09-25 02:52 - 000119208 _____ () C:\Steam\winh264.dll
2017-07-11 07:26 - 2017-10-31 07:44 - 002020128 _____ () C:\Steam\bin\cef\cef.win7\swiftshader\libglesv2.dll
2017-07-11 07:26 - 2017-10-31 07:44 - 000114464 _____ () C:\Steam\bin\cef\cef.win7\swiftshader\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\can\AppData\Local\Temp:$DATA​ [16]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 10:24 - 2018-02-24 11:24 - 000007828 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1       localhost
127.0.0.1     stats.g.doubleclick.net
127.0.0.1     www.google-analytics.com
0.0.0.0	choice.microsoft.com
0.0.0.0	choice.microsoft.com.nstac.net
0.0.0.0	df.telemetry.microsoft.com
0.0.0.0	oca.telemetry.microsoft.com
0.0.0.0	oca.telemetry.microsoft.com.nsatc.net
0.0.0.0	redir.metaservices.microsoft.com
0.0.0.0	reports.wes.df.telemetry.microsoft.com
0.0.0.0	services.wes.df.telemetry.microsoft.com
0.0.0.0	settings-sandbox.data.microsoft.com
0.0.0.0	settings-win.data.microsoft.com
0.0.0.0	sqm.df.telemetry.microsoft.com
0.0.0.0	sqm.telemetry.microsoft.com
0.0.0.0	sqm.telemetry.microsoft.com.nsatc.net
0.0.0.0	telecommand.telemetry.microsoft.com
0.0.0.0	telecommand.telemetry.microsoft.com.nsatc.net
0.0.0.0	telemetry.appex.bing.net
0.0.0.0	telemetry.microsoft.com
0.0.0.0	telemetry.urs.microsoft.com
0.0.0.0	vortex-sandbox.data.microsoft.com
0.0.0.0	vortex-win.data.microsoft.com
0.0.0.0	vortex.data.microsoft.com
0.0.0.0	watson.telemetry.microsoft.com
0.0.0.0	watson.telemetry.microsoft.com.nsatc.net
0.0.0.0	watson.ppe.telemetry.microsoft.com
0.0.0.0	wes.df.telemetry.microsoft.com
0.0.0.0	vortex-bn2.metron.live.com.nsatc.net
0.0.0.0	vortex-cy2.metron.live.com.nsatc.net

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2940121450-94073726-4050923498-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\can\AppData\Roaming\Mozilla\Firefox\Desktop Background.bmp
DNS Servers: 209.244.0.3 - 209.244.0.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 2
MSCONFIG\Services: isaHelperSvc => 2
MSCONFIG\Services: MyWiFiDHCPDNS => 3
HKLM\...\StartupApproved\StartupFolder: => "O&O Defrag Tray.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "DSATray"
HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2940121450-94073726-4050923498-1002\...\StartupApproved\Run: => "OneDriveSetup"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CB0CFEB0-C0FB-45D6-A6C9-87C7EB47A8F1}] => (Allow) C:\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
FirewallRules: [{F1F97011-B475-4455-9407-C29159D861F6}] => (Allow) C:\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
FirewallRules: [{9C177867-978C-4477-9164-6EC690891F5A}] => (Allow) C:\Steam\steamapps\common\Immortal Redneck\ImmortalRedneck.exe
FirewallRules: [{B8DEE5DC-224A-4D04-97F5-04316838DD98}] => (Allow) C:\Steam\steamapps\common\Immortal Redneck\ImmortalRedneck.exe
FirewallRules: [{73F9402A-5679-4F25-B8F7-78359930B6A2}] => (Allow) C:\Steam\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{CF06A3A8-8BF8-4D9C-9EA3-506A4B66D9B1}] => (Allow) C:\Steam\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{F2F53F9F-EE12-467F-8035-C2D84EB8D3FB}] => (Allow) C:\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{6273E09B-5EBD-4628-9A75-68B0A9475D41}] => (Allow) C:\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{C4EF373A-0CCD-49F7-8B65-E4F2DA85BB86}] => (Allow) C:\Steam\steamapps\common\Battle Chasers Nightwar\BC.exe
FirewallRules: [{0D27B419-EDC0-458C-A49E-19FF72EFDDFE}] => (Allow) C:\Steam\steamapps\common\Battle Chasers Nightwar\BC.exe
FirewallRules: [{5C28855F-2905-48BC-AD34-64C40984DE48}] => (Allow) C:\Steam\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{EC1DFB60-3EF1-4F8A-9C88-A21C2A7ED05C}] => (Allow) C:\Steam\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{4025ED1B-3326-46B3-825F-83E0424CFE45}] => (Allow) C:\Steam\steamapps\common\HeartnSlash\HeartnSlash64.exe
FirewallRules: [{244AFB71-BD94-433B-96BC-C42E34476826}] => (Allow) C:\Steam\steamapps\common\HeartnSlash\HeartnSlash64.exe
FirewallRules: [{42C6E1FC-613E-4E60-9248-611DED3AC5D9}] => (Allow) C:\Steam\steamapps\common\Axiom Verge\AxiomVerge.exe
FirewallRules: [{F9AAA3A1-299E-42E4-854D-C4DB214C1E50}] => (Allow) C:\Steam\steamapps\common\Axiom Verge\AxiomVerge.exe
FirewallRules: [{F6246618-C8B2-45AB-A156-F761E10F43CE}] => (Allow) C:\Steam\steamapps\common\RUINER\Ruiner.exe
FirewallRules: [{B7B66AEE-2B8C-48EE-920C-58C754F1294D}] => (Allow) C:\Steam\steamapps\common\RUINER\Ruiner.exe
FirewallRules: [{00F47143-34ED-4EB7-B4E3-58E7A29529CF}] => (Allow) C:\Steam\steamapps\common\Cuphead\Cuphead.exe
FirewallRules: [{86A5CC2B-68DB-4BF5-A412-8584AF056F5C}] => (Allow) C:\Steam\steamapps\common\Cuphead\Cuphead.exe
FirewallRules: [{31C6DDED-244A-48B8-B18C-67F56AED13DF}] => (Allow) E:\steam\steamapps\common\SS2\SS2.exe
FirewallRules: [{C5588CAC-D874-490D-8E3A-BE52765E4724}] => (Allow) E:\steam\steamapps\common\SS2\SS2.exe
FirewallRules: [{A78DDD90-4EB0-4726-805E-0F99B06EF23A}] => (Allow) C:\Steam\steamapps\common\Party Hard\PartyHardGame.exe
FirewallRules: [{A267F0BE-2B9B-4809-AEF6-D0A485B92C18}] => (Allow) C:\Steam\steamapps\common\Party Hard\PartyHardGame.exe
FirewallRules: [{256DEAC5-1F16-4BC0-BC23-FFA124D10DCD}] => (Allow) C:\Steam\steamapps\common\Cryptark\Cryptark.exe
FirewallRules: [{7C71A958-50BC-4278-93F9-5B9390C90931}] => (Allow) C:\Steam\steamapps\common\Cryptark\Cryptark.exe
FirewallRules: [{443CF146-2D2C-465E-9CA0-2555DBC87576}] => (Allow) C:\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe
FirewallRules: [{3A51F6E3-B69C-41CD-A507-698E8363C381}] => (Allow) C:\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe
FirewallRules: [{194E145A-D5C5-409C-9883-895707865AFC}] => (Allow) C:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{DCEE01C9-DFAA-499B-A790-55AB191F2A88}] => (Allow) C:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{C4128EAF-E44D-4421-8C50-123F89932CC3}] => (Allow) C:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{46A7CA0A-677B-42A1-820D-B7DA1755902D}] => (Allow) C:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{CB99FAFB-72C6-4C10-B98D-7A0549BF1BFB}] => (Allow) C:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{80B2F318-EDB8-4952-979A-A814A7619E02}] => (Allow) C:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{2E0CE0BB-B61B-4047-AEA3-3964A9CC5A28}] => (Allow) C:\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{CA33333B-E370-434A-89D4-D41A0A0F9BA2}] => (Allow) C:\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{AAD924B7-4BD3-46FB-BEB1-49DEC0D0DB89}] => (Allow) C:\Steam\steamapps\common\Vampire The Masquerade - Bloodlines\vampire.exe
FirewallRules: [{9028ED0F-E64C-4ABD-86C4-8E227B2DF687}] => (Allow) C:\Steam\steamapps\common\Vampire The Masquerade - Bloodlines\vampire.exe
FirewallRules: [{01EB575E-567B-45E9-9AA5-996187B481E1}] => (Allow) E:\steam\steamapps\common\Metro Last Light Redux\metro.exe
FirewallRules: [{CDC09411-DECC-489D-A2D5-C90DEEAE3742}] => (Allow) E:\steam\steamapps\common\Metro Last Light Redux\metro.exe
FirewallRules: [{2B7B917D-F465-44DB-8565-A315A15B1081}] => (Allow) C:\Steam\steamapps\common\Battle Brothers\win32\BattleBrothers.exe
FirewallRules: [{C239E76F-243A-4BFA-B939-E496DF94595B}] => (Allow) C:\Steam\steamapps\common\Battle Brothers\win32\BattleBrothers.exe
FirewallRules: [{AA48D56D-4E9B-4962-BE44-B73A8E644175}] => (Allow) C:\Steam\steamapps\common\GoNNER\GoNNER.exe
FirewallRules: [{0F61A016-8BF5-4CA0-8957-39D4DEC5ED3A}] => (Allow) C:\Steam\steamapps\common\GoNNER\GoNNER.exe
FirewallRules: [{445E7187-9EA1-4096-842A-7F0845C82EFB}] => (Allow) C:\Steam\steamapps\common\Rock of Ages 2\ROA2.exe
FirewallRules: [{E87A0C43-2D74-4CB4-BFB9-80922D3C807D}] => (Allow) C:\Steam\steamapps\common\Rock of Ages 2\ROA2.exe
FirewallRules: [{AB5025CE-85EB-4E20-B5E5-1ED6FF1AB74A}] => (Allow) C:\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe
FirewallRules: [{299A20DA-D502-425E-9996-DA6D3B41CA9D}] => (Allow) C:\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe
FirewallRules: [{766BE12F-1CC9-487A-BB96-92DA8E3C12F7}] => (Allow) C:\Steam\steamapps\common\Transistor\x64\Transistor.exe
FirewallRules: [{548A8361-038C-4917-97DD-10CEA96109FF}] => (Allow) C:\Steam\steamapps\common\Transistor\x64\Transistor.exe
FirewallRules: [{67AA896C-FB1C-433E-895E-E2D5EF572739}] => (Allow) C:\Steam\steamapps\common\Darkwood\Darkwood.exe
FirewallRules: [{3D9AB930-8851-4EC3-A16F-C42752B62CB3}] => (Allow) C:\Steam\steamapps\common\Darkwood\Darkwood.exe
FirewallRules: [{264D8CF2-04FA-44EB-AC8A-07967500F7BB}] => (Allow) E:\steam\steamapps\common\Prey\Binaries\Danielle\x64\Release\Prey.exe
FirewallRules: [{61BE5F00-020E-4956-9CA1-86FD06A96504}] => (Allow) E:\steam\steamapps\common\Prey\Binaries\Danielle\x64\Release\Prey.exe
FirewallRules: [{F39E04E3-6867-4A42-BF22-ABB5349597E5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{28ED71E3-0FB1-4D04-A8F9-39406B2969EA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{B4B896A6-9926-4C23-9485-A31398AA1C30}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{2CC878D2-09E3-41DC-ADA5-E70F9909B6B0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{F711742E-F4A5-4D1F-8170-5C5AB64ABC07}] => (Allow) C:\Steam\steamapps\common\Dead Age\DeadAge.exe
FirewallRules: [{06BBAECB-0858-4A1B-BD86-C1ADB0FD8E87}] => (Allow) C:\Steam\steamapps\common\Dead Age\DeadAge.exe
FirewallRules: [{CE272B96-842D-4251-A489-BA509E50D726}] => (Allow) E:\steam\steamapps\common\20XX\20XX.exe
FirewallRules: [{8328423B-1D64-4D1C-B81C-AB8BC6DE668C}] => (Allow) E:\steam\steamapps\common\20XX\20XX.exe
FirewallRules: [{50B31CD1-2231-4E5A-AE77-BD401BA36E6C}] => (Allow) E:\steam\steamapps\common\Pyre\x64\Pyre.exe
FirewallRules: [{B2C63DCA-62DA-416B-8A1D-7D3A9D475E67}] => (Allow) E:\steam\steamapps\common\Pyre\x64\Pyre.exe
FirewallRules: [{F7BDE3BF-F7D4-461B-8A93-145C4E9F650B}] => (Allow) C:\Steam\steamapps\common\Brigador\brigador.exe
FirewallRules: [{E045B59F-532A-4F00-975D-0389AC4B085A}] => (Allow) C:\Steam\steamapps\common\Brigador\brigador.exe
FirewallRules: [{6AD19D02-A91F-4DDA-BA58-D30AB806047D}] => (Allow) C:\Steam\steamapps\common\Slayaway Camp\SlayawayCamp.exe
FirewallRules: [{4914EE5D-B8AF-4A09-8473-4BFC9D9BDB6A}] => (Allow) C:\Steam\steamapps\common\Slayaway Camp\SlayawayCamp.exe
FirewallRules: [{8E5893C6-7F2D-457D-B9B9-E9B89EA493DE}] => (Allow) C:\Steam\steamapps\common\Dungeon Souls\DungeonSouls.exe
FirewallRules: [{97186A43-CFCB-4C6C-9344-B7B3A166C216}] => (Allow) C:\Steam\steamapps\common\Dungeon Souls\DungeonSouls.exe
FirewallRules: [{86D5D161-2C53-45ED-8D60-9075A0BA75A4}] => (Allow) C:\Steam\steamapps\common\theendisnigh\TheEndIsNigh.exe
FirewallRules: [{38B3AE3A-8B2E-42DF-9E63-90D329F58B1D}] => (Allow) C:\Steam\steamapps\common\theendisnigh\TheEndIsNigh.exe
FirewallRules: [{175E8EEF-CB87-4FC3-9FC3-A47D2EE77A9F}] => (Allow) C:\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe
FirewallRules: [{7D407242-AC53-4E7A-A946-6563050D626A}] => (Allow) C:\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe
FirewallRules: [{7EA3FDD5-3D44-4248-AC65-3823EAE42B86}] => (Allow) C:\Steam\steamapps\common\TheLongDark\tld.exe
FirewallRules: [{0496B878-447E-4B1B-BC0B-08B6280C9C14}] => (Allow) C:\Steam\steamapps\common\TheLongDark\tld.exe
FirewallRules: [{21D46F33-38B4-40C9-96F4-71D0A9D20C90}] => (Allow) C:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{8FA2489C-6BAC-4E23-913D-AC539DBF81E0}] => (Allow) C:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{7853EDB7-FED0-4E5D-A365-070F46D87A6D}] => (Allow) C:\Steam\Steam.exe
FirewallRules: [{86AB7413-FFA4-4A8B-A5AD-D6655E3E6E13}] => (Allow) C:\Steam\Steam.exe
FirewallRules: [{60224DC3-5EB6-4FAE-8D3A-31817B9CD353}] => (Allow) C:\Steam\steamapps\common\Zombie Night Terror\znt.exe
FirewallRules: [{9D9B153D-E942-46D7-B5BB-C7843E78724C}] => (Allow) C:\Steam\steamapps\common\Zombie Night Terror\znt.exe
FirewallRules: [{4DE273A0-9F88-44EF-8C0B-67164CCBAF16}] => (Allow) C:\Steam\steamapps\common\SPAZ2\SPAZ2_64.exe
FirewallRules: [{B18A39E9-DA89-4216-8B8B-DE2DF8BCE412}] => (Allow) C:\Steam\steamapps\common\SPAZ2\SPAZ2_64.exe
FirewallRules: [{02691BEF-C155-4DB9-AF21-060A5DBA7E10}] => (Allow) C:\Steam\steamapps\common\Soul Searching\Soul Searching.exe
FirewallRules: [{E838FE3E-AB94-4198-88EF-61A4E95CE72D}] => (Allow) C:\Steam\steamapps\common\Soul Searching\Soul Searching.exe
FirewallRules: [{FAE7A002-3647-4DE5-8F25-5610BF13678A}] => (Allow) C:\Steam\steamapps\common\Beat Cop\BeatCop.exe
FirewallRules: [{0FD99E09-6BC8-468F-AA63-09038FCEBCB2}] => (Allow) C:\Steam\steamapps\common\Beat Cop\BeatCop.exe
FirewallRules: [{9BBF20A7-023E-44AC-B4FC-4283920C725B}] => (Allow) C:\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
FirewallRules: [{5BBE134A-A682-4DAF-8596-619DEF0F9984}] => (Allow) C:\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
FirewallRules: [{3CC14D1F-8B62-4AF8-8213-DC9E4E3C2D4E}] => (Allow) C:\Steam\steamapps\common\HyperLightDrifter\HyperLightDrifter.exe
FirewallRules: [{5B1E88DD-8163-40C5-AD57-91410D64CCE3}] => (Allow) C:\Steam\steamapps\common\HyperLightDrifter\HyperLightDrifter.exe
FirewallRules: [{D3D1BDB1-2D03-4C09-A553-FDE73A7465D7}] => (Allow) C:\Steam\steamapps\common\ABZU\AbzuGame.exe
FirewallRules: [{7A0C1E57-6583-4BA9-A0F4-4358546A919E}] => (Allow) C:\Steam\steamapps\common\ABZU\AbzuGame.exe
FirewallRules: [{8E9534D2-346E-4368-8273-704D47E796D8}] => (Allow) C:\Steam\steamapps\common\devildaggers\dd.exe
FirewallRules: [{3DDD3BBE-993A-4ED2-B536-4F9312B6756D}] => (Allow) C:\Steam\steamapps\common\devildaggers\dd.exe
FirewallRules: [{5676C863-83ED-4057-807E-340DDD3D1B6A}] => (Allow) C:\Steam\steamapps\common\Thea The Awakening\Thea.exe
FirewallRules: [{F4ED1271-24BC-4C1B-B419-E39AAB54EC19}] => (Allow) C:\Steam\steamapps\common\Thea The Awakening\Thea.exe
FirewallRules: [{961F0C82-6724-4FC8-8A16-92D327039AAC}] => (Allow) C:\Steam\steamapps\common\Thea The Awakening\MP\TheaMP.exe
FirewallRules: [{785E3098-C7EA-4DA7-B5C9-8B0406DC45CC}] => (Allow) C:\Steam\steamapps\common\Thea The Awakening\MP\TheaMP.exe
FirewallRules: [{B00C9E99-636B-4FAE-B4B8-559E84481E8A}] => (Allow) E:\steam\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{BE91CC3C-1FCD-46A5-83B3-0EE2E2D4F9B3}] => (Allow) E:\steam\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{AE1A49B2-ADCE-409A-BC15-DF67E3F53A6D}] => (Allow) E:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe
FirewallRules: [{F4140F76-4791-4C77-9B86-4BE1FCD4C68C}] => (Allow) E:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe
FirewallRules: [{91ED361B-C27C-4E21-B948-520AED4E7B45}] => (Allow) E:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe
FirewallRules: [{D22CD203-3606-465F-A670-48B965FEEA03}] => (Allow) E:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe
FirewallRules: [{242D5151-C1F2-4ED7-97F9-763FBC4FE310}] => (Allow) C:\Steam\steamapps\common\swkotor\swkotor.exe
FirewallRules: [{F86C7C80-8E3D-47C0-AA1A-2B53B1989B14}] => (Allow) C:\Steam\steamapps\common\swkotor\swkotor.exe
FirewallRules: [{C8DDA09E-FCA7-4175-9C96-2F3FF6962BC1}] => (Allow) C:\Steam\steamapps\common\The Swapper\TheSwapper.exe
FirewallRules: [{9E5B52D7-BD2F-4253-9806-D1D3F5853205}] => (Allow) C:\Steam\steamapps\common\The Swapper\TheSwapper.exe
FirewallRules: [{F2AB968A-D94B-4CA3-B6A5-CABB9D73C189}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe
FirewallRules: [{15D5AEE3-6BBD-4297-B4DC-A0814BD1E914}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe
FirewallRules: [{3EC789D9-3F7E-4269-BC18-86ED090FAE92}] => (Allow) C:\Steam\steamapps\common\FEZ\FEZ.exe
FirewallRules: [{A25C5FAC-58F6-4914-BA82-25472FDE6939}] => (Allow) C:\Steam\steamapps\common\FEZ\FEZ.exe
FirewallRules: [{09BAD69C-C82F-4479-9C48-3AF69FDB8727}] => (Allow) C:\Steam\steamapps\common\Baldur's Gate Enhanced Edition\Baldur.exe
FirewallRules: [{07F2450A-3B2B-400A-AC21-72AE36798264}] => (Allow) C:\Steam\steamapps\common\Baldur's Gate Enhanced Edition\Baldur.exe
FirewallRules: [{47B7BA25-EA49-4C26-A7E4-BFFC4F18BC65}] => (Allow) C:\Steam\steamapps\common\SteamWorld Dig 2\Dig2.exe
FirewallRules: [{465A41DF-F8DB-46C1-B3EB-95F58DFE6403}] => (Allow) C:\Steam\steamapps\common\SteamWorld Dig 2\Dig2.exe
FirewallRules: [{7DDFF1BE-E2E3-4C14-862D-311C4070F3A4}] => (Allow) C:\Steam\steamapps\common\SlayTheSpire\SlayTheSpire.exe
FirewallRules: [{4526F2FC-92BF-4F5A-AA68-33EA6084A1B9}] => (Allow) C:\Steam\steamapps\common\SlayTheSpire\SlayTheSpire.exe
FirewallRules: [{97F59DC5-D8A2-4CDE-B589-0F69ED8FE417}] => (Allow) C:\Steam\steamapps\common\Shadow Tactics\Shadow Tactics.exe
FirewallRules: [{BD4F8A31-B400-4002-AF3D-2E943CD1E558}] => (Allow) C:\Steam\steamapps\common\Shadow Tactics\Shadow Tactics.exe
FirewallRules: [{53F4B424-CFEC-4AFD-96E9-986D63879312}] => (Allow) C:\Steam\steamapps\common\Doki Doki Literature Club\DDLC.exe
FirewallRules: [{CC65DDE9-8844-48EB-9707-6A473971DFBE}] => (Allow) C:\Steam\steamapps\common\Doki Doki Literature Club\DDLC.exe
FirewallRules: [{91DBB5E2-D09A-4C28-9FAC-8082DE1B5111}] => (Allow) C:\Steam\steamapps\common\Reigns\Reigns.exe
FirewallRules: [{D671A732-C997-4BCD-8517-1AF0CDA9BFE6}] => (Allow) C:\Steam\steamapps\common\Reigns\Reigns.exe
FirewallRules: [{20AB5027-2E62-44A4-8410-347662FD67D8}] => (Allow) E:\steam\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{FCD5A25C-ACDF-41AB-8365-62A09563C233}] => (Allow) E:\steam\steamapps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{7E7CD0A0-21F2-4517-BC21-A02FA4811C50}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{BC1EA9BF-C158-4E8C-8454-3C1111E8775B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{7B6F41E6-CFE5-44AA-8FC7-3E227305B753}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{CFEBC536-FDBB-4B39-AD9D-8C9A370E860D}] => (Allow) C:\Steam\steamapps\common\Endless Space 2\EndlessSpace2.exe
FirewallRules: [{C1571F22-43B3-436D-BD1B-AE533B17D290}] => (Allow) C:\Steam\steamapps\common\Endless Space 2\EndlessSpace2.exe
FirewallRules: [{CECE9EFA-76A4-47EC-B456-4DFAF8EEF596}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{1F0A74D8-DA02-4EE1-A6B4-01A25981F345}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe
FirewallRules: [{984922A9-512B-4BA1-9AB3-D6E9A29A82F8}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe
FirewallRules: [{36E6FF33-8729-439D-95D8-6843F77BF466}] => (Allow) E:\steam\steamapps\common\Into the Breach\Breach.exe
FirewallRules: [{C196BF22-F29B-49E2-9B7F-3065A6997EE2}] => (Allow) E:\steam\steamapps\common\Into the Breach\Breach.exe
FirewallRules: [{55B0E5BF-9B76-4025-A72E-EE7C37260DA6}] => (Allow) E:\steam\steamapps\common\Coin Crypt\PC\CoinCrypt-win.exe
FirewallRules: [{98D07B1B-4D38-4606-8BE9-77FB276B7EDB}] => (Allow) E:\steam\steamapps\common\Coin Crypt\PC\CoinCrypt-win.exe
FirewallRules: [{B4D4295B-23C3-413B-B646-6BD496333292}] => (Allow) E:\steam\steamapps\common\Opus Magnum\Lightning.exe
FirewallRules: [{14D00B5C-C9E9-4AE6-A34E-70F4B27E340E}] => (Allow) E:\steam\steamapps\common\Opus Magnum\Lightning.exe
FirewallRules: [{E82CD769-C96C-49BA-8FC2-206DBD393D9F}] => (Allow) C:\Steam\steamapps\common\Halcyon 6 Lightspeed Edition\H6.exe
FirewallRules: [{3D655803-71E3-48E3-B787-81B301EEA960}] => (Allow) C:\Steam\steamapps\common\Halcyon 6 Lightspeed Edition\H6.exe
FirewallRules: [{C1420BAD-C20C-466D-80CD-9B03CE636416}] => (Allow) E:\steam\steamapps\common\Pit People\pitpeople.exe
FirewallRules: [{1D74F2BC-909F-4799-8CF2-A8D930AA79FE}] => (Allow) E:\steam\steamapps\common\Pit People\pitpeople.exe
FirewallRules: [{6DDEA72D-5E99-45C9-8D37-A5822B2F7F61}] => (Allow) E:\steam\steamapps\common\Neon Chrome\NeonChrome.exe
FirewallRules: [{FDC13445-E8B9-47AD-9671-B496EC35330B}] => (Allow) E:\steam\steamapps\common\Neon Chrome\NeonChrome.exe
FirewallRules: [{C33FA6C2-0F3A-4E12-809E-0417B233A024}] => (Allow) E:\steam\steamapps\common\Bionic_Dues\Bionic.exe
FirewallRules: [{EF6CCC17-DD13-4005-896B-A9081305A611}] => (Allow) E:\steam\steamapps\common\Bionic_Dues\Bionic.exe
FirewallRules: [{8C596103-B4D3-4A50-8E3C-1CD8C78623B4}] => (Allow) C:\Users\can\AppData\Roaming\Steganos\OnlineShield\Proxy\node.exe
FirewallRules: [{4E318543-DE4C-4FA3-A5ED-937567CCC261}] => (Allow) E:\steam\steamapps\common\Unexplored\Unexplored.exe
FirewallRules: [{D9BB728E-25AB-4AB3-96A9-F09E3FF7DCAA}] => (Allow) E:\steam\steamapps\common\Unexplored\Unexplored.exe
FirewallRules: [{81F08365-82EA-4FBA-85D3-0896E3BCE3D7}] => (Allow) E:\steam\steamapps\common\vagante\vagante.exe
FirewallRules: [{BED3A6C4-E37A-46E6-BF24-8B63C1978459}] => (Allow) E:\steam\steamapps\common\vagante\vagante.exe
FirewallRules: [{12BF3A2C-221B-4AA7-BAE4-DEEB4BE2449B}] => (Allow) C:\Steam\steamapps\common\Rusty Lake Paradise\RustyLakeParadise.exe
FirewallRules: [{D9427352-C297-4B99-954C-11B41421A733}] => (Allow) C:\Steam\steamapps\common\Rusty Lake Paradise\RustyLakeParadise.exe
FirewallRules: [{1E15156D-F190-404C-B40A-AA040730B423}] => (Allow) E:\steam\steamapps\common\Skulls of the Shogun\SkullsOfTheShogun.exe
FirewallRules: [{FB40E448-5D6A-4424-8F74-139FE4CC173E}] => (Allow) E:\steam\steamapps\common\Skulls of the Shogun\SkullsOfTheShogun.exe
FirewallRules: [{B34FBF10-868A-47AA-B76A-DEFFFF594D3C}] => (Allow) E:\steam\steamapps\common\Necropolis\Necropolis.exe
FirewallRules: [{13CF9D86-8D35-484C-A622-66011DDBA880}] => (Allow) E:\steam\steamapps\common\Necropolis\Necropolis.exe
FirewallRules: [{9FB7BE2E-5543-46D6-8A58-5B36E78260AB}] => (Allow) E:\steam\steamapps\common\Dead Cells\deadcells.exe
FirewallRules: [{A92046CE-3BF0-4448-BB53-74EA95EFA693}] => (Allow) E:\steam\steamapps\common\Dead Cells\deadcells.exe
FirewallRules: [{ECCF441A-095D-405A-ABF0-9214373D298B}] => (Allow) E:\steam\steamapps\common\Dead Cells\deadcells_gl.exe
FirewallRules: [{8C1F3988-6C51-4D0E-BB0D-8A74A562159D}] => (Allow) E:\steam\steamapps\common\Dead Cells\deadcells_gl.exe
FirewallRules: [{2BAD7BAD-4E42-4D0F-935C-885C70C3A858}] => (Allow) E:\steam\steamapps\common\The Curious Expedition\electron.exe
FirewallRules: [{1A6B6E3A-6B50-432B-909E-EA560EE0F0D1}] => (Allow) E:\steam\steamapps\common\The Curious Expedition\electron.exe
FirewallRules: [{2A0E2B99-CFE8-45F9-BD53-43677F56F647}] => (Allow) E:\steam\steamapps\common\CAYNE\cayne.exe
FirewallRules: [{0A8C705D-5BA6-4594-8961-C6599D432D39}] => (Allow) E:\steam\steamapps\common\CAYNE\cayne.exe
FirewallRules: [{238EE1E4-2BA5-47CB-8FB4-0E7444CF8911}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{5FDED6D4-540B-4BE7-ACA5-2B0364BE7C21}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{FB1B6EEA-B102-4BEE-ACA7-AE281C306A73}] => (Allow) E:\steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe
FirewallRules: [{F7E658B3-FE36-4460-8B8A-E78774953362}] => (Allow) E:\steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe
FirewallRules: [{72B1F284-32AF-40CA-AD99-D951BA9B01B1}] => (Allow) E:\steam\steamapps\common\SUPERHOTMCD\SUPERHOTMCD.exe
FirewallRules: [{1E6A293F-5B39-4E91-A663-4192713AD06B}] => (Allow) E:\steam\steamapps\common\SUPERHOTMCD\SUPERHOTMCD.exe
FirewallRules: [{DE9F8631-9F69-497A-ACF0-938EDDCF69BD}] => (Allow) E:\steam\steamapps\common\DeathRoadToCanada\prog.exe
FirewallRules: [{5FEE1594-473C-40D1-BD8E-E46290E25B61}] => (Allow) E:\steam\steamapps\common\DeathRoadToCanada\prog.exe
FirewallRules: [{7000586F-96A0-4809-9547-629B48F586F8}] => (Allow) E:\steam\steamapps\common\Doughlings\Doughlings Arcade.exe
FirewallRules: [{4747B864-A357-4476-8772-DC5686BD34A8}] => (Allow) E:\steam\steamapps\common\Doughlings\Doughlings Arcade.exe

==================== Restore Points =========================

13-03-2018 22:03:01 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (03/16/2018 01:00:40 PM) (Source: DCOM) (EventID: 10016) (User: CAN)
Description: application-specific izin ayarları 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 CLSID'sine ve 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 APPID'sine sahip COM Sunucu uygulaması için, Unavailable SID (Unavailable) uygulama kapsayıcısında çalışan LocalHost (Using LRPC) adresindeki SID değeri (S-1-5-21-2940121450-94073726-4050923498-1002) olan CAN\can kullanıcısına Local Activation izni vermiyor. Bu güvenlik izni, Bileşen Hizmetleri yönetim aracı kullanılarak değiştirilebilir.

Error: (03/16/2018 12:07:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specific izin ayarları 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 CLSID'sine ve 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 APPID'sine sahip COM Sunucu uygulaması için, Unavailable SID (Unavailable) uygulama kapsayıcısında çalışan LocalHost (Using LRPC) adresindeki SID değeri (S-1-5-19) olan NT AUTHORITY\LOCAL SERVICE kullanıcısına Local Activation izni vermiyor. Bu güvenlik izni, Bileşen Hizmetleri yönetim aracı kullanılarak değiştirilebilir.

Error: (03/16/2018 12:07:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specific izin ayarları 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 CLSID'sine ve 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 APPID'sine sahip COM Sunucu uygulaması için, Unavailable SID (Unavailable) uygulama kapsayıcısında çalışan LocalHost (Using LRPC) adresindeki SID değeri (S-1-5-19) olan NT AUTHORITY\LOCAL SERVICE kullanıcısına Local Activation izni vermiyor. Bu güvenlik izni, Bileşen Hizmetleri yönetim aracı kullanılarak değiştirilebilir.

Error: (03/16/2018 12:07:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specific izin ayarları 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 CLSID'sine ve 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 APPID'sine sahip COM Sunucu uygulaması için, Unavailable SID (Unavailable) uygulama kapsayıcısında çalışan LocalHost (Using LRPC) adresindeki SID değeri (S-1-5-19) olan NT AUTHORITY\LOCAL SERVICE kullanıcısına Local Activation izni vermiyor. Bu güvenlik izni, Bileşen Hizmetleri yönetim aracı kullanılarak değiştirilebilir.

Error: (03/16/2018 12:07:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specific izin ayarları 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 CLSID'sine ve 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 APPID'sine sahip COM Sunucu uygulaması için, Unavailable SID (Unavailable) uygulama kapsayıcısında çalışan LocalHost (Using LRPC) adresindeki SID değeri (S-1-5-19) olan NT AUTHORITY\LOCAL SERVICE kullanıcısına Local Activation izni vermiyor. Bu güvenlik izni, Bileşen Hizmetleri yönetim aracı kullanılarak değiştirilebilir.

Error: (03/16/2018 12:06:54 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1794) (User: NT AUTHORITY)
Description: The Trusted Platform Module (TPM) firmware on this PC has a known security problem. Please contact your PC manufacturer to find out if an update is available. For more information please go to https://go.microsoft.com/fwlink/?linkid=852572

Error: (03/16/2018 12:06:51 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1794) (User: NT AUTHORITY)
Description: The Trusted Platform Module (TPM) firmware on this PC has a known security problem. Please contact your PC manufacturer to find out if an update is available. For more information please go to https://go.microsoft.com/fwlink/?linkid=852572

Error: (03/16/2018 12:06:33 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: WMPNetworkSvc hizmeti, şu hata nedeniyle başlatılamayan WSearch hizmetine bağımlıdır: 
Devre dışı olduğundan veya ilişkili etkin aygıt olmadığından hizmet başlatılamadı.


Windows Defender:
===================================
Date: 2018-01-04 11:28:45.185
Description: 
Windows Defender Virüsten Koruma kötü amaçlı yazılım veya başka bir istenmeyebilecek yazılım algıladı.
Daha fazla bilgi için lütfen aşağıya bakın:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Ad: HackTool:Win32/AutoKMS
Kimlik: 2147685180
Önem Derecesi: Medium
Kategori: Tool
Yol: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\KMSELDI.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart;process:_pid:3488,ProcessStart:131595275212320881;regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2D60530-1FA5-4D1B-A932-28B25BBB5949};regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoPico Daily Restart;regkey:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1;service:_Service KMSELDI;taskscheduler:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart;uninstall:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1
Algılama Başlangıç Noktası: Yerel makine
Algılama Türü: Somut
Algılama Kaynağı: Sistem
Kullanıcı: NT AUTHORITY\SYSTEM
İşlem Adı: C:\Program Files\ESET\ESET Security\ekrn.exe
İmza Sürümü: AV: 1.251.236.0, AS: 1.251.236.0, NIS: 117.2.0.0
Altyapı Sürümü: AM: 1.1.14104.0, NIS: 2.1.13804.0

Date: 2018-01-04 11:23:12.141
Description: 
Windows Defender Virüsten Koruma kötü amaçlı yazılım veya başka bir istenmeyebilecek yazılım algıladı.
Daha fazla bilgi için lütfen aşağıya bakın:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Ad: HackTool:Win32/AutoKMS
Kimlik: 2147685180
Önem Derecesi: Medium
Kategori: Tool
Yol: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\KMSELDI.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart;process:_pid:3488,ProcessStart:131595275212320881;regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2D60530-1FA5-4D1B-A932-28B25BBB5949};regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoPico Daily Restart;regkey:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1;service:_Service KMSELDI;taskscheduler:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart;uninstall:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1
Algılama Başlangıç Noktası: Yerel makine
Algılama Türü: Somut
Algılama Kaynağı: Sistem
Kullanıcı: NT AUTHORITY\SYSTEM
İşlem Adı: C:\Program Files\KMSpico\Service_KMS.exe
İmza Sürümü: AV: 1.251.236.0, AS: 1.251.236.0, NIS: 117.2.0.0
Altyapı Sürümü: AM: 1.1.14104.0, NIS: 2.1.13804.0

Date: 2018-01-04 11:15:13.640
Description: 
Windows Defender Virüsten Koruma kötü amaçlı yazılım veya başka bir istenmeyebilecek yazılım algıladı.
Daha fazla bilgi için lütfen aşağıya bakın:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Ad: HackTool:Win32/AutoKMS
Kimlik: 2147685180
Önem Derecesi: Medium
Kategori: Tool
Yol: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\KMSELDI.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart;process:_pid:3832,ProcessStart:131595262595383170;regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2D60530-1FA5-4D1B-A932-28B25BBB5949};regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoPico Daily Restart;service:_Service KMSELDI;taskscheduler:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
Algılama Başlangıç Noktası: Yerel makine
Algılama Türü: Somut
Algılama Kaynağı: Sistem
Kullanıcı: NT AUTHORITY\SYSTEM
İşlem Adı: C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
İmza Sürümü: AV: 1.251.236.0, AS: 1.251.236.0, NIS: 117.2.0.0
Altyapı Sürümü: AM: 1.1.14104.0, NIS: 2.1.13804.0

Date: 2018-01-04 11:10:16.186
Description: 
Windows Defender Virüsten Koruma kötü amaçlı yazılım veya başka bir istenmeyebilecek yazılım algıladı.
Daha fazla bilgi için lütfen aşağıya bakın:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Ad: HackTool:Win32/AutoKMS
Kimlik: 2147685180
Önem Derecesi: Medium
Kategori: Tool
Yol: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\KMSELDI.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart;process:_pid:3832,ProcessStart:131595262595383170;regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2D60530-1FA5-4D1B-A932-28B25BBB5949};regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoPico Daily Restart;service:_Service KMSELDI;taskscheduler:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
Algılama Başlangıç Noktası: Yerel makine
Algılama Türü: Somut
Algılama Kaynağı: Sistem
Kullanıcı: NT AUTHORITY\SYSTEM
İşlem Adı: C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
İmza Sürümü: AV: 1.251.236.0, AS: 1.251.236.0, NIS: 117.2.0.0
Altyapı Sürümü: AM: 1.1.14104.0, NIS: 2.1.13804.0

Date: 2018-01-04 11:10:15.771
Description: 
Windows Defender Virüsten Koruma kötü amaçlı yazılım veya başka bir istenmeyebilecek yazılım algıladı.
Daha fazla bilgi için lütfen aşağıya bakın:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Ad: HackTool:Win32/AutoKMS
Kimlik: 2147685180
Önem Derecesi: Medium
Kategori: Tool
Yol: file:_C:\Program Files\KMSpico\AutoPico.exe;file:_C:\Program Files\KMSpico\Service_KMS.exe;file:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart;process:_pid:3832,ProcessStart:131595262595383170;regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2D60530-1FA5-4D1B-A932-28B25BBB5949};regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoPico Daily Restart;service:_Service KMSELDI;taskscheduler:_C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
Algılama Başlangıç Noktası: Yerel makine
Algılama Türü: Somut
Algılama Kaynağı: Sistem
Kullanıcı: NT AUTHORITY\SYSTEM
İşlem Adı: C:\Program Files\KMSpico\Service_KMS.exe
İmza Sürümü: AV: 1.251.236.0, AS: 1.251.236.0, NIS: 117.2.0.0
Altyapı Sürümü: AM: 1.1.14104.0, NIS: 2.1.13804.0

Date: 2018-01-04 12:12:47.379
Description: 
Windows Defender Virüsten Koruma Gerçek Zamanlı Koruma özelliği bir hatayla karşılaştı ve başarısız oldu.
Özellik: Ağ İnceleme Sistemi
Hata Kodu: 0x8007045b
Hata açıklaması: A system shutdown is in progress. 
Neden: Kötü amaçlı yazılımdan koruma hizmeti bilinmeyen bir nedenle durdu. Bazı durumlarda hizmeti yeniden başlatmak sorunu çözebilir.

Date: 2018-01-04 12:12:47.379
Description: 
Windows Defender Virüsten Koruma Gerçek Zamanlı Koruma özelliği bir hatayla karşılaştı ve başarısız oldu.
Özellik: Davranış İzleme
Hata Kodu: 0x8007045b
Hata açıklaması: A system shutdown is in progress. 
Neden: Kötü amaçlı yazılımdan koruma hizmeti bilinmeyen bir nedenle durdu. Bazı durumlarda hizmeti yeniden başlatmak sorunu çözebilir.

Date: 2018-01-04 12:12:47.378
Description: 
Windows Defender Virüsten Koruma Gerçek Zamanlı Koruma özelliği bir hatayla karşılaştı ve başarısız oldu.
Özellik: Erişimde
Hata Kodu: 0x8007045b
Hata açıklaması: A system shutdown is in progress. 
Neden: Kötü amaçlı yazılımdan koruma hizmeti bilinmeyen bir nedenle durdu. Bazı durumlarda hizmeti yeniden başlatmak sorunu çözebilir.

Date: 2018-01-04 11:15:19.970
Description: 
Windows Defender Virüsten Koruma imzaları güncelleştirmeye çalışırken bir hatayla karşılaştı.
Yeni İmza Sürümü: 1.259.1155.0
Önceki İmza Sürümü: 1.251.236.0
Güncelleştirme Kaynağı: Kullanıcı
İmza Türü: Casus Yazılım Önleme
Güncelleştirme Türü: Tam
Kullanıcı: NT AUTHORITY\SYSTEM
Geçerli Altyapı Sürümü: 1.1.14405.2
Önceki Altyapı Sürümü: 1.1.14104.0
Hata kodu: 0x80509004
Hata açıklaması: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support. 

Date: 2018-01-04 11:15:19.970
Description: 
Windows Defender Virüsten Koruma imzaları güncelleştirmeye çalışırken bir hatayla karşılaştı.
Yeni İmza Sürümü: 1.259.1155.0
Önceki İmza Sürümü: 1.251.236.0
Güncelleştirme Kaynağı: Kullanıcı
İmza Türü: Virüsten Koruma
Güncelleştirme Türü: Tam
Kullanıcı: NT AUTHORITY\SYSTEM
Geçerli Altyapı Sürümü: 1.1.14405.2
Önceki Altyapı Sürümü: 1.1.14104.0
Hata kodu: 0x80509004
Hata açıklaması: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support. 

CodeIntegrity:
===================================

Date: 2018-03-15 11:28:09.543
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod0895.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-15 11:28:09.102
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod0895.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-15 11:28:08.778
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod0895.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-15 11:28:08.022
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod0895.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-15 11:28:07.520
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod0895.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-15 11:28:07.044
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod0895.dll.nup.raw because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-06 10:19:47.139
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.

Date: 2018-03-06 10:19:46.086
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Percentage of memory in use: 58%
Total physical RAM: 8012.69 MB
Available physical RAM: 3346.82 MB
Total Virtual: 9996.69 MB
Available Virtual: 4195.41 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.96 GB) (Free:19.41 GB) NTFS
Drive e: () (Fixed) (Total:223.55 GB) (Free:8.53 GB) NTFS

\\?\Volume{497a6a22-ee9c-4c72-974b-c26f17e38e5c}\ () (Fixed) (Total:0.44 GB) (Free:0.03 GB) NTFS
\\?\Volume{1d51309f-7e6c-416a-96c5-8fe71a9b9ec2}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================