Rehber HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleme:
Genişletmek için tıkla...
nnicomediann dedi:
Evet 1 hafta sonra siliyormuş logu site. Tekrar deniyorum. :) Paste ofCode

MBAM yüklü. Bu Crypto klasörü gerekli bir klasörmüş sanırım? Hatadan sıkıldım, vbs dosyasını bulup sildim ama iyi mi yaptım bilmiyorum. Hata gitti. Başka soeun var mı? Teşekkürler.
Genişletmek için tıkla...
Kod: 
Logfile of HiJackThis+ build 2025-01-16 Beta v.3.4.0.17

Platform:  x64 Windows 11 (Home), 10.0.26100.3775 (ReleaseId: 2009, 24H2), Service Pack: 0
Time:      10.05.2025 - 11:01 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    2,66 GiB Free / 8. Loading RAM (65 %), CPU (9 %)
Disk C:    38,54 GiB Free / 237 (SSD, GPT)
Elevated:  Yes
Ran by:    dt    (group: Administrators; type: Microsoft) on DESKTOP-R0I9P6F, FirstRun: yes

Chrome:  136.0.7103.93
Internet Explorer: 11.0.26100.1882
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: Off)

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\SMART Technologies\SMART Crash Reporter 1.2\crashpad_handler2.exe
   1  C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe
   1  C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
   1  C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE
   1  C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
  13  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(GenericTelemetryAddin).exe
   1  C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantage-(VantageCoreAddin).exe
   1  C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\LenovoVantageService.exe
   5  C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
   6  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.50\msedgewebview2.exe
   1  C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe
   1  C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   1  C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
   1  C:\Program Files\epson\Epson Data Collection Agent\DCAgent.exe
   1  C:\Program Files\Google\Drive File Stream\107.0.3.0\crashpad_handler.exe
   7  C:\Program Files\Google\Drive File Stream\107.0.3.0\GoogleDriveFS.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
   1  C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
   1  C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
   1  C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
   1  C:\Program Files\Tablet\Wacom\WacomHost.exe
   1  C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
   1  C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio3_1.0.85.0_x64__qt57b6kdvhcfw\AFA\CAudioFilterAgent64.exe
   1  C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio3_1.0.85.0_x64__qt57b6kdvhcfw\Flow\Flow1\Flow.exe
   1  C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
   1  C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
   1  C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
   1  C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
   1  C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.9.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
   1  C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.225.4081.0_x64__8wekyb3d8bbwe\GameBar.exe
   1  C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.225.4081.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25032.82.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.10401.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\Program Files\XPPen\PenTablet.exe
   1  C:\Users\tolga\AppData\Local\Microsoft\OneDrive\25.065.0406.0002\Microsoft.SharePoint.exe
   1  C:\Users\tolga\Desktop\HiJackThis.exe
   1  C:\Windows\CxSvc\CxAudioSvc.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
   1  C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
   1  C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\splwow64.exe
   1  C:\Windows\System32\AggregatorHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\CxAudMsg64.exe
   1  C:\Windows\System32\dasHost.exe
   1  C:\Windows\System32\dllhost.exe
   2  C:\Windows\System32\dolbyaposvc\DAX3API.exe
   1  C:\Windows\System32\drivers\SessionService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d70b02a5a438df3c\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d70b02a5a438df3c\igfxEM.exe
   1  C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
   1  C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e3f96af62737a898\RstMwService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_577475639d32bfed\OneApp.IGCC.WinService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_440392e76b44e849\IntelCpHDCPSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_440392e76b44e849\IntelCpHeciSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_17a985f102ce7ec9\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_d372a4ea3b959b1c\aesm_service.exe
   2  C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_4690d097c38be4a9\WTabletServiceISD.exe
   1  C:\Windows\System32\dwm.exe
   1  C:\Windows\System32\escsvc64.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\LNBITSSvc.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\oobe\UserOOBEBroker.exe
   5  C:\Windows\System32\RuntimeBroker.exe
   2  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\ShellHost.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  87  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wbem\WMIADAP.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   4  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\YMC.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyServer] = ftp://192.168.0.30:9999 (disabled)
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = hxxps://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O1 - Hosts: 0.0.0.0 serius.mwbsys.com
O2 - HKLM\..\BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (sign: 'Adobe Systems, Incorporated')
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (sign: 'Tonec Inc.')
O2 - HKLM\..\BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (sign: 'Adobe Systems, Incorporated')
O2-32 - HKLM\..\BHO: (no name) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - (no file)
O2-32 - HKLM\..\BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (sign: 'Adobe Systems, Incorporated')
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (sign: 'Tonec Inc.')
O2-32 - HKLM\..\BHO: SMART Notebook Download Utility - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files (x86)\SMART Technologies\Education Software\NotebookPlugin.dll (sign: 'SMART Technologies ULC')
O2-32 - HKLM\..\BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (sign: 'Adobe Systems, Incorporated')
O3 - HKLM\..\Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (sign: 'Adobe Systems, Incorporated')
O3-32 - HKLM\..\Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (sign: 'Adobe Systems, Incorporated')
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files (x86)\Google\Chrome\Application\136.0.7103.93\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\Run: [Crypto] = C:\Users\tolga\AppData\Roaming\Microsoft\Crypto\Crypto.vbs (not signed - no company - D1BB82131380EF16C15D813A182C5698D0D6F635)
O4 - HKCU\..\Run: [EPSDNMON] = C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE (sign: 'SEIKO EPSON CORPORATION')
O4 - HKCU\..\Run: [GoogleDriveFS] = C:\Program Files\Google\Drive File Stream\107.0.3.0\GoogleDriveFS.exe --startup_mode (sign: 'Google LLC')
O4 - HKCU\..\Run: [Microsoft.Lists] = C:\Users\tolga\AppData\Local\Microsoft\OneDrive\25.065.0406.0002\Microsoft.SharePoint.exe (sign: 'Microsoft')
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_AAA79D92E6975CA77C8FBFF0B2ECEDE9] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (sign: 'Microsoft')
O4 - HKLM\..\Run: [EPPCCMON] = C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE (sign: 'SEIKO EPSON CORPORATION')
O4 - HKLM\..\Run: [PenTablet] = C:\Program Files\XPPen\PenTablet.exe /mini (sign: 'Hanvon Ugee Technology Co., Ltd.')
O4 - HKLM\..\StartupApproved\Run: [DataCollectionAgentController] = C:\Program Files\EPSON\Epson Data Collection Agent\DataCollectionAgentController.exe (2024/10/31) (sign: 'SEIKO EPSON CORPORATION')
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (sign: 'Microsoft')
O4 - HKLM\..\StartupApproved\Run: [TechSmithSnagit] = C:\Program Files\TechSmith\Snagit 2020\Snagit32.exe /i (2024/10/31) (sign: 'TechSmith Corporation')
O4 - HKLM\..\StartupApproved\Run32: [EEventManager] = C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (2024/10/31) (not signed - Seiko Epson Corporation - D702DBC196AE99FB7FD610DB0172E28C3E18F28F)
O4 - HKLM\..\StartupApproved\Run32: [sbsdk-server] = C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe (2024/10/31) (sign: 'SMART Technologies ULC')
O4 - HKLM\..\StartupApproved\Run32: [SMART Board Service] = C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe -d (2024/10/31) (sign: 'SMART Technologies ULC')
O4 - HKLM\..\StartupApproved\Run32: [SMART Ink] = C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe -a (2024/10/31) (sign: 'SMART Technologies ULC')
O4 - HKU\S-1-5-18\..\Run: [GoogleDriveFS] = C:\Program Files\Google\Drive File Stream\107.0.3.0\GoogleDriveFS.exe --startup_mode (User 'LocalSystem') (sign: 'Google LLC')
O4 - HKU\S-1-5-19\..\Run: [GoogleDriveFS] = C:\Program Files\Google\Drive File Stream\107.0.3.0\GoogleDriveFS.exe --startup_mode (User 'Local service') (sign: 'Google LLC')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [GoogleDriveFS] = C:\Program Files\Google\Drive File Stream\107.0.3.0\GoogleDriveFS.exe --startup_mode (User 'Network service') (sign: 'Google LLC')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O4-32 - HKLM\..\Run: [SMART Tray Tools] = C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe (sign: 'SMART Technologies ULC')
O4-32 - HKLM\..\Run: [SMARTNotification] = C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe (sign: 'SMART Technologies ULC')
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiSpyware] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiVirus] = 1
O15 - Trusted Zone: hxxps://cevrekoleji365-files.sharepoint.com
O15 - Trusted Zone: hxxps://cevrekoleji365-myfiles.sharepoint.com
O17 - DHCP DNS 1: 46.196.235.227
O17 - DHCP DNS 2: 178.233.140.147
O18 - HKLM\Software\Classes\Protocols\Filter\application/octet-stream: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-complus: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-msdownload: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Handler\ms-help: [CLSID] = {314111C7-A502-11D2-BBCA-00C04F8EC294} - (no file)
O18 - Printer Port: C:\ProgramData\TechSmith\Snagit 20\PrinterPortFile
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll (sign: 'Adobe Systems Incorporated')
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (sign: 'Tonec Inc.')
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files\Google\Drive File Stream\107.0.3.0\drivefsext.dll (sign: 'Google LLC')
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files\Google\Drive File Stream\107.0.3.0\x86\drivefsext.dll (sign: 'Google LLC')
O22 - Task (.job): (Not scheduled) Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (sign: 'Adobe Systems Incorporated')
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {F3C90910-1A01-485C-8C7F-C4E79D09B3AC}.job - C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE (sign: 'SEIKO EPSON CORPORATION')
O22 - Task (.job): (Not scheduled) update-S-1-5-21-3363675937-2214997215-1950016975-1001.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Task (.job): (Not scheduled) update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Intel (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\BatteryGauge (empty)
O22 - Tasks: (disabled) \Agent Activation Runtime\S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Agent Activation Runtime\S-1-5-21-3363675937-2214997215-1950016975-1004 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical - {613FBA38-A3DF-4AB8-9674-5604984A299A},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical - {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\WINDOWS\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Servicing\OOBEFodSetup - C:\WINDOWS\system32\OOBEFodSetup.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\SharedPC\Account Cleanup - {7750564D-D61C-4557-8A9D-7DF56BDCFF96} - C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (file missing)
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (file missing)
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Lenovo\Vantage\Schedule\DailyTelemetryTransmission - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe DailyTelemetryTransmission (sign: 'Lenovo')
O22 - Tasks: (telemetry) \Lenovo\Vantage\Schedule\VantageTelemetryAddinTask - C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (file missing)
O22 - Tasks: (telemetry) \Microsoft\Office\Office Performance Monitor - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Office\Office Subscription Maintenance - C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser Exp - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun express (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\WINDOWS\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Sustainability\SustainabilityTelemetry - {6EE41D75-D091-4FB7-9AD5-018760DD25D4} - C:\WINDOWS\system32\EcoScoreTask.dll (sign: 'Microsoft')
O22 - Tasks: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7156.0{892B1F00-D6E1-4C10-82E7-45F76722DAB0} - C:\Program Files (x86)\Google\GoogleUpdater\138.0.7156.0\updater.exe --wake --system (sign: 'Google LLC')
O22 - Tasks: \Lenovo\ImController\Lenovo iM Controller Monitor - C:\WINDOWS\system32\ImController.InfInstaller.exe -checkremoval (sign: 'Lenovo')
O22 - Tasks: \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance - C:\WINDOWS\system32\sc.exe START ImControllerService (sign: 'Microsoft')
O22 - Tasks: \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask - C:\WINDOWS\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32 (sign: 'Microsoft')
O22 - Tasks: \Lenovo\ImController\TimeBasedEvents\14809bad-d6de-44c9-b36c-a8479c4b2269 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 14809bad-d6de-44c9-b36c-a8479c4b2269 (sign: 'Lenovo')
O22 - Tasks: \Lenovo\ImController\TimeBasedEvents\5c09e620-3ad6-4299-a880-9422df30f1f5 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 5c09e620-3ad6-4299-a880-9422df30f1f5 (sign: 'Lenovo')
O22 - Tasks: \Lenovo\ImController\TimeBasedEvents\75192703-c7d0-467f-b472-3c8520041be2 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 75192703-c7d0-467f-b472-3c8520041be2 (sign: 'Lenovo')
O22 - Tasks: \Lenovo\ImController\TimeBasedEvents\76d6de4a-a9f9-4b30-9069-d26a87e29781 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 76d6de4a-a9f9-4b30-9069-d26a87e29781 (sign: 'Lenovo')
O22 - Tasks: \Lenovo\ImController\TimeBasedEvents\cd5cd587-777b-49a8-9184-e2929d39d1bd - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger cd5cd587-777b-49a8-9184-e2929d39d1bd (sign: 'Lenovo')
O22 - Tasks: \Lenovo\ImController\TimeBasedEvents\e5a3f0c4-ea98-41b2-953b-f31bee7c1df3 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger e5a3f0c4-ea98-41b2-953b-f31bee7c1df3 (sign: 'Lenovo')
O22 - Tasks: \Lenovo\ImController\TimeBasedEvents\f925b758-71aa-4776-a9d7-56c7a42c41c4 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger f925b758-71aa-4776-a9d7-56c7a42c41c4 (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Lenovo Service Bridge\S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Users\tolga\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe (sign: 'Lenovo (Beijing) Limited')
O22 - Tasks: \Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance - C:\WINDOWS\system32\sc.exe start LenovoVantageService (sign: 'Microsoft')
O22 - Tasks: \Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe BatteryGaugeAddinDailyScheduleTask (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\GenericMessagingAddin - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe GenericMessagingAddin (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe HeartbeatAddinDailyScheduleTask (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe IdeaNotebookAddinDailyEvent (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe Lenovo.Vantage.SmartPerformance.MonthlyReport (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\LenovoBoostAddin.Prompt - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe LenovoBoostAddin.Prompt (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe LenovoCompanionAppAddinDailyScheduleTask (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe LenovoSystemUpdateAddin_WeeklyTask (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\NotificationCenter - C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe NotificationCenter (file missing)
O22 - Tasks: \Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe SettingsWidgetAddinDailyScheduleTask (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe SmartPerformance.ExpireReminder (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\VantageCoreAddinIdleScheduleTask - C:\ProgramData\Lenovo\Vantage\Addins\VantageCoreAddin\1.0.0.190\x64\IdleScheduleEventAction.exe (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.3.21.0\ScheduleEventAction.exe VantageCoreAddinWeekScheduleTask (sign: 'Lenovo')
O22 - Tasks: \Lenovo\Vantage\StartupFixPlan - C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\uninstall.exe /repair (file missing)
O22 - Tasks: \Microsoft\Office\Office Apps Prewarm - C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe /prewarm (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Office\Office Apps Prewarm Recurring - C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe /prewarm (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Office\Office Background Push Maintenance - C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe /pushregistration (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Office\Office Serviceability Manager - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 - {84F0FAE1-C27B-4F6F-807B-28CF6F96287D},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 - {429BC048-379E-45E0-80E4-EB1977941B5C},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\AccountHealth\RecoverabilityToastTask - {B7F5B442-EBF8-46CD-9F0B-D8E45ED43492},-flow showtoast -checkup recoverability - C:\WINDOWS\system32\AccountHealth.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Diagnosis\UnexpectedCodepath - C:\WINDOWS\system32\UCConfigTask.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\ReconcileConfigs - {15F5ECE1-4550-4A92-8E26-984FD1DA54FA} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\UsageDataReceiver - {D4C0420F-76BD-4F66-A91F-918A93ABEBEB} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\RemoteMouseSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemoteMouseSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\RemotePenSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemotePenSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\RemoteTouchpadSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemoteTouchpadSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Location\Notifications - C:\WINDOWS\System32\LocationNotificationWindows.exe (file missing)
O22 - Tasks: \Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - C:\WINDOWS\System32\MbaeParserTask.exe (file missing)
O22 - Tasks: \Microsoft\Windows\Network Connectivity Status Indicator\NcsiIdentifyUserProxies - {706B965A-8308-4CD4-9900-87C2D79C121B} - C:\Windows\System32\netprofm.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\PerformanceTrace\RequestTrace - {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} - C:\WINDOWS\system32\PerformanceTraceHandler.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ReFsDedupSvc\Initialization - {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} - C:\WINDOWS\System32\ReFsDedupSvc.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask - {8702A841-D5CA-47C3-812D-9CEDC304C200} - (no file)
O22 - Tasks: \Microsoft\Windows\Sustainability\PowerGridForecastTask - {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} - C:\WINDOWS\system32\PowerGridForecastTask.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\TPM\Tpm-PreAttestationHealthCheck - {5014B7C8-934E-4262-9816-887FA745A6C4},TpmPreAttestationHealthCheck - C:\WINDOWS\system32\TpmTasks.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - C:\WINDOWS\system32\MusNotification.exe Display (file missing)
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UIEOrchestrator - C:\WINDOWS\system32\UIEOrchestrator.exe /SendHeartbeat (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (file missing)
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UUS Failover Task - C:\WINDOWS\System32\MLEngineStub.exe HandleUusFailoverEvaluationSignalFromWnf (sign: 'Microsoft')
O22 - Tasks: \TVT\TVSUUpdateTask - C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (sign: 'Lenovo')
O22 - Tasks: \TVT\TVSUUpdateTask_UserLogOn - C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe PendingTask (sign: 'Lenovo')
O22 - Tasks: Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (sign: 'Adobe Systems Incorporated')
O22 - Tasks: AdobeGCInvoker-1.0 - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe -mode=scheduled (file missing)
O22 - Tasks: BlueStacksHelper_nxt - C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe -sr (sign: 'Bluestack Systems, Inc')
O22 - Tasks: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe (file missing)
O22 - Tasks: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0) (sign: 'Piriform Software Ltd')
O22 - Tasks: EPSON L3150 Series Update {F3C90910-1A01-485C-8C7F-C4E79D09B3AC} - C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{F3C90910-1A01-485C-8C7F-C4E79D09B3AC}" /F:"Update" (sign: 'SEIKO EPSON CORPORATION')
O22 - Tasks: LenovoUtility Startup - C:\Windows\explorer.exe lenovo-utility:// (sign: 'Microsoft')
O22 - Tasks: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log (sign: 'NVIDIA Corporation')
O22 - Tasks: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log (sign: 'NVIDIA Corporation')
O22 - Tasks: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler (sign: 'NVIDIA Corporation')
O22 - Tasks: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Users\tolga\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-3363675937-2214997215-1950016975-1004 - C:\Users\tolga\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-3363675937-2214997215-1950016975-1014 - C:\Users\tolga\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: OneDrive Startup Task-S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Users\tolga\AppData\Local\Microsoft\OneDrive\25.065.0406.0002\OneDriveLauncher.exe /startInstances (sign: 'Microsoft')
O22 - Tasks: OneDrive Startup Task-S-1-5-21-3363675937-2214997215-1950016975-1014 - C:\Users\İdil ve Can\AppData\Local\Microsoft\OneDrive\25.070.0413.0001\OneDriveLauncher.exe /startInstances (sign: 'Microsoft')
O22 - Tasks: Opera scheduled Autoupdate 1652624065 - C:\Users\tolga\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe --scheduledtask --bypasslauncher $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks: update-S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: ZoomUpdateTaskUser-S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Users\tolga\AppData\Roaming\Zoom\bin\Zoom.exe --action=UpdateSchedule (sign: 'Zoom Video Communications, Inc.')
O22 - Tasks_Migrated: (disabled) \Agent Activation Runtime\S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Agent Activation Runtime\S-1-5-21-3363675937-2214997215-1950016975-1004 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Office\Office Apps Prewarm - C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe /prewarm (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Office\Office Apps Prewarm Recurring - C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe /prewarm (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical - {613FBA38-A3DF-4AB8-9674-5604984A299A},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical - {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\WINDOWS\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks_Migrated: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) \Lenovo\Vantage\Schedule\DailyTelemetryTransmission - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe DailyTelemetryTransmission (file missing)
O22 - Tasks_Migrated: (telemetry) \Lenovo\Vantage\Schedule\VantageTelemetryAddinTask - C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (file missing)
O22 - Tasks_Migrated: (telemetry) \Microsoft\Office\Office Performance Monitor - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) \Microsoft\Office\Office Subscription Maintenance - C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) \Microsoft\Windows\Application Experience\PcaWallpaperAppDetect - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaWallpaperAppDetect (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\WINDOWS\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks_Migrated: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{0BA3AD75-C634-4743-9DAD-6692585FFC7F} - C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe --wake --system (file missing)
O22 - Tasks_Migrated: \Lenovo\ImController\Lenovo iM Controller Monitor - C:\WINDOWS\system32\ImController.InfInstaller.exe -checkremoval (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance - C:\WINDOWS\system32\sc.exe START ImControllerService (sign: 'Microsoft')
O22 - Tasks_Migrated: \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask - C:\WINDOWS\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32 (sign: 'Microsoft')
O22 - Tasks_Migrated: \Lenovo\ImController\TimeBasedEvents\01dc48f0-41b4-49a7-8276-f845065f53d4 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 01dc48f0-41b4-49a7-8276-f845065f53d4 (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\ImController\TimeBasedEvents\14809bad-d6de-44c9-b36c-a8479c4b2269 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 14809bad-d6de-44c9-b36c-a8479c4b2269 (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\ImController\TimeBasedEvents\63c62814-bddb-4355-b780-ada8e6932436 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 63c62814-bddb-4355-b780-ada8e6932436 (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\ImController\TimeBasedEvents\75192703-c7d0-467f-b472-3c8520041be2 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 75192703-c7d0-467f-b472-3c8520041be2 (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\ImController\TimeBasedEvents\76d6de4a-a9f9-4b30-9069-d26a87e29781 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 76d6de4a-a9f9-4b30-9069-d26a87e29781 (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\ImController\TimeBasedEvents\a53d83cb-159e-4add-aaf4-f64a2ab445a3 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger a53d83cb-159e-4add-aaf4-f64a2ab445a3 (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\ImController\TimeBasedEvents\e5a3f0c4-ea98-41b2-953b-f31bee7c1df3 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger e5a3f0c4-ea98-41b2-953b-f31bee7c1df3 (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\Lenovo Service Bridge\S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Users\tolga\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe (sign: 'Lenovo (Beijing) Limited')
O22 - Tasks_Migrated: \Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance - C:\WINDOWS\system32\sc.exe start LenovoVantageService (sign: 'Microsoft')
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe BatteryGaugeAddinDailyScheduleTask (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\GenericMessagingAddin - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe GenericMessagingAddin (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe HeartbeatAddinDailyScheduleTask (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe IdeaNotebookAddinDailyEvent (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe Lenovo.Vantage.SmartPerformance.MonthlyReport (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\LenovoBoostAddin.Prompt - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe LenovoBoostAddin.Prompt (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe LenovoCompanionAppAddinDailyScheduleTask (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe LenovoSystemUpdateAddin_WeeklyTask (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\NotificationCenter - C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe NotificationCenter (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe SettingsWidgetAddinDailyScheduleTask (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe SmartPerformance.ExpireReminder (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\VantageCoreAddinIdleScheduleTask - C:\ProgramData\Lenovo\Vantage\Addins\VantageCoreAddin\1.0.0.190\x64\IdleScheduleEventAction.exe (sign: 'Lenovo')
O22 - Tasks_Migrated: \Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.2.85.0\ScheduleEventAction.exe VantageCoreAddinWeekScheduleTask (file missing)
O22 - Tasks_Migrated: \Lenovo\Vantage\StartupFixPlan - C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\uninstall.exe /repair (file missing)
O22 - Tasks_Migrated: \Microsoft\Office\Office Serviceability Manager - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (sign: 'Microsoft')
O22 - Tasks_Migrated: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 - {84F0FAE1-C27B-4F6F-807B-28CF6F96287D},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 - {429BC048-379E-45E0-80E4-EB1977941B5C},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: \Microsoft\Windows\Flighting\FeatureConfig\ReconcileConfigs - {15F5ECE1-4550-4A92-8E26-984FD1DA54FA} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks_Migrated: \Microsoft\Windows\Location\Notifications - C:\WINDOWS\System32\LocationNotificationWindows.exe (file missing)
O22 - Tasks_Migrated: \Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - C:\WINDOWS\System32\MbaeParserTask.exe (file missing)
O22 - Tasks_Migrated: \Microsoft\Windows\NetTrace\GatherNetworkInfo - C:\WINDOWS\system32\gatherNetworkInfo.vbs (file missing)
O22 - Tasks_Migrated: \Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask - {8702A841-D5CA-47C3-812D-9CEDC304C200} - (no file)
O22 - Tasks_Migrated: \TVT\TVSUUpdateTask - C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (sign: 'Lenovo')
O22 - Tasks_Migrated: \TVT\TVSUUpdateTask_UserLogOn - C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe PendingTask (sign: 'Lenovo')
O22 - Tasks_Migrated: Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (sign: 'Adobe Systems Incorporated')
O22 - Tasks_Migrated: AdobeGCInvoker-1.0 - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe -mode=scheduled (file missing)
O22 - Tasks_Migrated: BlueStacksHelper_nxt - C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe -sr (sign: 'Bluestack Systems, Inc')
O22 - Tasks_Migrated: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe (file missing)
O22 - Tasks_Migrated: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0) (sign: 'Piriform Software Ltd')
O22 - Tasks_Migrated: EPSON L3150 Series Update {F3C90910-1A01-485C-8C7F-C4E79D09B3AC} - C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{F3C90910-1A01-485C-8C7F-C4E79D09B3AC}" /F:"Update" (sign: 'SEIKO EPSON CORPORATION')
O22 - Tasks_Migrated: LenovoUtility Startup - C:\Windows\explorer.exe lenovo-utility:// (sign: 'Microsoft')
O22 - Tasks_Migrated: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks_Migrated: OneDrive Reporting Task-S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Users\tolga\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks_Migrated: OneDrive Reporting Task-S-1-5-21-3363675937-2214997215-1950016975-1004 - C:\Users\tolga\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks_Migrated: OneDrive Reporting Task-S-1-5-21-3363675937-2214997215-1950016975-1014 - C:\Users\tolga\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks_Migrated: OneDrive Startup Task-S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Users\tolga\AppData\Local\Microsoft\OneDrive\25.015.0126.0002\OneDriveLauncher.exe /startInstances (file missing)
O22 - Tasks_Migrated: OneDrive Startup Task-S-1-5-21-3363675937-2214997215-1950016975-1014 - C:\Users\İdil ve Can\AppData\Local\Microsoft\OneDrive\25.010.0119.0002\OneDriveLauncher.exe /startInstances (file missing)
O22 - Tasks_Migrated: Opera scheduled Autoupdate 1652624065 - C:\Users\tolga\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe --scheduledtask --bypasslauncher $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks_Migrated: update-S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks_Migrated: update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks_Migrated: ZoomUpdateTaskUser-S-1-5-21-3363675937-2214997215-1950016975-1001 - C:\Users\tolga\AppData\Roaming\Zoom\bin\Zoom.exe --action=UpdateSchedule (sign: 'Zoom Video Communications, Inc.')
O23 - Service R2: CxAudioSvc Service - (CxAudioSvc) - C:\WINDOWS\CxSvc\CxAudioSvc.exe (sign: 'Synaptics Incorporated')
O23 - Service R2: CxAudMsg Service - (CxAudMsg) - C:\WINDOWS\System32\CxAudMsg64.exe (sign: 'Synaptics Incorporated')
O23 - Service R2: Dolby DAX API Service - (DolbyDAXAPI) - C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe (sign: 'Dolby Laboratories, Inc.')
O23 - Service R2: Epson Data Collection Agent - (DCAgent) - C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe (sign: 'SEIKO EPSON CORPORATION')
O23 - Service R2: Epson Scanner Service - (EpsonScanSvc) - C:\Windows\system32\EscSvc64.exe (sign: 'SEIKO EPSON CORPORATION')
O23 - Service R2: Intel(R) Audio Service - (IntelAudioService) - C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (sign: 'Smart Sound Technology')
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_440392e76b44e849\IntelCpHDCPSvc.exe (sign: 'Intel(R) pGFX 2020')
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Dynamic Tuning service - (esifsvc) - C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Graphics Command Center Service - (igccservice) - C:\WINDOWS\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_577475639d32bfed\OneApp.IGCC.WinService.exe (sign: 'Intel(R) pGFX 2020')
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d70b02a5a438df3c\igfxCUIService.exe (sign: 'Intel(R) pGFX 2020')
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\WINDOWS\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Storage Middleware Service - (RstMwService) - C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_e3f96af62737a898\RstMwService.exe (sign: 'Intel(R) Rapid Storage Technology')
O23 - Service R2: Intel® SGX AESM - (AESMService) - C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_d372a4ea3b959b1c\aesm_service.exe (sign: 'Intel Corporation')
O23 - Service R2: Lenovo Notebook ITS Service - (LITSSVC) - C:\WINDOWS\System32\LNBITSSvc.exe (sign: 'Lenovo')
O23 - Service R2: LenovoVantageService - C:\Program Files (x86)\Lenovo\VantageService\\4.3.21.0\LenovoVantageService.exe (sign: 'Lenovo')
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe (sign: 'Malwarebytes Corporation')
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_17a985f102ce7ec9\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_17a985f102ce7ec9\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem (sign: 'NVIDIA Corporation')
O23 - Service R2: Session Detection - (SessionSvc) - C:\WINDOWS\System32\drivers\SessionService.exe (sign: 'Shenzhen Goodix Technology Co., Ltd.')
O23 - Service R2: SMART Helper Service - (SMARTHelperService) - C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe (sign: 'SMART Technologies ULC')
O23 - Service R2: System Interface Foundation Service - (ImControllerService) - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (sign: 'Lenovo')
O23 - Service R2: TechSmith Uploader Service - C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe /service (sign: 'TechSmith Corporation')
O23 - Service R2: Wacom ISD Service - (WTabletServiceISD) - C:\WINDOWS\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_4690d097c38be4a9\WTabletServiceISD.exe (sign: 'Wacom Technology Corporation')
O23 - Service R2: Wacom Professional Service - (WTabletServicePro) - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (sign: 'Wacom Co., Ltd.')
O23 - Service R2: YMC - C:\WINDOWS\System32\YMC.exe (sign: 'Lenovo')
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_440392e76b44e849\IntelCpHeciSvc.exe (sign: 'Intel(R) pGFX 2020')
O23 - Service S2: CxUIUSvc Service - (CxUIUSvc) - C:\WINDOWS\System32\CxUIUSvc64.exe (sign: 'Synaptics Incorporated')
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Dahili Hizmeti (GoogleUpdaterInternalService138.0.7156.0) - (GoogleUpdaterInternalService138.0.7156.0) - C:\Program Files (x86)\Google\GoogleUpdater\138.0.7156.0\updater.exe --system --windows-service --service=update-internal (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Hizmeti (GoogleUpdaterService138.0.7156.0) - (GoogleUpdaterService138.0.7156.0) - C:\Program Files (x86)\Google\GoogleUpdater\138.0.7156.0\updater.exe --system --windows-service --service=update (sign: 'Google LLC')
O23 - Service S2: Intel(R) TPM Provisioning Service - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\TPMProvisioningService.exe (sign: 'Intel Corporation')
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (sign: 'Adobe Systems Incorporated')
O23 - Service S3: FlexNet Licensing Service - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (sign: 'Flexera Software LLC')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\136.0.7103.93\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc (sign: 'Google LLC')
O23 - Service S3: Intel(R) Optane(TM) Memory Service - (iaStorAfsService) - C:\WINDOWS\System32\iaStorAfsService.exe (sign: 'Intel(R) Rapid Storage Technology')
O23 - Service S3: LibreOffice Maintenance Service - (LibreOfficeMaintenance) - C:\Program Files\LibreOffice\program\update_service.exe (sign: 'The Document Foundation')
O23 - Service S3: Microsoft Defender Core Service - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe (sign: 'Microsoft')
O23 - Service S3: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" (sign: 'NVIDIA Corporation')
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" (sign: 'NVIDIA Corporation')
O23 - Service S3: System Update - (SUService) - C:\Program Files (x86)\Lenovo\System Update\SUService.exe (sign: 'Lenovo')
O23 - Driver R0: Intel(R) Chipset SATA/PCIe RST Premium Controller - (iaStorAC) - C:\WINDOWS\System32\drivers\iaStorAC.sys (sign: 'Intel(R) Rapid Storage Technology')
O23 - Driver R1: Malwarebytes Anti-Exploit - (ESProtectionDriver) - C:\WINDOWS\system32\drivers\mbae64.sys (sign: 'Malwarebytes Corporation')
O23 - Driver R2: BlueStacks Hypervisor_nxt - (BlueStacksDrv_nxt) - C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys (sign: 'Bluestack Systems, Inc')
O23 - Driver R2: googledrivefs31626 - C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys (sign: 'Microsoft' - Google, Inc.)
O23 - Driver R2: IDMWFP - C:\WINDOWS\system32\DRIVERS\idmwfp.sys (sign: 'Tonec Inc.')
O23 - Driver R2: MBAMChameleon - C:\WINDOWS\System32\Drivers\MbamChameleon.sys (sign: 'Malwarebytes Corporation')
O23 - Driver R3: "Intel(R) Display Audio" ; {PlaceHolder="Display Audio","High Definition Audio"} - (IntcDAud) - C:\WINDOWS\System32\DriverStore\FileRepository\intcdaud.inf_amd64_d148a0ef920e06c0\IntcDAud.sys (sign: 'Intel(R) pGFX 2020')
O23 - Driver R3: "Intel(R) Smart Sound Technology (Intel(R) SST) Bus" ; {PlaceHolder="UAA","High Definition Audio"} - (IntcAudioBus) - C:\WINDOWS\System32\drivers\IntcAudioBus.sys (sign: 'Smart Sound Technology')
O23 - Driver R3: "Intel(R) Smart Sound Technology (Intel(R) SST) OED" ; {PlaceHolder="UAA","High Definition Audio"} - (IntcOED) - C:\WINDOWS\System32\drivers\IntcOED.sys (sign: 'Smart Sound Technology')
O23 - Driver R3: ___ Windows 10 64 Bit için Intel(R) Wireless Bağdaştırıcı Sürücüsü  - (Netwtw10) - C:\WINDOWS\System32\drivers\Netwtw10.sys (+safe mode) (sign: 'Intel Wireless Driver')
O23 - Driver R3: dptf_acpi - C:\WINDOWS\System32\DriverStore\FileRepository\dptf_acpi.inf_amd64_4a6ac5de2a7fb025\dptf_acpi.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: dptf_cpu - C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\dptf_cpu.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: esif_lf - C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_lf.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: HID-Compliant Mouse - (hanvonugeemfilter) - C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys (not signed - Windows (R) Win 7 DDK provider - 56D0B1F479A1E9A00D49A2283150456424ACFC14)
O23 - Driver R3: HID-compliant mouse - (SMARTMouseFilterx64) - C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys (sign: 'Microsoft' - SMART Technologies)
O23 - Driver R3: igfx - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_440392e76b44e849\igdkmd64.sys (sign: 'Intel(R) pGFX 2020')
O23 - Driver R3: Intel(R) Management Engine Interface  - (MEIx64) - C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_1308ad4bd1ad0f9f\x64\TeeDriverW10x64.sys (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Driver R3: Intel(R) Serial IO GPIO Driver v2 - (iaLPSS2_GPIO2_CNL) - C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_cnl.inf_amd64_ae6bd9b68f8b619e\iaLPSS2_GPIO2_CNL.sys (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Driver R3: Intel(R) Serial IO I2C Driver v2 - (iaLPSS2_I2C_CNL) - C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_cnl.inf_amd64_1b3fc772a4df3ab8\iaLPSS2_I2C_CNL.sys (+safe mode) (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Driver R3: Intel(R) Watchdog Timer Driver (Intel(R) WDT) - (ICCWDT) - C:\WINDOWS\System32\drivers\ICCWDT.sys (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Driver R3: Intel(R) Wireless Bluetooth(R) - (ibtusb) - C:\WINDOWS\System32\DriverStore\FileRepository\ibtusb.inf_amd64_6b40b9e7d046126e\ibtusb.sys (+safe mode) (sign: 'Intel(R) Wireless Connectivity Solutions')
O23 - Driver R3: Lenovo Virtual Power Controller Driver - (ACPIVPC) - C:\WINDOWS\System32\drivers\AcpiVpc.sys (sign: 'Lenovo')
O23 - Driver R3: MBAMFarflt - C:\WINDOWS\system32\DRIVERS\farflt.sys (sign: 'Malwarebytes Corporation')
O23 - Driver R3: MBAMProtection - C:\WINDOWS\system32\DRIVERS\mbam.sys (sign: 'Malwarebytes Corporation')
O23 - Driver R3: MBAMSwissArmy - C:\WINDOWS\System32\Drivers\mbamswissarmy.sys (sign: 'Malwarebytes Corporation')
O23 - Driver R3: MBAMWebProtection - C:\WINDOWS\system32\DRIVERS\mwac.sys (sign: 'Malwarebytes Corporation')
O23 - Driver R3: nvlddmkm - C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_17a985f102ce7ec9\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: NVVHCI Enumerator Service - (nvvhci) - C:\WINDOWS\System32\drivers\nvvhci.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Realtek PCIE Card Reader - PER - (RTSPER) - C:\WINDOWS\System32\drivers\RtsPer.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Realtek USB FE/1GbE/2.5GbE/5GbE/10GbE NIC Family KMDF NetAdapterCx 2.2 64-bit Driver - (rtucx22x64) - C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_a6eb3abe5befec7d\rtucx22x64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: SMART HID Device - (SMARTVHidMiniVistaAmd64) - C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys (sign: 'Microsoft' - SMART Technologies)
O23 - Driver R3: Synaptics UAA Function Driver for High Definition Audio Service - (CnxtHdAudService) - C:\WINDOWS\system32\drivers\CHDRT64ISST.sys (sign: 'Synaptics Incorporated')
O23 - Driver R3: Virtual Tablet Service - (vmulti) - C:\WINDOWS\System32\drivers\vmulti.sys (not signed - no company - 4A5C5FC5DA4857BBE0A2E9FE3ED41516B85CCBA5)
O23 - Driver R3: Wacom HIDRouter Service - (WacHIDRouterISD) - C:\WINDOWS\System32\drivers\WacHIDRouterISDU.sys (sign: 'Wacom Technology Corporation')
O23 - Driver R3: XP-Pen Tablet - (XPPenTablet) - C:\WINDOWS\System32\drivers\XPPenTablet.sys (not signed - Windows (R) Win 7 DDK provider - 7ABADAA5A94CB9CE03BECC1F5217F33B6B8BE786)
O23 - Driver S3: ___ Windows 10 64 Bit için Intel(R) Wireless Bağdaştırıcı Sürücüsü  - (Netwtw08) - C:\WINDOWS\System32\drivers\Netwtw08.sys (+safe mode) (sign: 'Intel(R) Wireless Connectivity Solutions')
O23 - Driver S3: CyberLink YouCam 9 Service - (clwvd9) - C:\WINDOWS\System32\drivers\clwvd9.sys (sign: 'CyberLink Corp.')
O23 - Driver S3: iaStorAfs - C:\WINDOWS\System32\drivers\iaStorAfs.sys (sign: 'Intel(R) Rapid Storage Technology')
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: Intel(R) Serial IO GPIO Driver v2 - (iaLPSS2_GPIO2) - C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Driver S3: Intel(R) Serial IO I2C Driver v2 - (iaLPSS2_I2C) - C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys (+safe mode) (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Driver S3: Intel(R) Serial IO SPI Driver v2 - (iaLPSS2_SPI) - C:\WINDOWS\System32\drivers\iaLPSS2_SPI.sys (+safe mode) (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Driver S3: Intel(R) Serial IO UART Driver v2 - (iaLPSS2_UART2) - C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Driver S3: ManyCam Virtual Microphone - (mcaudrv_simple) - C:\WINDOWS\system32\drivers\mcaudrv_x64.sys (sign: 'ManyCam')
O23 - Driver S3: ManyCam Virtual Webcam - (ManyCam) - C:\WINDOWS\system32\DRIVERS\mcvidrv.sys (sign: 'ManyCam (VISICOM MÉDIA INC.)')
O23 - Driver S3: NVIDIA KMS - (NvStreamKms) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (sign: 'NVIDIA Corporation')
O23 - Driver S3: SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.) - (ssudmdm) - C:\WINDOWS\system32\DRIVERS\ssudmdm.sys (sign: 'Samsung Electronics Co., Ltd.')
O23 - Driver S3: SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.) - (dg_ssudbus) - C:\WINDOWS\system32\DRIVERS\ssudbus2.sys (+safe mode) (sign: 'Samsung Electronics Co., Ltd.')
O23 - Driver S3: Wacom Hid Router Pro - (WacHidRouterPro) - C:\WINDOWS\System32\drivers\wachidrouter.sys (sign: 'WDKTestCert dant,132134237881206156', but untrusted root: 'WDKTestCert dant,132134237881206156' with fingerprint: 77CDABFBD391761970FA6124FF7C57773E83F4BB)
O23 - Driver S3: Wacom Router Filter Driver - (wacomrouterfilter) - C:\WINDOWS\System32\drivers\wacomrouterfilter.sys (sign: 'WDKTestCert dant,132134237881206156', but untrusted root: 'WDKTestCert dant,132134237881206156' with fingerprint: 77CDABFBD391761970FA6124FF7C57773E83F4BB)
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw08'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw10'
O26 - Office Addin: HKCU\..\SMARTInk-Excel-All - (SMARTInk-Excel-All) -> C:\Users\tolga\AppData\Roaming\SMART Technologies\SMART Ink\SMARTInk-Excel-All.vsto (not signed - no company - D136593AFCDB35D52C49FA5CA52FD753F7A9EF07)
O26 - Office Addin: HKCU\..\SMARTInk-PowerPoint-All - (SMARTInk-PowerPoint-All) -> C:\Users\tolga\AppData\Roaming\SMART Technologies\SMART Ink\SMARTInk-PowerPoint-All.vsto (not signed - no company - 0106B3131E7C49673438E7637983527A8BF2FE7E)
O26 - Office Addin: HKCU\..\SMARTInk-Word-All - (SMARTInk-Word-All) -> C:\Users\tolga\AppData\Roaming\SMART Technologies\SMART Ink\SMARTInk-Word-All.vsto (not signed - no company - 18A70DC775B84C3C4C9E2CA32DB9D9C9D92F0969)
O26 - Office Addin: HKLM\..\AdobeAcroOutlook.SendAsLink - (Adobe Document Cloud for Microsoft Outlook - Acrobat) -> C:\Program Files (x86)\Adobe\Acrobat DC\PDFMaker\Mail\Outlook\x64\SendAsLinkAddin.dll (sign: 'Adobe Inc.')
O26 - Office Addin: HKLM\..\CamtasiaOfficeAddin.Connect - (Camtasia Add-in) -> C:\Program Files\TechSmith\Camtasia 2019\CamtasiaOfficeAddin.dll (sign: 'TechSmith Corporation')
O26 - Office Addin: HKLM\..\MicrosoftDataStreamerforExcel - (Microsoft Data Streamer for Excel) -> C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\MicrosoftDataStreamerforExcel.vsto (not signed - no company - A9DA61511D2073E5B80ED742394B35C61D96DE3A)
O26 - Office Addin: HKLM\..\NativeShim - (Inquire) -> (no file)
O26 - Office Addin: HKLM\..\PDFMaker.OfficeAddin - (Acrobat PDFMaker Office COM Addin) -> C:\Program Files (x86)\Adobe\Acrobat DC\PDFMaker\Office\x64\PDFMOfficeAddin.dll (sign: 'Adobe Inc.')
O26 - Office Addin: HKLM\..\PDFMOutlook.PDFMOutlook - (Acrobat PDFMaker Office COM Addin) -> C:\Program Files (x86)\Adobe\Acrobat DC\PDFMaker\Mail\Outlook\x64\PDFMOutlookAddin.dll (sign: 'Adobe Inc.')
O26-32 - Office Addin: HKLM\..\AdobeAcroOutlook.SendAsLink - (Adobe Document Cloud for Microsoft Outlook - Acrobat) -> C:\Program Files (x86)\Adobe\Acrobat DC\PDFMaker\Mail\Outlook\SendAsLinkAddin.dll (sign: 'Adobe Inc.')
O26-32 - Office Addin: HKLM\..\PDFMaker.OfficeAddin - (Acrobat PDFMaker Office COM Addin) -> C:\Program Files (x86)\Adobe\Acrobat DC\PDFMaker\Office\PDFMOfficeAddin.dll (sign: 'Adobe Inc.')
O26-32 - Office Addin: HKLM\..\PDFMOutlook.PDFMOutlook - (Acrobat PDFMaker Office COM Addin) -> C:\Program Files (x86)\Adobe\Acrobat DC\PDFMaker\Mail\Outlook\PDFMOutlookAddin.dll (sign: 'Adobe Inc.')
O27 - Account: (Bad profile) Folder is not referenced by any of user SIDs: C:\Users\defaultuser100000


--
End of file - Time spent: 41,1 sec. - 145796 bytes, CRC32: FFFFFFFF. Sign: ﱯ 
 
@nnicomediann SMART Technologies\SystemMenu gibi bir yazılım kurulu bu tür yazılımlar Windows işleyişini olumsuz etkileyebilmekte hatalar açabilmektedir. Anlamsız hatalar alırsnaız ileride kaldırmanız yararlı olur bilginize.
Ek olarak Wacom talet gözüküyor Windows bu tabletler için çok sık sorun oluştuğu için güncelleme yayınlamakta, bunlarıda Windows güncellemelerini takipte kalmanızı öneririm çözümleri için.
Bunu fixleyin:
Kod: 
O4 - HKCU\..\Run: [Crypto] = C:\Users\tolga\AppData\Roaming\Microsoft\Crypto\Crypto.vbs (not signed - no company - D1BB82131380EF16C15D813A182C5698D0D6F635)
OneDrive kullanmıyorsanız kaldırın. Lenovo çok fazla gereksiz yazılımı var tek tek yazmak istemedim kullanmadıklarınızı kaldırın.
Temiz önyükleme yapın.
 
Bilgisayarımda bir yavaşlık ve performans düşüşü var gibi, emin değilim. Yardımcı olabilir misin?

Kod: 
Logfile of HiJackThis+ build 2025-01-16 Beta v.3.4.0.17

Platform:  x64 Windows 11 (Pro), 10.0.26100.4351 (ReleaseId: 2009, 24H2), Service Pack: 0
Time:      06.07.2025 - 01:17 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    10,25 GiB Free / 16. Loading RAM (35 %), CPU (2 %)
Disk C:    1483,48 GiB Free / 1862 (SSD, GPT)
Elevated:  Yes
Ran by:    umut7    (group: Administrators; type: Microsoft) on DESKTOP-E70OT9Q, FirstRun: yes

Opera:   119.0.5497.141
Internet Explorer: 11.0.26100.1882
Default: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument %1 (Microsoft Edge)

Boot mode: Normal (Secure Boot: On) (Code Integrity: On)

Running processes:
Number | Path
   2  C:\Program Files (x86)\AnyDesk\AnyDesk.exe
   7  C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
   1  C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
   6  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\msedgewebview2.exe
   1  C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe
   1  C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
   1  C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
   1  C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
   1  C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
   1  C:\Program Files\AMD\CNext\CNext\amdow.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
   1  C:\Program Files\AMD\CNext\CNext\cncmd.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
   1  C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
   1  C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
   1  C:\Program Files\LGHUB\lghub_agent.exe
   1  C:\Program Files\LGHUB\lghub_updater.exe
   2  C:\Program Files\LGHUB\logi_crashpad_handler.exe
   1  C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
   1  C:\Program Files\Riot Vanguard\vgtray.exe
   1  C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.55.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
   1  C:\Program Files\WindowsApps\Microsoft.Copilot_1.25062.106.0_x64__8wekyb3d8bbwe\Copilot.exe
   1  C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.9.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25061.44.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.15301.20.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25061.25.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MpDefenderCoreService.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\NisSrv.exe
   1  C:\Riot Games\Riot Client\RiotClientCrashHandler.exe
   1  C:\Riot Games\Riot Client\RiotClientServices.exe
   1  C:\Users\umut7\AppData\Local\Programs\Ollama\ollama app.exe
   1  C:\Users\umut7\AppData\Local\Programs\Ollama\ollama.exe
   1  C:\Users\umut7\Desktop\HiJackThis\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\System32\AggregatorHost.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\backgroundTaskHost.exe
   1  C:\Windows\System32\cmd.exe
   4  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe
   1  C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_6558957747ed9640\logi_lamparray_service.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0415347.inf_amd64_bbe1f1da43e3d52f\B415056\AMDADLXServ.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0415347.inf_amd64_bbe1f1da43e3d52f\B415056\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0415347.inf_amd64_bbe1f1da43e3d52f\B415056\atiesrxx.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\LsaIso.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\NgcIso.exe
   1  C:\Windows\System32\oobe\UserOOBEBroker.exe
   8  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\ShellHost.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  78  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\CrossDeviceResume.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   1  C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

O4 - HKCU\..\Run: [AMDNoiseSuppression] = C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe (sign: 'Advanced Micro Devices Inc.')
O4 - HKCU\..\Run: [LGHUB] = C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe --minimized (sign: 'Logitech Inc')
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_EC545AF8F9A3CE9E2BB183C2CBEF740F] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (sign: 'Microsoft')
O4 - HKCU\..\Run: [RiotClient] = C:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (sign: 'Riot Games, Inc.')
O4 - HKCU\..\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (sign: 'Valve Corp.')
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\umut7\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2025/06/28) (sign: 'Microsoft')
O4 - HKLM\..\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (sign: 'Riot Games, Inc.')
O4 - HKU\S-1-5-18\..\Run: [AMDNoiseSuppression] = C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe (User 'LocalSystem') (sign: 'Advanced Micro Devices Inc.')
O4 - HKU\S-1-5-18\..\RunOnce: [StartRSX] = C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe (User 'LocalSystem') (sign: 'Advanced Micro Devices')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk    ->    C:\Program Files (x86)\AnyDesk\AnyDesk.exe --control (sign: 'AnyDesk Software GmbH')
O4 - Startup: C:\Users\umut7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Ollama.lnk    ->    C:\Users\umut7\AppData\Local\Programs\Ollama\ollama app.exe (sign: 'Ollama Inc.')
O4-32 - HKLM\..\Run: [Opera Browser Assistant] = C:\Program Files\Opera\assistant\browser_assistant.exe (sign: 'Opera Norway AS')
O17 - DHCP DNS 1: 1.1.1.1 (Well-known DNS: Cloudflare / APNIC)
O17 - DHCP DNS 2: 1.0.0.1 (Well-known DNS: Cloudflare / APNIC)
O18 - HKLM\Software\Classes\Protocols\Filter\application/octet-stream: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-complus: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-msdownload: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O22 - Tasks: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical - {613FBA38-A3DF-4AB8-9674-5604984A299A},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical - {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\WINDOWS\system32\fclip.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Device Setup\Driver Recovery on Reboot - {452f6ddc-7930-4b57-8794-19cd7420241d} - C:\WINDOWS\System32\DeviceSetupManagerAPI.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\WINDOWS\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Servicing\OOBEFodSetup - C:\WINDOWS\system32\OOBEFodSetup.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\SharedPC\Account Cleanup - {7750564D-D61C-4557-8A9D-7DF56BDCFF96} - C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\WindowsAI\Recall\InitialConfiguration - {709FD5EF-7296-4154-BD3A-E9830FCFA60A} - C:\WINDOWS\system32\ShellConfigTask.dll (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser Exp - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun express (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\WINDOWS\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Sustainability\SustainabilityTelemetry - {6EE41D75-D091-4FB7-9AD5-018760DD25D4} - C:\WINDOWS\system32\EcoScoreTask.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 - {84F0FAE1-C27B-4F6F-807B-28CF6F96287D},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 - {429BC048-379E-45E0-80E4-EB1977941B5C},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\AccountHealth\RecoverabilityToastTask - {B7F5B442-EBF8-46CD-9F0B-D8E45ED43492},-flow showtoast -checkup recoverability - C:\WINDOWS\system32\AccountHealth.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Containers\CmCleanup - {F50E9363-6BC8-4DC5-8CAB-7D9F8C1B81B4} - C:\WINDOWS\System32\cmcleanup.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Diagnosis\UnexpectedCodepath - C:\WINDOWS\system32\UCConfigTask.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\ReconcileConfigs - {15F5ECE1-4550-4A92-8E26-984FD1DA54FA} - C:\WINDOWS\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\UsageDataReceiver - {D4C0420F-76BD-4F66-A91F-918A93ABEBEB} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Hotpatch\Monitoring - C:\WINDOWS\system32\cmd.exe /d /c C:\WINDOWS\system32\hpatchmonTask.cmd (sign: '')
O22 - Tasks: \Microsoft\Windows\Input\RemoteMouseSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemoteMouseSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\RemotePenSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemotePenSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\RemoteTouchpadSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemoteTouchpadSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Network Connectivity Status Indicator\NcsiIdentifyUserProxies - {706B965A-8308-4CD4-9900-87C2D79C121B} - C:\Windows\System32\netprofm.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\PerformanceTrace\RequestTrace - {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} - C:\WINDOWS\system32\PerformanceTraceHandler.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ReFsDedupSvc\Initialization - {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} - C:\WINDOWS\System32\ReFsDedupSvc.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Sustainability\PowerGridForecastTask - {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} - C:\WINDOWS\system32\PowerGridForecastTask.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\TPM\Tpm-PreAttestationHealthCheck - {5014B7C8-934E-4262-9816-887FA745A6C4},TpmPreAttestationHealthCheck - C:\WINDOWS\system32\TpmTasks.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UIEOrchestrator - C:\WINDOWS\system32\UIEOrchestrator.exe /SendHeartbeat (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (file missing)
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UUS Failover Task - C:\WINDOWS\System32\MLEngineStub.exe HandleUusFailoverEvaluationSignalFromWnf (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\WindowsAI\Recall\PolicyConfiguration - {0BE6820D-B667-4CB6-931B-C153A77DA895} - C:\WINDOWS\system32\ShellConfigTask.dll (sign: 'Microsoft')
O22 - Tasks: AMD Install Manager - Check For Updates - C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe -CheckForUpdates (sign: 'Advanced Micro Devices')
O22 - Tasks: AMDInstallUEP - C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (file missing)
O22 - Tasks: AMDRyzenMasterSDKTask - C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe (sign: 'Advanced Micro Devices')
O22 - Tasks: Git for Windows Updater - C:\Program Files\Git\git-bash.exe --hide --no-needs-console --command=cmd\git.exe update-git-for-windows --quiet --gui (sign: 'Johannes Schindelin')
O22 - Tasks: ModifyLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -UpdateCurrentUser (sign: 'Advanced Micro Devices')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-2991010097-60147372-3558551595-1001 - C:\Users\umut7\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: OneDrive Startup Task-S-1-5-21-2991010097-60147372-3558551595-1001 - C:\Users\umut7\AppData\Local\Microsoft\OneDrive\25.105.0601.0002\OneDriveLauncher.exe /startInstances (sign: 'Microsoft')
O22 - Tasks: Opera scheduled assistant Autoupdate 1751309795 - C:\Program Files\Opera\autoupdate\opera_autoupdate.exe --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Program Files\Opera\assistant" --producttype=assistant $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks: Opera scheduled Autoupdate 1751309793 - C:\Program Files\Opera\autoupdate\opera_autoupdate.exe --scheduledtask --bypasslauncher $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks: StartAUEP - C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe (sign: 'Advanced Micro Devices')
O22 - Tasks: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay (sign: 'Advanced Micro Devices')
O22 - Tasks: StartCNBM - C:\Program Files\AMD\CNext\CNext\cncmd.exe benchmark (sign: 'Advanced Micro Devices')
O22 - Tasks: StartDVR - C:\Program Files\AMD\CNext\CNext\RSServCmd.exe (sign: 'Advanced Micro Devices')
O23 - Service R2: AMD Crash Defender Service - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe (sign: 'Microsoft')
O23 - Service R2: AMD External Events Utility - C:\WINDOWS\System32\DriverStore\FileRepository\u0415347.inf_amd64_bbe1f1da43e3d52f\B415056\atiesrxx.exe (sign: 'Advanced Micro Devices')
O23 - Service R2: AMD User Experience Program Data Uploader - (AUEPLauncher) - C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe (sign: 'Advanced Micro Devices')
O23 - Service R2: AnyDesk Service - (AnyDesk) - C:\Program Files (x86)\AnyDesk\AnyDesk.exe --service (sign: 'AnyDesk Software GmbH')
O23 - Service R2: LGHUB Updater Service - (LGHUBUpdaterService) - C:\Program Files\LGHUB\lghub_updater.exe --run-as-service (sign: 'Logitech Inc')
O23 - Service R2: Logitech LampArray Service - (logi_lamparray_service) - C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_6558957747ed9640\logi_lamparray_service.exe (sign: 'Logitech Inc')
O23 - Service R2: Microsoft Defender Çekirdek Hizmeti - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MpDefenderCoreService.exe (sign: 'Microsoft')
O23 - Service R2: MSI Center Service - (MSI_Center_Service) - C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Service R2: MSI_Case_Service - C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe (sign: 'Riot Games, Inc.')
O23 - Service S3: Visual Studio Installer Elevation Service - (VSInstallerElevationService) - C:\Program Files (x86)\Microsoft Visual Studio\Installer\VSInstallerElevationService.exe (sign: 'Microsoft')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\WINDOWS\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices')
O23 - Driver R1: vgk - C:\Program Files\Riot Vanguard\vgk.sys (sign: 'Riot Games, Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV27 - C:\Program Files\AMD\Performance Profile Client\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices')
O23 - Driver R2: AMDRyzenMasterDriverV28 - C:\WINDOWS\system32\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices')
O23 - Driver R2: AMDRyzenMasterDriverV29 - C:\Program Files\AMD\RyzenMasterSDK\bin\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD Controller Emulation - (AMDXE) - C:\WINDOWS\System32\drivers\amdxe.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Crash Defender Driver - (amdfendr) - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendr.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD Crash Defender Manager Driver - (amdfendrmgr) - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrmgr.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD Function Driver for HD Audio Service - (AtiHDAudioService) - C:\WINDOWS\System32\DriverStore\FileRepository\atihdwt6.inf_amd64_21c8ef1919e76bac\AtihdWT6.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\WINDOWS\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\WINDOWS\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: AMD PCI - (AMDPCIDev) - C:\WINDOWS\System32\drivers\AMDPCIDev.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMDSAFD - C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_66bdd11a4e97edd1\amdsafd.sys (sign: 'Microsoft' - Advanced Micro Devices)
O23 - Driver R3: amduw23g-415347-9b12a908 - C:\WINDOWS\System32\DriverStore\FileRepository\u0415347.inf_amd64_bbe1f1da43e3d52f\B415056\amdkmdag.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: Logitech G HUB Translation Layer Driver - (logi_joy_xlcore) - C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys (sign: 'Logitech Inc')
O23 - Driver R3: Logitech G HUB Virtual Bus Enumerator Driver - (logi_joy_bus_enum) - C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys (sign: 'Logitech Inc')
O23 - Driver R3: Logitech G HUB Virtual HID Device Driver - (logi_joy_vir_hid) - C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys (sign: 'Logitech Inc')
O23 - Driver R3: Logitech LampArray Device Driver - (logi_lamparray) - C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_6558957747ed9640\logi_lamparray.sys (sign: 'Logitech Inc')
O23 - Driver R3: NTIOLib_CC_COMM - C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Driver R3: Realtek RT640 NT Driver - (rt640x64) - C:\WINDOWS\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S1: Android Emulator hypervisor driver Service - (aehd) - C:\WINDOWS\system32\DRIVERS\aehd.sys (sign: 'Google LLC')
O23 - Driver S3: "Microsoft Bluetooth A2dp driver" ; {Placeholder="Microsoft Bluetooth"} - (BthA2dp) - C:\WINDOWS\System32\drivers\BthA2dp.sys (not signed - Microsoft Corporation - CF741BA3AF83110B20AB03AB65A668E2E2D15D6F)
O23 - Driver S3: "Microsoft Bluetooth Hands-Free Profile driver" ; {Placeholder="Microsoft Bluetooth"} - (BthHFEnum) - C:\WINDOWS\System32\drivers\bthhfenum.sys (not signed - Microsoft Corporation - E8EE10F8D8904DA747E71CADF9A414196896F488)
O23 - Driver S3: Bluetooth Modem Communications Driver - (BTHMODEM) - C:\WINDOWS\System32\drivers\bthmodem.sys (not signed - Microsoft Corporation - C68BDB6EB26F7BBE6B945EF31F446D4294F5286C)
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: RTCore64 - C:\Program Files (x86)\MSI Afterburner\RTCore64.sys (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'rt640x64'


--
End of file - Time spent: 22,6 sec. - 49326 bytes, CRC32: FFFFFFFF. Sign: ო�
 
@Umut000 Ollama kurulu o yüzden yavaşlık olabilir.
Ati depo sürücüleri gözüküyor eski bir sistem ise ondan da kaynaklanabilir veya ekran kartı sürüclerin güncel olmayabilir.
MSİ yazılımlarını kaldırın gereksiz olanları.

Bunları fixleyin:
Kod: 
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_EC545AF8F9A3CE9E2BB183C2CBEF740F] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\umut7\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2025/06/28) (sign: 'Microsoft')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk    ->    C:\Program Files (x86)\AnyDesk\AnyDesk.exe --control (sign: 'AnyDesk Software GmbH')
O4 - Startup: C:\Users\umut7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Ollama.lnk    ->    C:\Users\umut7\AppData\Local\Programs\Ollama\ollama app.exe (sign: 'Ollama Inc.')
O4-32 - HKLM\..\Run: [Opera Browser Assistant] = C:\Program Files\Opera\assistant\browser_assistant.exe (sign: 'Opera Norway AS')
 
Aynı sistem özelliklerine sahip diğer PC'lerden performans bakımından geri kalıyorum, aldığımdan bu yana FPS'de aşırı bir düşüş yaşadım. Bir de çözemediğim FPS drop problemim var.
Kod: 
Logfile of HiJackThis+ build 2025-01-16 Beta v.3.4.0.17

Platform:  x64 Windows 11 (Pro), 10.0.26100.4652 (ReleaseId: 2009, 24H2), Service Pack: 0
Time:      22.07.2025 - 11:19 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    24,74 GiB Free / 31. Loading RAM (20 %), CPU (10 %)
Disk C:    35,45 GiB Free / 931 (SSD, GPT)
Elevated:  Yes
Ran by:    ofy    (group: Administrators; type: Local) on STSS, FirstRun: no

Chrome:  138.0.7204.158
Internet Explorer: 11.0.26100.1882
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: On) (Code Integrity: On)

Running processes:
Number | Path
   7  C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
   1  C:\Program Files (x86)\ASUS\AsusCertService\1.2.36\AsusCertService.exe
   1  C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.53\AsusFanControlService.exe
   1  C:\Program Files (x86)\ASUS\AXSP\4.06.05\atkexComSvc.exe
   1  C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
   1  C:\Program Files (x86)\IObit\Driver Booster\12.5.0\Scheduler.exe
   1  C:\Program Files (x86)\LightingService\LightingService.exe
   6  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\138.0.3351.95\msedgewebview2.exe
   1  C:\Program Files\AMD\CNext\CNext\amdow.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
   1  C:\Program Files\AMD\CNext\CNext\cncmd.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
   1  C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
   1  C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
   1  C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
   2  C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe
   1  C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe
   1  C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.UserSessionHelper.exe
   1  C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
   1  C:\Program Files\ASUS\AsusDriverHub\ADU.exe
   1  C:\Program Files\ASUS\AsusDriverHub\ASUS DriverHub.exe
   1  C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
   1  C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
   1  C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
   1  C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   1  C:\Program Files\Dell\TechHub\Dell.TechHub.exe
   1  C:\Program Files\ExitLag\ExitLagPmService.exe
   1  C:\Program Files\Riot Vanguard\vgtray.exe
   1  C:\Program Files\Sandboxie\SbieSvc.exe
   1  C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.2.11.0_x64__qmba6cd70vzyy\ArmouryCrate.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MpDefenderCoreService.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\NisSrv.exe
   1  C:\Riot Games\Riot Client\RiotClientCrashHandler.exe
   1  C:\Riot Games\Riot Client\RiotClientServices.exe
   1  C:\Users\ofy\AppData\Local\Programs\Hone\resources\assets\hone-resources\SetTimerResolution.exe
   1  C:\Users\ofy\Desktop\ChangeEdition_Logs\HiJackThis.exe
   1  C:\Users\ofy\Desktop\goodbyedpi-0.2.3rc3-turkey (1)\x86_64\goodbyedpi.exe
   1  C:\Users\ofy\Downloads\ISLC v1.0.3.4\Intelligent standby list cleaner ISLC.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\System32\AggregatorHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\backgroundTaskHost.exe
   1  C:\Windows\System32\cmd.exe
   4  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   1  C:\Windows\System32\DataExchangeHost.exe
   3  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe
   1  C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkgSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0416003.inf_amd64_706cc64a85ddf686\B415817\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0416003.inf_amd64_706cc64a85ddf686\B415817\atiesrxx.exe
   1  C:\Windows\System32\DTS\HP\APO4x\DtsHPXV2Apo4Service.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\LsaIso.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\NgcIso.exe
   1  C:\Windows\System32\PrintIsolationHost.exe
   2  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\ShellHost.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  38  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wbem\WmiApSrv.exe
   3  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\CrossDeviceResume.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\138.0.7204.158\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\Run: [AMDNoiseSuppression] = C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe (sign: 'Advanced Micro Devices Inc.')
O4 - HKCU\..\Run: [BurntSushi] = :"C:\Program Files\OpenByte\BurntSushi\BurntSushi.exe" --autostart (file missing)
O4 - HKCU\..\Run: [com.blitz.app] = :"C:\Users\ofy\AppData\Local\Programs\Blitz\Blitz.exe" --autostart (file missing)
O4 - HKCU\..\Run: [RiotClient] = C:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (sign: 'Riot Games, Inc.')
O4 - HKCU\..\Run: [Spotify] = :C:\Windows.old\Users\ofy\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (file missing)
O4 - HKCU\..\StartupApproved\Run: [Discord] = :"C:\Users\ofy\AppData\Local\Discord\Update.exe" --processStart Discord.exe (file missing) (2025/04/19)
O4 - HKCU\..\StartupApproved\Run: [electron.app.BlueStacks Services] = :C:\Users\ofy\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe --hidden (file missing) (2025/05/10)
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_AF2488578C92CC3E7055933096D1661C] = :"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start (file missing) (2025/04/19)
O4 - HKCU\..\StartupApproved\Run: [MyLiveWallpapers] = :"C:\Program Files\MyLiveWallpapers\MyLiveWallpapers.exe" --silent (file missing) (2025/06/22)
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = :"C:\Program Files\Microsoft OneDrive\OneDrive.exe" /background (file missing) (2025/04/19)
O4 - HKCU\..\StartupApproved\Run: [Overwolf] = C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent (sign: 'Overwolf Ltd')
O4 - HKCU\..\StartupApproved\Run: [SandboxieControl] = :"C:\Program Files\Sandboxie\SbieCtrl.exe" (file missing) (2025/05/01)
O4 - HKCU\..\StartupApproved\Run: [Steam] = :"C:\Program Files (x86)\Steam\steam.exe" -silent (file missing) (2025/05/18)
O4 - HKLM\..\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (sign: 'Riot Games, Inc.')
O4 - HKU\S-1-5-18\..\Run: [AMDNoiseSuppression] = C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe (User 'LocalSystem') (sign: 'Advanced Micro Devices Inc.')
O4 - HKU\S-1-5-18\..\RunOnce: [StartRSX] = C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe (User 'LocalSystem') (sign: 'Advanced Micro Devices')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\~Disabled (folder)
O7 - Policy: HKCU\..\Windows\Explorer: [DisableSearchBoxSuggestions] = 1
O7 - Policy: HKLM\..\Windows\Explorer: [DisableSearchBoxSuggestions] = 1
O17 - DHCP DNS 1: 46.196.235.227
O17 - DHCP DNS 2: 178.233.140.147
O18 - HKLM\Software\Classes\Protocols\Filter\application/octet-stream: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-complus: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-msdownload: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O22 - Task (.job): (Not scheduled) update-S-1-5-21-1860564252-3076275838-3046757579-1001.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Task (.job): (Not scheduled) update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Tasks: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical - {613FBA38-A3DF-4AB8-9674-5604984A299A},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical - {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\WINDOWS\system32\fclip.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Device Setup\Driver Recovery on Reboot - {452f6ddc-7930-4b57-8794-19cd7420241d} - C:\WINDOWS\System32\DeviceSetupManagerAPI.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\WINDOWS\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Servicing\OOBEFodSetup - C:\WINDOWS\system32\OOBEFodSetup.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\SharedPC\Account Cleanup - {7750564D-D61C-4557-8A9D-7DF56BDCFF96} - C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\WindowsAI\Recall\InitialConfiguration - {709FD5EF-7296-4154-BD3A-E9830FCFA60A} - C:\WINDOWS\system32\ShellConfigTask.dll (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Office\Office Performance Monitor - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser Exp - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun express (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\WINDOWS\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Sustainability\SustainabilityTelemetry - {6EE41D75-D091-4FB7-9AD5-018760DD25D4} - C:\WINDOWS\system32\EcoScoreTask.dll (sign: 'Microsoft')
O22 - Tasks: \ASUS\AcPowerNotification - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\ArmourySocketServer - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\TaskSchedulerTool_ArmourySocketServer.exe (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\AsusDriverHub - C:\Program Files\ASUS\AsusDriverHub\ADU.exe (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\ASUSUpdateTaskMachineCore1dbb1395d892230 - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /c (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\ASUSUpdateTaskMachineUA - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /ua /installsource scheduler (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\Framework Service - C:\Program Files (x86)\ASUS\ArmouryDevice\TaskSchedulerTool_asus_framework.exe --delay (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\NoiseCancelingEngine - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\P508PowerAgent_sdk - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (file missing)
O22 - Tasks: \AWCC\Update - C:\Program Files (x86)\"InstallShield Installation Information\{D2DA930B-CB5D-4DD6-BF62-BE6C310A353D}\Update\IMSilentUpdate.exe" (file missing)
O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem140.0.7272.0{9C3EEAE6-C11E-4A3E-8448-6D0E2CFB243B} - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7272.0\updater.exe --wake --system (sign: 'Google LLC')
O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem140.0.7273.0{7E9E36F6-02EF-42E5-95C0-E6643C55DD91} - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7273.0\updater.exe --wake --system (sign: 'Google LLC')
O22 - Tasks: \Microsoft\Office\Office Background Push Maintenance - C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe /pushregistration (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Office\Office Startup Boost - C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe /prewarm (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Office\Office Startup Boost Logon - C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe /prewarm (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 - {84F0FAE1-C27B-4F6F-807B-28CF6F96287D},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 - {429BC048-379E-45E0-80E4-EB1977941B5C},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\AccountHealth\RecoverabilityToastTask - {B7F5B442-EBF8-46CD-9F0B-D8E45ED43492},-flow showtoast -checkup recoverability - C:\WINDOWS\system32\AccountHealth.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Containers\CmCleanup - {F50E9363-6BC8-4DC5-8CAB-7D9F8C1B81B4} - C:\WINDOWS\System32\cmcleanup.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Diagnosis\UnexpectedCodepath - C:\WINDOWS\system32\UCConfigTask.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\GovernedFeatureUsageProcessing - {866F38A9-0302-4926-A36F-E4BAABAAE116} - C:\WINDOWS\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\ReconcileConfigs - {15F5ECE1-4550-4A92-8E26-984FD1DA54FA} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\UsageDataReceiver - {D4C0420F-76BD-4F66-A91F-918A93ABEBEB} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Hotpatch\Monitoring - C:\WINDOWS\system32\cmd.exe /d /c C:\WINDOWS\system32\hpatchmonTask.cmd (sign: '')
O22 - Tasks: \Microsoft\Windows\Input\RemoteMouseSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemoteMouseSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\RemotePenSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemotePenSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\RemoteTouchpadSyncDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},RemoteTouchpadSyncDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Network Connectivity Status Indicator\NcsiIdentifyUserProxies - {706B965A-8308-4CD4-9900-87C2D79C121B} - C:\Windows\System32\netprofm.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\PerformanceTrace\RequestTrace - {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} - C:\WINDOWS\system32\PerformanceTraceHandler.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ReFsDedupSvc\Initialization - {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} - C:\WINDOWS\System32\ReFsDedupSvc.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Sustainability\PowerGridForecastTask - {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} - C:\WINDOWS\system32\PowerGridForecastTask.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\TPM\Tpm-PreAttestationHealthCheck - {5014B7C8-934E-4262-9816-887FA745A6C4},TpmPreAttestationHealthCheck - C:\WINDOWS\system32\TpmTasks.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UIEOrchestrator - C:\WINDOWS\system32\UIEOrchestrator.exe /SendHeartbeat (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (file missing)
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UUS Failover Task - C:\WINDOWS\System32\MLEngineStub.exe HandleUusFailoverEvaluationSignalFromWnf (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\WindowsAI\Recall\PolicyConfiguration - {0BE6820D-B667-4CB6-931B-C153A77DA895} - C:\WINDOWS\system32\ShellConfigTask.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\WindowsAI\Settings\InitialConfiguration - {2886e5fb-4f01-4a89-9a0e-5d6a9c8048ac} - C:\WINDOWS\system32\SettingsConfigTask.dll (sign: 'Microsoft')
O22 - Tasks: AMD Install Manager - Check For Updates - C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe -CheckForUpdates (sign: 'Advanced Micro Devices')
O22 - Tasks: AMDRyzenMasterSDKTask - C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe (sign: 'Advanced Micro Devices')
O22 - Tasks: BlueStacksHelper_nxt - C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe -sr (sign: 'Now.gg, INC')
O22 - Tasks: DisablePowerSaving - C:\WINDOWS\System32\WindowsPowerShell\v1.0\powershell.exe -WindowStyle hidden Get-WmiObject MSPower_DeviceEnable -Namespace root\wmi | ForEach-Object { $_.enable = $false; $_.psbase.put(); } (sign: 'Microsoft')
O22 - Tasks: Driver Booster Scheduler - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\Scheduler.exe /scheduler (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster SkipUAC (ofy) - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\DriverBooster.exe /skipuac (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster Update - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\AutoUpdate.exe /auto (sign: 'IObit CO., LTD')
O22 - Tasks: Intelligent StandbyList Cleaner - C:\Users\ofy\Downloads\ISLC v1.0.3.4\Intelligent standby list cleaner ISLC.exe (sign: 'Wagnardsoft')
O22 - Tasks: LaunchSetTimerResolution - C:\Users\ofy\AppData\Local\Programs\Hone\resources\assets\hone-resources\SetTimerResolution.exe --resolution 5120 (sign: 'AuraSide, Inc.')
O22 - Tasks: ModifyLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -UpdateCurrentUser (sign: 'Advanced Micro Devices')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-1860564252-3076275838-3046757579-1001 - C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: OneDrive Startup Task-S-1-5-21-1860564252-3076275838-3046757579-1001 - C:\Program Files\Microsoft OneDrive\25.122.0624.0004\OneDriveLauncher.exe /startInstances (sign: 'Microsoft')
O22 - Tasks: Overwolf Updater Task - C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe /RunningFrom Schedule (sign: 'Overwolf Ltd')
O22 - Tasks: StartAUEP - C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe (sign: 'Advanced Micro Devices')
O22 - Tasks: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay (sign: 'Advanced Micro Devices')
O22 - Tasks: StartCNBM - C:\Program Files\AMD\CNext\CNext\cncmd.exe benchmark (sign: 'Advanced Micro Devices')
O22 - Tasks: StartDVR - C:\Program Files\AMD\CNext\CNext\RSServCmd.exe (sign: 'Advanced Micro Devices')
O22 - Tasks: update-S-1-5-21-1860564252-3076275838-3046757579-1001 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O23 - Service R2: AMD Crash Defender Service - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe (sign: 'Microsoft')
O23 - Service R2: AMD External Events Utility - C:\WINDOWS\System32\DriverStore\FileRepository\u0416003.inf_amd64_706cc64a85ddf686\B415817\atiesrxx.exe (sign: 'Advanced Micro Devices')
O23 - Service R2: AMD Provisioning Packages Service - (AmdPpkgSvc) - C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkgSvc.exe (sign: 'Advanced Micro Devices')
O23 - Service R2: Armoury Crate Service - (ArmouryCrateService) - C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS AURA SYNC lighting service - (LightingService) - C:\Program Files (x86)\LightingService\LightingService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: Asus Certificate Service - (AsusCertService) - C:\Program Files (x86)\ASUS\AsusCertService\1.2.36\AsusCertService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS Com Service - (asComSvc) - C:\Program Files (x86)\ASUS\AXSP\4.06.05\atkexComSvc.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: AsusFanControlService - C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.53\AsusFanControlService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: Cloudflare WARP - (CloudflareWARP) - C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe (sign: 'Cloudflare, Inc.')
O23 - Service R2: Dell TechHub - (DellTechHub) - C:\Program Files\Dell\TechHub\Dell.TechHub.exe (sign: 'Dell Technologies Inc.')
O23 - Service R2: DtsHPXV2Apo4Service - C:\WINDOWS\System32\DTS\HP\APO4x\DtsHPXV2Apo4Service.exe (sign: 'HP Inc.')
O23 - Service R2: ExitLagPmService - C:\Program Files\ExitLag\ExitLagPmService.exe (sign: 'Skowsand Tecnologia Ltda')
O23 - Service R2: GameSDK Service - C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: GoodbyeDPI - C:\Users\ofy\Desktop\goodbyedpi-0.2.3rc3-turkey (1)\x86_64\goodbyedpi.exe -5 --set-ttl 5 --dns-addr 77.88.8.8 --dns-port 1253 --dnsv6-addr 2a02:6b8::feed:0ff --dnsv6-port 1253 (not signed - no company - 478F336AB054623ABFA691F11F12BC3BE31DEABE)
O23 - Service R2: Microsoft Defender Çekirdek Hizmeti - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MpDefenderCoreService.exe (sign: 'Microsoft')
O23 - Service R2: ROG Live Service - C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: Sandboxie Service - (SbieSvc) - C:\Program Files\Sandboxie\SbieSvc.exe (sign: 'Tonalio GmbH')
O23 - Service S2: AMD User Experience Program Data Uploader - (AUEPLauncher) - C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe (sign: 'Advanced Micro Devices')
O23 - Service S2: ASUS Güncelleme Hizmeti (asus) - (asus) - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /svc (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service S2: AsusUpdateCheck - C:\WINDOWS\System32\AsusUpdateCheck.exe (sign: 'ASUSTeK Computer Inc.')
O23 - Service S2: AWCCService - C:\Program Files\Alienware\Alienware Command Center\AWCC.Service.exe (sign: 'Dell Inc')
O23 - Service S2: Dell Client Management Service - (DellClientManagementService) - C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (sign: 'Dell Technologies Inc.')
O23 - Service S2: Google Güncelleyici Dahili Hizmeti (GoogleUpdaterInternalService140.0.7272.0) - (GoogleUpdaterInternalService140.0.7272.0) - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7272.0\updater.exe --system --windows-service --service=update-internal (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Dahili Hizmeti (GoogleUpdaterInternalService140.0.7273.0) - (GoogleUpdaterInternalService140.0.7273.0) - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7273.0\updater.exe --system --windows-service --service=update-internal (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Hizmeti (GoogleUpdaterService140.0.7272.0) - (GoogleUpdaterService140.0.7272.0) - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7272.0\updater.exe --system --windows-service --service=update (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Hizmeti (GoogleUpdaterService140.0.7273.0) - (GoogleUpdaterService140.0.7273.0) - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7273.0\updater.exe --system --windows-service --service=update (sign: 'Google LLC')
O23 - Service S3: Armoury Crate Download Tool - (ArmouryCrateDownloadTool) - C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_23e8576fa9718131\ArmouryLiveUpdate.exe (file missing)
O23 - Service S3: ASUS Güncelleme Hizmeti (asusm) - (asusm) - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /medsvc (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service S3: Battle.net Update Helper Svc - (battlenet_helpersvc) - C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe (sign: 'Blizzard Entertainment, Inc.')
O23 - Service S3: FileSyncHelper - C:\Program Files\Microsoft OneDrive\25.122.0624.0004\FileSyncHelper.exe (sign: 'Microsoft')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\138.0.7204.158\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: OneDrive Updater Service - C:\Program Files\Microsoft OneDrive\25.122.0624.0004\OneDriveUpdaterService.exe (sign: 'Microsoft')
O23 - Service S3: Overwolf Updater Windows SCM - (OverwolfUpdater) - C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe /RunningFrom SCM (sign: 'Overwolf Ltd')
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe (sign: 'Riot Games, Inc.')
O23 - Driver R: ASUS Kernel Mode Driver for NT  - C:\WINDOWS\system32\drivers\IOMap64.sys (sign: 'ASUSTeK COMPUTER INC.')
O23 - Driver R: The WinDivert 2.2 driver [URL: hxxps://reqrypt.org/windivert.html] [Bitcoin: 1C5vZVSbizPeZ8ydTYhUfm4LA2cNwBfcYh] - C:\Users\ofy\Desktop\goodbyedpi-0.2.3rc3-turkey (1)\x86_64\WinDivert64.sys (sign: 'Cloudveil Technology Inc.')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\WINDOWS\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices')
O23 - Driver R1: Asusgio3 - C:\WINDOWS\system32\drivers\AsIO3.sys (sign: 'ASUSTeK COMPUTER INC.')
O23 - Driver R1: CTIAIO - C:\WINDOWS\system32\drivers\CtiAIo64.sys (sign: 'Microsoft' - Creative Technology Innovation Co., LTd.)
O23 - Driver R1: ExitLag LightWeight Filter - (ndextlag) - C:\WINDOWS\system32\DRIVERS\ndextlag.sys (+safe mode) (sign: 'WHIMSTERS FINANCIAL SOLUTIONS LTD')
O23 - Driver R1: nfextlag - C:\WINDOWS\system32\drivers\nfextlag.sys (+safe mode) (sign: 'Skowsand Tecnologia Ltda')
O23 - Driver R1: vgk - C:\Program Files\Riot Vanguard\vgk.sys (sign: 'Riot Games, Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV27 - C:\Program Files\AMD\Performance Profile Client\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices')
O23 - Driver R2: AMDRyzenMasterDriverV28 - C:\WINDOWS\system32\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices')
O23 - Driver R2: BlueStacks Hypervisor_nxt - (BlueStacksDrv_nxt) - C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys (sign: 'Microsoft' - Bluestack System Inc.)
O23 - Driver R3: AMD Controller Emulation - (AMDXE) - C:\WINDOWS\System32\drivers\amdxe.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Crash Defender Driver - (amdfendr) - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendr.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD Crash Defender Manager Driver - (amdfendrmgr) - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrmgr.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD Function Driver for HD Audio Service - (AtiHDAudioService) - C:\WINDOWS\System32\DriverStore\FileRepository\atihdwt6.inf_amd64_21c8ef1919e76bac\AtihdWT6.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\WINDOWS\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\WINDOWS\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: AMD Provisioning Packages - (AmdPpkg) - C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkg.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMDSAFD - C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_66bdd11a4e97edd1\amdsafd.sys (sign: 'Microsoft' - Advanced Micro Devices)
O23 - Driver R3: amduw23g-416003-55c70b53 - C:\WINDOWS\System32\DriverStore\FileRepository\u0416003.inf_amd64_706cc64a85ddf686\B415817\amdkmdag.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AWCC Driver Service - (AWCCDriver) - C:\WINDOWS\System32\drivers\AWCCDriver.sys (sign: 'IndiLogic LLC')
O23 - Driver R3: cpuz159 - C:\WINDOWS\temp\cpuz159\cpuz159_x64.sys (sign: 'Microsoft' - CPUID)
O23 - Driver R3: DellInstrumentation Service - (DellInstrumentation) - C:\WINDOWS\System32\drivers\DellInstrumentation.sys (sign: 'Microsoft' - Dell)
O23 - Driver R3: Realtek NetAdapter Driver - (rt68cx21) - C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64sta.inf_amd64_dd02613ac8afa9e2\rt68cx21x64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: SbieDrv - C:\Program Files\Sandboxie\SbieDrv.sys (sign: 'Microsoft' - Sandboxie-Plus.com)
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\WINDOWS\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: VB-Audio Virtual Cable (WDM) - (VBAudioVACMME) - C:\WINDOWS\System32\DriverStore\FileRepository\vbmmecable64_win10.inf_amd64_dd707570a4bf06fd\vbaudio_cable64_win10.sys (sign: 'BUREL VINCENT Entrepreneur individuel')
O23 - Driver S0: WinSetupMon - C:\WINDOWS\system32\DRIVERS\WinSetupMon.sys (file missing)
O23 - Driver S3: "Microsoft Bluetooth A2dp driver" ; {Placeholder="Microsoft Bluetooth"} - (BthA2dp) - C:\WINDOWS\System32\drivers\BthA2dp.sys (not signed - Microsoft Corporation - 0DB923C27BF4926E8ABB398FE5A4393E72BD2598)
O23 - Driver S3: "Microsoft Bluetooth Hands-Free Profile driver" ; {Placeholder="Microsoft Bluetooth"} - (BthHFEnum) - C:\WINDOWS\System32\drivers\bthhfenum.sys (not signed - Microsoft Corporation - 728E33EBAEB4991ACF0220807090C548824EEEA3)
O23 - Driver S3: @oem58.inf,%ROGMS.SvcDesc%;ROG Mouse - (ROGMS) - C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_23e8576fa9718131\ROGMS.sys (file missing)
O23 - Driver S3: AMD PCI - (AMDPCIDev) - C:\WINDOWS\System32\drivers\AMDPCIDev.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver S3: AMD SoundWire Audio Controller - (amdsdwc) - C:\WINDOWS\System32\DriverStore\FileRepository\amdsdwc.inf_amd64_465434da8d234e96\amdsdwc.sys (sign: 'Advanced Micro Devices')
O23 - Driver S3: atvi-randgrid - C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys (sign: 'Activision Publishing Inc')
O23 - Driver S3: Bluetooth Modem Communications Driver - (BTHMODEM) - C:\WINDOWS\System32\drivers\bthmodem.sys (not signed - Microsoft Corporation - C68BDB6EB26F7BBE6B945EF31F446D4294F5286C)
O23 - Driver S3: cpuz158 - C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys (sign: 'Microsoft' - CPUID)
O23 - Driver S3: Dell Peripheral Manager Driver Service - (DPMDriver) - C:\WINDOWS\System32\drivers\DPMDriver.sys (sign: 'IndiLogic LLC')
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: Realtek RT640 NT Driver - (rt640x64) - C:\WINDOWS\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S3: ROG Keyboard - (ROGKB) - C:\WINDOWS\System32\DriverStore\FileRepository\rogkb.inf_amd64_3280a9842240daed\ROGKB.sys (file missing)
O23 - Driver S3: VirtualBox USB - (VBoxUSB) - C:\WINDOWS\System32\Drivers\VBoxUSB.sys (+safe mode) (sign: 'Oracle America, Inc.')
O23 - Driver S3: vJoy Device - (vjoy) - C:\WINDOWS\System32\drivers\vjoy.sys (sign: 'On-site Dental Systems (Justin Shafer)')
O23 - Driver S3: Wintun - (wintun) - C:\WINDOWS\System32\drivers\wintun.sys (sign: 'Microsoft' - WireGuard LLC)
O23 - Driver S3: WireGuard - C:\WINDOWS\System32\drivers\wireguard.sys (sign: 'Microsoft' - WireGuard LLC)
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'ndextlag'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'rt640x64'
O26 - Debugger: HKLM\..\CompatTelRunner.exe: [Debugger] = C:\WINDOWS\System32\taskkill.exe (sign: 'Microsoft')
O26 - Debugger: HKLM\..\DeviceCensus.exe: [Debugger] = C:\WINDOWS\System32\taskkill.exe (sign: 'Microsoft')
O26 - Debugger: HKLM\..\software_reporter_tool.exe: [Debugger] = C:\WINDOWS\System32\taskkill.exe (sign: 'Microsoft')
O26 - Office Addin: HKLM\..\MicrosoftDataStreamerforExcel - (Microsoft Data Streamer for Excel) -> C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\MicrosoftDataStreamerforExcel.vsto (not signed - no company - A9DA61511D2073E5B80ED742394B35C61D96DE3A)
O26 - Office Addin: HKLM\..\PowerPivotExcelClientAddIn.NativeEntry.1 - (Microsoft Power Pivot for Excel) -> (no file)


--
End of file - Time spent: 19,3 sec. - 74548 bytes, CRC32: FFFFFFFF. Sign: ຸ࢔
 
Elfire x dedi:
Aynı sistem özelliklerine sahip diğer PC'lerden performans bakımından geri kalıyorum, aldığımdan bu yana FPS'de aşırı bir düşüş yaşadım. Bir de çözemediğim FPS düşmesi problemim var.
Genişletmek için tıkla...
Sürücü bulucu kullanıyorsunuz (Driver Booster), ExitLag gibi araçlar daha kötü edebilir kaldırın kullanmayın. goodbyedpi, ISLC v1.0.3.4 bu iki yazılım da kaldırın kulanmayın. Söylediğim giib benzer göevleri olan birden çok yazılım kulanıyorsunuz farkında değilsiniz. Bunlar ters etki yapıp daha da kötü ediyor.
Gereksiz üretici yazılımlarını da kaldırın ASUS araçları gibi.

Aldığınızdan beri problem varsa Win 11 kaynaklı olabilir yakın zamanda anormal yavaşlamaları olan cihazlar gördüm.

Bunları fixleyin:
Kod: 
O4 - HKCU\..\Run: [BurntSushi] = :"C:\Program Files\OpenByte\BurntSushi\BurntSushi.exe" --autostart (file missing)
O4 - HKCU\..\Run: [Spotify] = :C:\Windows.old\Users\ofy\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (file missing)
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_AF2488578C92CC3E7055933096D1661C] = :"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start (file missing) (2025/04/19)
O4 - HKCU\..\StartupApproved\Run: [MyLiveWallpapers] = :"C:\Program Files\MyLiveWallpapers\MyLiveWallpapers.exe" --silent (file missing) (2025/06/22)
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = :"C:\Program Files\Microsoft OneDrive\OneDrive.exe" /background (file missing) (2025/04/19)
O4 - HKCU\..\StartupApproved\Run: [SandboxieControl] = :"C:\Program Files\Sandboxie\SbieCtrl.exe" (file missing) (2025/05/01)
O4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\~Disabled (folder)
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O22 - Tasks: \AWCC\Update - C:\Program Files (x86)\"InstallShield Installation Information\{D2DA930B-CB5D-4DD6-BF62-BE6C310A353D}\Update\IMSilentUpdate.exe" (file missing)
O22 - Tasks: Driver Booster Scheduler - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\Scheduler.exe /scheduler (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster SkipUAC (ofy) - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\DriverBooster.exe /skipuac (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster Update - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\AutoUpdate.exe /auto (sign: 'IObit CO., LTD')
O22 - Tasks: Intelligent StandbyList Cleaner - C:\Users\ofy\Downloads\ISLC v1.0.3.4\Intelligent standby list cleaner ISLC.exe (sign: 'Wagnardsoft')
O22 - Tasks: LaunchSetTimerResolution - C:\Users\ofy\AppData\Local\Programs\Hone\resources\assets\hone-resources\SetTimerResolution.exe --resolution 5120 (sign: 'AuraSide, Inc.')
O23 - Service R2: GoodbyeDPI - C:\Users\ofy\Desktop\goodbyedpi-0.2.3rc3-turkey (1)\x86_64\goodbyedpi.exe -5 --set-ttl 5 --dns-addr 77.88.8.8 --dns-port 1253 --dnsv6-addr 2a02:6b8::feed:0ff --dnsv6-port 1253 (not signed - no company - 478F336AB054623ABFA691F11F12BC3BE31DEABE)
O23 - Driver R: The WinDivert 2.2 driver [URL: hxxps://reqrypt.org/windivert.html] [Bitcoin: 1C5vZVSbizPeZ8ydTYhUfm4LA2cNwBfcYh] - C:\Users\ofy\Desktop\goodbyedpi-0.2.3rc3-turkey (1)\x86_64\WinDivert64.sys (sign: 'Cloudveil Technology Inc.')
O23 - Driver R3: AWCC Driver Service - (AWCCDriver) - C:\WINDOWS\System32\drivers\AWCCDriver.sys (sign: 'IndiLogic LLC')
O23 - Driver S0: WinSetupMon - C:\WINDOWS\system32\DRIVERS\WinSetupMon.sys (file missing)
O23 - Driver R3: cpuz159 - C:\WINDOWS\temp\cpuz159\cpuz159_x64.sys (sign: 'Microsoft' - CPUID)
 
Murat5038 dedi:
Sürücü bulucu kullanıyorsunuz (Driver Booster), ExitLag gibi araçlar daha kötü edebilir kaldırın kullanmayın. GoodbyeDPI, ISLC v1.0.3.4 bu iki yazılım da kaldırın kulanmayın. Söylediğim giib benzer göevleri olan birden çok yazılım kulanıyorsunuz farkında değilsiniz. Bunlar ters etki yapıp daha da kötü ediyor.
Gereksiz üretici yazılımlarını da kaldırın ASUS araçları gibi.

Aldığınızdan beri problem varsa Windows 11 kaynaklı olabilir yakın zamanda anormal yavaşlamaları olan cihazlar gördüm.

Bunları fixleyin:
Kod: 
O4 - HKCU\..\Run: [BurntSushi] = :"C:\Program Files\OpenByte\BurntSushi\BurntSushi.exe" --autostart (file missing)
O4 - HKCU\..\Run: [Spotify] = :C:\Windows.old\Users\ofy\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (file missing)
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_AF2488578C92CC3E7055933096D1661C] = :"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start (file missing) (2025/04/19)
O4 - HKCU\..\StartupApproved\Run: [MyLiveWallpapers] = :"C:\Program Files\MyLiveWallpapers\MyLiveWallpapers.exe" --silent (file missing) (2025/06/22)
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = :"C:\Program Files\Microsoft OneDrive\OneDrive.exe" /background (file missing) (2025/04/19)
O4 - HKCU\..\StartupApproved\Run: [SandboxieControl] = :"C:\Program Files\Sandboxie\SbieCtrl.exe" (file missing) (2025/05/01)
O4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\~Disabled (folder)
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O22 - Tasks: \AWCC\Update - C:\Program Files (x86)\"InstallShield Installation Information\{D2DA930B-CB5D-4DD6-BF62-BE6C310A353D}\Update\IMSilentUpdate.exe" (file missing)
O22 - Tasks: Driver Booster Scheduler - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\Scheduler.exe /scheduler (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster SkipUAC (ofy) - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\DriverBooster.exe /skipuac (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster Update - C:\Program Files (x86)\IObit\Driver Booster\12.5.0\AutoUpdate.exe /auto (sign: 'IObit CO., LTD')
O22 - Tasks: Intelligent StandbyList Cleaner - C:\Users\ofy\Downloads\ISLC v1.0.3.4\Intelligent standby list cleaner ISLC.exe (sign: 'Wagnardsoft')
O22 - Tasks: LaunchSetTimerResolution - C:\Users\ofy\AppData\Local\Programs\Hone\resources\assets\hone-resources\SetTimerResolution.exe --resolution 5120 (sign: 'AuraSide, Inc.')
O23 - Service R2: GoodbyeDPI - C:\Users\ofy\Desktop\goodbyedpi-0.2.3rc3-turkey (1)\x86_64\goodbyedpi.exe -5 --set-ttl 5 --dns-addr 77.88.8.8 --dns-port 1253 --dnsv6-addr 2a02:6b8::feed:0ff --dnsv6-port 1253 (not signed - no company - 478F336AB054623ABFA691F11F12BC3BE31DEABE)
O23 - Driver R: The WinDivert 2.2 driver [URL: hxxps://reqrypt.org/windivert.html] [Bitcoin: 1C5vZVSbizPeZ8ydTYhUfm4LA2cNwBfcYh] - C:\Users\ofy\Desktop\goodbyedpi-0.2.3rc3-turkey (1)\x86_64\WinDivert64.sys (sign: 'Cloudveil Technology Inc.')
O23 - Driver R3: AWCC Driver Service - (AWCCDriver) - C:\WINDOWS\System32\drivers\AWCCDriver.sys (sign: 'IndiLogic LLC')
O23 - Driver S0: WinSetupMon - C:\WINDOWS\system32\DRIVERS\WinSetupMon.sys (file missing)
O23 - Driver R3: cpuz159 - C:\WINDOWS\temp\cpuz159\cpuz159_x64.sys (sign: 'Microsoft' - CPUID)
Genişletmek için tıkla...

Hocam GoodbyeDPI kullanıcının sisteminde mi kötü etki bırakmış yoksa genel olarak mı kullanılmamalı?
 
Kod: 
Logfile of HiJackThis+ build 2025-01-16 Beta v.3.4.0.17

Platform: x64 Windows 11 (Pro), 10.0.22631.4317 (ReleaseId: 2009, 23H2), Service Pack: 0
Time: 30.07.2025 - 18:54 (UTC+03:00)
Language: OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory: 24,25 GiB Free / 32. Loading RAM (23 %), CPU (1 %)
Disk C: 17,24 GiB Free / 465 (SSD, GPT)
Elevated: Yes
Ran by: duran (group: Administrators; type: Microsoft) on FIRSTD02, FirstRun: yes

Chrome: 138.0.7204.183
Firefox: 141.0.0.299
Internet Explorer: 11.0.22621.3527
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: On) (Code Integrity: On)

Running processes:
Number | Path
1 C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
1 C:\Program Files (x86)\CoolerMaster\MasterPlus\MPService.exe
2 C:\Program Files (x86)\GlassWire\GWCrashpadHandler.exe
1 C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
1 C:\Program Files (x86)\GlassWire\GWIdlMon.exe
1 C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.22\avp.exe
1 C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.22\avpui.exe
6 C:\Program Files (x86)\Microsoft\EdgeWebView\Application\138.0.3351.109\msedgewebview2.exe
1 C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe
1 C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
1 C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
1 C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
1 C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
1 C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Engine.exe
1 C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe
1 C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
1 C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
1 C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
1 C:\Program Files\AMD\CNext\CNext\amdow.exe
1 C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
1 C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
1 C:\Program Files\AMD\CNext\CNext\cncmd.exe
1 C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
1 C:\Program Files\Bonjour\mDNSResponder.exe
1 C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
1 C:\Program Files\Google\Play Games Services\25.7.678.0\Service\data\windows.assets\crashpad_handler.exe
1 C:\Program Files\Google\Play Games Services\25.7.678.0\Service\GooglePlayGamesServices.exe
7 C:\Program Files\LM Studio\LM Studio.exe
1 C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
1 C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
1 C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
1 C:\Program Files\Riot Vanguard\vgtray.exe
1 C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
1 C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe
1 C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2528.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe
1 C:\Program Files\WindowsApps\Microsoft.Copilot_1.25064.139.0_x64__8wekyb3d8bbwe\Copilot.exe
1 C:\Program Files\WindowsApps\Microsoft.GamingServices_29.103.2001.0_x64__8wekyb3d8bbwe\gamingservices.exe
1 C:\Program Files\WindowsApps\Microsoft.GamingServices_29.103.2001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
1 C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.9.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
1 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25061.51.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
1 C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.15301.20.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
1 C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25062.30.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
1 C:\Program Files\WindowsApps\MSTeams_25185.410.3812.8024_x64__8wekyb3d8bbwe\ms-teams.exe
1 C:\Program Files\Windscribe\WindscribeService.exe
1 C:\Program Files\WSL\wslservice.exe
1 C:\Users\duran\Desktop\HiJackThis.exe
1 C:\Windows\explorer.exe
1 C:\Windows\System32\AggregatorHost.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\backgroundTaskHost.exe
1 C:\Windows\System32\cmd.exe
6 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
1 C:\Windows\System32\dasHost.exe
1 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe
1 C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkgSvc.exe
2 C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_32b266092fc6592d\RtkAudUService64.exe
1 C:\Windows\System32\DriverStore\FileRepository\u0416003.inf_amd64_706cc64a85ddf686\B415817\atieclxx.exe
1 C:\Windows\System32\DriverStore\FileRepository\u0416003.inf_amd64_706cc64a85ddf686\B415817\atiesrxx.exe
1 C:\Windows\System32\DTS\HP\APO4x\DtsHPXV2Apo4Service.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\LsaIso.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\OpenSSH\ssh-agent.exe
6 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\SecurityHealthSystray.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
89 C:\Windows\System32\svchost.exe
2 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\vmcompute.exe
1 C:\Windows\System32\vmms.exe
1 C:\Windows\System32\wbem\unsecapp.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\wlanext.exe
2 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
1 C:\Windows\SysWOW64\vmnat.exe
1 C:\Windows\SysWOW64\vmnetdhcp.exe
2 C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
1 C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyServer] = hxxp://192.168.56.36:8080 (disabled)
O1 - Hosts: ::1 localhost
O1 - Hosts.ICS: 172.26.80.1 firstd02.mshome.net # 2030 7 1 29 15 50 5 932
O1 - Hosts.ICS: 2 53 3 508
O1 - Hosts.ICS: 192.168.137.221 M2101K7BG.mshome.net # 2024 2 5 2 17 23 18 649
O1 - Hosts.ICS: 9
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_461\bin\jp2ssv.dll (sign: 'Oracle America, Inc.')
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_461\bin\ssv.dll (sign: 'Oracle America, Inc.')
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\138.0.7204.183\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\Run: [AMDNoiseSuppression] = C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe (sign: 'Advanced Micro Devices Inc.')
O4 - HKCU\..\Run: [electron.app.LM Studio] = C:\Program Files\LM Studio\LM Studio.exe --run-as-service (not signed - LM Studio - E0A4287A3F38EC4719D93799C70008DB90B604B7)
O4 - HKCU\..\Run: [Free Download Manager] = C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe --hidden (not signed - Softdeluxe - 2EA071D6886E09DBD50498BEECBFA8D7BCCE8F65)
O4 - HKCU\..\StartupApproved\Run: [GlassWire] = C:\Program Files (x86)\GlassWire\glasswire.exe -hide (2023/08/09) (sign: 'domotz inc')
O4 - HKCU\..\StartupApproved\Run: [GogGalaxy] = C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (2025/06/19) (sign: 'GOG sp. z o.o')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_ADA3995E402FD8A06C905217FB4320B5] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --win-session-start (2023/08/04) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [RiotClient] = H:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (2024/02/08) (sign: 'Riot Games, Inc.')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2023/08/06) (sign: 'Valve Corp.')
O4 - HKLM\..\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (sign: 'Riot Games, Inc.')
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_32b266092fc6592d\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\Session Manager: [BootExecute] = C:\Windows\system32\autochk.exe /k:C * (sign: 'Microsoft')
O4 - HKLM\..\StartupApproved\Run: [mutectl] = C:\Program Files\ASTER\mutectl.exe -autostart (2024/03/27) (sign: 'IBIK LLC')
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2023/08/04) (sign: 'Oracle America, Inc.')
O4 - HKU\S-1-5-18\..\Run: [AMDNoiseSuppression] = C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe (User 'LocalSystem') (sign: 'Advanced Micro Devices Inc.')
O4 - HKU\S-1-5-18\..\Run: [GlassWire] = C:\Program Files (x86)\GlassWire\glasswire.exe -hide (User 'LocalSystem') (sign: 'domotz inc')
O4 - HKU\S-1-5-18\..\RunOnce: [StartRSX] = C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe (User 'LocalSystem') (sign: 'Advanced Micro Devices')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiSpyware] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiVirus] = 1
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (file missing)
O10 - Unknown file in Winsock LSP: C:\Program Files (x86)\Bonjour\mdnsNSP.dll (sign: 'Apple Inc.')
O17 - DHCP DNS 1: 1.1.1.1 (Well-known DNS: Cloudflare / APNIC)
O17 - DHCP DNS 2: 1.0.0.1 (Well-known DNS: Cloudflare / APNIC)
O17 - DHCP DNS 3: 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{0b4ef953-fcd2-41ba-a063-0774af3baca6}: [NameServer] = 1.0.0.1 (Well-known DNS: Cloudflare / APNIC)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0b4ef953-fcd2-41ba-a063-0774af3baca6}: [NameServer] = 1.1.1.1 (Well-known DNS: Cloudflare / APNIC)
O18 - HKLM\Software\Classes\Protocols\Filter\application/octet-stream: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-complus: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-msdownload: [CLSID] = {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - (no file)
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\Windows\explorer.exe (sign: 'Microsoft')
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\S-1-5-21-3950082741-2458409774-1106530551-1001\EnterpriseMgmt (empty)
O22 - Tasks: (disabled) \Microsoft\Office\Office Actions Server - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe availabilitycheck (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical - {613FBA38-A3DF-4AB8-9674-5604984A299A},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical - {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\AppxDeploymentClient\AppInstallerUpdater - C:\Windows\system32\rundll32.exe C:\Windows\system32\AppxDeploymentClient.dll,ScheduleAppInstallerBackgroundUpdate (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\Windows\system32\fclip.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\Windows\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\WaaSMedic\DeferredWork - {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32},DeferralWork - C:\Windows\System32\WaaSMedicSvc.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) SamsungMagician - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe --disable-gpu-sandbox /AUTOHIDE (sign: 'Samsung Electronics Co., Ltd.')
O22 - Tasks: (telemetry) \Microsoft\Office\Office Performance Monitor - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaWallpaperAppDetect - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaWallpaperAppDetect (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\Windows\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem140.0.7273.0{104BBDE2-86C3-4655-8D16-1689110FEB39} - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7273.0\updater.exe --wake --system (sign: 'Google LLC')
O22 - Tasks: \Microsoft\Office\Office Background Push Maintenance - C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe /pushregistration (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Office\Office Serviceability Manager - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 - {84F0FAE1-C27B-4F6F-807B-28CF6F96287D},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 - {429BC048-379E-45E0-80E4-EB1977941B5C},/RuntimeWide - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (file missing)
O22 - Tasks: \Mozilla\Firefox Background Update S-1-5-21-3950082741-2458409774-1106530551-1001 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate (sign: 'Mozilla Corporation')
O22 - Tasks: \Mozilla\Firefox Background Update S-1-5-21-3950082741-2458409774-1106530551-1004 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate (sign: 'Mozilla Corporation')
O22 - Tasks: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (sign: 'Mozilla Corporation')
O22 - Tasks: AMD Install Manager - Check For Updates - C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe -CheckForUpdates (sign: 'Advanced Micro Devices')
O22 - Tasks: AMDInstallUEP - C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (file missing)
O22 - Tasks: AMDRyzenMasterSDKTask - C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe (sign: 'Advanced Micro Devices')
O22 - Tasks: FanControl - C:\FanControl\FanControl.exe (not signed - Rémi Mercier - 09963443D8FFBDD6E879F4992ACEF4DB9DDB6FE9)
O22 - Tasks: FreeDownloadManagerHelperService - C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe (not signed - Softdeluxe - 01799AB981BC716DCA62356CBA194843C0B1323D)
O22 - Tasks: Google Play Games Notifier - C:\Program Files\Google\Play Games\Bootstrapper.exe /bg (sign: 'Google LLC')
O22 - Tasks: HidHide_Updater - C:\Program Files\Nefarius Software Solutions\HidHide\HidHide_Updater.exe /silent (sign: 'Nefarius Software Solutions e.U.')
O22 - Tasks: Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} - C:\Program Files\Common Files\AV\Kaspersky\upgrade.exe /waitUpgrade (sign: 'AO Kaspersky Lab')
O22 - Tasks: ModifyLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -UpdateCurrentUser (sign: 'Advanced Micro Devices')
O22 - Tasks: PostponeDeviceSetupToast_S-1-5-21-3950082741-2458409774-1106530551-1004_17 - {5ded83ef-1e99-48cf-bf83-676d2a6db408},PostponeDeviceSetupToast - C:\Windows\System32\oobe\UserOOBE.dll (file missing)
O22 - Tasks: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay (sign: 'Advanced Micro Devices')
O22 - Tasks: StartDVR - C:\Program Files\AMD\CNext\CNext\RSServCmd.exe (sign: 'Advanced Micro Devices')
O23 - Service R2: AMD Crash Defender Service - C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe (sign: 'Microsoft')
O23 - Service R2: AMD External Events Utility - C:\Windows\System32\DriverStore\FileRepository\u0416003.inf_amd64_706cc64a85ddf686\B415817\atiesrxx.exe (sign: 'Advanced Micro Devices')
O23 - Service R2: AMD Provisioning Packages Service - (AmdPpkgSvc) - C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkgSvc.exe (sign: 'Advanced Micro Devices')
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe (sign: 'Apple Inc.')
O23 - Service R2: CMigrationService - C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe (sign: 'Samsung Electronics Co., Ltd.')
O23 - Service R2: CoolerMaster MasterPlus Technology Service - (MPService) - C:\Program Files (x86)\CoolerMaster\MasterPlus\MPService.exe (not signed - no company - BE3336C2837F8D76A2C8BE542FF16963BE817356)
O23 - Service R2: DtsHPXV2Apo4Service - C:\Windows\System32\DTS\HP\APO4x\DtsHPXV2Apo4Service.exe (sign: 'HP Inc.')
O23 - Service R2: Gaming Services - (GamingServices) - C:\Program Files\WindowsApps\Microsoft.GamingServices_29.103.2001.0_x64__8wekyb3d8bbwe\GamingServices.exe (sign: 'Microsoft')
O23 - Service R2: Gaming Services - (GamingServicesNet) - C:\Program Files\WindowsApps\Microsoft.GamingServices_29.103.2001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (sign: 'Microsoft')
O23 - Service R2: GlassWire Control Service - (GlassWire) - C:\Program Files (x86)\GlassWire\GWCtlSrv.exe (sign: 'domotz inc')
O23 - Service R2: Google Play Games Services (25.7.678.0) - (GooglePlayGamesServices-25.7.678.0) - C:\Program Files\Google\Play Games Services\25.7.678.0\Service\GooglePlayGamesServices.exe (sign: 'Google LLC')
O23 - Service R2: Kaspersky Hizmeti 21.22 - (AVP21.22) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.22\avp.exe -r (sign: 'Microsoft')
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (sign: 'Malwarebytes Inc') (+safe mode)
O23 - Service R2: MSI Center Service - (MSI_Center_Service) - C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Service R2: MSI Voice Control Service - (MSI_VoiceControl_Service) - C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Service R2: MSI_Case_Service - C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Service R2: muteprx - C:\Windows\System32\svchost.exe -k mute; "ServiceDll" = C:\ProgramData\Asvp\muteprx.dll (not signed - no company - 988C044C4B5AFA2BC22ACA85E028EDF231E610BA)
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_32b266092fc6592d\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')
O23 - Service R2: SamsungMagicianSVC - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe (sign: 'Samsung Electronics Co., Ltd.')
O23 - Service R2: VMware Authorization Service - (VMAuthdService) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (sign: 'VMware, Inc.')
O23 - Service R2: VMware DHCP Service - (VMnetDHCP) - C:\Windows\SysWOW64\vmnetdhcp.exe (sign: 'VMware, Inc.')
O23 - Service R2: VMware NAT Service - C:\Windows\SysWOW64\vmnat.exe (sign: 'VMware, Inc.')
O23 - Service R2: VMware USB Arbitration Service - (VMUSBArbService) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe (sign: 'VMware Inc.')
O23 - Service R2: Windscribe Service - (WindscribeService) - C:\Program Files\Windscribe\WindscribeService.exe (sign: 'Windscribe Limited')
O23 - Service R2: WSL Service - (WSLService) - C:\Program Files\WSL\wslservice.exe (sign: 'Microsoft')
O23 - Service S2: AMD Application Compatibility Database Service - (AmdAppCompatSvc) - C:\Windows\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_0cfc8ba812cdbaa8\AmdAppCompatSvc.exe (sign: 'Advanced Micro Devices')
O23 - Service S2: filec service - (filec) - C:\Program Files\FileCentipede\lib\filec.exe service (file missing)
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Dahili Hizmeti (GoogleUpdaterInternalService140.0.7273.0) - (GoogleUpdaterInternalService140.0.7273.0) - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7273.0\updater.exe --system --windows-service --service=update-internal (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Hizmeti (GoogleUpdaterService140.0.7273.0) - (GoogleUpdaterService140.0.7273.0) - C:\Program Files (x86)\Google\GoogleUpdater\140.0.7273.0\updater.exe --system --windows-service --service=update (sign: 'Google LLC')
O23 - Service S3: AntiCheatExpert Protection - C:\Program Files\AntiCheatExpert\ACE-Service64.exe -autorun (sign: 'ACEVILLE PTE LTD')
O23 - Service S3: AntiCheatExpert Service - C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe -autorun (sign: 'ACEVILLE PTE LTD')
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (sign: 'BattlEye Innovations e.K.')
O23 - Service S3: Docker Desktop Service - (com.docker.service) - C:\Program Files\Docker\Docker\com.docker.service (sign: 'Docker Inc')
O23 - Service S3: EAAntiCheatService - C:\Program Files\EA\AC\eaanticheat.gameservice.exe (sign: 'Electronic Arts, Inc.')
O23 - Service S3: EABackgroundService - C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (sign: 'Electronic Arts, Inc.')
O23 - Service S3: Easy Anti-Cheat (Epic Online Services) - (EasyAntiCheat_EOS) - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: Epic Games Updater - (EpicGamesUpdater) - C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe (sign: 'Epic Games Inc.')
O23 - Service S3: Epic Online Services - (EpicOnlineServices) - C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe (sign: 'Epic Games Inc.')
O23 - Service S3: FACEITService - C:\Program Files\FACEIT AC\faceitservice.exe (sign: 'ESL Gaming GmbH')
O23 - Service S3: FDGMonitorService - C:\Program Files\FlydigiSpaceStation\Service\GameControllerService.exe (not signed - no company - 08C1605C2F0874E5D0ABBEE4D6496CB02AA9E6C1)
O23 - Service S3: Futuremark SystemInfo Service - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe (sign: 'Underwriters Laboratories Inc.')
O23 - Service S3: GalaxyClientService - C:\\?\C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe (file missing)
O23 - Service S3: GalaxyCommunication - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe (sign: 'GOG sp. z o.o')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\138.0.7204.183\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc (sign: 'Google LLC')
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 21.22 - (klvssbridge64_21.22) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.22\x64\vssbridge64.exe (sign: 'AO Kaspersky Lab')
O23 - Service S3: MBVpnTunnelService - C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe (sign: 'Malwarebytes Inc.')
O23 - Service S3: Microsoft Defender Çekirdek Hizmeti - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25060.7-0\MpDefenderCoreService.exe (sign: 'Microsoft')
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (sign: 'Mozilla Corporation')
O23 - Service S3: RedKard_Rooster - C:\ProgramData\RedKard\Splitgate 2\bin\anticheat.x64.redkard.exe (sign: '1047 Games, Inc.')
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe (sign: 'Rockstar Games, Inc.')
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Service S3: Sunshine Service - (SunshineService) - C:\Program Files\Sunshine\tools\sunshinesvc.exe (not signed - no company - 6ADA4C9F65250C2014E4DEDEEA3A96526EECF72A)
O23 - Service S3: Uncheater for BattleGrounds_GL - (ucldr_battlegrounds_gl) - C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe (sign: 'Wellbia.com Co., Ltd.')
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe (sign: 'Riot Games, Inc.')
O23 - Service S3: Visual Studio Installer Elevation Service - (VSInstallerElevationService) - C:\Program Files (x86)\Microsoft Visual Studio\Installer\VSInstallerElevationService.exe (sign: 'Microsoft')
O23 - Service S3: Zakynthos Service - (zksvc) - C:\Program Files\Common Files\PUBG\zksvc.exe (sign: 'KRAFTON, Inc.')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\Windows\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices')
O23 - Driver R0: AO Kaspersky Lab Cryptographic Module x64 (56 bit) - (cm_km) - C:\Windows\system32\DRIVERS\cm_km.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-22_arkmon - C:\Windows\System32\Drivers\klupd_K4W-21-22_arkmon.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-22_klbg - C:\Windows\System32\Drivers\klupd_K4W-21-22_klbg.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: VMware VMCI Bus Driver - (vmci) - C:\Windows\System32\drivers\vmci.sys (+safe mode) (sign: 'Microsoft' - VMware, Inc.)
O23 - Driver R0: vSockets Virtual Machine Communication Interface Sockets driver - (vsock) - C:\Windows\system32\DRIVERS\vsock.sys (+safe mode) (sign: 'Microsoft' - VMware, Inc.)
O23 - Driver R1: FACEIT - C:\Program Files\FACEIT AC\FACEIT_AC.sys (sign: 'Microsoft' - no company)
O23 - Driver R1: GHAXM - (googlehaxm) - C:\Windows\system32\drivers\GoogleHaxm.sys (sign: 'Microsoft' - Google)
O23 - Driver R1: GlassWire Generic Driver - (gwdrv) - C:\Windows\System32\drivers\gwdrv.sys (+safe mode) (sign: 'Microsoft' - Domotz Inc)
O23 - Driver R1: Kaspersky Anti-Virus NDIS 6 Filter - (klim6) - C:\Windows\system32\DRIVERS\klim6.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Driver.K4W-21-22 - (KLIF.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klif.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab format recognizer driver.K4W-21-22 - (klpd.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klpd.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Kernel DLL.K4W-21-22 - (klflt.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klbackupdisk.K4W-21-22 - (klbackupdisk.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klbackupdisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klbackupflt.K4W-21-22 - (klbackupflt.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klbackupflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab KLKBDFLT.K4W-21-22 - (klkbdflt.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klkbdflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klpnpflt.K4W-21-22 - (klpnpflt.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klpnpflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Security Extender Driver.K4W-21-22 - (klgse.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klgse.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab service driver.K4W-21-22 - (klhk.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klhk.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kldisk.K4W-21-22 - C:\Windows\system32\DRIVERS\K4W-21-22\kldisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: klwtp.K4W-21-22 - C:\Windows\system32\DRIVERS\K4W-21-22\klwtp.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kneps.K4W-21-22 - C:\Windows\system32\DRIVERS\K4W-21-22\kneps.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Nefarius Virtual Gamepad Emulation Service - (ViGEmBus) - C:\Windows\System32\drivers\ViGEmBus.sys (sign: 'Microsoft' - Nefarius Software Solutions e.U.)
O23 - Driver R2: AMDRyzenMasterDriverV22 - C:\Program Files\AMD\RyzenMasterSDK\bin\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV28 - C:\Windows\system32\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices')
O23 - Driver R2: MBAMChameleon - (mbamchameleon) - C:\Windows\System32\Drivers\MbamChameleon.sys (sign: 'Microsoft' - Malwarebytes)
O23 - Driver R2: RtsUapx Driver - (RtsUapx) - C:\Windows\system32\drivers\RtsUapx.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R2: VMware Bridge Protocol - (VMnetBridge) - C:\Windows\system32\DRIVERS\vmnetbridge.sys (+safe mode) (sign: 'Microsoft' - VMware, Inc.)
O23 - Driver R2: VMware hcmon - (hcmon) - C:\Windows\system32\DRIVERS\hcmon.sys (sign: 'Microsoft' - VMware, Inc.)
O23 - Driver R2: VMware Virtual Ethernet Userif for VMnet - (VMnetuserif) - C:\Windows\system32\DRIVERS\vmnetuserif.sys (+safe mode) (sign: 'Microsoft' - VMware, Inc.)
O23 - Driver R2: VMware vmx86 - (vmx86) - C:\Windows\system32\DRIVERS\vmx86.sys (sign: 'Microsoft' - VMware, Inc.)
O23 - Driver R3: AMD Application Compatibility Database - (AmdAppCompat) - C:\Windows\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_0cfc8ba812cdbaa8\AmdAppCompat.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD Controller Emulation - (AMDXE) - C:\Windows\System32\drivers\amdxe.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Crash Defender Driver - (amdfendr) - C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendr.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD Crash Defender Manager Driver - (amdfendrmgr) - C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrmgr.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD Function Driver for HD Audio Service - (AtiHDAudioService) - C:\Windows\System32\DriverStore\FileRepository\atihdwt6.inf_amd64_21c8ef1919e76bac\AtihdWT6.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\Windows\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\Windows\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: AMD I2C Controller Service - (amdi2c) - C:\Windows\System32\drivers\amdi2c.sys (+safe mode) (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD PCI - (AMDPCIDev) - C:\Windows\System32\drivers\AMDPCIDev.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Provisioning Packages - (AmdPpkg) - C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkg.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMDSAFD - C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_66bdd11a4e97edd1\amdsafd.sys (sign: 'Microsoft' - Advanced Micro Devices)
O23 - Driver R3: amduw23g-416003-55c70b53 - C:\Windows\System32\DriverStore\FileRepository\u0416003.inf_amd64_706cc64a85ddf686\B415817\amdkmdag.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: cpuz158 - C:\Windows\temp\cpuz158\cpuz158_x64.sys (sign: 'Microsoft' - CPUID)
O23 - Driver R3: GeniTech Virtual Gamepad Service - (hidvirtualdriver) - C:\Windows\System32\drivers\hidvirtualdriver.sys (sign: 'Microsoft' - GeniTech Electronics Tech. Co., Ltd.,)
O23 - Driver R3: Kaspersky Lab KLMOUFLT.K4W-21-22 - (klmouflt.K4W-21-22) - C:\Windows\system32\DRIVERS\K4W-21-22\klmouflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klids.K4W-21-22 - C:\ProgramData\Kaspersky Lab\AVP21.22\Bases\klids.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-22_klark - C:\Windows\System32\Drivers\klupd_K4W-21-22_klark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-22_mark - C:\Windows\System32\Drivers\klupd_K4W-21-22_mark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: MBAMSwissArmy - C:\Windows\System32\Drivers\mbamswissarmy.sys (sign: 'Microsoft' - Malwarebytes)
O23 - Driver R3: Mediatek PCI LE Extensible Wireless LAN Card Driver - (mtkwlex) - C:\Windows\System32\drivers\mtkwl6ex.sys (+safe mode) (sign: 'Microsoft' - MediaTek Inc.)
O23 - Driver R3: MTK BT Filter Driver - (MTKBTFilterx64) - C:\Windows\System32\drivers\mtkbtfilterx.sys (sign: 'Microsoft' - MediaTek Inc.)
O23 - Driver R3: Nefarius HidHide Service - (HidHide) - C:\Windows\System32\drivers\HidHide.sys (sign: 'Microsoft' - Nefarius Software Solutions e.U.)
O23 - Driver R3: NTIOLib_CC_Clock - C:\Program Files (x86)\MSI\MSI Center\Lib\NTIOLib_X64.sys (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Driver R3: NTIOLib_CC_COMM - C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Driver R3: Realtek RT640 NT Driver - (rt640x64) - C:\Windows\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\Windows\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Steam Streaming Microphone - (SteamStreamingMicrophone) - C:\Windows\system32\drivers\SteamStreamingMicrophone.sys (sign: 'Valve Corp.')
O23 - Driver R3: Steam Streaming Speakers - (SteamStreamingSpeakers) - C:\Windows\system32\drivers\SteamStreamingSpeakers.sys (sign: 'Valve Corp.')
O23 - Driver R3: Virtual Mic for AudioRelay - (audiorelay_virtualmic) - C:\Windows\system32\drivers\virtual-mic.sys (sign: 'Microsoft' - Windows (R) Win 7 DDK provider)
O23 - Driver R3: Virtual Mouse Function Driver - (FeizVMO) - C:\Windows\System32\Drivers\FeizVMO64.sys (sign: 'Microsoft' - no company)
O23 - Driver R3: Virtual Speaker for AudioRelay - (audiorelay_virtualspeaker) - C:\Windows\system32\drivers\virtual-speaker.sys (sign: 'Microsoft' - Windows (R) Win 7 DDK provider)
O23 - Driver R3: Virtual VMKeyboard Function Driver - (FeizVKB) - C:\Windows\System32\Drivers\FeizVKB64.sys (sign: 'Microsoft' - no company)
O23 - Driver R3: WinRing0_1_2_0 - C:\Program Files (x86)\CoolerMaster\MasterPlus\WinRing0x64.sys (sign: 'Noriyuki MIYAZAKI')
O23 - Driver S2: inpoutx64 - C:\Windows\System32\Drivers\inpoutx64.sys (sign: 'Red Fox UK Limited')
O23 - Driver S3: @oem35.inf,%VMnetAdapter.Service.DispName%;VMware Virtual Ethernet Adapter Driver - (VMnetAdapter) - C:\Windows\system32\DRIVERS\vmnetadapter.sys (+safe mode) (sign: 'Microsoft' - VMware, Inc.)
O23 - Driver S3: ACE-BASE - C:\Windows\system32\drivers\ACE-BASE.sys (sign: 'Microsoft' - ANTICHEATEXPERT.COM)
O23 - Driver S3: ace-game - C:\Windows\System32\drivers\ace-game.sys (sign: 'Tencent Technology (Shenzhen) Company Limited')
O23 - Driver S3: ace-game-0 - C:\Windows\System32\drivers\ace-game-0.sys (file missing)
O23 - Driver S3: ACE-SSC-DRV64 - C:\Program Files\AntiCheatExpert\SGuard\x64\plugins\ACE-SSC-DRV64.sys (sign: 'Microsoft' - ANTICHEATEXPERT.COM)
O23 - Driver S3: Alternative A2DP Bluetooth Stereo Service - (AltA2DP) - C:\Windows\System32\DriverStore\FileRepository\alta2dp.inf_amd64_6b2acffd36b2da4b\AltA2DP.sys (sign: 'Luculent Systems, LLC')
O23 - Driver S3: atvi-randgrid_msstore - E:\xbox\Call of Duty\Content\Randgrid.sys (file missing)
O23 - Driver S3: cpuz157 - C:\Windows\temp\cpuz157\cpuz157_x64.sys (file missing)
O23 - Driver S3: DroidCam Source 3 - (DroidCamVideo) - C:\Windows\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys (sign: 'Microsoft' - Windows (R) Win 7 DDK provider)
O23 - Driver S3: DroidCam Virtual Audio - (DroidCam) - C:\Windows\System32\drivers\droidcam.sys (sign: 'Microsoft' - Dev47Apps)
O23 - Driver S3: EAAntiCheat - C:\Windows\system32\drivers\eaanticheat.sys (file missing)
O23 - Driver S3: FairplayKD - C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys (sign: 'Hans Roes')
O23 - Driver S3: HWiNFO Kernel Driver (v187) - (HWiNFO_187) - C:\Users\alper\AppData\Local\Temp\HWiNFO64A_187.SYS (file missing)
O23 - Driver S3: HWiNFO Kernel Driver (v202) - (HWiNFO_202) - C:\Users\alper\AppData\Local\Temp\HWiNFO_x64_202.sys (file missing)
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: LogMeIn Hamachi Virtual Miniport) - (Hamachi) - C:\Windows\system32\DRIVERS\Hamdrv.sys (+safe mode) (sign: 'Microsoft' - LogMeIn Inc.)
O23 - Driver S3: MpKsla75db5c5 - C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{ADE8AC38-4A77-4C24-B66B-2798CDA2E4B3}\MpKslDrv.sys (file missing)
O23 - Driver S3: PDFWKRNL - C:\Windows\SystemTemp\USBCPDFW\pdfwkrnl.sys (file missing)
O23 - Driver S3: RedKard - C:\ProgramData\RedKard\bin\RedKard.sys (sign: '1047 Games, Inc.')
O23 - Driver S3: RtsUpx Driver - (RtsUpx) - C:\Windows\system32\drivers\RtsUpx.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S3: TAP-Windows Adapter V9 - (tap0901) - C:\Windows\System32\drivers\tap0901.sys (+safe mode) (sign: 'Microsoft' - The OpenVPN Project)
O23 - Driver S3: USB Driver for GD device v2.0 - (GDDFUDriver) - C:\Windows\System32\drivers\GDDFUDriver.sys (sign: '北京兆易创新科技股份有限公司')
O23 - Driver S3: Windscribe Split Tunnel Callout Driver - (WindscribeSplitTunnel) - C:\Windows\system32\DRIVERS\WindscribeSplitTunnel.sys (+safe mode) (sign: 'Windscribe Limited')
O23 - Driver S3: Windscribe VPN - (tapwindscribe0901) - C:\Windows\System32\drivers\tapwindscribe0901.sys (+safe mode) (sign: 'Windscribe Limited')
O23 - Driver S3: Windtun420 - (windtun420) - C:\Windows\System32\drivers\windtun420.sys (+safe mode) (sign: 'Windscribe Limited')
O23 - Driver S3: Wintun - (wintun) - C:\Windows\System32\drivers\wintun.sys (sign: 'Microsoft' - WireGuard LLC)
O23 - Driver S3: WireGuard - C:\Windows\System32\drivers\wireguard.sys (sign: 'Microsoft' - WireGuard LLC)
O23 - Driver S3: Xbox360Filter64.sys - C:\Windows\System32\drivers\Xbox360Filter64.sys (sign: 'Microsoft' - no company)
O23 - Driver S3: xhunter1 - C:\Windows\xhunter1.sys (sign: 'Wellbia.com Co., Ltd.')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'gwdrv'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'Hamachi'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'klim6'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'klwtp.K4W-21-22'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'mtkwlex'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'rt640x64'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'tap0901'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'tapwindscribe0901'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'VMnetAdapter'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'VMnetuserif'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'WindscribeSplitTunnel'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'windtun420'
O26 - Office Addin: HKLM\..\MicrosoftDataStreamerforExcel - (Microsoft Data Streamer for Excel) -> C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\MicrosoftDataStreamerforExcel.vsto (not signed - no company - A9DA61511D2073E5B80ED742394B35C61D96DE3A)
O26 - Office Addin: HKLM\..\NativeShim - (Inquire) -> (no file)
O26 - Office Addin: HKLM\..\OutlookKLAvPlg.Addin_318BC5AB-D0CB-4CEC-B373-F588E689538B - (Kaspersky4Win Outlook Anti-Virus Addin) -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.22\x64\mcou.dll (sign: 'AO Kaspersky Lab')
O26 - Office Addin: HKLM\..\TeamViewerMeetingAddIn.AddIn - (TeamViewer Meeting Add-In) -> C:\Program Files\TeamViewer\outlook\TeamViewerMeetingAddinShim64.dll (sign: 'TeamViewer Germany GmbH')
O26-32 - Office Addin: HKLM\..\OutlookKLAvPlg.Addin_318BC5AB-D0CB-4CEC-B373-F588E689538B - (Kaspersky4Win Outlook Anti-Virus Addin) -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.22\mcou.dll (sign: 'AO Kaspersky Lab')



Debug information:

    30.07.2025 18:54:08 - HashTable::Remove_ - #91 (Object variable or With block variable not set) LastDllError = 0
    30.07.2025 18:54:09 - HashTable::Remove_ - #91 (Object variable or With block variable not set) LastDllError = 0
    30.07.2025 18:54:11 - HashTable::Remove_ - #91 (Object variable or With block variable not set) LastDllError = 0
    30.07.2025 18:54:11 - HashTable::Remove_ - #91 (Object variable or With block variable not set) LastDllError = 0
    30.07.2025 18:54:11 - HashTable::Remove_ - #91 (Object variable or With block variable not set) LastDllError = 0
    30.07.2025 18:54:11 - CheckO23Item_Drivers - #9 (Subscript out of range) (The storage control block address is invalid.) LastDllError = 0 Service= {F1E1739A-29A1-49F9-B94D-AE9AC94667B7}


--
End of file - Time spent: 21,9 sec. - 92742 bytes, CRC32: FFFFFFFF. Sign: 측鲤

Geçenlerde şüpheli bir linke tıkladım daha sonrasında ise 2-3 kere geçmişi ve çerezleri temizledim, şüpheli bir aktivite var mı diye merak ediyorum. Ek olarak nadir de olsa donma giriyor bilgisayara.
 
Son düzenleyen: Moderatör:

Benzer konular

taylaan
HijackThis Log Paylaşımı
Mesaj
0
Görüntüleme
575
taylaan
taylaan
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5.709
quarest
quarest
Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
1.011
acv
A
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
3.047
Murat5038
Murat5038
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
14.659
Windows 11 Bükücü
Windows 11 Bükücü

Technopat Haberler

Yeni konular

Yeni mesajlar

Geri
Yukarı