Rehber HijackThis Log Paylaşımı ve Çözümleri

THE_MILLER · 23 Şubat 2019

Youtube kısmi indirip devam ettiği için bununla pek anlaşılmaz. Dediğim adımları uygulayıp ilgili uygulamaları kaldırın.

FurkanGmK · 26 Şubat 2019

Merhaba,
bir sorun olup olmadığını öğrenmek için atıyorum.

Kod:

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 00:26:22, on 26.02.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\DFX\dfx.exe
C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\acer\AppData\Local\Discord\app-0.0.304\Discord.exe
C:\Users\acer\AppData\Local\Discord\app-0.0.304\Discord.exe
C:\Users\acer\AppData\Local\Discord\app-0.0.304\Discord.exe
C:\Users\acer\AppData\Local\Discord\app-0.0.304\Discord.exe
C:\Program Files\Microvirt\MEmu\MEmuConsole.exe
C:\Program Files\Microvirt\MEmu\adb.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\acer\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yandex.com.tr/?win=339&clid=2310121-135
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: ::1 localhost #[IPv6]
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [Discord] C:\ProgramData\SquirrelMachineInstalls\Discord.exe --checkInstall
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [DSATray] C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe
O4 - HKLM\..\Run: [FxSound Enhancer] C:\Program Files (x86)\DFX\dfx.exe -startup
O4 - HKCU\..\Run: [OneDrive] "C:\Users\acer\appdata\local\microsoft\onedrive\onedrive.exe" /background
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Discord] C:\Users\acer\AppData\Local\Discord\app-0.0.304\Discord.exe --start-minimized
O4 - HKCU\..\Run: [Spotify] C:\Users\acer\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
O4 - HKCU\..\Run: [NetLimiter] "C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe" /minimized
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_753FEC0D68B1F60B9E8EB3FD283F12C7] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'Local Service')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: IDM ile indir - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote'a G&önder - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Tüm bağlantıları IDM ile indir - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{013b2735-aec1-4963-b558-c396ffb78821}: NameServer = 127.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{1c2c1680-bad1-42d9-a1e9-e2cd20d322ce}: NameServer = 1.1.1.1,1.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{8324eeec-1933-479f-9717-637a7bf8fdeb}: NameServer = 127.0.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{013b2735-aec1-4963-b558-c396ffb78821}: NameServer = 127.0.0.1
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Pro Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe
O23 - Service: DNSCrypt client proxy (dnscrypt-proxy) - Unknown owner - C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\dnscrypt-proxy.exe
O23 - Service: Intel(R) Driver & Support Assistant (DSAService) - Intel - C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\elevation_service.exe
O23 - Service: Google Güncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Güncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) SUR QC Software Asset Manager (Intel(R) SUR QC SAM) - Intel Corporation - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: MEmuSVC - Unknown owner - C:\Program Files\Microvirt\MEmu\MemuService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NetLimiter 4 Service (nlsvc) - Locktime Software - C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: SetupARService - Unknown owner - C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12301 bytes

melih_11 · 4 Mart 2019

Önceden kullanıcı hesabı ile ilgili sorunum vardı, format atarken de daha sade olduğu için LTSC sürümü kurdum. Bütün aygıtlar tanımlı olmasına rağmen ve görev yöneticisinden toplam iş yüzde 5,6 iken 46 veya daha üstü yüzdeler gözüküyor. Ekranda zamansız bir şekilde bir taraf siyah oluyor ekran alıntısında belli olmuyor. Ram kullanımı da sadece 1GB kullanım olsa da 8GB RAM dolu.

Kod:

Platform:  x64 Windows 10 (Enterprise 2015 LTSB Evaluation), 10.0.17763.1 (ReleaseId: 1809), Service Pack: 0
Time:      04.03.2019 - 21:01 (UTC+03:00)
Language:  OS: English (0x409). Display: Turkish (0x41F). Non-Unicode: English (0x409)
Elevated:  Yes
Ran by:    Psweet    (group: Administrator) on DESKTOP-PAMNLC6, FirstRun: yes

Internet Explorer: 11.0.17763.1
Default: "C:\Users\Psweet\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
   1  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
   1  C:\Program Files\Intel\WiFi\bin\EvtEng.exe
   1  C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
   1  C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
   1  C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
   1  C:\Users\Psweet\Desktop\HiJackThis.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\ki125173.inf_amd64_6f141e257f4fffee\IntelCpHDCPSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\ki125173.inf_amd64_6f141e257f4fffee\IntelCpHeciSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\ki125173.inf_amd64_6f141e257f4fffee\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\ki125173.inf_amd64_6f141e257f4fffee\igfxEM.exe
   1  C:\Windows\System32\Intel\DPTF\dptf_helper.exe
   1  C:\Windows\System32\Intel\DPTF\esif_uf.exe
   4  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SgrmBroker.exe
   2  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\ibtsiva.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  72  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\System32\wlms\wlms.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [RtHDVBg_PushButton] = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /IM
O4 - HKLM\..\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O4 - HKLM\..\Run: [WavesSvc] = C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe -Jack
O17 - DHCP DNS 1: 192.168.1.1
O23 - Service R2: Intel Bluetooth Service - (ibtsiva) - C:\Windows\system32\ibtsiva.exe
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\Windows\System32\DriverStore\FileRepository\ki125173.inf_amd64_6f141e257f4fffee\IntelCpHDCPSvc.exe
O23 - Service R2: Intel(R) Dynamic Platform and Thermal Framework service - (esifsvc) - C:\Windows\System32\Intel\DPTF\esif_uf.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\Windows\System32\DriverStore\FileRepository\ki125173.inf_amd64_6f141e257f4fffee\igfxCUIService.exe
O23 - Service R2: Intel(R) PROSet/Wireless Event Log - (EvtEng) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service R2: Intel(R) PROSet/Wireless Registry Service - (RegSrvc) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service R2: Intel(R) PROSet/Wireless Zero Configuration Service - (ZeroConfigService) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA Telemetry Container - (NvTelemetryContainer) - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: Waves Audio Services - (WavesSysSvc) - C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\Windows\System32\DriverStore\FileRepository\ki125173.inf_amd64_6f141e257f4fffee\IntelCpHeciSvc.exe
O23 - Service S3: Office 64 Source Engine - (ose64) - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Wireless PAN DHCP Server - (MyWiFiDHCPDNS) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe


--
End of file - Time spent: 12,5 sec. - 12700 bytes, CRC32: FFFFFFFF. Sign: ⫶懎

kev · 7 Mart 2019

Zəhmət olmazsa deyərdiniz nəyi silə bilərəm. Yam olaraq nə virus olduğun başa düşməmişəm. Formatla getmir, MBR və UEFI də ya da serverdədi məncə. Artıq bezmişəm.

Kod:

Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18



Platform:  x64 Windows 10 (Pro), 10.0.17763.348 (ReleaseId: 1809), Service Pack: 0

Time:      06.03.2019 - 14:45 (UTC-08:00)

Language:  OS: English (0x409). Display: Azerbaijani (Latin) (0x42C). Non-Unicode: English (0x409)

Elevated:  Yes

Ran by:    PC    (group: Administrator) on DESKTOP-B25JQIO, FirstRun: yes



Chrome:  72.0.3626.121

Edge:    11.0.17763.348

Internet Explorer: 11.348.17763.0

Default: "C:\Program Files (x86)\Maxthon5\Bin\Maxthon.exe" "%1" (MX5)



Boot mode: Normal



Running processes:

Number | Path

   1  C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe

   1  C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe

   1  C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe

   1  C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe

   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

  13  C:\Program Files (x86)\Maxthon5\Bin\Maxthon.exe

   1  C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe

   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe

   1  C:\Windows\System32\ApplicationFrameHost.exe

   1  C:\Windows\System32\LsaIso.exe

   3  C:\Windows\System32\RuntimeBroker.exe

   1  C:\Windows\System32\SearchIndexer.exe

   1  C:\Windows\System32\SecurityHealthService.exe

   1  C:\Windows\System32\SgrmBroker.exe

   1  C:\Windows\System32\audiodg.exe

   2  C:\Windows\System32\csrss.exe

   3  C:\Windows\System32\dllhost.exe

   1  C:\Windows\System32\dwm.exe

   2  C:\Windows\System32\fontdrvhost.exe

   1  C:\Windows\System32\lsass.exe

   2  C:\Windows\System32\mmc.exe

   1  C:\Windows\System32\msdtc.exe

   1  C:\Windows\System32\services.exe

   1  C:\Windows\System32\sihost.exe

   1  C:\Windows\System32\smartscreen.exe

   1  C:\Windows\System32\smss.exe

  59  C:\Windows\System32\svchost.exe

   1  C:\Windows\System32\taskhostw.exe

   1  C:\Windows\System32\wininit.exe

   1  C:\Windows\System32\winlogon.exe

   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe

   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

   1  C:\Windows\explorer.exe

   1  D:\HiJackThis.exe



R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = Google

O4 - HKCU\..\Run: [UWT] = C:\Users\bfrey\Downloads\UWT4\UWT4\Ultimate Windows Tweaker 4.5\Ultimate Windows Tweaker 4.5.exe

O4 - HKLM\..\StartupApproved\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe  (file missing) (2019/03/02)

O4 - HKLM\..\StartupApproved\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe  (file missing) (2019/03/02)

O4 - HKLM\..\StartupApproved\Run: [IAStorIcon] = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 (2019/03/01)

O4-32 - HKLM\..\RunOnce: [PreRun] = C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe

O4-32 - HKLM\..\RunOnce: [SelLed] = C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe

O7 - Taskbar policy: HKLM\..\Policies\Explorer: [NoChangeStartMenu] = 1

O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)

O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)

O17 - HKLM\System\CCS\Services\Tcpip\..\{b3874705-fe4a-4122-9cb3-85ed674a060a}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)

O17 - HKLM\System\CCS\Services\Tcpip\..\{b3874705-fe4a-4122-9cb3-85ed674a060a}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)

O23 - Service R2: EasyTune Engine - (EasyTuneEngineService) - C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe

O23 - Service R2: GIGABYTE Adjust - (gadjservice) - C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe

O23 - Service R2: Gservice - C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe

O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

O23 - Service R2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

O23 - Service S2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe  (file missing)

O23 - Service S2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe  (file missing)

O23 - Service S2: AdobeUpdateService - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe  (file missing)

O23 - Service S2: Google Update Service (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc

O23 - Service S2: Intel(R) TPM Provisioning Service - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe

O23 - Service S2: MxService - C:\Program Files (x86)\Maxthon5\Bin\MxService.exe

O23 - Service S2: OcButtonService - C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe

O23 - Service S2: TeamViewer 14 - (TeamViewer) - C:\Users\bfrey\Desktop\TeamViewer_Service.exe  (file missing)

O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\elevation_service.exe

O23 - Service S3: Google Update Service (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc





--

End of file - Time spent: 12,9 sec. - 13402 bytes, CRC32: FFFFFFFF. Sign: 漓싆

threather · 7 Mart 2019

Hijack'ı tarattım bu sonuçlar çıktı. Ne yapmam lazım?

Kod:

 1  C:\$WINDOWS.~BT\Sources\setuphost.exe
  14  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\IObit\Driver Booster\5.4.0\Pub\PubMonitor.exe
   1  C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
   1  C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
   1  C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
   1  C:\Program Files (x86)\Windows  Defender\Windows Defender.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
   1  C:\Program Files\DAEMON Tools Pro\DTAgent.exe
   1  C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
   1  C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
   2  C:\Program Files\WinRAR\WinRAR.exe
   1  C:\Program Files\rempl\sedsvc.exe
   1  C:\Users\acer\AppData\Local\AMD\amd_accelerator.exe
   1  C:\Users\acer\AppData\Local\Temp\Rar$EXa8544.28828\procexp64.exe
   1  C:\Users\acer\Desktop\HiJackThis.exe
   1  C:\Windows\SoftwareDistribution\Download\c66bc8eb6224224179a53d2bb01705ff\WindowsUpdateBox.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0337968.inf_amd64_d248ffd59bb9b64f\B337967\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0337968.inf_amd64_d248ffd59bb9b64f\B337967\atiesrxx.exe
   1  C:\Windows\System32\ICEsoundService64.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\Taskmgr.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\cmd.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\drivers\AdminService.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\notepad.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
   1  C:\Windows\System32\sppsvc.exe
  60  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wuauclt.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   3  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://acer17win10.msn.com/?pc=ACTE
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 127.0.0.1 www.eklink.net
O1 - Hosts: 127.0.0.1 onlineoyunhileleri.net
O1 - Hosts: 127.0.0.1 www.onlineoyunhileleri.net
O1 - Hosts: 127.0.0.1 eklink.net
O1 - Hosts: 127.0.0.1 badeshan.com
O1 - Hosts: 127.0.0.1 coldhack.org
O1 - Hosts: 127.0.0.1 coldhacks.com
O1 - Hosts: 127.0.0.1 forumzero.net
O1 - Hosts: 127.0.0.1 frmexe.com
O1 - Hosts: 127.0.0.1 galaxyfrm.com
O1 - Hosts: 127.0.0.1 gamehileleri.com
O1 - Hosts: 127.0.0.1 gamekredi.com
O1 - Hosts: 127.0.0.1 hile.biz
O1 - Hosts: 127.0.0.1 hilebol.com
O1 - Hosts: 127.0.0.1 hilebol.net
O1 - Hosts: 127.0.0.1 hilebol.org
O1 - Hosts: 127.0.0.1 hilebudur.com
O1 - Hosts: 127.0.0.1 hileci.biz
O1 - Hosts: 127.0.0.1 hileclub.blogspot.com.tr
O1 - Hosts: 127.0.0.1 hileevreni.com
O1 - Hosts: 127.0.0.1 hileliadam.co
O1 - Hosts: 127.0.0.1 hileliadam.com
O1 - Hosts: 127.0.0.1 hilelicocuk.org
O1 - Hosts: 127.0.0.1 hilelikafa.com
O1 - Hosts: 127.0.0.1 hilemekani.com
O1 - Hosts: 127.0.0.1 jeyhun.ru
O1 - Hosts: 127.0.0.1 www.jeyhun.ru
O1 - Hosts: 127.0.0.1 maviware.com
O1 - Hosts: 127.0.0.1 lolhile.com
O1 - Hosts: 127.0.0.1 www.lolhile.com
O1 - Hosts: 127.0.0.1 lolhile.com
O1 - Hosts: 127.0.0.1 baksen.org
O1 - Hosts: 127.0.0.1 megadosya.com
O1 - Hosts: 127.0.0.1 megadosyam.com
O1 - Hosts: 127.0.0.1 metin2blogun.blogspot.com
O1 - Hosts: 127.0.0.1 metin2force.com
O1 - Hosts: 127.0.0.1 myhile.com
O1 - Hosts: 127.0.0.1 onefrm.com
O1 - Hosts: 127.0.0.1 oyunhilecik.com
O1 - Hosts: 127.0.0.1 pro-hile.com
O1 - Hosts: 127.0.0.1 pro-hile.net
O1 - Hosts: 127.0.0.1 proyuncu.com
O1 - Hosts: 127.0.0.1 sirinhanimkokorec.com
O1 - Hosts: 127.0.0.1 teknohop.com
O1 - Hosts: 127.0.0.1 thefrmonline.com
O1 - Hosts: 127.0.0.1 turkmmo.com
O1 - Hosts: 127.0.0.1 wolfhelper.net
O1 - Hosts: 127.0.0.1 wolfteam-hesap.com
O1 - Hosts: 127.0.0.1 wthileleri.com
O1 - Hosts: 127.0.0.1 www.wthileleri.com
O1 - Hosts: 127.0.0.1 www.hilenbizde.com
O1 - Hosts: 127.0.0.1 hilenbizde.com
O1 - Hosts: 127.0.0.1 www.badeshan.com
O1 - Hosts: 127.0.0.1 www.coldhack.org
O1 - Hosts: 127.0.0.1 www.coldhacks.com
O1 - Hosts: 127.0.0.1 www.forumzero.net
O1 - Hosts: 127.0.0.1 www.frmexe.com
O1 - Hosts: 127.0.0.1 www.galaxyfrm.com
O1 - Hosts: 127.0.0.1 www.gamehileleri.com
O1 - Hosts: 127.0.0.1 www.gamekredi.com
O1 - Hosts: 127.0.0.1 www.hile.biz
O1 - Hosts: 127.0.0.1 www.hilebudur.com
O1 - Hosts: 127.0.0.1 www.hileci.biz
O1 - Hosts: 127.0.0.1 www.hileclub.blogspot.com.tr
O1 - Hosts: 127.0.0.1 www.hileevreni.com
O1 - Hosts: 127.0.0.1 www.hileliadam.co
O1 - Hosts: 127.0.0.1 www.hileliadam.com
O1 - Hosts: 127.0.0.1 www.hilelicocuk.org
O1 - Hosts: 127.0.0.1 www.hilelikafa.com
O1 - Hosts: 127.0.0.1 www.hilemekani.com
O1 - Hosts: 127.0.0.1 www.maviware.com
O1 - Hosts: 127.0.0.1 www.megadosya.com
O1 - Hosts: 127.0.0.1 www.megadosyam.com
O1 - Hosts: 127.0.0.1 www.metin2blogun.blogspot.com
O1 - Hosts: 127.0.0.1 www.metin2force.com
O1 - Hosts: 127.0.0.1 www.myhile.com
O1 - Hosts: 127.0.0.1 www.onefrm.com
O1 - Hosts: 127.0.0.1 www.pro-hile.com
O1 - Hosts: 127.0.0.1 www.pro-hile.net
O1 - Hosts: 127.0.0.1 www.proyuncu.com
O1 - Hosts: 127.0.0.1 www.sirinhanimkokorec.com
O1 - Hosts: 127.0.0.1 www.teknohop.com
O1 - Hosts: 127.0.0.1 www.thefrmonline.com
O1 - Hosts: 127.0.0.1 www.turkmmo.com
O1 - Hosts: 127.0.0.1 www.wolfhelper.net
O1 - Hosts: 127.0.0.1 www.oyunhilecik.com
O1 - Hosts: 127.0.0.1 www.wolfteam-hesap.com
O1 - Hosts: 127.0.0.1 hilecicocuk.org
O1 - Hosts: 127.0.0.1 www.hilecicocuk.org
O1 - Hosts: 127.0.0.1 hileyapak.xyz
O1 - Hosts: 127.0.0.1 www.hileyapak.xyz
O1 - Hosts: 127.0.0.1 uthilem.com
O1 - Hosts: 127.0.0.1 www.uthilem.com
O1 - Hosts: 127.0.0.1 zulahile.com
O1 - Hosts: 127.0.0.1 www.zulahile.com
O1 - Hosts: 127.0.0.1 oyuncheat.com
O1 - Hosts: 127.0.0.1 www.oyuncheat.com
O1 - Hosts: 127.0.0.1 depohile.com
O1 - Hosts: 127.0.0.1 www.depohile.com
O1 - Hosts: 127.0.0.1 hileci.site
O1 - Hosts: 127.0.0.1 www.hileci.site
O1 - Hosts: 127.0.0.1 pointblankhileleri.com
O1 - Hosts: 127.0.0.1 www.pointblankhileleri.com
O1 - Hosts: 127.0.0.1 hilebudur.club
O1 - Hosts: 127.0.0.1 www.hilebudur.club
O1 - Hosts: 127.0.0.1 nmxtr.com
O1 - Hosts: 127.0.0.1 www.nmxtr.com
O1 - Hosts: 127.0.0.1 sentinus.org
O1 - Hosts: 127.0.0.1 www.sentinus.org
O1 - Hosts: 127.0.0.1 metin2hilecim.com
O1 - Hosts: 127.0.0.1 www.metin2hilecim.com
O1 - Hosts: 127.0.0.1 mhmtyc.com
O1 - Hosts: 127.0.0.1 www.mhmtyc.com
O1 - Hosts: 127.0.0.1 holyafk.com
O1 - Hosts: 127.0.0.1 www.holyafk.com
O1 - Hosts: 127.0.0.1 musitab.com
O1 - Hosts: 127.0.0.1 www.musitab.com
O1 - Hosts: 127.0.0.1 metin2trhileindir.com
O1 - Hosts: 127.0.0.1 www.metin2trhileindir.com
O1 - Hosts: 127.0.0.1 lolhileleri.com
O1 - Hosts: 127.0.0.1 www.lolhileleri.com
O1 - Hosts: 127.0.0.1 nexthile.com
O1 - Hosts: 127.0.0.1 www.nexthile.com

THE_MILLER dedi:
Eki Görüntüle 346215

Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.

Kullanımı:

1) http://dragokas.com/tools/HiJackThis.zip Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

Eki Görüntüle 346216

4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

Eki Görüntüle 346202

5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
Eki Görüntüle 346203

6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

Eki Görüntüle 346206

*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

Eki Görüntüle 346207
Kod'a tıklayın.

Eki Görüntüle 346208

Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode
Paste Code

8) Ayrıca sisteminizde var olan sorunu detaylıca (performans düşüşü, malware varlığı şüphesi) belirterek konuyu cevaplayın.

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
Eki Görüntüle 346212

Kod:

Running processes:
Number | Path
   1  C:\$WINDOWS.~BT\Sources\setuphost.exe
  13  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\IObit\Driver Booster\5.4.0\Pub\PubMonitor.exe
   1  C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
   1  C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
   1  C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
   1  C:\Program Files (x86)\Windows  Defender\Windows Defender.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
   1  C:\Program Files\DAEMON Tools Pro\DTAgent.exe
   1  C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
   1  C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
   2  C:\Program Files\WinRAR\WinRAR.exe
   1  C:\Program Files\rempl\sedsvc.exe
   1  C:\Users\acer\AppData\Local\AMD\amd_accelerator.exe
   1  C:\Users\acer\AppData\Local\Temp\Rar$EXa8544.28828\procexp64.exe
   1  C:\Users\acer\Desktop\HiJackThis.exe
   1  C:\Windows\SoftwareDistribution\Download\c66bc8eb6224224179a53d2bb01705ff\WindowsUpdateBox.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0337968.inf_amd64_d248ffd59bb9b64f\B337967\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0337968.inf_amd64_d248ffd59bb9b64f\B337967\atiesrxx.exe
   1  C:\Windows\System32\ICEsoundService64.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\Taskmgr.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\backgroundTaskHost.exe
   1  C:\Windows\System32\cmd.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\drivers\AdminService.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
   1  C:\Windows\System32\sppsvc.exe
  60  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wuauclt.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   2  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://acer17win10.msn.com/?pc=ACTE
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 127.0.0.1 www.eklink.net
O1 - Hosts: 127.0.0.1 onlineoyunhileleri.net
O1 - Hosts: 127.0.0.1 www.onlineoyunhileleri.net
O1 - Hosts: 127.0.0.1 eklink.net
O1 - Hosts: 127.0.0.1 badeshan.com
O1 - Hosts: 127.0.0.1 coldhack.org
O1 - Hosts: 127.0.0.1 coldhacks.com
O1 - Hosts: 127.0.0.1 forumzero.net
O1 - Hosts: 127.0.0.1 frmexe.com
O1 - Hosts: 127.0.0.1 galaxyfrm.com
O1 - Hosts: 127.0.0.1 gamehileleri.com
O1 - Hosts: 127.0.0.1 gamekredi.com
O1 - Hosts: 127.0.0.1 hile.biz
O1 - Hosts: 127.0.0.1 hilebol.com
O1 - Hosts: 127.0.0.1 hilebol.net
O1 - Hosts: 127.0.0.1 hilebol.org
O1 - Hosts: 127.0.0.1 hilebudur.com
O1 - Hosts: 127.0.0.1 hileci.biz
O1 - Hosts: 127.0.0.1 hileclub.blogspot.com.tr
O1 - Hosts: 127.0.0.1 hileevreni.com
O1 - Hosts: 127.0.0.1 hileliadam.co
O1 - Hosts: 127.0.0.1 hileliadam.com
O1 - Hosts: 127.0.0.1 hilelicocuk.org
O1 - Hosts: 127.0.0.1 hilelikafa.com
O1 - Hosts: 127.0.0.1 hilemekani.com
O1 - Hosts: 127.0.0.1 jeyhun.ru
O1 - Hosts: 127.0.0.1 www.jeyhun.ru
O1 - Hosts: 127.0.0.1 maviware.com
O1 - Hosts: 127.0.0.1 lolhile.com
O1 - Hosts: 127.0.0.1 www.lolhile.com
O1 - Hosts: 127.0.0.1 lolhile.com
O1 - Hosts: 127.0.0.1 baksen.org
O1 - Hosts: 127.0.0.1 megadosya.com
O1 - Hosts: 127.0.0.1 megadosyam.com
O1 - Hosts: 127.0.0.1 metin2blogun.blogspot.com
O1 - Hosts: 127.0.0.1 metin2force.com
O1 - Hosts: 127.0.0.1 myhile.com
O1 - Hosts: 127.0.0.1 onefrm.com
O1 - Hosts: 127.0.0.1 oyunhilecik.com
O1 - Hosts: 127.0.0.1 pro-hile.com
O1 - Hosts: 127.0.0.1 pro-hile.net
O1 - Hosts: 127.0.0.1 proyuncu.com
O1 - Hosts: 127.0.0.1 sirinhanimkokorec.com
O1 - Hosts: 127.0.0.1 teknohop.com
O1 - Hosts: 127.0.0.1 thefrmonline.com
O1 - Hosts: 127.0.0.1 turkmmo.com
O1 - Hosts: 127.0.0.1 wolfhelper.net
O1 - Hosts: 127.0.0.1 wolfteam-hesap.com
O1 - Hosts: 127.0.0.1 wthileleri.com
O1 - Hosts: 127.0.0.1 www.wthileleri.com
O1 - Hosts: 127.0.0.1 www.hilenbizde.com
O1 - Hosts: 127.0.0.1 hilenbizde.com
O1 - Hosts: 127.0.0.1 www.badeshan.com
O1 - Hosts: 127.0.0.1 www.coldhack.org
O1 - Hosts: 127.0.0.1 www.coldhacks.com
O1 - Hosts: 127.0.0.1 www.forumzero.net
O1 - Hosts: 127.0.0.1 www.frmexe.com
O1 - Hosts: 127.0.0.1 www.galaxyfrm.com
O1 - Hosts: 127.0.0.1 www.gamehileleri.com
O1 - Hosts: 127.0.0.1 www.gamekredi.com
O1 - Hosts: 127.0.0.1 www.hile.biz
O1 - Hosts: 127.0.0.1 www.hilebudur.com
O1 - Hosts: 127.0.0.1 www.hileci.biz
O1 - Hosts: 127.0.0.1 www.hileclub.blogspot.com.tr
O1 - Hosts: 127.0.0.1 www.hileevreni.com
O1 - Hosts: 127.0.0.1 www.hileliadam.co
O1 - Hosts: 127.0.0.1 www.hileliadam.com
O1 - Hosts: 127.0.0.1 www.hilelicocuk.org
O1 - Hosts: 127.0.0.1 www.hilelikafa.com
O1 - Hosts: 127.0.0.1 www.hilemekani.com
O1 - Hosts: 127.0.0.1 www.maviware.com
O1 - Hosts: 127.0.0.1 www.megadosya.com
O1 - Hosts: 127.0.0.1 www.megadosyam.com
O1 - Hosts: 127.0.0.1 www.metin2blogun.blogspot.com
O1 - Hosts: 127.0.0.1 www.metin2force.com
O1 - Hosts: 127.0.0.1 www.myhile.com
O1 - Hosts: 127.0.0.1 www.onefrm.com
O1 - Hosts: 127.0.0.1 www.pro-hile.com
O1 - Hosts: 127.0.0.1 www.pro-hile.net
O1 - Hosts: 127.0.0.1 www.proyuncu.com
O1 - Hosts: 127.0.0.1 www.sirinhanimkokorec.com
O1 - Hosts: 127.0.0.1 www.teknohop.com
O1 - Hosts: 127.0.0.1 www.thefrmonline.com
O1 - Hosts: 127.0.0.1 www.turkmmo.com
O1 - Hosts: 127.0.0.1 www.wolfhelper.net
O1 - Hosts: 127.0.0.1 www.oyunhilecik.com
O1 - Hosts: 127.0.0.1 www.wolfteam-hesap.com
O1 - Hosts: 127.0.0.1 hilecicocuk.org
O1 - Hosts: 127.0.0.1 www.hilecicocuk.org
O1 - Hosts: 127.0.0.1 hileyapak.xyz
O1 - Hosts: 127.0.0.1 www.hileyapak.xyz
O1 - Hosts: 127.0.0.1 uthilem.com
O1 - Hosts: 127.0.0.1 www.uthilem.com
O1 - Hosts: 127.0.0.1 zulahile.com
O1 - Hosts: 127.0.0.1 www.zulahile.com
O1 - Hosts: 127.0.0.1 oyuncheat.com
O1 - Hosts: 127.0.0.1 www.oyuncheat.com
O1 - Hosts: 127.0.0.1 depohile.com
O1 - Hosts: 127.0.0.1 www.depohile.com
O1 - Hosts: 127.0.0.1 hileci.site
O1 - Hosts: 127.0.0.1 www.hileci.site
O1 - Hosts: 127.0.0.1 pointblankhileleri.com
O1 - Hosts: 127.0.0.1 www.pointblankhileleri.com
O1 - Hosts: 127.0.0.1 hilebudur.club
O1 - Hosts: 127.0.0.1 www.hilebudur.club
O1 - Hosts: 127.0.0.1 nmxtr.com
O1 - Hosts: 127.0.0.1 www.nmxtr.com
O1 - Hosts: 127.0.0.1 sentinus.org
O1 - Hosts: 127.0.0.1 www.sentinus.org
O1 - Hosts: 127.0.0.1 metin2hilecim.com
O1 - Hosts: 127.0.0.1 www.metin2hilecim.com
O1 - Hosts: 127.0.0.1 mhmtyc.com
O1 - Hosts: 127.0.0.1 www.mhmtyc.com
O1 - Hosts: 127.0.0.1 holyafk.com
O1 - Hosts: 127.0.0.1 www.holyafk.com
O1 - Hosts: 127.0.0.1 musitab.com
O1 - Hosts: 127.0.0.1 www.musitab.com
O1 - Hosts: 127.0.0.1 metin2trhileindir.com
O1 - Hosts: 127.0.0.1 www.metin2trhileindir.com
O1 - Hosts: 127.0.0.1 lolhileleri.com
O1 - Hosts: 127.0.0.1 www.lolhileleri.com
O1 - Hosts: 127.0.0.1 nexthile.com
O1 - Hosts: 127.0.0.1 www.nexthile.com
O2 - HKLM\..\BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll (file missing)
O2-32 - HKLM\..\BHO: (no name) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - (no file)
O2-32 - HKLM\..\BHO: (no name) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - (no file)
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O4 - Global User Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\fcbd.bat
O4 - HKCU\..\Run: [AMD CPU Accelerator] = C:\Users\acer\AppData\Local\AMD\AmdApplicationAccelerator.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] = C:\Program Files\DAEMON Tools Pro\DTAgent.exe -autorun
O4 - HKCU\..\Run: [Windows Defender] = C:\Program Files (x86)\Windows  Defender\Windows Defender.exe
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2018/12/02)
O4 - HKU\.DEFAULT\..\Run: [script_fcbd] = C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4-32 - HKLM\..\Run: [GrooveMonitor] = C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
O4-32 - HKLM\..\Run: [IObit Malware Fighter] = C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe /autostart
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll (file missing)
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{d093e131-92b6-48ab-9e64-2d7e705c3fbc}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{d093e131-92b6-48ab-9e64-2d7e705c3fbc}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending): (no name) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced): (no name) - {05B38830-F4E9-4329-978B-1DD28605D202} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing): (no name) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\                    IMFSafeBox: BlueBirdShell Class - {0BB81440-5F42-4480-A5F7-770A6F439FC8} - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll
O21-32 - HKLM\..\ShellExecuteHooks: [{B5A7F190-DDA6-4420-B3BA-52453494E6CD}] - Groove GFS Stub Execution Hook - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (disabled)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending): (no name) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced): (no name) - {05B38830-F4E9-4329-978B-1DD28605D202} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing): (no name) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub): Groove Explorer Icon Overlay 1 (GFS Unread Stub) - {99FD978C-D287-4F50-827F-B2C658EDA8E7} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub): Groove Explorer Icon Overlay 2 (GFS Stub) - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder): Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) - {920E6DB1-9907-4370-B3A0-BAFC03D81399} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder): Groove Explorer Icon Overlay 3 (GFS Folder) - {16F3DD56-1AF5-4347-846D-7C10C4192619} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark): Groove Explorer Icon Overlay 4 (GFS Unread Mark) - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O22 - Task (.job): (Not scheduled) update-S-1-5-21-3679320899-2256016267-1731580235-1001.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task (.job): (Not scheduled) update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O23 - Service R2: AMD External Events Utility - C:\WINDOWS\System32\DriverStore\FileRepository\c0337968.inf_amd64_d248ffd59bb9b64f\B337967\atiesrxx.exe
O23 - Service R2: AtherosSvc - C:\WINDOWS\system32\DRIVERS\AdminService.exe
O23 - Service R2: ICEsound Service - (ICEsoundService) - C:\WINDOWS\system32\ICEsoundService64.exe
O23 - Service R2: IMF Service - (IMFservice) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service R2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: Windows Remediation Service - (sedsvc) - C:\Program Files\rempl\sedsvc.exe
O23 - Service R3: Disc Soft Pro Bus Service - C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: CCDMonitorService - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Hi-Rez Studios Authenticate and Update Service - (HiPatchService) - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service S3: Intel(R) PROSet/Wireless Event Log - (EvtEng) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service S3: Intel(R) PROSet/Wireless Registry Service - (RegSrvc) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service S3: Intel(R) PROSet/Wireless Zero Configuration Service - (ZeroConfigService) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
O23 - Service S3: Microsoft Office Diagnostics Service - (odserv) - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
O23 - Service S3: Microsoft Office Groove Audit Service - C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Wireless PAN DHCP Server - (MyWiFiDHCPDNS) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service S3: nProtect GameGuard Service - (npggsvc) - C:\WINDOWS\SysWOW64\GameMon.des -service (file missing)

102035 · 14 Mart 2019

Dün Windows güncelleme yaptım, bugün açınca bilgisayarda 4-5 tane cmd açıldı daha sonra teker teker kapandı. Birkaç dakika boyunca güvenlik duvarı ve Virüs koruması Defender'da gözükmüyordu. Bitdefender servisleri 20 dakika sonra yüklendi. Lütfen virüs olmadığını söyleyin.

Kod:

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 17:54:32, on 14.03.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
C:\Users\burak\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Bitdefender Cüzdanı - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Bitdefender Cüzdanı - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTOS
O4 - HKCU\..\Run: [Spotify] C:\Users\burak\AppData\Roaming\Spotify\Spotify.exe --autostart
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: AdobeUpdateService - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: AfVpnService - AnchorFree Inc. - C:\Program Files\Bitdefender\Bitdefender VPN\vpnservice.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Bitdefender Auxiliary Service (BDAuxSrv) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
O23 - Service: Bitdefender Protected Service (BDProtSrv) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
O23 - Service: Bitdefender RedLine Service (bdredline) - Bitdefender - C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
O23 - Service: Bitdefender Vpn Servis (BdVpnService) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\IntelCpHDCPSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Bitdefender Cihaz Yönetim Servisi (DevMgmt Servisi) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @oem44.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Unknown owner - C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\elevation_service.exe
O23 - Service: Google Güncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Güncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Comm Recovery (HP Comm Recover) - HP Inc. - C:\Program Files\HPCommRecovery\HPCommRecovery.exe
O23 - Service: HP JumpStart Bridge (HPJumpStartBridge) - HP Inc. - c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Optane(TM) Memory Service (iaStorAfsService) - Intel Corporation - C:\windows\IAStorAfsService\iaStorAfsService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem45.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\System32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ProductAgentService - Bitdefender - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: Razer Surround Audio Service (RzSurroundVADStreamingService) - Unknown owner - C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
O23 - Service: Bitdefender Protected Service (vsservp) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\vsservp.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 13477 bytes

Murat5038 · 14 Mart 2019

102035 dedi:
Dün Windows güncelleme yaptım, bugün açınca bilgisayarda 4-5 tane cmd açıldı daha sonra teker teker kapandı. Birkaç dakika boyunca güvenlik duvarı ve Virüs koruması Defender'da gözükmüyordu.

Güncelleme sonrası CMD açılmalar doğaldır sorun olmaz. Güvenlik güncellemesi de yaptıysa Defender kapanabilir ancak sonraki başlatmada açılır harici AV kullanılmıyorsa.
AV kullandığın için zaten sorun yok. Temiz önyükleme yapılabilir ama.

102035 · 14 Mart 2019

Murat5038 dedi:
Güncelleme sonrası CMD açılmalar doğaldır sorun olmaz. Güvenlik güncellemesi de yaptıysa Defender kapanabilir ancak sonraki başlatmada açılır harici AV kullanılmıyorsa.
AV kullandığın için zaten sorun yok. Temiz önyükleme yapılabilir ama.

Yaptığım güncelleme laptopu power tuşundan kapadığım için geçersiz olmuştu. Yani loglarda bir sıkıntı yok o zaman(Yani virüs yok). Şu an tekrar güncelleme yapıyorum %94 oldu.

Murat5038 · 14 Mart 2019

102035 dedi:
Yaptığım güncelleme laptopu power tuşundan kapadığım için geçersiz olmuştu. Yani loglarda bir sıkıntı yok o zaman(Yani virüs yok).

Evet zararlı yok. Güncelleme tam yüklenmediği için CMD üzerinden masaüstü yapılandırması ve güncellemeler geri alınmıştır.

FurkanGmK dedi:
Merhaba,
Bir sorun olup olmadığını öğrenmek için atıyorum.

Zararlı yönünde bir sorun görünmüyor. Bir kaç şahsen gereksiz olabilecek sizin tabi tercihinize bağlı programlar var sadece.

melih_11 dedi:
Bütün aygıtlar tanımlı olmasına rağmen ve görev yöneticisinden toplam iş yüzde 5,6 iken 46 veya daha üstü yüzdeler gözüküyor.

Zararlı olarak bir sorun yok. Windows kaynaklı. En çoğunu gördüğün gibi Tixati ve Bluestuck kullanıyor.

kev dedi:
Zəhmət olmazsa deyərdiniz nəyi silə bilərəm. Yam olaraq nə virus olduğun başa düşməmişəm. Formatla getmir, MBR və UEFI də ya da serverdədi məncə. Artıq bezmişəm.

Bir şeyi silmək lazım deyil. Zərərli bir şey yoxdur sisteminde.
Fərqli bir problemin var isə imzamda AIDA64 nəticəsini və sistem darama 1 nəticəsini paylaşın.

threather dedi:
Hijack'ı tarattım bu sonuçlar çıktı. Ne yapmam lazım?

Sürücü bulucu kullanmaman lazımdı.

170553 · 20 Mart 2019

Kod:

Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.17763.379 (ReleaseId: 1809), Service Pack: 0
Time:      20.03.2019 - 11:30 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    PC    (group: Administrator) on DESKTOP-RKTPN1T, FirstRun: yes

Chrome:  73.0.3683.75
Internet Explorer: 11.0.17763.1
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
  10  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\VideoLAN\VLC\vlc.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   1  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  62  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17763.164_none_7e114a3d4d0589d4\TiWorker.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\servicing\TrustedInstaller.exe
   1  E:\Backups\Programs\Bakım Programları\HiJackThis.exe
   1  E:\Backups\Programs\Diğer\ThrottleStop_8.70.6\ThrottleStop.exe

O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 ars.smartscreen.microsoft.com
O1 - Hosts: 0.0.0.0 blob.weather.microsoft.com
O1 - Hosts: 0.0.0.0 candycrushsoda.king.com
O1 - Hosts: 0.0.0.0 cdn.content.prod.cms.msn.com
O1 - Hosts: 0.0.0.0 cdn.onenote.net
O1 - Hosts: 0.0.0.0 choice.microsoft.com.nsatc.net
O1 - Hosts: 0.0.0.0 client.wns.windows.com
O1 - Hosts: 0.0.0.0 client-s.gateway.messenger.live.com
O1 - Hosts: 0.0.0.0 clientconfig.passport.net
O1 - Hosts: 0.0.0.0 deploy.static.akamaitechnologies.com
O1 - Hosts: 0.0.0.0 device.auth.xboxlive.com
O1 - Hosts: 0.0.0.0 dmd.metaservices.microsoft.com
O1 - Hosts: 0.0.0.0 dns.msftncsi.com
O1 - Hosts: 0.0.0.0 img-s-msn-com.akamaized.net
O1 - Hosts: 0.0.0.0 insiderppe.cloudapp.net
O1 - Hosts: 0.0.0.0 licensing.mp.microsoft.com
O1 - Hosts: 0.0.0.0 mediaredirect.microsoft.com
O1 - Hosts: 0.0.0.0 officeclient.microsoft.com
O1 - Hosts: 0.0.0.0 oneclient.sfx.ms
O1 - Hosts: 0.0.0.0 pti.store.microsoft.com
O1 - Hosts: 0.0.0.0 query.prod.cms.rt.microsoft.com
O1 - Hosts: 0.0.0.0 register.cdpcs.microsoft.com
O1 - Hosts: 0.0.0.0 sO.2mdn.net
O1 - Hosts: 0.0.0.0 search.msn.com
O1 - Hosts: 0.0.0.0 settings-ssl.xboxlive.com
O1 - Hosts: 0.0.0.0 store-images.s-microsoft.com
O1 - Hosts: 0.0.0.0 storeedgefd.dsx.mp.microsoft.com
O1 - Hosts: 0.0.0.0 support.microsoft.com
O1 - Hosts: 0.0.0.0 tile-service.weather.microsoft.com
O1 - Hosts: 0.0.0.0 time.windows.com
O1 - Hosts: 0.0.0.0 tk2.plt.msn.com
O1 - Hosts: 0.0.0.0 urs.smartscreen.microsoft.com
O1 - Hosts: 0.0.0.0 wdcp.microsoft.com
O1 - Hosts: 0.0.0.0 wdcpalt.microsoft.com
O1 - Hosts: 0.0.0.0 win10-trt.msedge.net
O1 - Hosts: 0.0.0.0 wscont.apps.microsoft.com
O1 - Hosts: 0.0.0.0 www.msftconnecttest.com
O1 - Hosts: 0.0.0.0 a-0001.dc-msedge.net
O1 - Hosts: 0.0.0.0 a-0010.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0011.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0012.a-msedge.net
O1 - Hosts: 0.0.0.0 activity.windows.com
O1 - Hosts: 0.0.0.0 array101-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array102-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array103-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array104-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array201-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array202-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array203-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array204-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array401-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array402-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array403-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array404-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array405-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array406-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array407-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array408-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 bingads.microsoft.com
O1 - Hosts: 0.0.0.0 bl3301-a.1drv.com
O1 - Hosts: 0.0.0.0 bl3301-c.1drv.com
O1 - Hosts: 0.0.0.0 bl3301-g.1drv.com
O1 - Hosts: 0.0.0.0 bn1304-e.1drv.com
O1 - Hosts: 0.0.0.0 bn1306-a.1drv.com
O1 - Hosts: 0.0.0.0 bn1306-e.1drv.com
O1 - Hosts: 0.0.0.0 bn1306-g.1drv.com
O1 - Hosts: 0.0.0.0 bn2b-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn2b-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn3p-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn2b-cor003.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn2b-cor004.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn2wns1.wns.windows.com
O1 - Hosts: 0.0.0.0 bn3sch020022328.wns.windows.com
O1 - Hosts: 0.0.0.0 by3301-a.1drv.com
O1 - Hosts: 0.0.0.0 by3301-c.1drv.com
O1 - Hosts: 0.0.0.0 by3301-e.1drv.com
O1 - Hosts: 0.0.0.0 c-0001.dc-msedge.net
O1 - Hosts: 0.0.0.0 cds1204.lon.llnw.net
O1 - Hosts: 0.0.0.0 cds1293.lon.llnw.net
O1 - Hosts: 0.0.0.0 cds20417.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds20431.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds20450.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds20457.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds20475.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds21244.lon.llnw.net
O1 - Hosts: 0.0.0.0 cds425.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds459.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds494.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds965.lon.llnw.net
O1 - Hosts: 0.0.0.0 ch1-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 ch1-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 ch3301-c.1drv.com
O1 - Hosts: 0.0.0.0 ch3301-e.1drv.com
O1 - Hosts: 0.0.0.0 ch3301-g.1drv.com
O1 - Hosts: 0.0.0.0 ch3302-c.1drv.com
O1 - Hosts: 0.0.0.0 ch3302-e.1drv.com
O1 - Hosts: 0.0.0.0 compatexchange1.trafficmanager.net
O1 - Hosts: 0.0.0.0 continuum.dds.microsoft.com
O1 - Hosts: 0.0.0.0 cp101-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 cp201-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 cp401-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 db3wns2011111.wns.windows.com
O1 - Hosts: 0.0.0.0 db5.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100122.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100127.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100831.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100835.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100917.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100925.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100928.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100938.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101001.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101022.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101024.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101031.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101034.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101042.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101044.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101122.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101123.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101125.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101128.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101129.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101133.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101145.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101209.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101221.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101228.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101231.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101237.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101317.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101324.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101329.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101333.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101334.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101338.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101419.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101424.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101426.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101427.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101430.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101445.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101511.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101519.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101529.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101535.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101541.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101543.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101608.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101618.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101629.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101631.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101633.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101640.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101711.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101722.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101739.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101745.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101813.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101820.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101826.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101835.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101837.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101844.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101907.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101914.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101929.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101939.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101941.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102015.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102017.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102019.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102023.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102025.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102032.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102033.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110108.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110109.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110114.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110135.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110142.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110204.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110206.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110214.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110225.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110232.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110245.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110315.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110323.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110325.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110328.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110331.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110341.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110343.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110345.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110403.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110419.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110438.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110442.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110501.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110527.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110533.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110618.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110622.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110624.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110626.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110634.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110705.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110724.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110740.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110810.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110816.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110821.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110822.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110825.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110828.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110835.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110919.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110921.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110923.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110929.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103081814.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082011.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082111.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082308.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082406.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082409.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082609.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082611.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082709.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082712.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082806.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090115.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090415.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090513.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090515.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090608.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090806.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090814.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090906.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091011.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091012.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091106.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091108.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091212.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091311.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091414.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091511.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091617.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091715.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091817.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091908.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091911.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092010.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092108.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092109.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092209.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092210.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092509.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100117.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100121.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100221.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100313.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100314.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100510.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100511.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100611.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100712.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101105.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101208.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101212.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101314.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101411.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101413.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101513.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101610.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101611.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101705.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101711.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101909.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101914.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102009.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102112.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102203.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102209.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102310.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102404.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102609.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102610.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102805.wns.windows.com
O1 - Hosts: 0.0.0.0 db5wns1d.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090104.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090112.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090116.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090122.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090203.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090206.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090208.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090209.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090211.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090305.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090306.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090308.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090311.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090313.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090410.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090412.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090504.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090510.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090512.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090513.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090514.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090519.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090613.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090619.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090810.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090811.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090902.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090905.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090907.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090908.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090910.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090911.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091003.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091007.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091008.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091009.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091011.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091103.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091105.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091204.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091209.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091305.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091307.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091308.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091309.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091314.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091412.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091503.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091507.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091602.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091603.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091606.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091607.wns.windows.com
O1 - Hosts: 0.0.0.0 dev.virtualearth.net
O1 - Hosts: 0.0.0.0 disc101-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 disc201-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 disc401-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 ecn.dev.virtualearth.net
O1 - Hosts: 0.0.0.0 eu.vortex.data.microsoft.com
O1 - Hosts: 0.0.0.0 fs.microsoft.com
O1 - Hosts: 0.0.0.0 geo-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 geover-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 h2.msn.com
O1 - Hosts: 0.0.0.0 i-bl6p-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-by3p-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-by3p-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-ch1-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-ch1-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-sn2-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-sn2-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 inference.location.live.net
O1 - Hosts: 0.0.0.0 kv101-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 kv201-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 kv401-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 ls2web.redmond.corp.microsoft.com
O1 - Hosts: 0.0.0.0 mobile.pipe.aria.microsoft.com
O1 - Hosts: 0.0.0.0 settings-win-ppe.data.microsoft.com
O1 - Hosts: 0.0.0.0 settings.data.glbdns2.microsoft.com
O1 - Hosts: 0.0.0.0 settings.data.microsoft.com
O1 - Hosts: 0.0.0.0 sn3301-c.1drv.com
O1 - Hosts: 0.0.0.0 sn3301-e.1drv.com
O1 - Hosts: 0.0.0.0 sn3301-g.1drv.com
O1 - Hosts: 0.0.0.0 spyneteurope.microsoft.akadns.net
O1 - Hosts: 0.0.0.0 storecatalogrevocation.storequality.microsoft.com
O1 - Hosts: 0.0.0.0 t0.ssl.ak.dynamic.tiles.virtualearth.net
O1 - Hosts: 0.0.0.0 t0.ssl.ak.tiles.virtualearth.net
O1 - Hosts: 0.0.0.0 test.activity.windows.com
O1 - Hosts: 0.0.0.0 tsfe.trafficshaping.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 v10.vortex-win.data.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 v10.vortex-win.data.microsoft.com
O1 - Hosts: 0.0.0.0 version.hybrid.api.here.com
O1 - Hosts: 0.0.0.0 vortex-db5.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 vortex-hk2.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 vortex-win.data.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 vortex.data.glbdns2.microsoft.com
O1 - Hosts: 0.0.0.0 vortex.data.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 web.vortex.data.microsoft.com
O1 - Hosts: 0.0.0.0 win10.ipv6.microsoft.com
O1 - Hosts: 0.0.0.0 win1710.ipv6.microsoft.com
O1 - Hosts: 0.0.0.0 www.msedge.net
O1 - Hosts: 0.0.0.0 incoming.telemetry.mozilla.org
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/03/18)
O4 - HKLM\..\Run: [RtHDVCpl] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O17 - DHCP DNS 1: 192.168.42.129
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: NVIDIA Telemetry Container - (NvTelemetryContainer) - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"


--
End of file - Time spent: 24,6 sec. - 49452 bytes, CRC32: FFFFFFFF. Sign: ẛ촠

170553 dedi:

Kod:

Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.17763.379 (ReleaseId: 1809), Service Pack: 0
Time:      20.03.2019 - 11:30 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    PC    (group: Administrator) on DESKTOP-RKTPN1T, FirstRun: yes

Chrome:  73.0.3683.75
Internet Explorer: 11.0.17763.1
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
  10  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\VideoLAN\VLC\vlc.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   1  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  62  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17763.164_none_7e114a3d4d0589d4\TiWorker.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\servicing\TrustedInstaller.exe
   1  E:\Backups\Programs\Bakım Programları\HiJackThis.exe
   1  E:\Backups\Programs\Diğer\ThrottleStop_8.70.6\ThrottleStop.exe

O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 ars.smartscreen.microsoft.com
O1 - Hosts: 0.0.0.0 blob.weather.microsoft.com
O1 - Hosts: 0.0.0.0 candycrushsoda.king.com
O1 - Hosts: 0.0.0.0 cdn.content.prod.cms.msn.com
O1 - Hosts: 0.0.0.0 cdn.onenote.net
O1 - Hosts: 0.0.0.0 choice.microsoft.com.nsatc.net
O1 - Hosts: 0.0.0.0 client.wns.windows.com
O1 - Hosts: 0.0.0.0 client-s.gateway.messenger.live.com
O1 - Hosts: 0.0.0.0 clientconfig.passport.net
O1 - Hosts: 0.0.0.0 deploy.static.akamaitechnologies.com
O1 - Hosts: 0.0.0.0 device.auth.xboxlive.com
O1 - Hosts: 0.0.0.0 dmd.metaservices.microsoft.com
O1 - Hosts: 0.0.0.0 dns.msftncsi.com
O1 - Hosts: 0.0.0.0 img-s-msn-com.akamaized.net
O1 - Hosts: 0.0.0.0 insiderppe.cloudapp.net
O1 - Hosts: 0.0.0.0 licensing.mp.microsoft.com
O1 - Hosts: 0.0.0.0 mediaredirect.microsoft.com
O1 - Hosts: 0.0.0.0 officeclient.microsoft.com
O1 - Hosts: 0.0.0.0 oneclient.sfx.ms
O1 - Hosts: 0.0.0.0 pti.store.microsoft.com
O1 - Hosts: 0.0.0.0 query.prod.cms.rt.microsoft.com
O1 - Hosts: 0.0.0.0 register.cdpcs.microsoft.com
O1 - Hosts: 0.0.0.0 sO.2mdn.net
O1 - Hosts: 0.0.0.0 search.msn.com
O1 - Hosts: 0.0.0.0 settings-ssl.xboxlive.com
O1 - Hosts: 0.0.0.0 store-images.s-microsoft.com
O1 - Hosts: 0.0.0.0 storeedgefd.dsx.mp.microsoft.com
O1 - Hosts: 0.0.0.0 support.microsoft.com
O1 - Hosts: 0.0.0.0 tile-service.weather.microsoft.com
O1 - Hosts: 0.0.0.0 time.windows.com
O1 - Hosts: 0.0.0.0 tk2.plt.msn.com
O1 - Hosts: 0.0.0.0 urs.smartscreen.microsoft.com
O1 - Hosts: 0.0.0.0 wdcp.microsoft.com
O1 - Hosts: 0.0.0.0 wdcpalt.microsoft.com
O1 - Hosts: 0.0.0.0 win10-trt.msedge.net
O1 - Hosts: 0.0.0.0 wscont.apps.microsoft.com
O1 - Hosts: 0.0.0.0 www.msftconnecttest.com
O1 - Hosts: 0.0.0.0 a-0001.dc-msedge.net
O1 - Hosts: 0.0.0.0 a-0010.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0011.a-msedge.net
O1 - Hosts: 0.0.0.0 a-0012.a-msedge.net
O1 - Hosts: 0.0.0.0 activity.windows.com
O1 - Hosts: 0.0.0.0 array101-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array102-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array103-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array104-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array201-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array202-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array203-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array204-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array401-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array402-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array403-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array404-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array405-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array406-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array407-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 array408-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 bingads.microsoft.com
O1 - Hosts: 0.0.0.0 bl3301-a.1drv.com
O1 - Hosts: 0.0.0.0 bl3301-c.1drv.com
O1 - Hosts: 0.0.0.0 bl3301-g.1drv.com
O1 - Hosts: 0.0.0.0 bn1304-e.1drv.com
O1 - Hosts: 0.0.0.0 bn1306-a.1drv.com
O1 - Hosts: 0.0.0.0 bn1306-e.1drv.com
O1 - Hosts: 0.0.0.0 bn1306-g.1drv.com
O1 - Hosts: 0.0.0.0 bn2b-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn2b-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn3p-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn2b-cor003.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn2b-cor004.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 bn2wns1.wns.windows.com
O1 - Hosts: 0.0.0.0 bn3sch020022328.wns.windows.com
O1 - Hosts: 0.0.0.0 by3301-a.1drv.com
O1 - Hosts: 0.0.0.0 by3301-c.1drv.com
O1 - Hosts: 0.0.0.0 by3301-e.1drv.com
O1 - Hosts: 0.0.0.0 c-0001.dc-msedge.net
O1 - Hosts: 0.0.0.0 cds1204.lon.llnw.net
O1 - Hosts: 0.0.0.0 cds1293.lon.llnw.net
O1 - Hosts: 0.0.0.0 cds20417.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds20431.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds20450.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds20457.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds20475.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds21244.lon.llnw.net
O1 - Hosts: 0.0.0.0 cds425.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds459.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds494.lcy.llnw.net
O1 - Hosts: 0.0.0.0 cds965.lon.llnw.net
O1 - Hosts: 0.0.0.0 ch1-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 ch1-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 ch3301-c.1drv.com
O1 - Hosts: 0.0.0.0 ch3301-e.1drv.com
O1 - Hosts: 0.0.0.0 ch3301-g.1drv.com
O1 - Hosts: 0.0.0.0 ch3302-c.1drv.com
O1 - Hosts: 0.0.0.0 ch3302-e.1drv.com
O1 - Hosts: 0.0.0.0 compatexchange1.trafficmanager.net
O1 - Hosts: 0.0.0.0 continuum.dds.microsoft.com
O1 - Hosts: 0.0.0.0 cp101-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 cp201-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 cp401-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 db3wns2011111.wns.windows.com
O1 - Hosts: 0.0.0.0 db5.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100122.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100127.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100831.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100835.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100917.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100925.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100928.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101100938.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101001.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101022.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101024.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101031.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101034.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101042.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101044.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101122.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101123.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101125.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101128.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101129.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101133.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101145.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101209.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101221.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101228.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101231.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101237.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101317.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101324.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101329.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101333.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101334.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101338.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101419.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101424.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101426.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101427.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101430.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101445.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101511.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101519.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101529.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101535.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101541.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101543.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101608.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101618.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101629.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101631.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101633.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101640.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101711.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101722.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101739.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101745.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101813.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101820.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101826.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101835.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101837.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101844.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101907.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101914.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101929.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101939.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101101941.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102015.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102017.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102019.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102023.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102025.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102032.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101102033.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110108.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110109.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110114.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110135.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110142.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110204.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110206.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110214.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110225.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110232.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110245.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110315.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110323.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110325.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110328.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110331.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110341.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110343.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110345.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110403.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110419.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110438.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110442.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110501.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110527.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110533.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110618.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110622.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110624.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110626.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110634.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110705.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110724.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110740.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110810.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110816.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110821.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110822.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110825.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110828.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110835.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110919.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110921.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110923.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch101110929.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103081814.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082011.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082111.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082308.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082406.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082409.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082609.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082611.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082709.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082712.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103082806.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090115.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090415.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090513.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090515.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090608.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090806.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090814.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103090906.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091011.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091012.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091106.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091108.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091212.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091311.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091414.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091511.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091617.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091715.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091817.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091908.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103091911.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092010.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092108.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092109.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092209.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092210.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103092509.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100117.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100121.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100221.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100313.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100314.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100510.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100511.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100611.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103100712.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101105.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101208.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101212.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101314.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101411.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101413.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101513.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101610.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101611.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101705.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101711.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101909.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103101914.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102009.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102112.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102203.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102209.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102310.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102404.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102609.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102610.wns.windows.com
O1 - Hosts: 0.0.0.0 db5sch103102805.wns.windows.com
O1 - Hosts: 0.0.0.0 db5wns1d.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090104.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090112.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090116.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090122.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090203.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090206.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090208.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090209.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090211.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090305.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090306.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090308.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090311.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090313.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090410.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090412.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090504.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090510.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090512.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090513.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090514.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090519.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090613.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090619.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090810.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090811.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090902.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090905.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090907.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090908.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090910.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102090911.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091003.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091007.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091008.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091009.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091011.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091103.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091105.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091204.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091209.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091305.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091307.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091308.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091309.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091314.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091412.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091503.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091507.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091602.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091603.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091606.wns.windows.com
O1 - Hosts: 0.0.0.0 db6sch102091607.wns.windows.com
O1 - Hosts: 0.0.0.0 dev.virtualearth.net
O1 - Hosts: 0.0.0.0 disc101-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 disc201-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 disc401-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 ecn.dev.virtualearth.net
O1 - Hosts: 0.0.0.0 eu.vortex.data.microsoft.com
O1 - Hosts: 0.0.0.0 fs.microsoft.com
O1 - Hosts: 0.0.0.0 geo-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 geover-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 h2.msn.com
O1 - Hosts: 0.0.0.0 i-bl6p-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-by3p-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-by3p-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-ch1-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-ch1-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-sn2-cor001.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 i-sn2-cor002.api.p001.1drv.com
O1 - Hosts: 0.0.0.0 inference.location.live.net
O1 - Hosts: 0.0.0.0 kv101-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 kv201-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 kv401-prod.do.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 ls2web.redmond.corp.microsoft.com
O1 - Hosts: 0.0.0.0 mobile.pipe.aria.microsoft.com
O1 - Hosts: 0.0.0.0 settings-win-ppe.data.microsoft.com
O1 - Hosts: 0.0.0.0 settings.data.glbdns2.microsoft.com
O1 - Hosts: 0.0.0.0 settings.data.microsoft.com
O1 - Hosts: 0.0.0.0 sn3301-c.1drv.com
O1 - Hosts: 0.0.0.0 sn3301-e.1drv.com
O1 - Hosts: 0.0.0.0 sn3301-g.1drv.com
O1 - Hosts: 0.0.0.0 spyneteurope.microsoft.akadns.net
O1 - Hosts: 0.0.0.0 storecatalogrevocation.storequality.microsoft.com
O1 - Hosts: 0.0.0.0 t0.ssl.ak.dynamic.tiles.virtualearth.net
O1 - Hosts: 0.0.0.0 t0.ssl.ak.tiles.virtualearth.net
O1 - Hosts: 0.0.0.0 test.activity.windows.com
O1 - Hosts: 0.0.0.0 tsfe.trafficshaping.dsp.mp.microsoft.com
O1 - Hosts: 0.0.0.0 v10.vortex-win.data.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 v10.vortex-win.data.microsoft.com
O1 - Hosts: 0.0.0.0 version.hybrid.api.here.com
O1 - Hosts: 0.0.0.0 vortex-db5.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 vortex-hk2.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 vortex-win.data.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 vortex.data.glbdns2.microsoft.com
O1 - Hosts: 0.0.0.0 vortex.data.metron.live.com.nsatc.net
O1 - Hosts: 0.0.0.0 web.vortex.data.microsoft.com
O1 - Hosts: 0.0.0.0 win10.ipv6.microsoft.com
O1 - Hosts: 0.0.0.0 win1710.ipv6.microsoft.com
O1 - Hosts: 0.0.0.0 www.msedge.net
O1 - Hosts: 0.0.0.0 incoming.telemetry.mozilla.org
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/03/18)
O4 - HKLM\..\Run: [RtHDVCpl] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O17 - DHCP DNS 1: 192.168.42.129
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: NVIDIA Telemetry Container - (NvTelemetryContainer) - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"


--
End of file - Time spent: 24,6 sec. - 49452 bytes, CRC32: FFFFFFFF. Sign: ẛ촠

@THE_MILLER Hocam genel bir kontrol ve görev yöneticisindeki programların hangilerini devredışı bırakabilirim sakıncası olmayanları yani. Arka planda mümkün olduğunca daha az ram ve işlemci tüketimi için.

Rehber HijackThis Log Paylaşımı ve Çözümleri

Ayrıntılı düzenleme

HiJackThis

THE_MILLER

Petapat

FurkanGmK

Megapat

melih_11

Megapat

kev

Decapat

threather

Hectopat

102035

Kilopat

Murat5038

Yottapat!

102035

Kilopat

Murat5038

Yottapat!

170553

Kilopat

Benzer konular

Technopat Haberler

Yeni konular

Yeni mesajlar

Gizliliğinize önem veriyoruz