Rehber HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleme:
Genişletmek için tıkla...
Murat5038 dedi:
Bu kadar insan kullandığına göre? Çözüm için öneri yaptığımıza göre sizce ne yapmalı?
XP'de güncelleme almıyor ama kullanan var.
Genişletmek için tıkla...

Adam gibi nazikçe soru soruyoruz. Bu kadar yükselmendeki amaç ne anlamadım. XP kullanılıyor mu bir bak! Windows 10 ile XP arasında kullanım oranına göre bu programın eskidiğinin anlardın hani örneği oradan vermişsin ya.
 
Adam gibi cevap verin o zaman, orada anlatıyoruz doğru düzgün soru soruyoruz. Cevap verme şekline asıl bakıldığında kimin yükseldiği anlaşılıyor. Bilgin yoksa cevap verme veya bilmiyorum de öğretelim.
Bu kadar kolay sorulan soruya da mantık yürütemiyorsanız daha ne diyeyim.
 
Murat5038 dedi:
@Crucify Sizin format atmanız lazım zaten. Sürücü bulucudan tut önermediğim bir sürü yazılımı kullanıyorsun.
Format sonrası bunları kullanma:
IOBİT yazılımları, Avast, İntel araçları, Monster araçları, İllegal Wondershare
Genişletmek için tıkla...
Çok teşekkür ederim. Avast yerine başka bir antivirüs programı önerir misiniz?
 
bilgisayarım eskisinden hissedilir derecede geç açılıyor


Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Home), 10.0.18363.900 (ReleaseId: 1909), Service Pack: 0
Time:      18.06.2020 - 21:56 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Burak    (group: Administrator) on DESKTOP-D10CAAO, FirstRun: yes

Chrome:  83.0.4103.106
Edge:    11.0.18362.815
Internet Explorer: 11.0.18362.1
Default: "C:\Users\90554\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  A:\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
   1  B:\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
   1  B:\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
   1  B:\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
   1  B:\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
   1  C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
   1  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
   1  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
   1  C:\Program Files (x86)\GIGABYTE\RGBFusion\Check_Kill.exe
   1  C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\Origin\Origin.exe
   1  C:\Program Files (x86)\Origin\OriginWebHelperService.exe
   2  C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
   1  C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
   1  C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
   1  C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
   4  C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
   1  C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
   1  C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
   1  C:\Program Files\ESET\ESET Security\eguiProxy.exe
   1  C:\Program Files\ESET\ESET Security\ekrn.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe
   1  C:\Program Files\Riot Vanguard\vgtray.exe
   1  C:\Users\90554\Desktop\HiJackThis.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Windows\System32\RtkAudUService64.exe
   4  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   2  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   6  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\ibtsiva.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  78  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WMIADAP.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O4 - HKCU\..\Run: [CCXProcess] = C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
O4 - HKCU\..\Run: [EADM] = C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKCU\..\RunOnce: [Application Restart #3] = C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe "C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe" "C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe" "C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe" -Embedding (file missing)
O4 - HKCU\..\StartupApproved\Run: [Opera Browser Assistant] = C:\Users\90554\AppData\Local\Programs\Opera\assistant\browser_assistant.exe (2020/03/27)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe
O4 - HKLM\..\Run: [egui] = C:\Program Files\ESET\ESET Security\ecmds.exe /run /hide /proxy
O4 - HKLM\..\StartupApproved\Run32: [CORSAIR iCUE Software] = B:\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe --autorun (2019/10/07)
O4 - HKLM\..\StartupApproved\Run: [Logitech Download Assistant] = C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch (2019/10/07)
O4 - HKLM\..\StartupApproved\Run: [RtkAudUService] = C:\Windows\System32\RtkAudUService64.exe -background (2020/04/15)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (2019/10/07)
O4 - HKLM\..\StartupApproved\Run: [XboxStat] = C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun (2020/03/27)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScpToolkit Tray Notifications.lnk    ->    C:\Program Files (x86)\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe (2020/03/27)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk    ->    C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe -dataPath="C:\ProgramData\SteelSeries\SteelSeries Engine 3" -dbEnv=production -auto=true (2019/10/07)
O4 - HKU\.DEFAULT\..\RunOnce: [Application Restart #0] = C:\Windows\System32\osk.exe
O4 - HKU\.DEFAULT\..\RunOnce: [Application Restart #1] = C:\Windows\System32\osk.exe
O4-32 - HKLM\..\Run: [Adobe Creative Cloud] = C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true
O4-32 - HKLM\..\RunOnce: [SelLed] = C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://webcompanion.com
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco1: AccExtIco1 Class - {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco2: AccExtIco2 Class - {853B7E05-C47D-4985-909A-D0DC5C6D7303} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco3: AccExtIco3 Class - {42D38F2E-98E9-4382-B546-E24E4D6D04BB} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O22 - Task (.job): (Not scheduled) ScpUpdater.job - C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe /silent
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: AdobeUpdateService - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service R2: Corsair LLA Service - (CorsairLLAService) - B:\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
O23 - Service R2: Corsair Service - (CorsairService) - B:\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
O23 - Service R2: ESET Service - (ekrn) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service R2: Intel Bluetooth Service - (ibtsiva) - C:\Windows\system32\ibtsiva.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2eaf9d620160f138\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\RtkAudUService64.exe
O23 - Service R2: SCP DSx Service - (Ds3Service) - C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe
O23 - Service R3: ESET Firewall Helper - (ekrnEpfw) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service S2: Corsair Gaming Audio Configuration Service - (CorsairGamingAudioConfig) - C:\Windows\System32\CorsairGamingAudioCfgService64.exe  (file missing)
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: FACEITService - B:\FACEIT AC\faceitservice.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: Overwolf Updater Windows SCM - (OverwolfUpdater) - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe /RunningFrom SCM
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - B:\Launcher\RockstarService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Uncheater for BattleGroundsLite_SE - (uncheater_bgl) - C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe
O23 - Service S3: Uncheater for BattleGrounds_GL - (ucldr_battlegrounds_gl) - C:\Program Files\Common Files\Uncheater\ucldr_battlegrounds_gl.exe
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe


--
End of file - Time spent: 15,7 sec. - 25756 bytes, CRC32: FFFFFFFF. Sign: ⣊鋶
 
Crucify dedi:
Çok teşekkür ederim. Avast yerine başka bir antivirüs programı önerir misiniz?
Genişletmek için tıkla...
Rica ederim. Format attıysanız Kaspersky öneririm.
Nerdetrakordaburak dedi:
Bilgisayarım eskisinden hissedilir derecede geç açılıyor.
Genişletmek için tıkla...
Zararlı yönden bir sıkıntı göremedim. Gereksiz şeyler yüklü ve açık olduğundan donuyor. Üstüne oyun kolu için 3. parti yazılımlar indirdiğiniz için oluyor.
Kısaca size önerebileceğim temiz önyükleme işlemini yapın. Oyun kolu, RGB araçları vb. şeyleri kaldırın.
 
Murat5038 dedi:
Rica ederim. Format attıysanız Kaspersky öneririm.

Zararlı yönden bir sıkıntı göremedim. Gereksiz şeyler yüklü ve açık olduğundan donuyor. Üstüne oyun kolu için 3. parti yazılımlar indirdiğiniz için oluyor.
Kısaca size önerebileceğim temiz önyükleme işlemini yapın. Oyun kolu, RGB araçları vb. şeyleri kaldırın.
Genişletmek için tıkla...
teşekkür ederim hocam, yalnız bu programlar uzunca bir süredir mevcut fakat geç açılma problemini daha yeni yeni yaşamaya başladım neden ola ki..?
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.18363.836 (ReleaseId: 1909), Service Pack: 0
Time:      22.06.2020 - 00:19 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Arabic (0x401)
Elevated:  Yes
Ran by:    simon    (group: Administrator) on ASUSX571, FirstRun: yes

Firefox: 77.0.1.7458
Edge:    11.0.18362.815
Internet Explorer: 11.0.18362.1
Default: "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "%1" (Firefox)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
   1  C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe
   1  C:\Program Files (x86)\DU Meter\DUMeter.exe
   1  C:\Program Files (x86)\DU Meter\DUMeterSvc.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files\AVG\Antivirus\AVGSvc.exe
   1  C:\Program Files\AVG\Antivirus\AVGUI.exe
   1  C:\Program Files\AVG\Antivirus\aswEngSrv.exe
   1  C:\Program Files\AVG\Antivirus\aswidsagent.exe
   1  C:\Program Files\AVG\Antivirus\wsc_proxy.exe
   1  C:\Program Files\Common Files\AVG\Overseer\overseer.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   2  C:\Program Files\Everything\Everything.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Program Files\OpenVPN\bin\openvpnserv.exe
   1  C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2727.0_x64__8j3eq9eme6ctt\IGCC.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20012.135.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Users\simon\Desktop\HiJackThis\HiJackThis.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSLinkNear\AsusLinkNear.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSLinkRemote\AsusLinkRemote.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSOptimization\AsusOptimization.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSOptimization\AsusOptimizationStartupTask.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSSoftwareManager\AsusSoftwareManager.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSSystemAnalysis\AsusSystemAnalysis.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxEM.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_804b191af5ace580\ICEsoundService64.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9307632b3abedc2b\IntelCpHDCPSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9307632b3abedc2b\IntelCpHeciSvc.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_036f20146ac187ce\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_caabc087e4b97a65\Intel_PIE_Service.exe
   1  C:\Windows\System32\HPSIsvc.exe
   1  C:\Windows\System32\Intel\DPTF\esif_uf.exe
   2  C:\Windows\System32\RtkAudUService64.exe
   7  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SecurityHealthHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\ibtsiva.exe
   1  C:\Windows\System32\jhi_service.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  81  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://us.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnd_kscotwunzjwcegikmodl_19_52_dopc&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dtr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutByC0E0Ezy0A0EzzzztCyB0CyC0C0DtCtN0D0Tzu0StBzytCyDtN1L2XzuyEtFyDzytFtDtFyDtBtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyCtCyBzz0D0AyBtCtGyE0DyD0FtG0E0D0FtAtGtC0EtA0AtGtDtC0A0CyByDyCyBtA0CyCtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCzyyC1PyByEtBtAtGtB1O1T1TtGyE1RtD1OtG1T1StA1RtGyBtAtCyB1PzzyDyCyD1P1RyC2QtN0A0LzutDtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDyByBtAtDzzyDyDtA%26cr%3D305598593%26a%3Dwnd_kscotwunzjwcegikmodl_19_52_dopc%26os_ver%3D10.0%26os%3DWindows%2B10%2BEnterprise
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}: [SuggestionsURL] = https://ie.search.yahoo.com/os?appid=fes&command={searchTerms} - Yahoo! Powered Search
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}: [URL] = https://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnd_kscotwunzjwcegikmodl_19_52_dopc&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dtr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutByC0E0Ezy0A0EzzzztCyB0CyC0C0DtCtN0D0Tzu0StBzytCyDtN1L2XzuyEtFyDzytFtDtFyDtBtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyCtCyBzz0D0AyBtCtGyE0DyD0FtG0E0D0FtAtGtC0EtA0AtGtDtC0A0CyByDyCyBtA0CyCtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCzyyC1PyByEtBtAtGtB1O1T1TtGyE1RtD1OtG1T1StA1RtGyBtAtCyB1PzzyDyCyD1P1RyC2QtN0A0LzutDtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDyByBtAtDzzyDyDtA%26cr%3D305598593%26a%3Dwnd_kscotwunzjwcegikmodl_19_52_dopc%26os_ver%3D10.0%26os%3DWindows%2B10%2BEnterprise&p={searchTerms} - Yahoo! Powered Search
O1 - Hosts.ICS: 9 671
O1 - Hosts.ICS: 12 40 15 585
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2-32 - HKLM\..\BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2-32 - HKLM\..\BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O3-32 - HKLM\..\Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O4 - HKCU\..\Run: [DU Meter] = C:\Program Files (x86)\DU Meter\DUMeter.exe /autostart
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/11/28)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2019/11/15)
O4 - HKCU\..\StartupApproved\Run: [com.squirrel.Teams.Teams] = C:\Users\simon\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated" (2020/04/15)
O4 - HKLM\..\Run: [AVGUI.exe] = C:\Program Files\AVG\Antivirus\AvLaunch.exe /gui
O4 - HKLM\..\Run: [Everything] = C:\Program Files\Everything\Everything.exe -startup
O4 - HKLM\..\StartupApproved\Run32: [Wondershare Helper Compact.exe] = C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (2020/03/19)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Microsoft Excel'e &Ver: (default) = C:\Program Files\Microsoft Office\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\OneNote'a G&önder: (default) = C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://webcompanion.com
O17 - DHCP DNS 1: 195.175.39.50
O17 - DHCP DNS 2: 195.175.39.49
O17 - HKLM\System\CCS\Services\Tcpip\..\{51718286-c52c-423b-af65-9c9d42bda7ce}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{51718286-c52c-423b-af65-9c9d42bda7ce}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\  OptaneIconOverlay: Intel.Optane.Pinning.ShellExt.OptaneIconOverlay - {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} - C:\Windows\system32\mscoree.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00avg: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O23 - Service R2: ASUS Battery Health Charging Service - (AsBhcService) - C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
O23 - Service R2: ASUS Link Near - (ASUSLinkNear) - C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSLinkNear\AsusLinkNear.exe
O23 - Service R2: ASUS Link Remote - (ASUSLinkRemote) - C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSLinkRemote\AsusLinkRemote.exe
O23 - Service R2: ASUS Optimization - (ASUSOptimization) - C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSOptimization\AsusOptimization.exe
O23 - Service R2: ASUS Software Manager - (ASUSSoftwareManager) - C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSSoftwareManager\AsusSoftwareManager.exe
O23 - Service R2: ASUS System Analysis - (ASUSSystemAnalysis) - C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSSystemAnalysis\AsusSystemAnalysis.exe
O23 - Service R2: ASUS System Diagnosis - (ASUSSystemDiagnosis) - C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ff6f245ed0117f05\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
O23 - Service R2: AVG Antivirus - C:\Program Files\AVG\Antivirus\AVGSvc.exe /runassvc
O23 - Service R2: AvgWscReporter - C:\Program Files\AVG\Antivirus\wsc_proxy.exe /runassvc /rpcserver
O23 - Service R2: DU Meter Service - (DUMeterSvc) - C:\Program Files (x86)\DU Meter\DUMeterSvc.exe Files (x86)\DU Meter\DUMeterSvc.exe /startedbyscm:E1F6D4BE-40E33354-DUMeterService
O23 - Service R2: Everything - C:\Program Files\Everything\Everything.exe -svc
O23 - Service R2: HP SI Service - (HPSIService) - C:\Windows\system32\HPSIsvc.exe
O23 - Service R2: ICEsoundService - C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_804b191af5ace580\ICEsoundService64.exe
O23 - Service R2: Intel Bluetooth Service - (ibtsiva) - C:\Windows\System32\ibtsiva.exe
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9307632b3abedc2b\IntelCpHDCPSvc.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Windows\System32\jhi_service.exe
O23 - Service R2: Intel(R) Dynamic Platform and Thermal Framework service - (esifsvc) - C:\Windows\System32\Intel\DPTF\esif_uf.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxCUIService.exe
O23 - Service R2: Intel(R) Storage Middleware Service - (RstMwService) - C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_036f20146ac187ce\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_036f20146ac187ce\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: OpenVPN Interactive Service - (OpenVPNServiceInteractive) - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\RtkAudUService64.exe
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9307632b3abedc2b\IntelCpHeciSvc.exe
O23 - Service R3: Intel® PROSet/Wireless Service - (PIEServiceNew) - C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_caabc087e4b97a65\Intel_PIE_Service.exe
O23 - Service R3: avgbIDSAgent - C:\Program Files\AVG\Antivirus\aswidsagent.exe
O23 - Service S2: Intel(R) Audio Service - (IntelAudioService) - C:\Windows\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
O23 - Service S2: Intel(R) TPM Provisioning Service - C:\Windows\System32\Intel\iCLS Client\lib\TPMProvisioningService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: FileSyncHelper - C:\Program Files (x86)\Microsoft OneDrive\FileSyncHelper.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Windows\System32\Intel\iCLS Client\lib\SocketHeciServer.exe
O23 - Service S3: Intel(R) Optane(TM) Memory Service - (iaStorAfsService) - C:\Windows\System32\iaStorAfsService.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: OneDrive Updater Service - C:\Program Files (x86)\Microsoft OneDrive\OneDriveUpdaterService.exe
O23 - Service S3: OpenVPN Legacy Service - (OpenVPNServiceLegacy) - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service S3: OpenVPNService - C:\Program Files\OpenVPN\bin\openvpnserv2.exe
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: VirtualBox system service - (VBoxSDS) - C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe


--
End of file - Time spent: 14,6 sec. - 33432 bytes, CRC32: FFFFFFFF. Sign: 麼Ά
Reklam vb. virüs kapmış olabilir sanıyorum. Eskiden system çok çalışırdı bu aralar (4-5 haftadır) "RuntimeBroker" işlemi CPU'yu çok meşgul ediyor. durduk yere çalışıyor ve fazlatüketim yapıyor haliyle fanda çok çalışıyor.
 
Bunları fixleyin:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://us.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnd_kscotwunzjwcegikmodl_19_52_dopc&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dtr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutByC0E0Ezy0A0EzzzztCyB0CyC0C0DtCtN0D0Tzu0StBzytCyDtN1L2XzuyEtFyDzytFtDtFyDtBtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyCtCyBzz0D0AyBtCtGyE0DyD0FtG0E0D0FtAtGtC0EtA0AtGtDtC0A0CyByDyCyBtA0CyCtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCzyyC1PyByEtBtAtGtB1O1T1TtGyE1RtD1OtG1T1StA1RtGyBtAtCyB1PzzyDyCyD1P1RyC2QtN0A0LzutDtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDyByBtAtDzzyDyDtA%26cr%3D305598593%26a%3Dwnd_kscotwunzjwcegikmodl_19_52_dopc%26os_ver%3D10.0%26os%3DWindows%2B10%2BEnterprise
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}: [SuggestionsURL] = https://ie.search.yahoo.com/os?appid=fes&command={searchTerms} - Yahoo! Powered Search
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0CE02FFA-A6B0-46F6-BA2F-BD32C3630126}: [URL] = https://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnd_kscotwunzjwcegikmodl_19_52_dopc&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dtr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutByC0E0Ezy0A0EzzzztCyB0CyC0C0DtCtN0D0Tzu0StBzytCyDtN1L2XzuyEtFyDzytFtDtFyDtBtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyCtCyBzz0D0AyBtCtGyE0DyD0FtG0E0D0FtAtGtC0EtA0AtGtDtC0A0CyByDyCyBtA0CyCtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCzyyC1PyByEtBtAtGtB1O1T1TtGyE1RtD1OtG1T1StA1RtGyBtAtCyB1PzzyDyCyD1P1RyC2QtN0A0LzutDtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDyByBtAtDzzyDyDtA%26cr%3D305598593%26a%3Dwnd_kscotwunzjwcegikmodl_19_52_dopc%26os_ver%3D10.0%26os%3DWindows%2B10%2BEnterprise&p={searchTerms} - Yahoo! Powered Search
O1 - Hosts.ICS: 9 671
O1 - Hosts.ICS: 12 40 15 585
O4 - HKCU\..\Run: [DU Meter] = C:\Program Files (x86)\DU Meter\DUMeter.exe /autostart
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/11/28)
O4 - HKLM\..\Run: [Everything] = C:\Program Files\Everything\Everything.exe -startup
O4 - HKLM\..\StartupApproved\Run32: [Wondershare Helper Compact.exe] = C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (2020/03/19)
O21 - HKLM\..\ShellIconOverlayIdentifiers\00avg: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)

Asus araçlarını, Everyting, Du meter kaldırın.
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.19041.329 (ReleaseId: 2004), Service Pack: 0
Time:      22.06.2020 - 22:39 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Arda    (group: Administrator) on ARDA, FirstRun: yes

Chrome:  83.0.4103.106
Edge:    11.0.19041.264
Internet Explorer: 11.0.19041.1
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avpui.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\Origin\OriginWebHelperService.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Users\Arda\Downloads\HiJackThis.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Windows\System32\RtkAudUService64.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  67  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\explorer.exe

O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2020/06/17)
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\Arda\AppData\Local\Discord\app-0.0.306\Discord.exe (2020/06/17)
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\RtkAudUService64.exe -background
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2020/06/17)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (2020/06/17)
O17 - DHCP DNS 1: 
O17 - DHCP DNS 2: 
O17 - DHCP DNS 3: 
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O23 - Service R2: Kaspersky Anti-Virus Hizmeti 20.0 - (AVP20.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe -r
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\RtkAudUService64.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 20.0 - (klvssbridge64_20.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\vssbridge64.exe
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService


--
End of file - Time spent: 14,2 sec. - 15346 bytes, CRC32: FFFFFFFF. Sign: 㯯᰿
 

Benzer konular

taylaan
HijackThis Log Paylaşımı
Mesaj
0
Görüntüleme
543
taylaan
taylaan
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5.684
quarest
quarest
Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
999
acv
A
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
3.002
Murat5038
Murat5038
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
14.504
Windows 11 Bükücü
Windows 11 Bükücü

Technopat Haberler

Yeni konular

Yeni mesajlar

Geri
Yukarı