Rehber HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleme:
Genişletmek için tıkla...
Gizliliğime önem verdiğimden beri bilgisayarımda çok fazla ayar yaptım.
Araştırmama rağmen hala içimde bir şüpheden dolayı log paylaşmak istedim.
Güvenilir ve gnu tabanlı programlar kullanmaya özen gösteriyorum ama
yine de şüphe ettim. Kilit ekranında çok hafifte olsa bir donma söz konusu oluyor.
Bilgisayarı kullanırken hiç bir zaman olmadı. Sanırım RAM ya da Anakart'ım da
ufak bir problem var ama o konu ayrı. Firefox uzantılarım hakkında bilgi vermiyor
sanırım ben onları da sorayım: Privacy Badger, HTTPS Everywhere, McAfee Web
Advisor, uBlock Origin, Ghostery, Google Translate, DuckDuckGo, Decentralayes,
Bitwarden(Genel olarak yüksek güvenlikli bir şifre ve çalındığında sorun teşkil
etmeyecek türden hesaplarımı bağladım). Ha bir de TOR browser'ı softanic sitesinden
yükledim, virüstotal, Malwarebytes ve McAfee(Ücretli sürüm) herhangi bir virüs
algılamadı. Çok uzun yazdım ama başka türlü çok fazla şüpheye düşecektim ve
gerçekten kafayı yiyecek derecede düşünmeye başladım(Hatta internetim iyi olsa
OpenVPN, VPNbookmarks veya proxy kullanırdım). Bayağı bir uzun yazdım
kusura bakmayın.
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26

Platform:  x64 Windows 10 (Pro), 10.0.19042.685 (ReleaseId: 2009), Service Pack: 0
Time:      03.01.2021 - 14:15 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: English (0x409). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Serif    (group: Administrator) on DESKTOP-0FSBF4I, FirstRun: yes

Firefox: 84.0.1.7660
Edge:    11.0.19041.546
Internet Explorer: 11.0.19041.1
Default: "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "%1" (Firefox)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
   1  C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
   1  C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
   1  C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
   1  C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
   1  C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
   1  C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
   1  C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
   1  C:\Program Files\Common Files\McAfee\CSP\3.9.121.0\McCSPServiceHost.exe
   1  C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
   2  C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
   1  C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
   1  C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
   1  C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
   1  C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
   1  C:\Program Files\Common Files\McAfee\VSCore_20_9\mcapexe.exe
   1  C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
   1  C:\Program Files\McAfee\WebAdvisor\servicehost.exe
   1  C:\Program Files\McAfee\WebAdvisor\uihost.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Users\Serif\Desktop\HiJackThis.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\NVDisplay.Container.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   4  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\mfevtps.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
  65  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\explorer.exe

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: ::1 localhost
O2 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho_64.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll
O2 - HKLM\..\BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll
O2-32 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho.dll
O2-32 - HKLM\..\BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\Serif\AppData\Local\Discord\Update.exe --processStart Discord.exe (2020/04/26)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2020/04/23)
O4 - HKLM\..\StartupApproved\Run32: [CORSAIR iCUE Software] = C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe --autorun (2020/12/15)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2020/04/23)
O4 - HKLM\..\StartupApproved\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s (2020/03/18)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2020/03/27)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk    ->    C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe -dataPath="C:\ProgramData\SteelSeries\SteelSeries Engine 3" -dbEnv=production -auto=true (2020/12/15)
O9 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll
O9 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll
O9-32 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9-32 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O17 - DHCP DNS 1: 192.168.1.1
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-mfe-ipt: [CLSID] = {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (Microsoft)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (Microsoft)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-4222114760-2476500684-2302923878-1001 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (disabled) \S-1-5-21-4222114760-2476500684-2302923878-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (Microsoft)
O22 - Task: AMDAutoUpdate - C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe
O22 - Task: MSIAfterburner - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s
O22 - Task: McAfee Remediation (Prepare) - C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe /prepare
O22 - Task: McAfeeLogon - C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe /platui
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: NahimicSvc32Run - C:\WINDOWS\SysWOW64\NahimicSvc32.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7)
O22 - Task: NahimicSvc64Run - C:\WINDOWS\system32\NahimicSvc64.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7)
O22 - Task: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
O22 - Task: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
O22 - Task: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: \McAfee\DAD.Execute.Updates - C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe
O22 - Task: \McAfee\McAfee Auto Maintenance Task Agent - {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} - C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe
O22 - Task: \McAfee\McAfee Idle Detection Task - {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} - C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe
O22 - Task: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
O23 - Service R2: Corsair LLA Service - (CorsairLLAService) - C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
O23 - Service R2: Corsair Service - (CorsairService) - C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
O23 - Service R2: McAfee AP Service - (McAPExe) - C:\Program Files\Common Files\McAfee\VSCore_20_9\McApExe.exe
O23 - Service R2: McAfee CSP Service - (mccspsvc) - C:\Program Files\Common Files\McAfee\CSP\3.9.121.0\\McCSPServiceHost.exe
O23 - Service R2: McAfee Module Core Service - (ModuleCoreService) - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service R2: McAfee PEF Service - (PEFService) - C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
O23 - Service R2: McAfee Service Controller - (mfemms) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
O23 - Service R2: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R3: McAfee Validation Trust Protection Service - (mfevtp) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: Corsair Gaming Audio Configuration Service - (CorsairGamingAudioConfig) - C:\Windows\System32\CorsairGamingAudioCfgService64.exe
O23 - Service S3: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service S3: McAfee Firewall Core Service - (mfefire) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service
O23 - Service S3: Printer Extensions and Notifications - (PrintNotify) - C:\WINDOWS\system32\svchost.exe -k print; "ServiceDll" = C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe  (file missing)
O23 - Service S3: SQL Server (SQLEXPRESS) - (MSSQL$SQLEXPRESS) - C:\Program Files\Microsoft SQL Server\MSSQL15.SQLEXPRESS\MSSQL\Binn\sqlservr.exe -sSQLEXPRESS
O23 - Service S3: SQL Server Agent (SQLEXPRESS) - (SQLAgent$SQLEXPRESS) - C:\Program Files\Microsoft SQL Server\MSSQL15.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE -i SQLEXPRESS
O23 - Service S3: SQL Server Browser - (SQLBrowser) - C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
O23 - Service S3: SQL Server CEIP service (SQLEXPRESS) - (SQLTELEMETRY$SQLEXPRESS) - C:\Program Files\Microsoft SQL Server\MSSQL15.SQLEXPRESS\MSSQL\Binn\sqlceip.exe -Service SQLEXPRESS
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: SteelSeries Update Service - (SteelSeriesUpdateService) - C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe
O23 - Service S3: wampapache64 - c:\wamp64\bin\apache\apache2.4.46\bin\httpd.exe -k runservice
O23 - Service S3: wampmariadb64 - c:\wamp64\bin\mariadb\mariadb10.4.13\bin\mysqld.exe wampmariadb64
O23 - Service S3: wampmysqld64 - c:\wamp64\bin\mysql\mysql5.7.31\bin\mysqld.exe wampmysqld64


--
End of file - Time spent: 7,5 sec. - 34922 bytes, CRC32: FFFFFFFF. Sign: 赆텇
 
277726 dedi:
Gizliliğime önem verdiğimden beri bilgisayarımda çok fazla ayar yaptım.
Araştırmama rağmen hala içimde bir şüpheden dolayı log paylaşmak istedim.
Genişletmek için tıkla...
Wamp ve Sql server kullanıyorsun, yazılım mı yazıyorsun?
Sadece gizlilik hakkında yardım istiyorsan bunları fixlemek yeterli.
Kod: 
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (disabled) \S-1-5-21-4222114760-2476500684-2302923878-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (Microsoft)
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"

277726 dedi:
Firefox uzantılarım hakkında bilgi vermiyor
sanırım ben onları da sorayım: Privacy Badger, HTTPS Everywhere, McAfee Web
Advisor, uBlock Origin, Ghostery, Google Translate, DuckDuckGo, Decentralayes,
Bitwarden(Genel olarak yüksek güvenlikli bir şifre ve çalındığında sorun teşkil
etmeyecek türden hesaplarımı bağladım).
Genişletmek için tıkla...
Decentralayes, Bitwarden bu ikisi hariç diğerleri kalabilir. Söylediklerim pek bilindik değiller.
 
Murat5038 dedi:
Wamp ve SQL server kullanıyorsun, yazılım mı yazıyorsun?
Sadece gizlilik hakkında yardım istiyorsan bunları fixlemek yeterli.
Kod: 
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (disabled) \S-1-5-21-4222114760-2476500684-2302923878-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (Microsoft)
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"

Decentralayes, Bitwarden bu ikisi hariç diğerleri kalabilir. Söylediklerim pek bilindik değiller.
Genişletmek için tıkla...

Hocam neredesiniz, sosyali DDoS yağmuruna tuttular?
Ben eskiden SQL server kullanmistim, tekrar kullanirsam benim yapmama gerek var mı?
 
Murat5038 dedi:
Wamp ve SQL server kullanıyorsun, yazılım mı yazıyorsun?
Sadece gizlilik hakkında yardım istiyorsan bunları fixlemek yeterli.
Kod: 
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (disabled) \S-1-5-21-4222114760-2476500684-2302923878-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe.
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe.
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe.
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe.
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe.
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (Microsoft)
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe.
O22 - Task: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"

Decentralayes, bitwarden bu ikisi hariç diğerleri kalabilir. Söylediklerim pek bilindik değiller.
Genişletmek için tıkla...

Evet wamp serveri PHP için kullanıyorum. SQL server de database için ama onu da kaldırabilirim aslında artık Linux Mint geçtim. Linux'ta kullanabileceğim tüm yazılım ile alakalı olanları buraya aktarmayı düşünüyorum.
Decentralayes neyse de Bitwarden'i çok beğendim hocam tüm çalınsa bir sorun etmeyeceğim hesaplarımı bağladım :) eğer virüs vb. bir şey yok derseniz kullanmaya devam edeyim :)
 
277726 dedi:
Evet wamp serveri PHP için kullanıyorum. SQL server de database için ama onu da kaldırabilirim aslında artık Linux Mint geçtim. Linux'ta kullanabileceğim tüm yazılım ile alakalı olanları buraya aktarmayı düşünüyorum.
Genişletmek için tıkla...
Kaldır demiyorum sadece güvenliğinden emin ol diyorum. Gizlilik açısından güvenlik açıkları ve yazılım işinde bu tür girişimler daha çok yaşanır. Gerekli değilse kaldırabilirsiniz. Gerekliyse güncellemeleri ve diğer güvenlik önlemleri almanız gerekir.
Megaton dedi:
Hocam neredesiniz, sosyali DDoS yağmuruna tuttular?
Ben eskiden SQL server kullanmistim, tekrar kullanirsam benim yapmama gerek var mı?
Genişletmek için tıkla...
:) Yetkili değilim o yüzden beni ilgilendirmiyor. Sadece açığa çıkacak veri olursa ilgilendirir.

SQL kullanmak sorun değil önlemini almamak sorun.
 
Bilgisayarda genel yavaşlık, pencere açılışlarında yavaşlık ve bilgisayar açılışı uzun sürüyor. Şimdiden teşekkür ettim.

Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26

Platform:  x64 Windows 10 (Pro), 10.0.19042.630 (ReleaseId: 2009), Service Pack: 0
Time:      04.01.2021 - 17:59 (UTC+03:00)
Language:  OS: English (0x409). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Delka    (group: Administrator) on DELKA, FirstRun: yes

Chrome:  87.0.4280.88
Internet Explorer: 11.0.19041.1
Default: "C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe" --single-argument %1 (Brave)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\BraveSoftware\Update\1.3.101.0\BraveCrashHandler.exe
   1  C:\Program Files (x86)\BraveSoftware\Update\1.3.101.0\BraveCrashHandler64.exe
   1  C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
   1  C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
   1  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
   2  C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
   1  C:\Program Files (x86)\NoteBook FanControl\NbfcService.exe
   1  C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe
   1  C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
  25  C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe
   1  C:\Program Files\Cloudflare\Cloudflare WARP\Cloudflare WARP.exe
   1  C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe
   1  C:\Program Files\Global Delight\Boom 3D\Boom3D.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
   1  C:\Program Files\OO Software\Defrag\oodag.exe
   1  C:\Program Files\cFosSpeed\cfosspeed.exe
   1  C:\Program Files\cFosSpeed\spd.exe
   1  C:\Users\Administrator\Desktop\HiJackThis.exe
   1  C:\Users\Administrator\ISLC v1.0.2.2\Intelligent standby list cleaner ISLC.exe
   1  C:\Windows\SysWOW64\vmnat.exe
   1  C:\Windows\SysWOW64\vmnetdhcp.exe
   1  C:\Windows\System32\RemoteFXvGPUDisablement.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\cmd.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\hkcmd.exe
   1  C:\Windows\System32\igfxpers.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\netsh.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\sppsvc.exe
  55  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\explorer.exe
   1  C:\xampp\FileZillaFTP\FileZillaServer.exe
   2  C:\xampp\apache\bin\httpd.exe
   1  C:\xampp\mysql\bin\mysqld.exe

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: # Copyright (c) 1993-2009 Microsoft Corp.
O1 - Hosts: 192.168.1.99 host.docker.internal
O1 - Hosts: 192.168.1.99 gateway.docker.internal
O1 - Hosts: 127.0.0.1 kubernetes.docker.internal
O1 - Hosts.ICS: 172.18.112.1 WIN-OUBA2NFO4VI.mshome.net # 2025 12 6 6 16 35 21 79
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho_64.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2-32 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll
O4 - Global User Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Cloudflare WARP.lnk    ->    C:\Program Files (x86)\Cloudflare\Cloudflare WARP\Cloudflare WARP.exe
O4 - HKCU\..\Run: [Boom 3D] = C:\Program Files\Global Delight\Boom 3D\Boom3D.exe --tray
O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2020/12/07)
O4 - HKCU\..\StartupApproved\Run: [Spotify] = C:\Users\Administrator\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (2020/12/07)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2020/12/14)
O4 - HKCU\..\StartupApproved\Run: [com.squirrel.Teams.Teams] = C:\Users\Administrator\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated" (2020/12/13)
O4 - HKCU\..\StartupApproved\Run: [electron.app.Pi Network] = C:\Users\Administrator\AppData\Local\Programs\pi-network-desktop\Pi Network.exe (2020/12/07)
O4 - HKCU\..\StartupApproved\Run: [ipts] = C:\Users\Administrator\Desktop\Yeni klasör (3)\ipts.exe -h (file missing) (2020/12/30)
O4 - HKLM\..\Run: [HotKeysCmds] = C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [IgfxTray] = C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [Persistence] = C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\Run: [SecurityHealth] = 0  (file missing)
O4 - HKLM\..\Run: [cFosSpeed] = C:\Program Files\cFosSpeed\cFosSpeed.exe
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2020/12/07)
O4 - HKLM\..\StartupApproved\Run32: [vmware-tray.exe] = C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (2021/01/04)
O4 - HKLM\..\StartupApproved\Run: [OODefragTray] = C:\Program Files\OO Software\Defrag\oodtray.exe (2020/12/30)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk    ->    C:\Windows\Installer\{D295063F-D1BB-4631-A189-B0892705843D}\app_icon.exe (2020/12/28)
O4 - User Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Brave.lnk    ->    C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
O4-32 - HKLM\..\Run: [Lightshot] = C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4-32 - HKLM\..\Run: [SecurityHealth] = 0  (file missing)
O6 - IE Policy: HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions - present
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O10 - Unknown file in Winsock LSP: C:\Windows\system32\vsocklib.dll
O17 - DHCP DNS 1: 1.1.1.1 (Well-known DNS: Cloudflare / APNIC)
O17 - DHCP DNS 2: 1.0.0.1 (Well-known DNS: Cloudflare / APNIC)
O17 - HKLM\System\CCS\Services\Tcpip\..\{fbaebf4c-68a3-4b61-84b5-880195dff182}: [NameServer] = 1.0.0.1 (Well-known DNS: Cloudflare / APNIC)
O17 - HKLM\System\CCS\Services\Tcpip\..\{fbaebf4c-68a3-4b61-84b5-880195dff182}: [NameServer] = 1.1.1.1 (Well-known DNS: Cloudflare / APNIC)
O20 - HKLM\..\Windows: [AppInit_DLLs] = C:\Windows\system32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvinitx.dll
O20-32 - HKLM\..\Windows: [AppInit_DLLs] = C:\Windows\system32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvinit.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O22 - Task (.job): (Not scheduled) update-S-1-5-21-1528560107-951911503-1219803085-500.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task (.job): (Not scheduled) update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\Windows\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
O22 - Task: (telemetry) NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files\Microsoft Office\Office16\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files\Microsoft Office\Office16\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (Microsoft)
O22 - Task: BraveSoftwareUpdateTaskMachineCore - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe /c
O22 - Task: BraveSoftwareUpdateTaskMachineUA - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe /ua /installsource scheduler
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: Intelligent StandbyList Cleaner - C:\Users\Administrator\ISLC v1.0.2.2\Intelligent standby list cleaner ISLC.exe
O22 - Task: KMS_VL_ALL - C:\KMS_VL_ALL\KMS_VL_ALL.cmd
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
O22 - Task: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
O22 - Task: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: Opera GX scheduled Autoupdate 1597150037 - C:\Users\Administrator\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0)
O22 - Task: Opera GX scheduled Autoupdate 1607345966 - C:\Users\Administrator\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0)
O22 - Task: StartIsBack health check - C:\Program Files (x86)\StartIsBack\startscreen.exe /check
O22 - Task: \Microsoft\Windows\Kokteyl\KokteylNotifier - C:\MicrosoftCorporation\Support\KokteylNotifier.exe
O22 - Task: \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance (file missing)
O22 - Task: \Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup (file missing)
O22 - Task: \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\MpCmdRun.exe Scan -ScheduleJob (file missing)
O22 - Task: \Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification (file missing)
O22 - Task: \cFos\Registration Tasks\Open Browser - c:\users\administrator\appdata\local\programs\opera gx\launcher.exe "http://localhost:1487/cfosspeed/console.htm"
O22 - Task: klcp_update - C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe /verysilent /update /freq=30
O22 - Task: update-S-1-5-21-1528560107-951911503-1219803085-500 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task: update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O23 - Service R2: Apache2.4 - C:\xampp\apache\bin\httpd.exe -k runservice
O23 - Service R2: Cloudflare WARP - (CloudflareWARP) - C:\Program Files\Cloudflare\Cloudflare WARP\\warp-svc.exe
O23 - Service R2: FileZillaServer - C:\xampp\filezillaftp\filezillaserver.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: NoteBook FanControl Service - (NbfcService) - C:\Program Files (x86)\NoteBook FanControl\NbfcService.exe
O23 - Service R2: O&O Defrag - (OODefragAgent) - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service R2: VMware Authorization Service - (VMAuthdService) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O23 - Service R2: VMware DHCP Service - (VMnetDHCP) - C:\Windows\SysWOW64\vmnetdhcp.exe
O23 - Service R2: VMware NAT Service - C:\Windows\SysWOW64\vmnat.exe
O23 - Service R2: VMware USB Arbitration Service - (VMUSBArbService) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service R2: cFosSpeed System Service - (cFosSpeedS) - C:\Program Files\cFosSpeed\spd.exe -service
O23 - Service R2: mysql - C:\xampp\mysql\bin\mysqld.exe --defaults-file=c:\xampp\mysql\bin\my.ini mysql
O23 - Service S2: Brave Güncelleme Hizmeti (brave) - (brave) - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe /svc
O23 - Service S3: Brave Güncelleme Hizmeti (bravem) - (bravem) - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe /medsvc
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Office 64 Source Engine - (ose64) - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: VMware Workstation Server - (VMwareHostd) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe -u "C:\ProgramData\VMware\hostd\config.xml"
O26 - Debugger: HKLM\..\SppExtComObj.exe: [Debugger] = C:\Windows\system32\SppExtComObjPatcher.exe


--
End of file - Time spent: 73,8 sec. - 39096 bytes, CRC32: FFFFFFFF. Sign: ⇆옶
 
Dümdüz dedi:
Bilgisayarda genel yavaşlık, pencere açılışlarında yavaşlık ve bilgisayar açılışı uzun sürüyor. Şimdiden teşekkür ettim.
Genişletmek için tıkla...
Bunları fixleyin:
Kod: 
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: # Copyright (c) 1993-2009 Microsoft Corp.
O1 - Hosts: 192.168.1.99 host.docker.internal
O1 - Hosts: 192.168.1.99 gateway.docker.internal
O1 - Hosts: 127.0.0.1 kubernetes.docker.internal
O1 - Hosts.ICS: 172.18.112.1 WIN-OUBA2NFO4VI.mshome.net # 2025 12 6 6 16 35 21 79
O4 - Global User Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Cloudflare WARP.lnk    ->    C:\Program Files (x86)\Cloudflare\Cloudflare WARP\Cloudflare WARP.exe
O4 - HKCU\..\StartupApproved\Run: [electron.app.Pi Network] = C:\Users\Administrator\AppData\Local\Programs\pi-network-desktop\Pi Network.exe (2020/12/07)
O4 - HKCU\..\StartupApproved\Run: [ipts] = C:\Users\Administrator\Desktop\Yeni klasör (3)\ipts.exe -h (file missing) (2020/12/30)
O4 - HKLM\..\Run: [SecurityHealth] = 0  (file missing)
O4 - HKLM\..\Run: [cFosSpeed] = C:\Program Files\cFosSpeed\cFosSpeed.exe
O4 - HKLM\..\StartupApproved\Run: [OODefragTray] = C:\Program Files\OO Software\Defrag\oodtray.exe (2020/12/30)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk    ->    C:\Windows\Installer\{D295063F-D1BB-4631-A189-B0892705843D}\app_icon.exe (2020/12/28)
O4 - User Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Brave.lnk    ->    C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
O4-32 - HKLM\..\Run: [SecurityHealth] = 0  (file missing)
O6 - IE Policy: HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions - present
O10 - Unknown file in Winsock LSP: C:\Windows\system32\vsocklib.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O22 - Task (.job): (Not scheduled) update-S-1-5-21-1528560107-951911503-1219803085-500.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task (.job): (Not scheduled) update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\Windows\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
O22 - Task: (telemetry) NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files\Microsoft Office\Office16\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files\Microsoft Office\Office16\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (Microsoft)
O22 - Task: BraveSoftwareUpdateTaskMachineCore - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe /c
O22 - Task: BraveSoftwareUpdateTaskMachineUA - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe /ua /installsource scheduler
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: Intelligent StandbyList Cleaner - C:\Users\Administrator\ISLC v1.0.2.2\Intelligent standby list cleaner ISLC.exe
O22 - Task: KMS_VL_ALL - C:\KMS_VL_ALL\KMS_VL_ALL.cmd
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
O22 - Task: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
O22 - Task: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: Opera GX scheduled Autoupdate 1597150037 - C:\Users\Administrator\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0)
O22 - Task: Opera GX scheduled Autoupdate 1607345966 - C:\Users\Administrator\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0)
O22 - Task: StartIsBack health check - C:\Program Files (x86)\StartIsBack\startscreen.exe /check
O22 - Task: \Microsoft\Windows\Kokteyl\KokteylNotifier - C:\MicrosoftCorporation\Support\KokteylNotifier.exe
O22 - Task: \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance (file missing)
O22 - Task: \Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup (file missing)
O22 - Task: \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\MpCmdRun.exe Scan -ScheduleJob (file missing)
O22 - Task: \Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification (file missing)
O22 - Task: \cFos\Registration Tasks\Open Browser - c:\users\administrator\appdata\local\programs\opera gx\launcher.exe "http://localhost:1487/cfosspeed/console.htm"
O22 - Task: klcp_update - C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe /verysilent /update /freq=30
O22 - Task: update-S-1-5-21-1528560107-951911503-1219803085-500 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task: update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O26 - Debugger: HKLM\..\SppExtComObj.exe: [Debugger] = C:\Windows\system32\SppExtComObjPatcher.exe
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26

Platform:  x64 Windows 8.1 (Home Single Language), 6.3.9600.19893, Service Pack: 0
Time:      06.01.2021 - 13:29 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Lenovo    (group: Administrator) on GAKAMECHAW, FirstRun: yes

Opera:   73.0.3856.284
Internet Explorer: 11.0.9600.19036
Default: "C:\Program Files (x86)\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
   1  C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
   1  C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
   1  C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
   1  C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
  14  C:\Program Files (x86)\Opera\73.0.3856.284\opera.exe
   1  C:\Program Files (x86)\Opera\73.0.3856.284\opera_crashreporter.exe
   1  C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
   1  C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
   1  C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
   1  C:\Program Files\Intel\iCLS Client\HeciServer.exe
   1  C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
   1  C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
   1  C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
   1  C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
   1  C:\Program Files\Windows Defender\MpCmdRun.exe
   1  C:\Program Files\Windows Defender\MsMpEng.exe
   1  C:\Program Files\Windows Defender\NisSrv.exe
   1  C:\Users\Lenovo\AppData\Roaming\ProductAuthenticationService\pas.exe
   1  C:\Users\Lenovo\Desktop\HiJackThis.exe
   1  C:\Windows\RTFTrack.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\CxAudMsg64.exe
   1  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SASrv.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\atieclxx.exe
   1  C:\Windows\System32\atiesrxx.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\dwm.exe
   1  C:\Windows\System32\hkcmd.exe
   1  C:\Windows\System32\igfxpers.exe
   1  C:\Windows\System32\igfxsrvc.exe
   1  C:\Windows\System32\igfxtray.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  12  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostex.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://lenovo13.msn.com/?pc=LCJB
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2261465 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2261465 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 www.monster-cheats.com
O1 - Hosts: 0.0.0.0 monster-cheats.com
O1 - Hosts: 0.0.0.0 www.bl-hackers.com
O1 - Hosts: 0.0.0.0 bl-hackers.com
O1 - Hosts: 0.0.0.0 theapathe.com
O1 - Hosts: 0.0.0.0 www.theapathe.com
O1 - Hosts: 0.0.0.0 theapathe.net
O1 - Hosts: 0.0.0.0 www.theapathe.net
O1 - Hosts: 0.0.0.0 theapathe.org
O1 - Hosts: 0.0.0.0 www.theapathe.org
O1 - Hosts: 0.0.0.0 sv1.theapathe.com
O1 - Hosts: 0.0.0.0 apathecheats.com
O1 - Hosts: 0.0.0.0 www.apathecheats.com
O1 - Hosts: 0.0.0.0 apathecheats.net
O1 - Hosts: 0.0.0.0 www.apathecheats.net
O1 - Hosts: 0.0.0.0 apathecheats.org
O1 - Hosts: 0.0.0.0 www.apathecheats.org
O1 - Hosts: 0.0.0.0 download.theapathe.com
O1 - Hosts: 0.0.0.0 www.sv1.theapathe.com
O1 - Hosts: 0.0.0.0 www.download.theapathe.com
O1 - Hosts: 0.0.0.0 www.hileliadam.co
O1 - Hosts: 0.0.0.0 hileliadam.co
O1 - Hosts: 0.0.0.0 www.hilenbizde.com
O1 - Hosts: 0.0.0.0 hilenbizde.com
O1 - Hosts: 0.0.0.0 www.wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.zulahile.com
O1 - Hosts: 0.0.0.0 zulahile.com
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 mrsnapznet.us
O1 - Hosts: 0.0.0.0 www.badeshan.com
O1 - Hosts: 0.0.0.0 www.thefrm.net
O1 - Hosts: 0.0.0.0 www.plathelper.net
O1 - Hosts: 0.0.0.0 www.thefrmonline.com
O1 - Hosts: 0.0.0.0 www.pro-hile.com
O1 - Hosts: 0.0.0.0 www.pro-hile.net
O1 - Hosts: 0.0.0.0 www.hileliadam.com
O1 - Hosts: 0.0.0.0 www.hilelikafa.com
O1 - Hosts: 0.0.0.0 www.gamehileleri.com
O1 - Hosts: 0.0.0.0 www.hilemekani.com
O1 - Hosts: 0.0.0.0 www.frmbull.com
O1 - Hosts: 0.0.0.0 www.turkfrm.net
O1 - Hosts: 0.0.0.0 www.hilesarayi.com
O1 - Hosts: 0.0.0.0 www.xcheats.com
O1 - Hosts: 0.0.0.0 www.xcheats.net
O1 - Hosts: 0.0.0.0 www.xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.com
O1 - Hosts: 0.0.0.0 xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.net
O1 - Hosts: 0.0.0.0 utilcheat.com
O1 - Hosts: 0.0.0.0 turkfrm.net
O1 - Hosts: 0.0.0.0 goldhile.net
O1 - Hosts: 0.0.0.0 onefrm.com
O1 - Hosts: 0.0.0.0 badeshan.com
O1 - Hosts: 0.0.0.0 thefrmonline.com
O1 - Hosts: 0.0.0.0 thefrm.net
O1 - Hosts: 0.0.0.0 pro-hile.com
O1 - Hosts: 0.0.0.0 pro-hile.net
O1 - Hosts: 0.0.0.0 zeusfrm.org
O1 - Hosts: 0.0.0.0 hileliadam.com
O1 - Hosts: 0.0.0.0 hilelikafa.com
O1 - Hosts: 0.0.0.0 gamehileleri.com
O1 - Hosts: 0.0.0.0 hilemekani.com
O1 - Hosts: 0.0.0.0 frmbull.com
O1 - Hosts: 0.0.0.0 plathelper.net
O1 - Hosts: 0.0.0.0 hilesarayi.com
O1 - Hosts: 0.0.0.0 yenilmezfrm.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.com
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.org
O1 - Hosts: 0.0.0.0 pro-hile.org
O1 - Hosts: 0.0.0.0 www.pro-hile.org
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 ultrafrm.net
O1 - Hosts: 0.0.0.0 www.ultrafrm.net
O1 - Hosts: 0.0.0.0 ultrafrm.org
O1 - Hosts: 0.0.0.0 www.ultrafrm.org
O1 - Hosts: 0.0.0.0 ultrafrm.com
O1 - Hosts: 0.0.0.0 www.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 ads.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.hileuzmani.com
O1 - Hosts: 0.0.0.0 hileuzmani.com
O1 - Hosts: 0.0.0.0 unitatis.net
O1 - Hosts: 0.0.0.0 www.unitatis.net
O1 - Hosts: 0.0.0.0 www.mrcheat.us
O1 - Hosts: 0.0.0.0 mrcheat.us
O1 - Hosts: 0.0.0.0 ultrahilem.com
O1 - Hosts: 0.0.0.0 www.ultrahilem.com
O1 - Hosts: 0.0.0.0 moiracheats.net
O1 - Hosts: 0.0.0.0 moiracheats.com
O1 - Hosts: 0.0.0.0 moiracheats.org
O1 - Hosts: 0.0.0.0 www.moiracheats.net
O1 - Hosts: 0.0.0.0 www.moiracheats.com
O1 - Hosts: 0.0.0.0 www.moiracheats.org
O1 - Hosts: 0.0.0.0 mo1racheats.net
O1 - Hosts: 0.0.0.0 mo1racheats.com
O1 - Hosts: 0.0.0.0 mo1racheats.org
O1 - Hosts: 0.0.0.0 www.mo1racheats.net
O1 - Hosts: 0.0.0.0 www.mo1racheats.com
O1 - Hosts: 0.0.0.0 www.mo1racheats.org
O1 - Hosts: 0.0.0.0 kral-hile.com
O1 - Hosts: 0.0.0.0 www.kral-hile.com
O1 - Hosts: 0.0.0.0 www.elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 hoxelizm.com
O1 - Hosts: 0.0.0.0 www.hoxelizm.com
O1 - Hosts: 0.0.0.0 virtualevolution.net
O1 - Hosts: 0.0.0.0 www.virtualevolution.net
O1 - Hosts: 0.0.0.0 virtualevolution.com
O1 - Hosts: 0.0.0.0 www.virtualevolution.com
O1 - Hosts: 0.0.0.0 virtualevolution.org
O1 - Hosts: 0.0.0.0 www.virtualevolution.org
O1 - Hosts: 0.0.0.0 zoomhacks.com
O1 - Hosts: 0.0.0.0 www.zoomhacks.com
O1 - Hosts: 0.0.0.0 www.download.zoomhacks.com
O1 - Hosts: 0.0.0.0 cheatsturkey.net
O1 - Hosts: 0.0.0.0 cheatsturkey.com
O1 - Hosts: 0.0.0.0 cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 unixcheats.com
O1 - Hosts: 0.0.0.0 www.unixcheats.com
O1 - Hosts: 0.0.0.0 unixcheats.net
O1 - Hosts: 0.0.0.0 www.unixcheats.net
O1 - Hosts: 0.0.0.0 unixcheats.org
O1 - Hosts: 0.0.0.0 www.unixcheats.org
O1 - Hosts: 0.0.0.0 gamecheat.center
O1 - Hosts: 0.0.0.0 www.gamecheat.center
O1 - Hosts: 0.0.0.0 www.masyaf.net
O1 - Hosts: 0.0.0.0 masyaf.net
O1 - Hosts: 0.0.0.0 www.masyaf.com
O1 - Hosts: 0.0.0.0 masyaf.com
O1 - Hosts: 0.0.0.0 www.masyaf.org
O1 - Hosts: 0.0.0.0 masyaf.org
O1 - Hosts: 0.0.0.0 serodeck.com
O1 - Hosts: 0.0.0.0 www.serodeck.com
O1 - Hosts: 0.0.0.0 hax4you.com
O1 - Hosts: 0.0.0.0 www.hax4you.com
O1 - Hosts: 0.0.0.0 hax4you.net
O1 - Hosts: 0.0.0.0 www.hax4you.net
O1 - Hosts: 0.0.0.0 hax4you.org
O1 - Hosts: 0.0.0.0 www.hax4you.org
O1 - Hosts: 0.0.0.0 unxc.xyz
O1 - Hosts: 0.0.0.0 www.unxc.xyz
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.net
O1 - Hosts: 0.0.0.0 www.exiledros.net
O1 - Hosts: 0.0.0.0 exiledros.com
O1 - Hosts: 0.0.0.0 www.exiledros.com
O1 - Hosts: 0.0.0.0 exiledros.info
O1 - Hosts: 0.0.0.0 www.exiledros.info
O1 - Hosts: 0.0.0.0 rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 citpekalongan.com
O1 - Hosts: 0.0.0.0 www.citpekalongan.com
O1 - Hosts: 0.0.0.0 vipmrcheats.org
O1 - Hosts: 0.0.0.0 www.vipmrcheats.org
O1 - Hosts: 0.0.0.0 luciros.tk
O1 - Hosts: 0.0.0.0 www.hotshotgamers.net
O1 - Hosts: 0.0.0.0 hotshotgamers.net
O1 - Hosts: 0.0.0.0 www.hotshotgamers.org
O1 - Hosts: 0.0.0.0 hotshotgamers.org
O1 - Hosts: 0.0.0.0 www.hotshotgamers.com
O1 - Hosts: 0.0.0.0 hotshotgamers.com
O1 - Hosts: 0.0.0.0 www.pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 woxcheats.com
O1 - Hosts: 0.0.0.0 www.woxcheats.com
O1 - Hosts: 0.0.0.0 woxcheats.net
O1 - Hosts: 0.0.0.0 www.woxcheats.net
O1 - Hosts: 0.0.0.0 woxcheats.org
O1 - Hosts: 0.0.0.0 www.woxcheats.org
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O4 - HKCU\..\Run: [ProductAuthenticationService] = C:\Users\Lenovo\AppData\Roaming\ProductAuthenticationService\pas.exe /nogui
O4 - HKCU\..\Run: [SteamServerBrowser] = C:\Users\Lenovo\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe
O4 - HKCU\..\StartupApproved\Run: [CCleaner Monitoring] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2018/08/24)
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\Lenovo\AppData\Local\Discord\Update.exe --processStart Discord.exe (2017/07/27)
O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2019/07/09)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2017/09/12)
O4 - HKCU\..\StartupApproved\Run: [WallpaperEngine] = C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe -silent (2018/12/25)
O4 - HKCU\..\StartupApproved\Run: [uTorrent] = C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe (2017/10/15)
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [Energy Manager] = C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
O4 - HKLM\..\Run: [HotKeysCmds] = C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [IAStorIcon] = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [IgfxTray] = C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [Lenovo Utility] = C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
O4 - HKLM\..\Run: [Persistence] = C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtsFT] = C:\windows\RTFTrack.exe
O4 - HKLM\..\Run: [WindowsDefender] = C:\Program Files\Windows Defender\MSASCuiL.exe  (file missing)
O4 - HKLM\..\Run: [cAudioFilterAgent] = C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
O4 - HKLM\..\StartupApproved\Run32: [Adobe Creative Cloud] = C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true (2017/09/12)
O4 - HKLM\..\StartupApproved\Run32: [LogMeIn Hamachi Ui] = C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start (2020/04/11)
O4 - HKLM\..\StartupApproved\Run32: [Opera Browser Assistant] = C:\Program Files (x86)\Opera\assistant\browser_assistant.exe (2020/05/21)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2017/12/01)
O4 - HKLM\..\StartupApproved\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (2020/12/29)
O4 - HKLM\..\StartupApproved\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (2020/05/21)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk    ->    C:\Program Files (x86)\Lenovo\Bluetooth Software\BTTray.exe (2020/12/29)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://webcompanion.com
O17 - DHCP DNS 1: 192.168.0.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending): (no name) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced): (no name) - {05B38830-F4E9-4329-978B-1DD28605D202} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing): (no name) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\00avg: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\Customer Experience Improvement Program\Uploader - C:\windows\system32\WSqmCons.exe -u (Microsoft)
O22 - Task: (disabled) AdobeAAMUpdater-1.0-MIRAC-Lenovo - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
O22 - Task: (telemetry) \Intel\Intel Telemetry 2 (x86) - C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\windows\system32\CompatTelRunner.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\windows\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\windows\system32\CompatTelRunner.exe -maintenance (Microsoft)
O22 - Task: AMD ThankingURL - C:\Program Files\AMD\CIM\Bin64\Setup.exe -LAUNCHTHQURL
O22 - Task: AdobeGCInvoker-1.0 - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe -mode=scheduled
O22 - Task: BlueStacksHelper - C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe -sr
O22 - Task: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: Game_Booster_AutoUpdate - C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe /AUTORUN (file missing)
O22 - Task: Opera scheduled Autoupdate 1513007969 - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate $(Arg0)
O22 - Task: Opera scheduled assistant Autoupdate 1586976836 - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera\assistant" $(Arg0)
O22 - Task: PDVDServ Task - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
O22 - Task: Red Giant Link - C:\Program Files (x86)\Red Giant Link\Red Giant Link.exe --silent (file missing)
O22 - Task: SmartGameBooster SkipUAC (Lenovo) - C:\Program Files (x86)\PCGameBoost\Smart Game Booster\SgbMain.exe /skipuac (file missing)
O22 - Task: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay
O22 - Task: \Lenovo\LSC\LSCHardwareScan - C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan
O22 - Task: \Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
O22 - Task: \Lenovo\Lenovo Customer Feedback Program - C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (file missing)
O22 - Task: \Lenovo\Lenovo Solution Center Launcher - C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
O22 - Task: \Microsoft\Office\Office Automatic Updates - C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False (Microsoft)
O22 - Task: \Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe /WatchService (Microsoft)
O22 - Task: \Norton Identity Safe\Norton Error Analyzer - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe /analyze (file missing)
O22 - Task: \Norton Identity Safe\Norton Error Processor - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe /submit (file missing)
O22 - Task: {CB36F514-7CF4-4033-8FAE-0E87E9337EEE} - C:\windows\system32\pcalua.exe -a C:\windows\unins000.exe
O23 - Service R2: AMD External Events Utility - C:\windows\system32\atiesrxx.exe
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: Bluetooth Service - (btwdins) - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service R2: Conexant Audio Message Service - (CxAudMsg) - C:\windows\system32\CxAudMsg64.exe
O23 - Service R2: Conexant SmartAudio service - (SAService) - C:\windows\SysWOW64\SAsrv.exe  (file missing)
O23 - Service R2: Diagnostics Tracking Service - (DiagTrack) - C:\windows\System32\svchost.exe -k utcsvc; "ServiceDll" = C:\windows\system32\diagtrack.dll
O23 - Service R2: Intel(R) Capability Licensing Service Interface - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service R2: LMIGuardianSvc - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service R2: LogMeIn Hamachi Tunneling Engine - (Hamachi2Svc) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe -s
O23 - Service R2: Microsoft Office ClickToRun Service - (ClickToRunSvc) - C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe /service
O23 - Service R2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: VeriFaceSrv - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service S2: AVG Browser Update Service (avg) - (avg) - C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe /svc (file missing)
O23 - Service S2: Bluetooth Driver Management Service - (BcmBtRSupport) - C:\windows\system32\BtwRSupportService.exe
O23 - Service S3: AVG Browser Update Service (avgm) - (avgm) - C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe /medsvc (file missing)
O23 - Service S3: AdobeUpdateService - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: Cyberlink RichVideo64 Service(CRVS) - (RichVideo64) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Lenovo Solution Center System Service - (LSC.Services.SystemService) - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Uncheater for BattleGroundsLite_SE - (uncheater_bgl) - C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe


--
End of file - Time spent: 18,9 sec. - 47654 bytes, CRC32: FFFFFFFF. Sign: 콶鐺

Problemlerimi açtığım konu Burası

Not: Performansla ilgili bir sorun görmedim..
 
Bunları fixleyin:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://lenovo13.msn.com/?pc=LCJB
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2261465 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2261465 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 www.monster-cheats.com
O1 - Hosts: 0.0.0.0 monster-cheats.com
O1 - Hosts: 0.0.0.0 www.bl-hackers.com
O1 - Hosts: 0.0.0.0 bl-hackers.com
O1 - Hosts: 0.0.0.0 theapathe.com
O1 - Hosts: 0.0.0.0 www.theapathe.com
O1 - Hosts: 0.0.0.0 theapathe.net
O1 - Hosts: 0.0.0.0 www.theapathe.net
O1 - Hosts: 0.0.0.0 theapathe.org
O1 - Hosts: 0.0.0.0 www.theapathe.org
O1 - Hosts: 0.0.0.0 sv1.theapathe.com
O1 - Hosts: 0.0.0.0 apathecheats.com
O1 - Hosts: 0.0.0.0 www.apathecheats.com
O1 - Hosts: 0.0.0.0 apathecheats.net
O1 - Hosts: 0.0.0.0 www.apathecheats.net
O1 - Hosts: 0.0.0.0 apathecheats.org
O1 - Hosts: 0.0.0.0 www.apathecheats.org
O1 - Hosts: 0.0.0.0 download.theapathe.com
O1 - Hosts: 0.0.0.0 www.sv1.theapathe.com
O1 - Hosts: 0.0.0.0 www.download.theapathe.com
O1 - Hosts: 0.0.0.0 www.hileliadam.co
O1 - Hosts: 0.0.0.0 hileliadam.co
O1 - Hosts: 0.0.0.0 www.hilenbizde.com
O1 - Hosts: 0.0.0.0 hilenbizde.com
O1 - Hosts: 0.0.0.0 www.wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.zulahile.com
O1 - Hosts: 0.0.0.0 zulahile.com
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 mrsnapznet.us
O1 - Hosts: 0.0.0.0 www.badeshan.com
O1 - Hosts: 0.0.0.0 www.thefrm.net
O1 - Hosts: 0.0.0.0 www.plathelper.net
O1 - Hosts: 0.0.0.0 www.thefrmonline.com
O1 - Hosts: 0.0.0.0 www.pro-hile.com
O1 - Hosts: 0.0.0.0 www.pro-hile.net
O1 - Hosts: 0.0.0.0 www.hileliadam.com
O1 - Hosts: 0.0.0.0 www.hilelikafa.com
O1 - Hosts: 0.0.0.0 www.gamehileleri.com
O1 - Hosts: 0.0.0.0 www.hilemekani.com
O1 - Hosts: 0.0.0.0 www.frmbull.com
O1 - Hosts: 0.0.0.0 www.turkfrm.net
O1 - Hosts: 0.0.0.0 www.hilesarayi.com
O1 - Hosts: 0.0.0.0 www.xcheats.com
O1 - Hosts: 0.0.0.0 www.xcheats.net
O1 - Hosts: 0.0.0.0 www.xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.com
O1 - Hosts: 0.0.0.0 xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.net
O1 - Hosts: 0.0.0.0 utilcheat.com
O1 - Hosts: 0.0.0.0 turkfrm.net
O1 - Hosts: 0.0.0.0 goldhile.net
O1 - Hosts: 0.0.0.0 onefrm.com
O1 - Hosts: 0.0.0.0 badeshan.com
O1 - Hosts: 0.0.0.0 thefrmonline.com
O1 - Hosts: 0.0.0.0 thefrm.net
O1 - Hosts: 0.0.0.0 pro-hile.com
O1 - Hosts: 0.0.0.0 pro-hile.net
O1 - Hosts: 0.0.0.0 zeusfrm.org
O1 - Hosts: 0.0.0.0 hileliadam.com
O1 - Hosts: 0.0.0.0 hilelikafa.com
O1 - Hosts: 0.0.0.0 gamehileleri.com
O1 - Hosts: 0.0.0.0 hilemekani.com
O1 - Hosts: 0.0.0.0 frmbull.com
O1 - Hosts: 0.0.0.0 plathelper.net
O1 - Hosts: 0.0.0.0 hilesarayi.com
O1 - Hosts: 0.0.0.0 yenilmezfrm.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.com
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.org
O1 - Hosts: 0.0.0.0 pro-hile.org
O1 - Hosts: 0.0.0.0 www.pro-hile.org
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 ultrafrm.net
O1 - Hosts: 0.0.0.0 www.ultrafrm.net
O1 - Hosts: 0.0.0.0 ultrafrm.org
O1 - Hosts: 0.0.0.0 www.ultrafrm.org
O1 - Hosts: 0.0.0.0 ultrafrm.com
O1 - Hosts: 0.0.0.0 www.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 ads.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.hileuzmani.com
O1 - Hosts: 0.0.0.0 hileuzmani.com
O1 - Hosts: 0.0.0.0 unitatis.net
O1 - Hosts: 0.0.0.0 www.unitatis.net
O1 - Hosts: 0.0.0.0 www.mrcheat.us
O1 - Hosts: 0.0.0.0 mrcheat.us
O1 - Hosts: 0.0.0.0 ultrahilem.com
O1 - Hosts: 0.0.0.0 www.ultrahilem.com
O1 - Hosts: 0.0.0.0 moiracheats.net
O1 - Hosts: 0.0.0.0 moiracheats.com
O1 - Hosts: 0.0.0.0 moiracheats.org
O1 - Hosts: 0.0.0.0 www.moiracheats.net
O1 - Hosts: 0.0.0.0 www.moiracheats.com
O1 - Hosts: 0.0.0.0 www.moiracheats.org
O1 - Hosts: 0.0.0.0 mo1racheats.net
O1 - Hosts: 0.0.0.0 mo1racheats.com
O1 - Hosts: 0.0.0.0 mo1racheats.org
O1 - Hosts: 0.0.0.0 www.mo1racheats.net
O1 - Hosts: 0.0.0.0 www.mo1racheats.com
O1 - Hosts: 0.0.0.0 www.mo1racheats.org
O1 - Hosts: 0.0.0.0 kral-hile.com
O1 - Hosts: 0.0.0.0 www.kral-hile.com
O1 - Hosts: 0.0.0.0 www.elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 hoxelizm.com
O1 - Hosts: 0.0.0.0 www.hoxelizm.com
O1 - Hosts: 0.0.0.0 virtualevolution.net
O1 - Hosts: 0.0.0.0 www.virtualevolution.net
O1 - Hosts: 0.0.0.0 virtualevolution.com
O1 - Hosts: 0.0.0.0 www.virtualevolution.com
O1 - Hosts: 0.0.0.0 virtualevolution.org
O1 - Hosts: 0.0.0.0 www.virtualevolution.org
O1 - Hosts: 0.0.0.0 zoomhacks.com
O1 - Hosts: 0.0.0.0 www.zoomhacks.com
O1 - Hosts: 0.0.0.0 www.download.zoomhacks.com
O1 - Hosts: 0.0.0.0 cheatsturkey.net
O1 - Hosts: 0.0.0.0 cheatsturkey.com
O1 - Hosts: 0.0.0.0 cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 unixcheats.com
O1 - Hosts: 0.0.0.0 www.unixcheats.com
O1 - Hosts: 0.0.0.0 unixcheats.net
O1 - Hosts: 0.0.0.0 www.unixcheats.net
O1 - Hosts: 0.0.0.0 unixcheats.org
O1 - Hosts: 0.0.0.0 www.unixcheats.org
O1 - Hosts: 0.0.0.0 gamecheat.center
O1 - Hosts: 0.0.0.0 www.gamecheat.center
O1 - Hosts: 0.0.0.0 www.masyaf.net
O1 - Hosts: 0.0.0.0 masyaf.net
O1 - Hosts: 0.0.0.0 www.masyaf.com
O1 - Hosts: 0.0.0.0 masyaf.com
O1 - Hosts: 0.0.0.0 www.masyaf.org
O1 - Hosts: 0.0.0.0 masyaf.org
O1 - Hosts: 0.0.0.0 serodeck.com
O1 - Hosts: 0.0.0.0 www.serodeck.com
O1 - Hosts: 0.0.0.0 hax4you.com
O1 - Hosts: 0.0.0.0 www.hax4you.com
O1 - Hosts: 0.0.0.0 hax4you.net
O1 - Hosts: 0.0.0.0 www.hax4you.net
O1 - Hosts: 0.0.0.0 hax4you.org
O1 - Hosts: 0.0.0.0 www.hax4you.org
O1 - Hosts: 0.0.0.0 unxc.xyz
O1 - Hosts: 0.0.0.0 www.unxc.xyz
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.net
O1 - Hosts: 0.0.0.0 www.exiledros.net
O1 - Hosts: 0.0.0.0 exiledros.com
O1 - Hosts: 0.0.0.0 www.exiledros.com
O1 - Hosts: 0.0.0.0 exiledros.info
O1 - Hosts: 0.0.0.0 www.exiledros.info
O1 - Hosts: 0.0.0.0 rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 citpekalongan.com
O1 - Hosts: 0.0.0.0 www.citpekalongan.com
O1 - Hosts: 0.0.0.0 vipmrcheats.org
O1 - Hosts: 0.0.0.0 www.vipmrcheats.org
O1 - Hosts: 0.0.0.0 luciros.tk
O1 - Hosts: 0.0.0.0 www.hotshotgamers.net
O1 - Hosts: 0.0.0.0 hotshotgamers.net
O1 - Hosts: 0.0.0.0 www.hotshotgamers.org
O1 - Hosts: 0.0.0.0 hotshotgamers.org
O1 - Hosts: 0.0.0.0 www.hotshotgamers.com
O1 - Hosts: 0.0.0.0 hotshotgamers.com
O1 - Hosts: 0.0.0.0 www.pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 woxcheats.com
O1 - Hosts: 0.0.0.0 www.woxcheats.com
O1 - Hosts: 0.0.0.0 woxcheats.net
O1 - Hosts: 0.0.0.0 www.woxcheats.net
O1 - Hosts: 0.0.0.0 woxcheats.org
O1 - Hosts: 0.0.0.0 www.woxcheats.org
O4 - HKCU\..\Run: [ProductAuthenticationService] = C:\Users\Lenovo\AppData\Roaming\ProductAuthenticationService\pas.exe /nogui
O4 - HKCU\..\Run: [SteamServerBrowser] = C:\Users\Lenovo\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe
O4 - HKCU\..\StartupApproved\Run: [CCleaner Monitoring] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2018/08/24)
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\Lenovo\AppData\Local\Discord\Update.exe --processStart Discord.exe (2017/07/27)
O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2019/07/09)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2017/09/12)
O4 - HKCU\..\StartupApproved\Run: [WallpaperEngine] = C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe -silent (2018/12/25)
O4 - HKCU\..\StartupApproved\Run: [uTorrent] = C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe (2017/10/15)
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [Energy Manager] = C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
O4 - HKLM\..\Run: [IAStorIcon] = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [Lenovo Utility] = C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
O4 - HKLM\..\Run: [RtsFT] = C:\windows\RTFTrack.exe
O4 - HKLM\..\Run: [WindowsDefender] = C:\Program Files\Windows Defender\MSASCuiL.exe  (file missing)
O4 - HKLM\..\StartupApproved\Run32: [Adobe Creative Cloud] = C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true (2017/09/12)
O4 - HKLM\..\StartupApproved\Run32: [LogMeIn Hamachi Ui] = C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start (2020/04/11)
O4 - HKLM\..\StartupApproved\Run32: [Opera Browser Assistant] = C:\Program Files (x86)\Opera\assistant\browser_assistant.exe (2020/05/21)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2017/12/01)
O4 - HKLM\..\StartupApproved\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (2020/12/29)
O4 - HKLM\..\StartupApproved\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (2020/05/21)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending): (no name) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced): (no name) - {05B38830-F4E9-4329-978B-1DD28605D202} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing): (no name) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\00avg: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\Customer Experience Improvement Program\Uploader - C:\windows\system32\WSqmCons.exe -u (Microsoft)
O22 - Task: (telemetry) \Intel\Intel Telemetry 2 (x86) - C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\windows\system32\CompatTelRunner.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\windows\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\windows\system32\CompatTelRunner.exe -maintenance (Microsoft)
O22 - Task: BlueStacksHelper - C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe -sr
O22 - Task: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: Game_Booster_AutoUpdate - C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe /AUTORUN (file missing)
O22 - Task: PDVDServ Task - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
O22 - Task: Red Giant Link - C:\Program Files (x86)\Red Giant Link\Red Giant Link.exe --silent (file missing)
O22 - Task: SmartGameBooster SkipUAC (Lenovo) - C:\Program Files (x86)\PCGameBoost\Smart Game Booster\SgbMain.exe /skipuac (file missing)
O22 - Task: \Lenovo\LSC\LSCHardwareScan - C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan
O22 - Task: \Lenovo\LSC\Lenovo Solution Center Notifications - C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
O22 - Task: \Lenovo\Lenovo Customer Feedback Program - C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (file missing)
O22 - Task: \Lenovo\Lenovo Solution Center Launcher - C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe UpdateStatus
O22 - Task: \Norton Identity Safe\Norton Error Analyzer - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe /analyze (file missing)
O22 - Task: \Norton Identity Safe\Norton Error Processor - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe /submit (file missing)
O22 - Task: {CB36F514-7CF4-4033-8FAE-0E87E9337EEE} - C:\windows\system32\pcalua.exe -a C:\windows\unins000.exe
O23 - Service S2: AVG Browser Update Service (avg) - (avg) - C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe /svc (file missing)
O23 - Service S3: AVG Browser Update Service (avgm) - (avgm) - C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe /medsvc (file missing)
 
Kod: 
Platform:  x64 Windows 10 (Pro), 10.0.19042.685 (ReleaseId: 2009), Service Pack: 0
Elevated: Yes
Chrome:  87.0.4280.88
Edge:    11.0.19041.546
Internet Explorer: 11.0.19041.1
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avp.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avpui.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Users\bilgisayar\Desktop\HiJackThis.exe
   1  C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Windows\System32\RemoteFXvGPUDisablement.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
  65  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.680_none_e72768c3263f99bc\TiWorker.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\servicing\TrustedInstaller.exe

O2 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho_64.dll
O2-32 - HKLM\..\BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho.dll
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0743e5f6-d3b0-4d60-9480-f8ed25a0ef8a}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0743e5f6-d3b0-4d60-9480-f8ed25a0ef8a}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\Windows\system32\MusNotification.exe /RunOnAC RebootDialog (Microsoft)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\Windows\system32\MusNotification.exe /RunOnBattery RebootDialog (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\Windows\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (Microsoft)
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: Intel PTT EK Recertification - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
O22 - Task: Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} - C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe /waitUpgrade
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
O22 - Task: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
O22 - Task: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: OneDrive Standalone Update Task-S-1-5-21-3053472516-2675539424-4051967039-500 - C:\Users\bilgisayar\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (file missing)
O22 - Task: OneDrive Standalone Update Task-S-1-5-21-3559598970-2979608507-1717242270-500 - C:\Users\bilgisayar\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (file missing)
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
O23 - Service R2: Kaspersky Anti-Virus Hizmeti 21.2 - (AVP21.2) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avp.exe -r
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Intel(R) TPM Provisioning Service - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\TPMProvisioningService.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\87.0.4280.88\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 21.2 - (klvssbridge64_21.2) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\x64\vssbridge64.exe
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service


--
End of file - Time spent: 43,2 sec. - 22928 bytes, CRC32: FFFFFFFF. Sign: 쪠㑖
Bilgisayar geç açılıyor hafif biraz sistem yavaşlaması var (ara sıra fanlar hızlanıyor ama normaldir diye düşünüyorum)
 

Benzer konular

taylaan
HijackThis Log Paylaşımı
Mesaj
0
Görüntüleme
548
taylaan
taylaan
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5.686
quarest
quarest
Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
1.001
acv
A
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
3.005
Murat5038
Murat5038
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
14.534
Windows 11 Bükücü
Windows 11 Bükücü

Technopat Haberler

Yeni konular

Yeni mesajlar

Geri
Yukarı