HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode
Paste Code

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleyen: Moderatör:
Genişletmek için tıkla...
brky004 dedi:
Merhabalar. Bilgisayarımda performans düşüşü var. Crackli dosyalar kullanmıştım, galiba zararlı yazılım bulaştırdım. Yardımlarınızı bekliyorum.:
Genişletmek için tıkla...
Bunları fixleyin:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://lenovo13.msn.com/?pc=LCJB
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O4 - HKCU\..\Run: [vidnotifier.exe] = C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/04/02)
O4 - HKCU\..\StartupApproved\Run: [DAEMON Tools Lite Automount] = C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun (2016/06/24)
O4 - HKCU\..\StartupApproved\Run: [FreeDesktopTimer] = C:\Program Files (x86)\Free Desktop Timer\DesktopTimer.exe (2020/02/12)
O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2016/12/27)
O4 - HKCU\..\StartupApproved\Run: [uTorrent] = C:\Users\lenovo\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED (2020/05/12)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notion (2).lnk    ->    C:\Users\lenovo\AppData\Local\Programs\Notion\Notion.exe (2020/11/13)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote uygulamasına gönder.lnk    ->    C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr (2019/03/06)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TimeLeft.lnk    ->    C:\Program Files (x86)\TimeLeft3\TimeLeft.exe (2021/10/03)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trello.lnk    ->    C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe --profile-directory=Default --app-id=jjhlfmdnllncajdndlfnbjonknafhimc (2020/11/13)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [IAStorIcon] = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [Lenovo Utility] = C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
O4 - HKLM\..\Run: [OnekeyStudio] = C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe -start
O4 - HKLM\..\Run: [RtsFT] = C:\WINDOWS\RTFTrack.exe
O4 - HKLM\..\Session Manager: [BootExecute] = bootdelete (file missing)
O4 - HKLM\..\StartupApproved\Run: [Sonic PDF Print Dispatcher] = C:\Program Files (x86)\Investintech.com Inc\Sonic PDF Creator\3.0\itSONPrnDisp.exe (2020/11/02)
4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RescueTime.lnk    ->    C:\Program Files (x86)\RescueTime\RescueTime.exe
O4 - Startup: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - .lnk    ->    C:\WINDOWS\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BL1PK3Y05XJ;CONNECTION=USB;MONITOR=1;
O4 - Startup: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 1510 series.lnk    ->    C:\WINDOWS\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BL1PK3Y05XJ;CONNECTION=USB;MONITOR=1;
O4 - Startup: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitör Mürekkep Uyarıları - HP Deskjet 1510 series.lnk    ->    C:\WINDOWS\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BL1PK3Y05XJ;CONNECTION=USB;MONITOR=1;
O4-32 - HKLM\..\Run: [HP Software Update] = C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [UpdateP2GShortCut] = C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O7 - TroubleShooting: (EV) HKLM\..\Environment: [PSModulePath] = %SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Free YouTube to MP3 Converter: (default) = C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm (file missing)
O9 - Button: HKLM\..\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}: Free YouTube Download - (no file)
O9 - Tools menu item: HKLM\..\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}: Free YouTube Download - (no file)
O9-32 - Button: HKLM\..\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}: Free YouTube Download - (no file)
O9-32 - Tools menu item: HKLM\..\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}: Free YouTube Download - (no file)
O22 - BITS Job: (download) {6072D6E3-CCC2-402C-B781-750F8804510B} - http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/ktuzg2ftzxxcnkisyinnni4vmu_6975/hfnkpimlhhgieaddgfemjhofmfblmnib_6975_all_ado7ldrjfykvfjbmewksy3mxfbna.crx3 -> C:\Users\lenovo\AppData\Local\Temp\chrome_BITS_2668_137674718\hfnkpimlhhgieaddgfemjhofmfblmnib_6975_all_ado7ldrjfykvfjbmewksy3mxfbna.crx3
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): Power_a17007.job - C:\Program Files\Cold Turkey\CTServiceInstaller.exe
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{085B77A2-4675-4EF4-A1BD-39E1DC13D3E5} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F75DA63-CFD0-4C99-9DAC-7B2D2601B18F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F84AC14-588D-4D76-98FF-7DFE1FBF6533} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{111737D3-276C-4AEA-8FDF-7F20CD670039} - \Microsoft\Windows\Setup\gwx\rundetector (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A302AD6-E7ED-46B2-93DC-C4039529E417} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36C0EADA-20E5-43EB-AF2A-1357359A0A02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{562AD17D-CDB4-481C-AC1E-FA5A59CAA90A} - \Microsoft\Windows\UNP\RunCampaignManager (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{562AD17D-CDB4-481C-AC1E-FA5A59CAA90A} (no key)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{685D182E-F4C9-4AE7-852E-570471738566} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C63DF8A-F442-4B05-BFBF-B734344BB175} - \Pokki (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8AE5E18B-B612-4F0C-8040-348D86F23283} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5FD264E-7D10-40C1-A5B1-AF826AF79D5C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C5CE5684-0617-46F3-ABB5-30440B5F539C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CDAAF863-E8C2-4DF0-822D-B5334621611E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E3602690-4B9E-4424-8205-3C8DC4E9936A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E858B12A-518A-44B6-A4FD-2863AF3C83B1} - \WPD\SqmUpload_S-1-5-21-4246409018-511854832-2359394466-1002 (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDC4EF39-55F5-4888-B8A3-3818397F1E90} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F2750C87-6E21-44A1-80D3-823A0B598BB8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3950758-87F9-4A92-BF5A-72B53392F5A1} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NCH Software (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RemoteDesktop\lenovo (empty)
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\IME\SQM data sender - {CCB1D8CB-D39F-41C9-B793-0196214BDC4E} - C:\Windows\System32\IME\shared\imecfm.dll (Microsoft)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-4246409018-511854832-2359394466-1002 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask - {D2CBF5F7-5702-440B-8D8F-8203034A6B82},$(Arg0) - (no file)
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyUpload - {EBF00FCB-0769-4B81-9BEC-6C05514111AA},4 - (no file)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\AUFirmwareInstall - {EFF7F153-1C97-417A-B633-FEDE6683A939} - C:\WINDOWS\system32\wuaueng.dll (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - C:\WINDOWS\System32\AutoWorkplace.exe join (file missing)
O22 - Task: (disabled) \S-1-5-21-4246409018-511854832-2359394466-1002\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: (telemetry) \Lenovo\Vantage\Schedule\DailyTelemetryTransmission - C:\Program Files (x86)\Lenovo\VantageService\3.9.23.0\ScheduleEventAction.exe DailyTelemetryTransmission
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files\Microsoft Office\Office16\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files\Microsoft Office\Office16\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Customer Experience Improvement Program\BthSQM - {C8367320-6F85-11E0-A1F0-0800200C9A66},SYSTEM - C:\WINDOWS\System32\BthTelemetry.dll (Microsoft)
O22 - Task: \Lenovo\ImController\TimeBasedEvents\4d497b52-13d9-4a3e-85d8-7428afd0d977 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 4d497b52-13d9-4a3e-85d8-7428afd0d977
O22 - Task: \Lenovo\ImController\TimeBasedEvents\9bc75d87-e32f-46eb-a8ae-48d0efe5fa74 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 9bc75d87-e32f-46eb-a8ae-48d0efe5fa74
O22 - Task: \Lenovo\ImController\TimeBasedEvents\c1c0f81d-ac17-4d11-be81-6b33c903f6f1 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger c1c0f81d-ac17-4d11-be81-6b33c903f6f1
O22 - Task: \Lenovo\ImController\TimeBasedEvents\d836f5be-bbb1-4c7e-88d7-fd9eb3c0f451 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger d836f5be-bbb1-4c7e-88d7-fd9eb3c0f451
O22 - Task: \Lenovo\ImController\TimeBasedEvents\e8cb6732-8cdf-4dc6-b6ab-f6e8fcb28ce7 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger e8cb6732-8cdf-4dc6-b6ab-f6e8fcb28ce7
O22 - Task: \Lenovo\Lenovo Customer Feedback Program 64 35 - C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
O22 - Task: \Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler - {5AA199A0-1CED-43A5-9B85-3226086738A3} - (no file)
O22 - Task: \Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor - {EA9155A3-8A39-40B4-8963-D3C761B18371} - (no file)
O22 - Task: \Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task - {BF6C1E47-86EC-4194-9CE5-13C15DCB2001},IdleSyncMaintenance - (no file)
O22 - Task: \Microsoft\Windows\SkyDrive\Routine Maintenance Task - {1B1F472E-3221-4826-97DB-2C2324D389AE},RoutineMaintenance - (no file)
O22 - Task: \Microsoft\Windows\SMB\UninstallSMB1ClientTask - C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
O22 - Task: \Microsoft\Windows\SMB\UninstallSMB1ServerTask - C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
O22 - Task: \Microsoft\Windows\Time Synchronization\ViewUtcTime - C:\Users\lenovo\AppData\Roaming\utctimer\utc.exe -st -tu 2 (file missing)
O22 - Task: \R@1n-KMS\Office16ProPlus - C:\WINDOWS\System32\Wbem\wmic.exe path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate
O22 - Task: \Windows\CampaignManager - C:\Users\lenovo\AppData\Local\Temp\vsmic.exe (file missing)
O22 - Task: \Windows\FamilySafetyRefresherTask - C:\Users\lenovo\AppData\Roaming\vsmic.exe (file missing)
O22 - Task: \Windows\ServiceRun - C:\ProgramData\Windows\System32\x64\vsmic.exe (file missing)
O22 - Task: \Windows\SpaceManagTask - C:\Users\lenovo\AppData\Local\vsmic.exe (file missing)
O22 - Task: \Windows\VsUpd - C:\ProgramData\Microsoft Visual Studio\vsmic.exe (file missing)
O22 - Task: {1F11C3F4-CEF6-41FD-A49F-4A571F901593} - C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\Spintires\SpinTires.exe" -d "C:\Program Files (x86)\Spintires"
O22 - Task: {2D6A11D1-34B4-4AFE-B42C-8E9D07828AB2} - c:\program files (x86)\google\chrome\application\chrome.exe http://ui.skype.com/ui/0/7.10.0.101/tr/abandoninstall?source=lightinstaller&page=tsMain
O22 - Task: {489ADC98-FC95-4DB7-B072-68B6A1DEB071} - C:\WINDOWS\system32\pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\"
O22 - Task: {9B6B9A80-485C-4192-A248-7C05CD9975A1} - C:\windows\system32\pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\"
O22 - Task: {AE609717-3598-43BB-ADFD-A5CBD33A3274} - C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\Image-Line\FL Studio 12\uninstall.exe"
O22 - Task: {B3DB32B0-6B2C-4639-96B9-E59D79755071} - C:\windows\system32\pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\"
O22 - Task: {D32547AE-6D61-4522-9D4B-DE1F6F65D27B} - C:\windows\system32\pcalua.exe -a E:\Bas.exe -d E:\
O22 - Task: {FAECBFF9-2C06-4D40-BB2F-AC04852C3FAC} - C:\windows\system32\pcalua.exe -a E:\Bas.exe -d E:\
O22 - Task: [email protected] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
O22 - Task: BlueStacksHelper - C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe -sr (file missing)
O22 - Task: BlueStacksHelper_nxt - C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe -sr
O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Task: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: Dravsynlether Core - C:\Program Files (x86)\Dravsynlether\Drvcoretsk.exe {690E0E88-3E5D-4204-AFB7-C0E84F29F89D} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} (file missing)
O22 - Task: PDVDServ Task - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
O22 - Task: Power_a17007 - C:\Program Files\Cold Turkey\CTServiceInstaller.exe
O23 - Service R2: Devguru Twomon Service - (dglvrsvc) - C:\WINDOWS\dglvrsvc.exe
sumplament dedi:
Muhtemelen Virüs Var, Bilgisayarım Çok Yavaş:
Genişletmek için tıkla...
Bunları fixleyin yazıyı başlığa değil, bir sonrakine konuya yazın.

Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://oem15.msn.com/?pc=NMTE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://www.yandex.com.tr/?win=262&clid=2255506-213
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\f6d01540-519e-11e7-9f79-680715c61f23: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?uil=ru&part={searchTerms} - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\f6d01540-519e-11e7-9f79-680715c61f23: [URL] = https://yandex.com.tr/search/?win=285&clid=2255507-213&text={searchTerms} - Yandex
O2-32 - HKLM\..\BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000000] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000000" /M "L3150 Series" (2021/09/26)
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000001] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000001" /M "L3150 Series" (2021/09/26)
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000002] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000002" /M "L3150 Series" (2021/09/26)
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000004] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000004" /M "L3150 Series" (2021/11/13)
O4 - HKCU\..\StartupApproved\Run: [ut] = C:\Users\Çağan Çakmak\AppData\Roaming\uTorrent\uTorrent.exe (file missing) (2021/09/26)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\Çağan Çakmak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote'a Gönder.lnk    ->    C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr (2021/09/26)
O4 - HKLM\..\StartupApproved\Run: [EPPCCMON] = C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE (2021/09/26)O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2021/09/26)
O4 - HKLM\..\StartupApproved\Run: [IAStorIcon] = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 (2019/06/18)
O22 - Task (.job): (disabled) (Not scheduled) Intel PTT EK Recertification.job - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {9952AA97-BABC-481F-B52F-388AC35F6DDC}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {AA195224-2948-47B2-A3C3-66CC07D70849}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {D4401B96-8EBE-4C9B-A5BC-F30963E20A43}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {E4413189-4E7A-4890-B823-F264C01A86E7}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE
O22 - Task (.job): Yandex Browser'ın sistem güncellemesi.job - C:\Program Files (x86)\Yandex\YandexBrowser\18.1.1.839\service_update.exe (file missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\CCleanerSkipUAC" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {AA195224-2948-47B2-A3C3-66CC07D70849}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {D4401B96-8EBE-4C9B-A5BC-F30963E20A43}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {E4413189-4E7A-4890-B823-F264C01A86E7}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Intel PTT EK Recertification" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d726dfd8e866" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera GX scheduled assistant Autoupdate 1613712576" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera GX scheduled Autoupdate 1605367056" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera scheduled Autoupdate 1538902113" /ENABLE (user missing)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A7A2AE1-03E5-47BB-9D56-C1CDDD64100E} - \Microsoft\Windows\UNP\RunCampaignManager (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A7A2AE1-03E5-47BB-9D56-C1CDDD64100E} (no key)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NCH Software (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Remediation (empty)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-1358552970-2725206389-2226687562-1001 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\CCleaner Update" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\CCleanerSkipUAC" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {AA195224-2948-47B2-A3C3-66CC07D70849}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {D4401B96-8EBE-4C9B-A5BC-F30963E20A43}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {E4413189-4E7A-4890-B823-F264C01A86E7}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Intel PTT EK Recertification" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d726dfd8e866" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera GX scheduled assistant Autoupdate 1613712576" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera GX scheduled Autoupdate 1605367056" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera scheduled Autoupdate 1538902113" /ENABLE
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask - {D2CBF5F7-5702-440B-8D8F-8203034A6B82},$(Arg0) - (no file)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (disabled) \S-1-5-21-1358552970-2725206389-2226687562-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: (disabled) {4C0F637D-5B6E-4920-AEFA-4CCEBCDFAD93} - C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Çağan Çakmak\Downloads\Grand Theft Auto San Andreas Güncelleme v1.01.exe" -d "C:\Users\Çağan Çakmak\Downloads"
O22 - Task: (disabled) Driver Booster SkipUAC (Çağan Çakmak) - C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe /skipuac (file missing)
O22 - Task: (disabled) MSI_Dragon Gaming Center - C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe C:\Program Files (x86)\MSI\Dragon Gaming Center\Dragon Gaming Center.exe
O22 - Task: (disabled) Nahimic2Svc32Run - C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (file missing)
O22 - Task: (disabled) Nahimic2Svc64Run - C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (file missing)
O22 - Task: (disabled) Nahimic2UILauncherRun - C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (file missing)
O22 - Task: (disabled) PDVDServ12 Task - C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe (file missing)

O22 - Task: (disabled) Yandex Browser'ın sistem güncellemesi - C:\Program Files (x86)\Yandex\YandexBrowser\18.1.1.839\service_update.exe --run-as-launcher (file missing)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: EPSON L3150 Series Update {9952AA97-BABC-481F-B52F-388AC35F6DDC} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{9952AA97-BABC-481F-B52F-388AC35F6DDC}" /F:"Update"
O22 - Task: EPSON L3150 Series Update {AA195224-2948-47B2-A3C3-66CC07D70849} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{AA195224-2948-47B2-A3C3-66CC07D70849}" /F:"Update"
O22 - Task: EPSON L3150 Series Update {D4401B96-8EBE-4C9B-A5BC-F30963E20A43} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{D4401B96-8EBE-4C9B-A5BC-F30963E20A43}" /F:"Update"
O22 - Task: EPSON L3150 Series Update {E4413189-4E7A-4890-B823-F264C01A86E7} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{E4413189-4E7A-4890-B823-F264C01A86E7}" /F:"Update"
O22 - Task: Intel PTT EK Recertification - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
O23 - Service S3: Intel(R) Security Assist - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
 
Son düzenleme:
Murat5038 dedi:
Bunları fixleyin:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://lenovo13.msn.com/?pc=LCJB
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O4 - HKCU\..\Run: [vidnotifier.exe] = C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/04/02)
O4 - HKCU\..\StartupApproved\Run: [DAEMON Tools Lite Automount] = C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun (2016/06/24)
O4 - HKCU\..\StartupApproved\Run: [FreeDesktopTimer] = C:\Program Files (x86)\Free Desktop Timer\DesktopTimer.exe (2020/02/12)
O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2016/12/27)
O4 - HKCU\..\StartupApproved\Run: [uTorrent] = C:\Users\lenovo\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED (2020/05/12)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notion (2).lnk    ->    C:\Users\lenovo\AppData\Local\Programs\Notion\Notion.exe (2020/11/13)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote uygulamasına gönder.lnk    ->    C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr (2019/03/06)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TimeLeft.lnk    ->    C:\Program Files (x86)\TimeLeft3\TimeLeft.exe (2021/10/03)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trello.lnk    ->    C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe --profile-directory=Default --app-id=jjhlfmdnllncajdndlfnbjonknafhimc (2020/11/13)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [IAStorIcon] = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [Lenovo Utility] = C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
O4 - HKLM\..\Run: [OnekeyStudio] = C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe -start
O4 - HKLM\..\Run: [RtsFT] = C:\WINDOWS\RTFTrack.exe
O4 - HKLM\..\Session Manager: [BootExecute] = bootdelete (file missing)
O4 - HKLM\..\StartupApproved\Run: [Sonic PDF Print Dispatcher] = C:\Program Files (x86)\Investintech.com Inc\Sonic PDF Creator\3.0\itSONPrnDisp.exe (2020/11/02)
4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RescueTime.lnk    ->    C:\Program Files (x86)\RescueTime\RescueTime.exe
O4 - Startup: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - .lnk    ->    C:\WINDOWS\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BL1PK3Y05XJ;CONNECTION=USB;MONITOR=1;
O4 - Startup: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 1510 series.lnk    ->    C:\WINDOWS\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BL1PK3Y05XJ;CONNECTION=USB;MONITOR=1;
O4 - Startup: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitör Mürekkep Uyarıları - HP Deskjet 1510 series.lnk    ->    C:\WINDOWS\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BL1PK3Y05XJ;CONNECTION=USB;MONITOR=1;
O4-32 - HKLM\..\Run: [HP Software Update] = C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [UpdateP2GShortCut] = C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O7 - TroubleShooting: (EV) HKLM\..\Environment: [PSModulePath] = %SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Free YouTube to MP3 Converter: (default) = C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm (file missing)
O9 - Button: HKLM\..\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}: Free YouTube Download - (no file)
O9 - Tools menu item: HKLM\..\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}: Free YouTube Download - (no file)
O9-32 - Button: HKLM\..\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}: Free YouTube Download - (no file)
O9-32 - Tools menu item: HKLM\..\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}: Free YouTube Download - (no file)
O22 - BITS Job: (download) {6072D6E3-CCC2-402C-B781-750F8804510B} - http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/ktuzg2ftzxxcnkisyinnni4vmu_6975/hfnkpimlhhgieaddgfemjhofmfblmnib_6975_all_ado7ldrjfykvfjbmewksy3mxfbna.crx3 -> C:\Users\lenovo\AppData\Local\Temp\chrome_BITS_2668_137674718\hfnkpimlhhgieaddgfemjhofmfblmnib_6975_all_ado7ldrjfykvfjbmewksy3mxfbna.crx3
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): Power_a17007.job - C:\Program Files\Cold Turkey\CTServiceInstaller.exe
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{085B77A2-4675-4EF4-A1BD-39E1DC13D3E5} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F75DA63-CFD0-4C99-9DAC-7B2D2601B18F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F84AC14-588D-4D76-98FF-7DFE1FBF6533} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{111737D3-276C-4AEA-8FDF-7F20CD670039} - \Microsoft\Windows\Setup\gwx\rundetector (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A302AD6-E7ED-46B2-93DC-C4039529E417} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36C0EADA-20E5-43EB-AF2A-1357359A0A02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{562AD17D-CDB4-481C-AC1E-FA5A59CAA90A} - \Microsoft\Windows\UNP\RunCampaignManager (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{562AD17D-CDB4-481C-AC1E-FA5A59CAA90A} (no key)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{685D182E-F4C9-4AE7-852E-570471738566} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C63DF8A-F442-4B05-BFBF-B734344BB175} - \Pokki (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8AE5E18B-B612-4F0C-8040-348D86F23283} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5FD264E-7D10-40C1-A5B1-AF826AF79D5C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C5CE5684-0617-46F3-ABB5-30440B5F539C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CDAAF863-E8C2-4DF0-822D-B5334621611E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E3602690-4B9E-4424-8205-3C8DC4E9936A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E858B12A-518A-44B6-A4FD-2863AF3C83B1} - \WPD\SqmUpload_S-1-5-21-4246409018-511854832-2359394466-1002 (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDC4EF39-55F5-4888-B8A3-3818397F1E90} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F2750C87-6E21-44A1-80D3-823A0B598BB8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3950758-87F9-4A92-BF5A-72B53392F5A1} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NCH Software (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RemoteDesktop\lenovo (empty)
O22 - Task: (disabled) (telemetry) \Microsoft\Windows\IME\SQM data sender - {CCB1D8CB-D39F-41C9-B793-0196214BDC4E} - C:\Windows\System32\IME\shared\imecfm.dll (Microsoft)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-4246409018-511854832-2359394466-1002 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask - {D2CBF5F7-5702-440B-8D8F-8203034A6B82},$(Arg0) - (no file)
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyUpload - {EBF00FCB-0769-4B81-9BEC-6C05514111AA},4 - (no file)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\WindowsUpdate\AUFirmwareInstall - {EFF7F153-1C97-417A-B633-FEDE6683A939} - C:\WINDOWS\system32\wuaueng.dll (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - C:\WINDOWS\System32\AutoWorkplace.exe join (file missing)
O22 - Task: (disabled) \S-1-5-21-4246409018-511854832-2359394466-1002\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: (telemetry) \Lenovo\Vantage\Schedule\DailyTelemetryTransmission - C:\Program Files (x86)\Lenovo\VantageService\3.9.23.0\ScheduleEventAction.exe DailyTelemetryTransmission
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files\Microsoft Office\Office16\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files\Microsoft Office\Office16\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Customer Experience Improvement Program\BthSQM - {C8367320-6F85-11E0-A1F0-0800200C9A66},SYSTEM - C:\WINDOWS\System32\BthTelemetry.dll (Microsoft)
O22 - Task: \Lenovo\ImController\TimeBasedEvents\4d497b52-13d9-4a3e-85d8-7428afd0d977 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 4d497b52-13d9-4a3e-85d8-7428afd0d977
O22 - Task: \Lenovo\ImController\TimeBasedEvents\9bc75d87-e32f-46eb-a8ae-48d0efe5fa74 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 9bc75d87-e32f-46eb-a8ae-48d0efe5fa74
O22 - Task: \Lenovo\ImController\TimeBasedEvents\c1c0f81d-ac17-4d11-be81-6b33c903f6f1 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger c1c0f81d-ac17-4d11-be81-6b33c903f6f1
O22 - Task: \Lenovo\ImController\TimeBasedEvents\d836f5be-bbb1-4c7e-88d7-fd9eb3c0f451 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger d836f5be-bbb1-4c7e-88d7-fd9eb3c0f451
O22 - Task: \Lenovo\ImController\TimeBasedEvents\e8cb6732-8cdf-4dc6-b6ab-f6e8fcb28ce7 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger e8cb6732-8cdf-4dc6-b6ab-f6e8fcb28ce7
O22 - Task: \Lenovo\Lenovo Customer Feedback Program 64 35 - C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
O22 - Task: \Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler - {5AA199A0-1CED-43A5-9B85-3226086738A3} - (no file)
O22 - Task: \Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor - {EA9155A3-8A39-40B4-8963-D3C761B18371} - (no file)
O22 - Task: \Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task - {BF6C1E47-86EC-4194-9CE5-13C15DCB2001},IdleSyncMaintenance - (no file)
O22 - Task: \Microsoft\Windows\SkyDrive\Routine Maintenance Task - {1B1F472E-3221-4826-97DB-2C2324D389AE},RoutineMaintenance - (no file)
O22 - Task: \Microsoft\Windows\SMB\UninstallSMB1ClientTask - C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
O22 - Task: \Microsoft\Windows\SMB\UninstallSMB1ServerTask - C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
O22 - Task: \Microsoft\Windows\Time Synchronization\ViewUtcTime - C:\Users\lenovo\AppData\Roaming\utctimer\utc.exe -st -tu 2 (file missing)
O22 - Task: \R@1n-KMS\Office16ProPlus - C:\WINDOWS\System32\Wbem\wmic.exe path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate
O22 - Task: \Windows\CampaignManager - C:\Users\lenovo\AppData\Local\Temp\vsmic.exe (file missing)
O22 - Task: \Windows\FamilySafetyRefresherTask - C:\Users\lenovo\AppData\Roaming\vsmic.exe (file missing)
O22 - Task: \Windows\ServiceRun - C:\ProgramData\Windows\System32\x64\vsmic.exe (file missing)
O22 - Task: \Windows\SpaceManagTask - C:\Users\lenovo\AppData\Local\vsmic.exe (file missing)
O22 - Task: \Windows\VsUpd - C:\ProgramData\Microsoft Visual Studio\vsmic.exe (file missing)
O22 - Task: {1F11C3F4-CEF6-41FD-A49F-4A571F901593} - C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\Spintires\SpinTires.exe" -d "C:\Program Files (x86)\Spintires"
O22 - Task: {2D6A11D1-34B4-4AFE-B42C-8E9D07828AB2} - c:\program files (x86)\google\chrome\application\chrome.exe http://ui.skype.com/ui/0/7.10.0.101/tr/abandoninstall?source=lightinstaller&page=tsMain
O22 - Task: {489ADC98-FC95-4DB7-B072-68B6A1DEB071} - C:\WINDOWS\system32\pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\"
O22 - Task: {9B6B9A80-485C-4192-A248-7C05CD9975A1} - C:\windows\system32\pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\"
O22 - Task: {AE609717-3598-43BB-ADFD-A5CBD33A3274} - C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\Image-Line\FL Studio 12\uninstall.exe"
O22 - Task: {B3DB32B0-6B2C-4639-96B9-E59D79755071} - C:\windows\system32\pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends\"
O22 - Task: {D32547AE-6D61-4522-9D4B-DE1F6F65D27B} - C:\windows\system32\pcalua.exe -a E:\Bas.exe -d E:\
O22 - Task: {FAECBFF9-2C06-4D40-BB2F-AC04852C3FAC} - C:\windows\system32\pcalua.exe -a E:\Bas.exe -d E:\
O22 - Task: [email protected] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
O22 - Task: BlueStacksHelper - C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe -sr (file missing)
O22 - Task: BlueStacksHelper_nxt - C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe -sr
O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Task: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: Dravsynlether Core - C:\Program Files (x86)\Dravsynlether\Drvcoretsk.exe {690E0E88-3E5D-4204-AFB7-C0E84F29F89D} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} (file missing)
O22 - Task: PDVDServ Task - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
O22 - Task: Power_a17007 - C:\Program Files\Cold Turkey\CTServiceInstaller.exe
O23 - Service R2: Devguru Twomon Service - (dglvrsvc) - C:\WINDOWS\dglvrsvc.exe

Bunları fixleyin yazıyı başlığa değil, bir sonrakine konuya yazın.

Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://oem15.msn.com/?pc=NMTE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://www.yandex.com.tr/?win=262&clid=2255506-213
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\f6d01540-519e-11e7-9f79-680715c61f23: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?uil=ru&part={searchTerms} - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\f6d01540-519e-11e7-9f79-680715c61f23: [URL] = https://yandex.com.tr/search/?win=285&clid=2255507-213&text={searchTerms} - Yandex
O2-32 - HKLM\..\BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000000] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000000" /M "L3150 Series" (2021/09/26)
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000001] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000001" /M "L3150 Series" (2021/09/26)
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000002] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000002" /M "L3150 Series" (2021/09/26)
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000004] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000004" /M "L3150 Series" (2021/11/13)
O4 - HKCU\..\StartupApproved\Run: [ut] = C:\Users\Çağan Çakmak\AppData\Roaming\uTorrent\uTorrent.exe (file missing) (2021/09/26)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\Çağan Çakmak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote'a Gönder.lnk    ->    C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr (2021/09/26)
O4 - HKLM\..\StartupApproved\Run: [EPPCCMON] = C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE (2021/09/26)O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2021/09/26)
O4 - HKLM\..\StartupApproved\Run: [IAStorIcon] = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 (2019/06/18)
O22 - Task (.job): (disabled) (Not scheduled) Intel PTT EK Recertification.job - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {9952AA97-BABC-481F-B52F-388AC35F6DDC}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {AA195224-2948-47B2-A3C3-66CC07D70849}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {D4401B96-8EBE-4C9B-A5BC-F30963E20A43}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE
O22 - Task (.job): (Not scheduled) EPSON L3150 Series Update {E4413189-4E7A-4890-B823-F264C01A86E7}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE
O22 - Task (.job): Yandex Browser'ın sistem güncellemesi.job - C:\Program Files (x86)\Yandex\YandexBrowser\18.1.1.839\service_update.exe (file missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\CCleanerSkipUAC" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {AA195224-2948-47B2-A3C3-66CC07D70849}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {D4401B96-8EBE-4C9B-A5BC-F30963E20A43}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {E4413189-4E7A-4890-B823-F264C01A86E7}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Intel PTT EK Recertification" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d726dfd8e866" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera GX scheduled assistant Autoupdate 1613712576" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera GX scheduled Autoupdate 1605367056" /ENABLE (user missing)
O22 - Task: (damaged) (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera scheduled Autoupdate 1538902113" /ENABLE (user missing)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A7A2AE1-03E5-47BB-9D56-C1CDDD64100E} - \Microsoft\Windows\UNP\RunCampaignManager (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A7A2AE1-03E5-47BB-9D56-C1CDDD64100E} (no key)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NCH Software (empty)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Remediation (empty)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-1358552970-2725206389-2226687562-1001 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\CCleaner Update" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\CCleanerSkipUAC" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {AA195224-2948-47B2-A3C3-66CC07D70849}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {D4401B96-8EBE-4C9B-A5BC-F30963E20A43}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\EPSON L3150 Series Update {E4413189-4E7A-4890-B823-F264C01A86E7}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Intel PTT EK Recertification" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d726dfd8e866" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera GX scheduled assistant Autoupdate 1613712576" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera GX scheduled Autoupdate 1605367056" /ENABLE
O22 - Task: (disabled) \Avast Software\Gaming mode Task Scheduler recovery - C:\WINDOWS\system32\schtasks.exe /Change /TN "\Opera scheduled Autoupdate 1538902113" /ENABLE
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask - {D2CBF5F7-5702-440B-8D8F-8203034A6B82},$(Arg0) - (no file)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (disabled) \S-1-5-21-1358552970-2725206389-2226687562-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: (disabled) {4C0F637D-5B6E-4920-AEFA-4CCEBCDFAD93} - C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Çağan Çakmak\Downloads\Grand Theft Auto San Andreas Güncelleme v1.01.exe" -d "C:\Users\Çağan Çakmak\Downloads"
O22 - Task: (disabled) Driver Booster SkipUAC (Çağan Çakmak) - C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe /skipuac (file missing)
O22 - Task: (disabled) MSI_Dragon Gaming Center - C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe C:\Program Files (x86)\MSI\Dragon Gaming Center\Dragon Gaming Center.exe
O22 - Task: (disabled) Nahimic2Svc32Run - C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (file missing)
O22 - Task: (disabled) Nahimic2Svc64Run - C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (file missing)
O22 - Task: (disabled) Nahimic2UILauncherRun - C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (file missing)
O22 - Task: (disabled) PDVDServ12 Task - C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe (file missing)

O22 - Task: (disabled) Yandex Browser'ın sistem güncellemesi - C:\Program Files (x86)\Yandex\YandexBrowser\18.1.1.839\service_update.exe --run-as-launcher (file missing)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: EPSON L3150 Series Update {9952AA97-BABC-481F-B52F-388AC35F6DDC} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{9952AA97-BABC-481F-B52F-388AC35F6DDC}" /F:"Update"
O22 - Task: EPSON L3150 Series Update {AA195224-2948-47B2-A3C3-66CC07D70849} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{AA195224-2948-47B2-A3C3-66CC07D70849}" /F:"Update"
O22 - Task: EPSON L3150 Series Update {D4401B96-8EBE-4C9B-A5BC-F30963E20A43} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{D4401B96-8EBE-4C9B-A5BC-F30963E20A43}" /F:"Update"
O22 - Task: EPSON L3150 Series Update {E4413189-4E7A-4890-B823-F264C01A86E7} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{E4413189-4E7A-4890-B823-F264C01A86E7}" /F:"Update"
O22 - Task: Intel PTT EK Recertification - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe
O23 - Service S3: Intel(R) Security Assist - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
Genişletmek için tıkla...
Hocam düzeltme işlemini nasıl yapacağım?
 
Performans düşüşü var ve bazen disk %100 kullanılıyor bu beni çıldırtıyor @Murat5038

[CODE title="Log"]Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.10

Platform: x64 Windows 10 (Pro), 10.0.19042.1348 (ReleaseId: 2009, 20H2), Service Pack: 0
Time: 22.11.2021 - 15:33 (UTC+03:00)
Language: OS: Turkish (0x41F). Display: English (0x409). Non-Unicode: Turkish (0x41F)
Elevated: Yes
Ran by: batuh (group: Administrators) on FirstRun: no

Internet Explorer: 11.0.19041.1202
Default: "C:\Users\batuh\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files (x86)\GAMEPOWER Audio 7.1\GAMEPOWER Audio 7.1.exe
1 C:\Program Files (x86)\Internet Download Manager\IDMan.exe
1 C:\Program Files (x86)\Origin\Origin.exe
1 C:\Program Files (x86)\Origin\OriginClientService.exe
1 C:\Program Files (x86)\Origin\OriginWebHelperService.exe
5 C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
1 C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
1 C:\Program Files\NordVPN\nordvpn-service.exe
3 C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
1 C:\Program Files\Riot Vanguard\vgtray.exe
1 C:\Program Files\Sandboxie\SbieCtrl.exe
1 C:\Program Files\Sandboxie\SbieSvc.exe
1 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.12548.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
1 C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1906.55.0_x64__8wekyb3d8bbwe\Calculator.exe
1 C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
1 C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19071.19011.0_x64__8wekyb3d8bbwe\Video.UI.exe
6 C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe
1 C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
1 C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
6 C:\Users\batuh\AppData\Local\Discord\app-1.0.9003\Discord.exe
1 C:\Users\batuh\AppData\Local\Programs\Opera\81.0.4196.54\opera_crashreporter.exe
58 C:\Users\batuh\AppData\Local\Programs\Opera\opera.exe
1 C:\Users\batuh\Downloads\Programs\HiJackThis.exe
3 C:\Windows\explorer.exe
1 C:\Windows\ImmersiveControlPanel\SystemSettings.exe
1 C:\Windows\System32\ApplicationFrameHost.exe
1 C:\Windows\System32\AudioDeviceService.exe
1 C:\Windows\System32\audiodg.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
1 C:\Windows\System32\dasHost.exe
2 C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4a746d937e6a7240\Display.NvContainer\NVDisplay.Container.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\notepad.exe
1 C:\Windows\System32\oobe\UserOOBEBroker.exe
2 C:\Windows\System32\RtkAudUService64.exe
2 C:\Windows\System32\rundll32.exe
7 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\SecurityHealthSystray.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\SettingSyncHost.exe
1 C:\Windows\System32\SgrmBroker.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
1 C:\Windows\System32\SppExtComObj.Exe
1 C:\Windows\System32\sppsvc.exe
78 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: = https://yandex.com.tr/search/?te...30816 bytes, CRC32: FFFFFFFF. Sign: 䐓㸚[/CODE]
 
Bunları fixleyin:
Kod: 
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 51.15.52.35 www.nyrexscript.com
O1 - Hosts: 51.15.52.35 nyrexscript.com
O1 - Hosts: 51.15.52.35 apathe.net
O1 - Hosts: 51.15.52.35 www.apathe.net
O1 - Hosts: 51.15.52.35 www.cheatglobal.com
O1 - Hosts: 51.15.52.35 cheatglobal.com
O1 - Hosts: 51.15.52.35 www.cheatglobal.net
O1 - Hosts: 51.15.52.35 cheatglobal.net
O1 - Hosts: 51.15.52.35 www.cheatglobal.org
O1 - Hosts: 51.15.52.35 cheatglobal.org
O1 - Hosts: 51.15.52.35 www.cheatglobal.com
O1 - Hosts: 51.15.52.35 cheatglobal.com
O1 - Hosts: 51.15.52.35 www.metin2bot.com
O1 - Hosts: 51.15.52.35 metin2bot.com
O1 - Hosts: 51.15.52.35 www.metin2bot.org
O1 - Hosts: 51.15.52.35 metin2bot.org
O1 - Hosts: 51.15.52.35 www.metin2bot.net
O1 - Hosts: 51.15.52.35 metin2bot.net
O1 - Hosts: 51.15.52.35 www.dreamfancy.com
O1 - Hosts: 51.15.52.35 dreamfancy.com
O1 - Hosts: 51.15.52.35 www.dreamfancy.org
O1 - Hosts: 51.15.52.35 dreamfancy.org
O1 - Hosts: 51.15.52.35 www.dreamfancy.net
O1 - Hosts: 51.15.52.35 dreamfancy.net
O1 - Hosts: 51.15.52.35 www.realitycheats.com
O1 - Hosts: 51.15.52.35 realitycheats.com
O1 - Hosts: 51.15.52.35 www.realitycheats.org
O1 - Hosts: 51.15.52.35 realitycheats.org
O1 - Hosts: 51.15.52.35 www.realitycheats.net
O1 - Hosts: 51.15.52.35 realitycheats.net
O1 - Hosts: 51.15.52.35 www.realui.com
O1 - Hosts: 51.15.52.35 realui.com
O1 - Hosts: 51.15.52.35 www.realui.org
O1 - Hosts: 51.15.52.35 realui.org
O1 - Hosts: 51.15.52.35 www.realui.net
O1 - Hosts: 51.15.52.35 realui.net
O1 - Hosts: 51.15.52.35 www.help.realui.com
O1 - Hosts: 51.15.52.35 help.realui.com
O1 - Hosts: 51.15.52.35 www.help.realui.org
O1 - Hosts: 51.15.52.35 help.realui.org
O1 - Hosts: 51.15.52.35 www.help.realui.net
O1 - Hosts: 51.15.52.35 help.realui.net
O1 - Hosts: 51.15.52.35 www.linkisalt.net
O1 - Hosts: 51.15.52.35 linkisalt.net
O1 - Hosts: 51.15.52.35 www.artecheats.com
O1 - Hosts: 51.15.52.35 artecheats.com
O1 - Hosts: 51.15.52.35 www.artecheats.org
O1 - Hosts: 51.15.52.35 artecheats.org
O1 - Hosts: 51.15.52.35 www.artecheats.net
O1 - Hosts: 51.15.52.35 artecheats.net
O1 - Hosts: 51.15.52.35 www.samcheats.com
O1 - Hosts: 51.15.52.35 samcheats.com
O1 - Hosts: 51.15.52.35 www.samcheats.org
O1 - Hosts: 51.15.52.35 samcheats.org
O1 - Hosts: 51.15.52.35 www.samcheats.net
O1 - Hosts: 51.15.52.35 samcheats.net
O1 - Hosts: 51.15.52.35 leaguehell.net
O1 - Hosts: 51.15.52.35 www.leaguehell.net
O1 - Hosts: 51.15.52.35 leaguehell.com
O1 - Hosts: 51.15.52.35 www.leaguehell.com
O1 - Hosts: 51.15.52.35 leaguehell.org
O1 - Hosts: 51.15.52.35 www.leaguehell.org
O1 - Hosts.ICS: 51.15.52.35 www.nyrexscript.com
O1 - Hosts.ICS: 51.15.52.35 nyrexscript.com
O1 - Hosts.ICS: 51.15.52.35 apathe.net
O1 - Hosts.ICS: 51.15.52.35 www.apathe.net
O1 - Hosts.ICS: 51.15.52.35 www.cheatglobal.com
O1 - Hosts.ICS: 51.15.52.35 cheatglobal.com
O1 - Hosts.ICS: 51.15.52.35 www.cheatglobal.net
O1 - Hosts.ICS: 51.15.52.35 cheatglobal.net
O1 - Hosts.ICS: 51.15.52.35 www.cheatglobal.org
O1 - Hosts.ICS: 51.15.52.35 cheatglobal.org
O1 - Hosts.ICS: 51.15.52.35 www.cheatglobal.com
O1 - Hosts.ICS: 51.15.52.35 cheatglobal.com
O1 - Hosts.ICS: 51.15.52.35 www.metin2bot.com
O1 - Hosts.ICS: 51.15.52.35 metin2bot.com
O1 - Hosts.ICS: 51.15.52.35 www.metin2bot.org
O1 - Hosts.ICS: 51.15.52.35 metin2bot.org
O1 - Hosts.ICS: 51.15.52.35 www.metin2bot.net
O1 - Hosts.ICS: 51.15.52.35 metin2bot.net
O1 - Hosts.ICS: 51.15.52.35 www.dreamfancy.com
O1 - Hosts.ICS: 51.15.52.35 dreamfancy.com
O1 - Hosts.ICS: 51.15.52.35 www.dreamfancy.org
O1 - Hosts.ICS: 51.15.52.35 dreamfancy.org
O1 - Hosts.ICS: 51.15.52.35 www.dreamfancy.net
O1 - Hosts.ICS: 51.15.52.35 dreamfancy.net
O1 - Hosts.ICS: 51.15.52.35 www.realitycheats.com
O1 - Hosts.ICS: 51.15.52.35 realitycheats.com
O1 - Hosts.ICS: 51.15.52.35 www.realitycheats.org
O1 - Hosts.ICS: 51.15.52.35 realitycheats.org
O1 - Hosts.ICS: 51.15.52.35 www.realitycheats.net
O1 - Hosts.ICS: 51.15.52.35 realitycheats.net
O1 - Hosts.ICS: 51.15.52.35 www.realui.com
O1 - Hosts.ICS: 51.15.52.35 realui.com
O1 - Hosts.ICS: 51.15.52.35 www.realui.org
O1 - Hosts.ICS: 51.15.52.35 realui.org
O1 - Hosts.ICS: 51.15.52.35 www.realui.net
O1 - Hosts.ICS: 51.15.52.35 realui.net
O1 - Hosts.ICS: 51.15.52.35 www.help.realui.com
O1 - Hosts.ICS: 51.15.52.35 help.realui.com
O1 - Hosts.ICS: 51.15.52.35 www.help.realui.org
O1 - Hosts.ICS: 51.15.52.35 help.realui.org
O1 - Hosts.ICS: 51.15.52.35 www.help.realui.net
O1 - Hosts.ICS: 51.15.52.35 help.realui.net
O1 - Hosts.ICS: 51.15.52.35 www.linkisalt.net
O1 - Hosts.ICS: 51.15.52.35 linkisalt.net
O1 - Hosts.ICS: 51.15.52.35 www.artecheats.com
O1 - Hosts.ICS: 51.15.52.35 artecheats.com
O1 - Hosts.ICS: 51.15.52.35 www.artecheats.org
O1 - Hosts.ICS: 51.15.52.35 artecheats.org
O1 - Hosts.ICS: 51.15.52.35 www.artecheats.net
O1 - Hosts.ICS: 51.15.52.35 artecheats.net
O1 - Hosts.ICS: 51.15.52.35 www.samcheats.com
O1 - Hosts.ICS: 51.15.52.35 samcheats.com
O1 - Hosts.ICS: 51.15.52.35 www.samcheats.org
O1 - Hosts.ICS: 51.15.52.35 samcheats.org
O1 - Hosts.ICS: 51.15.52.35 www.samcheats.net
O1 - Hosts.ICS: 51.15.52.35 samcheats.net
O1 - Hosts.ICS: 51.15.52.35 leaguehell.net
O1 - Hosts.ICS: 51.15.52.35 www.leaguehell.net
O1 - Hosts.ICS: 51.15.52.35 leaguehell.com
O1 - Hosts.ICS: 51.15.52.35 www.leaguehell.com
O1 - Hosts.ICS: 51.15.52.35 leaguehell.org
O1 - Hosts.ICS: 51.15.52.35 www.leaguehell.org
O4 - HKCU\..\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [utweb] = C:\Users\batuh\AppData\Roaming\uTorrent Web\utweb.exe /MINIMIZED (file missing)
O4 - HKCU\..\StartupApproved\Run: [NordVPN] = C:\Program Files\NordVPN\NordVPN.exe (2021/07/07)
O4 - HKLM\..\Run: [ctfmon] = C:\Windows\System32\ctfmon.exe
O6 - IE Policy: HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel - present
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-179159968-1501832297-1494575857-1001 - C:\Windows\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\Windows\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
 
Murat5038 dedi:
Eki Görüntüle 346215

Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

Eki Görüntüle 346216

4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

Eki Görüntüle 346202

5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
Eki Görüntüle 346203

6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

Eki Görüntüle 346206


*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

Eki Görüntüle 346207
Kod'a tıklayın.

Eki Görüntüle 346208

Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode
Paste Code

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
Eki Görüntüle 346212
Genişletmek için tıkla...

Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.10

Platform:  x64 Windows 10 (Home), 10.0.19043.1348 (ReleaseId: 2009, 21H1), Service Pack: 0
Time:      22.11.2021 - 19:19 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    HP    (group: Administrators) on DESKTOP-AHUI0SC, FirstRun: yes

Chrome:  96.0.4664.45
Internet Explorer: 11.0.19041.1202
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
   1  C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
   1  C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
   1  C:\Program Files (x86)\Microsoft\Edge\Application\96.0.1054.29\identity_helper.exe
   9  C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
   1  C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   2  C:\Program1\MBAMWsc.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
   1  C:\Users\HP\Desktop\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\RtkBtManServ.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\HPSIsvc.exe
   1  C:\Windows\System32\igfxCUIService.exe
   1  C:\Windows\System32\igfxEM.exe
   1  C:\Windows\System32\igfxHK.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   2  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  68  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe
   1  C:\Windows\SysWOW64\PnkBstrA.exe
   1  C:\Windows\SysWOW64\PnkBstrB.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://yandex.com.tr/?clid=2052686
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [TopResultURL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll
O4 - HKCU\..\StartupApproved\Run: [101XPGameCenterTR] = C:\Program Files (x86)\101XP Game Center TR\launcher101xp.exe (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [GogGalaxy] = C:\Program1\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (2021/11/09)
O4 - HKCU\..\StartupApproved\Run: [Mem Reduct] = C:\Users\HP\Desktop\Yeni klasör (3) - Kopya\Mem Reduct\memreduct.exe /minimized (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\WindowsQm\steam.exe -silent (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (2021/10/24)
O4 - HKLM\..\StartupApproved\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2021/11/05)
O4 - HKLM\..\StartupApproved\Run32: [EpicPen] = C:\Program1\Epic Pen\EpicPen.exe -startup (2021/04/09)
O4 - HKLM\..\StartupApproved\Run32: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (2021/11/22)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2021/08/18)
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'Local service')
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'Network service')
O9-32 - Button: HKLM\..\{22CC3EBD-C286-43aa-B8E6-06B115F74162}: HP Smart Print - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9-32 - Tools menu item: HKLM\..\{22CC3EBD-C286-43aa-B8E6-06B115F74162}: SmartPrint - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O17 - DHCP DNS 1: 192.168.1.1
O22 - BITS Job: (download) {0EECC06B-D189-42C3-8F19-523112C27FA4} - https://ftp.hp.com/pub/softlib/software13/HPSA/HPSupportAssistant.cab -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSupportAssistant.cab
O22 - BITS Job: (download) {3ABB14BC-B2E1-420E-A54E-9438B049B343} - http://edgedl.me.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvODNjQUFXN0xyYnNNZ1UyTjZEQjNiZzhuQQ/4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_384_1288926050\4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx
O22 - BITS Job: (download) {3DD8BCCB-A354-42F8-A788-0614A2837CE9} - http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/ac6ivo7hruelckdhd46llv5olfja_73/efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3 -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_7428_1612520573\efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): Wise Care 365.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe (file missing)
O22 - Task (.job): Wise Turbo Checker.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe (file missing)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS (empty)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-431859480-2659974803-1155615725-1001 - C:\Windows\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /l
O22 - Task: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O22 - Task: EOSv3 Scheduler onLogOn - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON
O22 - Task: EOSv3 Scheduler onTime - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)
O22 - Task: Microsoft Office 15 Sync Maintenance for DESKTOP-AHUI0SC-HP DESKTOP-AHUI0SC - C:\Program Files\Microsoft Office\Office15\MsoSync.exe
O22 - Task: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
O22 - Task: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: USER_ESRV_SVC_QUEENCREEK - C:\WINDOWS\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
O23 - Service R2: "Realtek Bluetooth Device Manager Service"    ;RtkServ - (RtkBtManServ) - C:\WINDOWS\RtkBtManServ.exe
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service R2: HP LaserJet Service - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service R2: HP SI Service - (HPSIService) - C:\WINDOWS\system32\HPSIsvc.exe
O23 - Service R2: HP Support Solutions Framework Service - (HPSupportSolutionsFrameworkService) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: PnkBstrA - C:\Windows\system32\PnkBstrA.exe (file missing)
O23 - Service R2: PnkBstrB - C:\Windows\system32\PnkBstrB.exe (file missing)
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service S2: Malwarebytes Service - (MBAMService) - C:\Program1\MBAMService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (file missing)
O23 - Service S3: Easy Anti-Cheat (Epic Online Services) - (EasyAntiCheat_EOS) - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: GalaxyClientService - C:\Program1\GOG Galaxy\GalaxyClientService.exe
O23 - Service S3: GalaxyCommunication - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\96.0.4664.45\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service
O23 - Service S3: Office 64 Source Engine - (ose64) - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: ProtonVPN Service - C:\Program1\ProtonVPNService.exe
O23 - Service S3: ProtonVPN Update Service - C:\Program1\ProtonVPN.UpdateService.exe
O23 - Service S3: ProtonVPN WireGuard - C:\Program1\ProtonVPN.WireGuardService.exe C:\ProgramData\ProtonVPN\WireGuard\ProtonVPN.conf
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe


--
End of file - Time spent: 75,4 sec. - 36034 bytes, CRC32: FFFFFFFF. Sign: ꁅ햢
insann dedi:
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.10

Platform:  x64 Windows 10 (Home), 10.0.19043.1348 (ReleaseId: 2009, 21H1), Service Pack: 0
Time:      22.11.2021 - 19:19 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    HP    (group: Administrators) on DESKTOP-AHUI0SC, FirstRun: yes

Chrome:  96.0.4664.45
Internet Explorer: 11.0.19041.1202
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
   1  C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
   1  C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
   1  C:\Program Files (x86)\Microsoft\Edge\Application\96.0.1054.29\identity_helper.exe
   9  C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
   1  C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   2  C:\Program1\MBAMWsc.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
   1  C:\Users\HP\Desktop\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\RtkBtManServ.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\HPSIsvc.exe
   1  C:\Windows\System32\igfxCUIService.exe
   1  C:\Windows\System32\igfxEM.exe
   1  C:\Windows\System32\igfxHK.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   2  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  68  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe
   1  C:\Windows\SysWOW64\PnkBstrA.exe
   1  C:\Windows\SysWOW64\PnkBstrB.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://yandex.com.tr/?clid=2052686
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [TopResultURL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll
O4 - HKCU\..\StartupApproved\Run: [101XPGameCenterTR] = C:\Program Files (x86)\101XP Game Center TR\launcher101xp.exe (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [GogGalaxy] = C:\Program1\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (2021/11/09)
O4 - HKCU\..\StartupApproved\Run: [Mem Reduct] = C:\Users\HP\Desktop\Yeni klasör (3) - Kopya\Mem Reduct\memreduct.exe /minimized (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\WindowsQm\steam.exe -silent (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (2021/10/24)
O4 - HKLM\..\StartupApproved\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2021/11/05)
O4 - HKLM\..\StartupApproved\Run32: [EpicPen] = C:\Program1\Epic Pen\EpicPen.exe -startup (2021/04/09)
O4 - HKLM\..\StartupApproved\Run32: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (2021/11/22)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2021/08/18)
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'Local service')
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'Network service')
O9-32 - Button: HKLM\..\{22CC3EBD-C286-43aa-B8E6-06B115F74162}: HP Smart Print - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9-32 - Tools menu item: HKLM\..\{22CC3EBD-C286-43aa-B8E6-06B115F74162}: SmartPrint - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O17 - DHCP DNS 1: 192.168.1.1
O22 - BITS Job: (download) {0EECC06B-D189-42C3-8F19-523112C27FA4} - https://ftp.hp.com/pub/softlib/software13/HPSA/HPSupportAssistant.cab -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSupportAssistant.cab
O22 - BITS Job: (download) {3ABB14BC-B2E1-420E-A54E-9438B049B343} - http://edgedl.me.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvODNjQUFXN0xyYnNNZ1UyTjZEQjNiZzhuQQ/4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_384_1288926050\4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx
O22 - BITS Job: (download) {3DD8BCCB-A354-42F8-A788-0614A2837CE9} - http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/ac6ivo7hruelckdhd46llv5olfja_73/efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3 -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_7428_1612520573\efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): Wise Care 365.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe (file missing)
O22 - Task (.job): Wise Turbo Checker.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe (file missing)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS (empty)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-431859480-2659974803-1155615725-1001 - C:\Windows\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /l
O22 - Task: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O22 - Task: EOSv3 Scheduler onLogOn - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON
O22 - Task: EOSv3 Scheduler onTime - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)
O22 - Task: Microsoft Office 15 Sync Maintenance for DESKTOP-AHUI0SC-HP DESKTOP-AHUI0SC - C:\Program Files\Microsoft Office\Office15\MsoSync.exe
O22 - Task: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
O22 - Task: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: USER_ESRV_SVC_QUEENCREEK - C:\WINDOWS\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
O23 - Service R2: "Realtek Bluetooth Device Manager Service"    ;RtkServ - (RtkBtManServ) - C:\WINDOWS\RtkBtManServ.exe
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service R2: HP LaserJet Service - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service R2: HP SI Service - (HPSIService) - C:\WINDOWS\system32\HPSIsvc.exe
O23 - Service R2: HP Support Solutions Framework Service - (HPSupportSolutionsFrameworkService) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: PnkBstrA - C:\Windows\system32\PnkBstrA.exe (file missing)
O23 - Service R2: PnkBstrB - C:\Windows\system32\PnkBstrB.exe (file missing)
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service S2: Malwarebytes Service - (MBAMService) - C:\Program1\MBAMService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (file missing)
O23 - Service S3: Easy Anti-Cheat (Epic Online Services) - (EasyAntiCheat_EOS) - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: GalaxyClientService - C:\Program1\GOG Galaxy\GalaxyClientService.exe
O23 - Service S3: GalaxyCommunication - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\96.0.4664.45\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service
O23 - Service S3: Office 64 Source Engine - (ose64) - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: ProtonVPN Service - C:\Program1\ProtonVPNService.exe
O23 - Service S3: ProtonVPN Update Service - C:\Program1\ProtonVPN.UpdateService.exe
O23 - Service S3: ProtonVPN WireGuard - C:\Program1\ProtonVPN.WireGuardService.exe C:\ProgramData\ProtonVPN\WireGuard\ProtonVPN.conf
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe


--
End of file - Time spent: 75,4 sec. - 36034 bytes, CRC32: FFFFFFFF. Sign: ꁅ햢
Genişletmek için tıkla...
Bilgisayar yavaşladığı için yaptım bunu @Murat5038 hocam.https://www.technopat.net/sosyal/konu/laptop-cok-yavas-calisiyor.1753281/page-2#post-13636815https://www.technopat.net/sosyal/konu/laptop-cok-yavas-calisiyor.1753281/page-2#post-13636815
insann dedi:
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.10

Platform:  x64 Windows 10 (Home), 10.0.19043.1348 (ReleaseId: 2009, 21H1), Service Pack: 0
Time:      22.11.2021 - 19:19 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    HP    (group: Administrators) on DESKTOP-AHUI0SC, FirstRun: yes

Chrome:  96.0.4664.45
Internet Explorer: 11.0.19041.1202
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
   1  C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
   1  C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
   1  C:\Program Files (x86)\Microsoft\Edge\Application\96.0.1054.29\identity_helper.exe
   9  C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
   1  C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   2  C:\Program1\MBAMWsc.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
   1  C:\Users\HP\Desktop\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\RtkBtManServ.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\HPSIsvc.exe
   1  C:\Windows\System32\igfxCUIService.exe
   1  C:\Windows\System32\igfxEM.exe
   1  C:\Windows\System32\igfxHK.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   2  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  68  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe
   1  C:\Windows\SysWOW64\PnkBstrA.exe
   1  C:\Windows\SysWOW64\PnkBstrB.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://yandex.com.tr/?clid=2052686
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [TopResultURL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll
O4 - HKCU\..\StartupApproved\Run: [101XPGameCenterTR] = C:\Program Files (x86)\101XP Game Center TR\launcher101xp.exe (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [GogGalaxy] = C:\Program1\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (2021/11/09)
O4 - HKCU\..\StartupApproved\Run: [Mem Reduct] = C:\Users\HP\Desktop\Yeni klasör (3) - Kopya\Mem Reduct\memreduct.exe /minimized (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\WindowsQm\steam.exe -silent (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (2021/10/24)
O4 - HKLM\..\StartupApproved\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2021/11/05)
O4 - HKLM\..\StartupApproved\Run32: [EpicPen] = C:\Program1\Epic Pen\EpicPen.exe -startup (2021/04/09)
O4 - HKLM\..\StartupApproved\Run32: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (2021/11/22)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2021/08/18)
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'Local service')
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'Network service')
O9-32 - Button: HKLM\..\{22CC3EBD-C286-43aa-B8E6-06B115F74162}: HP Smart Print - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9-32 - Tools menu item: HKLM\..\{22CC3EBD-C286-43aa-B8E6-06B115F74162}: SmartPrint - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O17 - DHCP DNS 1: 192.168.1.1
O22 - BITS Job: (download) {0EECC06B-D189-42C3-8F19-523112C27FA4} - https://ftp.hp.com/pub/softlib/software13/HPSA/HPSupportAssistant.cab -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSupportAssistant.cab
O22 - BITS Job: (download) {3ABB14BC-B2E1-420E-A54E-9438B049B343} - http://edgedl.me.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvODNjQUFXN0xyYnNNZ1UyTjZEQjNiZzhuQQ/4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_384_1288926050\4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx
O22 - BITS Job: (download) {3DD8BCCB-A354-42F8-A788-0614A2837CE9} - http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/ac6ivo7hruelckdhd46llv5olfja_73/efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3 -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_7428_1612520573\efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): Wise Care 365.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe (file missing)
O22 - Task (.job): Wise Turbo Checker.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe (file missing)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS (empty)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-431859480-2659974803-1155615725-1001 - C:\Windows\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /l
O22 - Task: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O22 - Task: EOSv3 Scheduler onLogOn - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON
O22 - Task: EOSv3 Scheduler onTime - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)
O22 - Task: Microsoft Office 15 Sync Maintenance for DESKTOP-AHUI0SC-HP DESKTOP-AHUI0SC - C:\Program Files\Microsoft Office\Office15\MsoSync.exe
O22 - Task: NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
O22 - Task: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
O22 - Task: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
O22 - Task: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task: USER_ESRV_SVC_QUEENCREEK - C:\WINDOWS\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
O23 - Service R2: "Realtek Bluetooth Device Manager Service"    ;RtkServ - (RtkBtManServ) - C:\WINDOWS\RtkBtManServ.exe
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service R2: HP LaserJet Service - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service R2: HP SI Service - (HPSIService) - C:\WINDOWS\system32\HPSIsvc.exe
O23 - Service R2: HP Support Solutions Framework Service - (HPSupportSolutionsFrameworkService) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: PnkBstrA - C:\Windows\system32\PnkBstrA.exe (file missing)
O23 - Service R2: PnkBstrB - C:\Windows\system32\PnkBstrB.exe (file missing)
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service S2: Malwarebytes Service - (MBAMService) - C:\Program1\MBAMService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (file missing)
O23 - Service S3: Easy Anti-Cheat (Epic Online Services) - (EasyAntiCheat_EOS) - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: GalaxyClientService - C:\Program1\GOG Galaxy\GalaxyClientService.exe
O23 - Service S3: GalaxyCommunication - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\96.0.4664.45\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service
O23 - Service S3: Office 64 Source Engine - (ose64) - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: ProtonVPN Service - C:\Program1\ProtonVPNService.exe
O23 - Service S3: ProtonVPN Update Service - C:\Program1\ProtonVPN.UpdateService.exe
O23 - Service S3: ProtonVPN WireGuard - C:\Program1\ProtonVPN.WireGuardService.exe C:\ProgramData\ProtonVPN\WireGuard\ProtonVPN.conf
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe


--
End of file - Time spent: 75,4 sec. - 36034 bytes, CRC32: FFFFFFFF. Sign: ꁅ햢
Genişletmek için tıkla...
Bilgisayar yavaşladığı için yaptım bunu @Murat5038 hocam. Laptop çok yavaş çalışıyor
 
Son düzenleme:
Bunları fixleyin:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://yandex.com.tr/?clid=2052686
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [TopResultURL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
O4 - HKCU\..\StartupApproved\Run: [101XPGameCenterTR] = C:\Program Files (x86)\101XP Game Center TR\launcher101xp.exe (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [GogGalaxy] = C:\Program1\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (2021/11/09)
O4 - HKCU\..\StartupApproved\Run: [Mem Reduct] = C:\Users\HP\Desktop\Yeni klasör (3) - Kopya\Mem Reduct\memreduct.exe /minimized (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\WindowsQm\steam.exe -silent (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2021/11/05)
O4 - HKLM\..\StartupApproved\Run32: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (2021/11/22)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2021/08/18)
O22 - BITS Job: (download) {0EECC06B-D189-42C3-8F19-523112C27FA4} - https://ftp.hp.com/pub/softlib/software13/HPSA/HPSupportAssistant.cab -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSupportAssistant.cab
O22 - BITS Job: (download) {3ABB14BC-B2E1-420E-A54E-9438B049B343} - http://edgedl.me.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvODNjQUFXN0xyYnNNZ1UyTjZEQjNiZzhuQQ/4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_384_1288926050\4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx
O22 - BITS Job: (download) {3DD8BCCB-A354-42F8-A788-0614A2837CE9} - http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/ac6ivo7hruelckdhd46llv5olfja_73/efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3 -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_7428_1612520573\efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): Wise Care 365.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe (file missing)
O22 - Task (.job): Wise Turbo Checker.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe (file missing)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS (empty)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-431859480-2659974803-1155615725-1001 - C:\Windows\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /l
O22 - Task: EOSv3 Scheduler onLogOn - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON
O22 - Task: EOSv3 Scheduler onTime - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)
O22 - Task: Microsoft Office 15 Sync Maintenance for DESKTOP-AHUI0SC-HP DESKTOP-AHUI0SC - C:\Program Files\Microsoft Office\Office15\MsoSync.exe
O22 - Task: USER_ESRV_SVC_QUEENCREEK - C:\WINDOWS\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service S3: GalaxyClientService - C:\Program1\GOG Galaxy\GalaxyClientService.exe
O23 - Service S3: GalaxyCommunication - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"

Proton VPN kaldır çok gerekli değilse, Yazıcı sürücülerini güncelle yazıcıyı kullanıyorsan.

C:\WindowsQm\steam.exe
Bu dosyayı VT'ye upload edip sonucu paylaşın.
 
Murat5038 dedi:
Bunları fixleyin:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://yandex.com.tr/?clid=2052686
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [TopResultURL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
O4 - HKCU\..\StartupApproved\Run: [101XPGameCenterTR] = C:\Program Files (x86)\101XP Game Center TR\launcher101xp.exe (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [GogGalaxy] = C:\Program1\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (2021/11/09)
O4 - HKCU\..\StartupApproved\Run: [Mem Reduct] = C:\Users\HP\Desktop\Yeni klasör (3) - Kopya\Mem Reduct\memreduct.exe /minimized (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\WindowsQm\steam.exe -silent (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2021/11/05)
O4 - HKLM\..\StartupApproved\Run32: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (2021/11/22)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2021/08/18)
O22 - BITS Job: (download) {0EECC06B-D189-42C3-8F19-523112C27FA4} - https://ftp.hp.com/pub/softlib/software13/HPSA/HPSupportAssistant.cab -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSupportAssistant.cab
O22 - BITS Job: (download) {3ABB14BC-B2E1-420E-A54E-9438B049B343} - http://edgedl.me.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvODNjQUFXN0xyYnNNZ1UyTjZEQjNiZzhuQQ/4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_384_1288926050\4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx
O22 - BITS Job: (download) {3DD8BCCB-A354-42F8-A788-0614A2837CE9} - http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/ac6ivo7hruelckdhd46llv5olfja_73/efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3 -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_7428_1612520573\efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): Wise Care 365.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe (file missing)
O22 - Task (.job): Wise Turbo Checker.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe (file missing)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS (empty)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-431859480-2659974803-1155615725-1001 - C:\Windows\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /l
O22 - Task: EOSv3 Scheduler onLogOn - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON
O22 - Task: EOSv3 Scheduler onTime - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)
O22 - Task: Microsoft Office 15 Sync Maintenance for DESKTOP-AHUI0SC-HP DESKTOP-AHUI0SC - C:\Program Files\Microsoft Office\Office15\MsoSync.exe
O22 - Task: USER_ESRV_SVC_QUEENCREEK - C:\WINDOWS\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service S3: GalaxyClientService - C:\Program1\GOG Galaxy\GalaxyClientService.exe
O23 - Service S3: GalaxyCommunication - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"

Proton VPN kaldır çok gerekli değilse, Yazıcı sürücülerini güncelle yazıcıyı kullanıyorsan.

C:\WindowsQm\steam.exe
Bu dosyayı VT'ye upload edip sonucu paylaşın.
Genişletmek için tıkla...
Murat hocam teşekkürler, Proton VPN' i Ubisoft' taki bir oyunu almak için indirmiştim işim bitti. Kaldıracağım. Fakat VT ne demek ve VT' ye upload etmek nasıl oluyor? Bir de yazıcı sürücülerim günceldi fakat yine de kontrol edeyim.
Murat5038 dedi:
Bunları fixleyin:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://yandex.com.tr/?clid=2052686
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [TopResultURL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = http://yandex.com.tr/yandsearch?text={searchTerms}&clid=2052687 - Yandex TR
O4 - HKCU\..\StartupApproved\Run: [101XPGameCenterTR] = C:\Program Files (x86)\101XP Game Center TR\launcher101xp.exe (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [GogGalaxy] = C:\Program1\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (2021/11/09)
O4 - HKCU\..\StartupApproved\Run: [Mem Reduct] = C:\Users\HP\Desktop\Yeni klasör (3) - Kopya\Mem Reduct\memreduct.exe /minimized (2021/11/08)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\WindowsQm\steam.exe -silent (2021/08/18)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2021/11/05)
O4 - HKLM\..\StartupApproved\Run32: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (2021/11/22)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2021/08/18)
O22 - BITS Job: (download) {0EECC06B-D189-42C3-8F19-523112C27FA4} - https://ftp.hp.com/pub/softlib/software13/HPSA/HPSupportAssistant.cab -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSupportAssistant.cab
O22 - BITS Job: (download) {3ABB14BC-B2E1-420E-A54E-9438B049B343} - http://edgedl.me.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvODNjQUFXN0xyYnNNZ1UyTjZEQjNiZzhuQQ/4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_384_1288926050\4.10.2209.0_oimompecagnajdejgnnjijobebaeigek.crx
O22 - BITS Job: (download) {3DD8BCCB-A354-42F8-A788-0614A2837CE9} - http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/ac6ivo7hruelckdhd46llv5olfja_73/efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3 -> C:\Users\HP\AppData\Local\Temp\chrome_BITS_7428_1612520573\efniojlnjndmcbiieegkicadnoecjjef_73_all_admucbfugpse7ml7z4jbiqw6t3oq.crx3
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): Wise Care 365.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe (file missing)
O22 - Task (.job): Wise Turbo Checker.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe (file missing)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS (empty)
O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-431859480-2659974803-1155615725-1001 - C:\Windows\System32\AgentActivationRuntimeStarter.exe
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload mininterval:2880 (Microsoft)
O22 - Task: (telemetry) \Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office\Office15\msoia.exe scan upload (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /l
O22 - Task: EOSv3 Scheduler onLogOn - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON
O22 - Task: EOSv3 Scheduler onTime - C:\Users\HP\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)
O22 - Task: Microsoft Office 15 Sync Maintenance for DESKTOP-AHUI0SC-HP DESKTOP-AHUI0SC - C:\Program Files\Microsoft Office\Office15\MsoSync.exe
O22 - Task: USER_ESRV_SVC_QUEENCREEK - C:\WINDOWS\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service S3: GalaxyClientService - C:\Program1\GOG Galaxy\GalaxyClientService.exe
O23 - Service S3: GalaxyCommunication - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"

Proton VPN kaldır çok gerekli değilse, Yazıcı sürücülerini güncelle yazıcıyı kullanıyorsan.

C:\WindowsQm\steam.exe
Bu dosyayı VT'ye upload edip sonucu paylaşın.
Genişletmek için tıkla...
Hocam bir de dünkü taramadan sonra bilgisayarı kapatmıştım aynı tarama tekrar çıkar mı? Bir de hangilerini tiklememi tam olarak söyler misiniz?
 
insann dedi:
Fakat VT ne demek ve VT' ye upload etmek nasıl oluyor?
Genişletmek için tıkla...
Virüstotal.
insann dedi:
Hocam bir de dünkü taramadan sonra bilgisayarı kapatmıştım aynı tarama tekrar çıkar mı? Bir de hangilerini tiklememi tam olarak söyler misiniz?
Genişletmek için tıkla...
Tekrar taratıp kod içine aldıklarımı fixleyeceksiniz. Rehberi okursanız anlarsınız.
 

Benzer konular

Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
641
acv
A
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5B
quarest
quarest
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
10B
Windows 11 Bükücü
Windows 11 Bükücü
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
2B
Murat5038
Murat5038
B
Trojan ve Keylogger Temizleme
Mesaj
3
Görüntüleme
4B
Murat5038
Murat5038

Yeni konular

Yeni mesajlar

Geri
Yukarı