Rehber HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleme:
Genişletmek için tıkla...
Merhaba Bilgisayar da Performans düşüşü var gibi antivürüs programım da var fakat uyarı felan yok arka planda işlemciye yük bindiren bir olay varmıdır ? acaba bilgi verirseniz çok mutlu olurum. teşekkürler

Kod: 
Number | Path

   1  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe

   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe

   3  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.18\avp.exe

   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.18\avpui.exe

   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.18\ksde.exe

   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.18\ksdeui.exe

   6  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.80\msedgewebview2.exe

   1  C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe

   1  C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe

   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe

   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe

   1  C:\Program Files\LGHUB\lghub_agent.exe

   1  C:\Program Files\LGHUB\lghub_updater.exe

   2  C:\Program Files\LGHUB\logi_crashpad_handler.exe

   1  C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe

   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

   1  C:\Program Files\OEM\Control Center\UniwillService\GCUBridge.exe

   1  C:\Program Files\OEM\Control Center\UniwillService\MyControlCenter\GCUService.exe

   1  C:\Program Files\OEM\Control Center\UniwillService\MyControlCenter\OSDTpDetect.exe

   1  C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2024.1.0.0_x64__v826wp6bftszj\TranslucentTB.exe

   1  C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2445.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe

   1  C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe

   1  C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe

   1  C:\Program Files\WindowsApps\ControlCenter3_5.8.49.12_x64__h329z55cwnj8g\GamingCenter3_Cross.exe

   1  C:\Program Files\WindowsApps\ControlCenter3_5.8.49.12_x64__h329z55cwnj8g\Win32\SystrayComponent.exe

   1  C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.1.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe

   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe

  19  C:\Users\ferdi\AppData\Local\Thorium\Application\thorium.exe

   1  C:\Users\ferdi\Desktop\HiJackThis\HiJackThis.exe

   1  C:\Windows\explorer.exe

   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe

   1  C:\Windows\System32\ApplicationFrameHost.exe

   1  C:\Windows\System32\audiodg.exe

   1  C:\Windows\System32\backgroundTaskHost.exe

   2  C:\Windows\System32\conhost.exe

   2  C:\Windows\System32\csrss.exe

   1  C:\Windows\System32\ctfmon.exe

   2  C:\Windows\System32\dllhost.exe

   1  C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe

   1  C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a687edda40db3316\OneApp.IGCC.WinService.exe

   1  C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\AS\IAS\IntelAudioService.exe

   1  C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_helper.exe

   1  C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_uf.exe

   1  C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray_service.exe

   1  C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe

   2  C:\Windows\System32\DriverStore\FileRepository\nvtfi.inf_amd64_56c8f5189fff844e\Display.NvContainer\NVDisplay.Container.exe

   1  C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3020235693730747\RtkAudUService64.exe

   1  C:\Windows\System32\dwm.exe

   2  C:\Windows\System32\fontdrvhost.exe

   1  C:\Windows\System32\LsaIso.exe

   1  C:\Windows\System32\lsass.exe

   1  C:\Windows\System32\oobe\UserOOBEBroker.exe

  11  C:\Windows\System32\RuntimeBroker.exe

   1  C:\Windows\System32\SearchIndexer.exe

   1  C:\Windows\System32\services.exe

   1  C:\Windows\System32\sihost.exe

   1  C:\Windows\System32\smartscreen.exe

   1  C:\Windows\System32\smss.exe

  74  C:\Windows\System32\svchost.exe

   1  C:\Windows\System32\SystemSettingsBroker.exe

   2  C:\Windows\System32\taskhostw.exe

   1  C:\Windows\System32\wbem\unsecapp.exe

   2  C:\Windows\System32\wbem\WmiPrvSE.exe

   1  C:\Windows\System32\wininit.exe

   1  C:\Windows\System32\winlogon.exe

   1  C:\Windows\System32\wlanext.exe

   2  C:\Windows\System32\WUDFHost.exe

   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe

   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe

   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe

   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

   1  C:\Windows\TFSPEQService.exe

   1  C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

   4  D:\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe

   1  D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe



O4 - HKCU\..\Run: [LGHUB] = C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe --minimized (sign: 'Logitech Inc')

O4 - HKCU\..\Run: [WallpaperEngine] = C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe -silent (sign: 'Skutta Software GmbH')

O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_5AD4028766A70AC09EC0E769180B2A5D] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --win-session-start (2023/12/09) (sign: 'Microsoft')

O4 - HKCU\..\StartupApproved\Run: [Spotify] = C:\Users\ferdi\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (2024/03/02) (sign: 'Spotify AB')

O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2024/03/10) (sign: 'Valve Corp.')

O4 - HKCU\..\StartupApproved\Run: [Wargaming.net Game Center] = D:\OYUNLAR\Wargaming.net\GameCenter\wgc.exe --background (2023/12/09) (sign: 'Wargaming Group Limited')

O4 - HKLM\..\StartupApproved\Run: [RtkAudUService] = C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3020235693730747\RtkAudUService64.exe -background (2024/10/27) (sign: 'Realtek Semiconductor Corp.')

O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (sign: 'Microsoft')

O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')

O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')

O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiSpyware] = 1

O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiVirus] = 1

O17 - DHCP DNS 1: 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{8b4a11e0-e34a-4c1e-a169-b42cd3a82f6d}: [NameServer] = 198.51.100.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{8b4a11e0-e34a-4c1e-a169-b42cd3a82f6d}: [NameServer] = 198.51.100.2

O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Mozilla (empty)

O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\Windows\system32\fclip.exe (sign: 'Microsoft')

O22 - Tasks: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')

O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')

O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')

O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\Windows\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')

O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')

O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')

O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')

O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')

O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')

O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')

O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')

O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\sc.exe start InventorySvc (sign: '')

O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')

O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaWallpaperAppDetect - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaWallpaperAppDetect (sign: 'Microsoft')

O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\Windows\system32\sdbinst.exe -mm (sign: 'Microsoft')

O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (file missing)

O22 - Tasks: \Mozilla\Firefox Background Update S-1-5-21-172074209-4031520466-2025249625-1001 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate (file missing)

O22 - Tasks: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (file missing)

O22 - Tasks: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (sign: 'Adobe Inc.')

O22 - Tasks: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (sign: 'Intel Corporation')

O22 - Tasks: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (sign: 'Intel Corporation')

O22 - Tasks: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)

O22 - Tasks: Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} - C:\Program Files\Common Files\AV\Kaspersky\upgrade_launcher.exe /waitUpgrade (sign: 'AO Kaspersky Lab')

O22 - Tasks: NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe (sign: 'NVIDIA Corporation')

O22 - Tasks: PostponeDeviceSetupToast_S-1-5-21-172074209-4031520466-2025249625-1001_1 - {5ded83ef-1e99-48cf-bf83-676d2a6db408},PostponeDeviceSetupToast - C:\Windows\System32\oobe\UserOOBE.dll (file missing)

O22 - Tasks: USER_ESRV_SVC_QUEENCREEK - C:\Windows\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" (sign: 'Microsoft')

O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (sign: 'Adobe Inc.')

O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start" (sign: 'Intel Corporation')

O23 - Service R2: GCUBridge - C:\Program Files\OEM\Control Center\UniwillService\GCUBridge.exe (sign: 'Uniwill Technology Inc.')

O23 - Service R2: Intel(R) Audio Service - (IntelAudioService) - C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\\AS\\IAS\\IntelAudioService.exe (sign: 'Intel Corporation')

O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (sign: 'Intel Corporation')

O23 - Service R2: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (sign: 'Intel Corporation')

O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (sign: 'Intel Corporation')

O23 - Service R2: Intel(R) Graphics Command Center Service - (igccservice) - C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a687edda40db3316\OneApp.IGCC.WinService.exe (sign: 'Intel Corporation')

O23 - Service R2: Intel(R) Innovation Platform Framework Service - (ipfsvc) - C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_uf.exe (sign: 'Intel Corporation')

O23 - Service R2: Intel(R) Management Engine WMI Provider Registration - (WMIRegistrationService) - C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (sign: 'Intel Corporation')

O23 - Service R2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (sign: 'Intel Corporation')

O23 - Service R2: Kaspersky Hizmeti 21.18 - (AVP21.18) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.18\avp.exe -r (sign: 'Kaspersky Lab JSC')

O23 - Service R2: Kaspersky VPN Secure Connection Hizmeti 5.18 - (KSDE5.18) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.18\ksde.exe -r (sign: 'Kaspersky Lab JSC')

O23 - Service R2: LGHUB Updater Service - (LGHUBUpdaterService) - C:\Program Files\LGHUB\lghub_updater.exe --run-as-service (sign: 'Logitech Inc')

O23 - Service R2: Logitech LampArray Service - (logi_lamparray_service) - C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray_service.exe (sign: 'Logitech Inc')

O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nvtfi.inf_amd64_56c8f5189fff844e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvtfi.inf_amd64_56c8f5189fff844e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem /ert (sign: 'NVIDIA Corporation')

O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA Corporation\NVIDIA app\NvContainer\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000  -ert (sign: 'NVIDIA Corporation')

O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3020235693730747\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')

O23 - Service R2: TFSPEQService - C:\Windows\TFSPEQService.exe (sign: 'Creative Technology Ltd')

O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc (file missing)

O23 - Service S2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_faf3bcecf744f99a\IntelCpHDCPSvc.exe (sign: 'Intel Corporation')

O23 - Service S2: Intel(R) Platform License Manager Service - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe (sign: 'Intel Corporation')

O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (sign: 'BattlEye Innovations e.K.')

O23 - Service S3: EAAntiCheatService - C:\Program Files\EA\AC\eaanticheat.gameservice.exe (sign: 'Electronic Arts, Inc.')

O23 - Service S3: EABackgroundService - C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (sign: 'Electronic Arts, Inc.')

O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc (file missing)

O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe (sign: 'Intel Corporation')

O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 21.18 - (klvssbridge64_21.18) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.18\x64\vssbridge64.exe (sign: 'AO Kaspersky Lab')

O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service (sign: 'NVIDIA Corporation')

O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')

O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"  (sign: 'Intel Corporation')

O23 - Service S3: Zakynthos Service - (zksvc) - C:\Program Files\Common Files\PUBG\zksvc.exe (sign: 'KRAFTON, Inc.')

O23 - Driver R0: AO Kaspersky Lab Cryptographic Module x64 (56 bit) - (cm_km) - C:\Windows\system32\DRIVERS\cm_km.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R0: klupd_K4W-21-18_arkmon - C:\Windows\System32\Drivers\klupd_K4W-21-18_arkmon.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R0: klupd_K4W-21-18_klbg - C:\Windows\System32\Drivers\klupd_K4W-21-18_klbg.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Anti-Virus NDIS 6 Filter - (klim6) - C:\Windows\system32\DRIVERS\klim6.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab Driver.K4W-21-18 - (klif.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klif.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab format recognizer driver.K4W-21-18 - (klpd.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klpd.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab Kernel DLL.K4W-21-18 - (KLFLT.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab klbackupdisk.K4W-21-18 - (klbackupdisk.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klbackupdisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab klbackupflt.K4W-21-18 - (klbackupflt.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klbackupflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab KLKBDFLT.K4W-21-18 - (klkbdflt.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klkbdflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab klpnpflt.K4W-21-18 - (klpnpflt.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klpnpflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab Security Extender Driver.K4W-21-18 - (klgse.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klgse.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: Kaspersky Lab service driver.K4W-21-18 - (KLHK.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klhk.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: kldisk.K4W-21-18 - C:\Windows\system32\DRIVERS\K4W-21-18\kldisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: klwtp.K4W-21-18 - C:\Windows\system32\DRIVERS\K4W-21-18\klwtp.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R1: kneps.K4W-21-18 - C:\Windows\system32\DRIVERS\K4W-21-18\kneps.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R3: ___ Windows 10 64 Bit için Intel(R) Wireless Bağdaştırıcı Sürücüsü  - (Netwtw14) - C:\Windows\System32\drivers\Netwtw14.sys (+safe mode) (sign: 'Intel Corporation')

O23 - Driver R3: Intel(R) GNA Scoring Accelerator service - (IntelGNA) - C:\Windows\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys (sign: 'Intel Corporation')

O23 - Driver R3: Intel(R) HID Event Filter - (HidEventFilter) - C:\Windows\System32\DriverStore\FileRepository\hideventfilter.inf_amd64_11ad2b4276308b53\HidEventFilter.sys (+safe mode) (sign: 'Intel Corporation')

O23 - Driver R3: Intel(R) Management Engine Interface  - (MEIx64) - C:\Windows\System32\DriverStore\FileRepository\heci.inf_amd64_6b6e8cc42a3d1f09\x64\TeeDriverW10x64.sys (sign: 'Intel Corporation')

O23 - Driver R3: Intel(R) Serial IO GPIO Driver v2 - (iaLPSS2_GPIO2_ADL) - C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys (sign: 'Intel Corporation')

O23 - Driver R3: Intel(R) Serial IO I2C Driver v2 - (iaLPSS2_I2C_ADL) - C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_1ebed6f33a1c1014\iaLPSS2_I2C_ADL.sys (+safe mode) (sign: 'Intel Corporation')

O23 - Driver R3: Intel(R) Wireless Bluetooth(R) - (ibtusb) - C:\Windows\System32\DriverStore\FileRepository\ibtusb.inf_amd64_9b157f5f4cc71af6\ibtusb.sys (+safe mode) (sign: 'Intel Corporation')

O23 - Driver R3: Intel® Smart Sound Technology BUS - (IntcAudioBus) - C:\Windows\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_799c962c58e6bfeb\IntcAudioBus.sys (sign: 'Intel Corporation')

O23 - Driver R3: Intel® Smart Sound Technology for USB Audio - (IntcUSB) - C:\Windows\System32\DriverStore\FileRepository\intcusb.inf_amd64_c2a06a639869c7cd\IntcUSB.sys (sign: 'Intel Corporation')

O23 - Driver R3: Intel® Smart Sound Technology OED - (IntcOED) - C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\IntcOED.sys (sign: 'Intel Corporation')

O23 - Driver R3: ipf_cpu - C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_cpu.sys (+safe mode) (sign: 'Intel Corporation')

O23 - Driver R3: ipf_lf - C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_lf.sys (+safe mode) (sign: 'Intel Corporation')

O23 - Driver R3: Kaspersky Lab KLMOUFLT.K4W-21-18 - (klmouflt.K4W-21-18) - C:\Windows\system32\DRIVERS\K4W-21-18\klmouflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R3: Kaspersky VPN - (kltun) - C:\Windows\system32\DRIVERS\kltun.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R3: klids.K4W-21-18 - C:\ProgramData\Kaspersky Lab\AVP21.18\Bases\klids.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R3: klupd_K4W-21-18_klark - C:\Windows\System32\Drivers\klupd_K4W-21-18_klark.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R3: klupd_K4W-21-18_mark - C:\Windows\System32\Drivers\klupd_K4W-21-18_mark.sys (sign: 'Microsoft' - AO Kaspersky Lab)

O23 - Driver R3: Logitech G HUB Translation Layer Driver - (logi_joy_xlcore) - C:\Windows\system32\drivers\logi_joy_xlcore.sys (sign: 'Logitech Inc')

O23 - Driver R3: Logitech G HUB Virtual Bus Enumerator Driver - (logi_joy_bus_enum) - C:\Windows\system32\drivers\logi_joy_bus_enum.sys (sign: 'Logitech Inc')

O23 - Driver R3: Logitech G HUB Virtual HID Device Driver - (logi_joy_vir_hid) - C:\Windows\system32\drivers\logi_joy_vir_hid.sys (sign: 'Logitech Inc')

O23 - Driver R3: Logitech LampArray Device Driver - (logi_lamparray) - C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray.sys (sign: 'Logitech Inc')

O23 - Driver R3: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) - (nvvad_WaveExtensible) - C:\Windows\system32\drivers\nvvad64v.sys (sign: 'NVIDIA Corporation')

O23 - Driver R3: nvlddmkm - C:\Windows\System32\DriverStore\FileRepository\nvtfi.inf_amd64_56c8f5189fff844e\nvlddmkm.sys (sign: 'NVIDIA Corporation')

O23 - Driver R3: NVPCF Service - (nvpcf) - C:\Windows\System32\drivers\nvpcf.sys (sign: 'NVIDIA Corporation')

O23 - Driver R3: Realtek NetAdapter Driver - (rt68cx21) - C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_636089176c28f434\rt68cx21x64.sys (sign: 'Realtek Semiconductor Corp.')

O23 - Driver R3: semav6msr64 - C:\Windows\system32\drivers\semav6msr64.sys (sign: 'Intel Corporation')

O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\Windows\system32\drivers\nvhda64v.sys (sign: 'NVIDIA Corporation')

O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\Windows\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')

O23 - Driver R3: UWACPIDriver Service - (UWACPIDriver) - C:\Windows\System32\drivers\UWACPIDriver.sys (sign: 'Uniwill Technology Inc.')

O23 - Driver S3: BERT Reader Service - (bertreader) - C:\Windows\System32\drivers\bertreader.sys (sign: 'Intel Corporation')

O23 - Driver S3: EAAntiCheat - C:\Windows\system32\drivers\eaanticheat.sys (file missing)

O23 - Driver S3: igfxn - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_faf3bcecf744f99a\igdkmdn64.sys (sign: 'Intel Corporation')

O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')

O23 - Driver S3: xhunter1 - C:\Windows\xhunter1.sys (sign: 'Wellbia.com Co., Ltd.')

O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'klim6'

O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'kltun'

O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'klwtp.K4W-21-18'

O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw14'

O27 - Account: (Bad profile) Folder is not referenced by any of user SIDs: C:\Users\AppData





--

End of file - Time spent: 12,8 sec. - 55870 bytes, CRC32: FFFFFFFF. Sign: 칖♍
 
Son düzenleyen: Moderatör:
@Murat5038 Performans düşüklüğü

Kod: 
Logfile of HiJackThis+ (Plus) build 2024-11-10 Alpha v.3.4.0.12

Platform:  x64 Windows 10 (Home), 10.0.19045.5131 (ReleaseId: 2009, 22H2), Service Pack: 0
Time:      16.11.2024 - 19:24 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    11332 MiB Free. Loading RAM (32 %), CPU (5 %)
Elevated:  Yes
Ran by:    FReeTime    (group: Administrators; type: Local) on DESKTOP-0TOG362, FirstRun: yes

Chrome:  130.0.6723.117
Internet Explorer: 11.0.19041.4355
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: On)

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe
   1  C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplmv.exe
   1  C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\14.4.0.11537\AdskLicensingService\AdskLicensingService.exe
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
   1  C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
   1  C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
   1  C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
   1  C:\Program Files (x86)\Internet Download Manager\IDMan.exe
   6  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.80\msedgewebview2.exe
   1  C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
   1  C:\Program Files (x86)\QUALCOMM Incorporated\Qualcomm USB Drivers For Windows\DriverPackage\Qualcomm\Tools\qcmtusvc.exe
   1  C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
   1  C:\Program Files\Autodesk\AdskIdentityManager\1.11.9.11\AdskIdentityManager.exe
   1  C:\Program Files\Autodesk\Autodesk AdSSO\AdSSO.exe
   1  C:\Program Files\Common Files\Autodesk\AdpDesktopSDK\bin\ADPClientService.exe
   1  C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
   3  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
  13  C:\Program Files\Google\Chrome\Application\chrome.exe
   1  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
   1  C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
   1  C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
   1  C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
   2  C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
   1  C:\Users\FReeTime\Desktop\HiJackThis\HiJackThis.exe
   1  C:\Users\FReeTime\Downloads\Programs\ISLC v1.0.3.3\Intelligent standby list cleaner ISLC.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\CompPkgSrv.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dllhost.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ab3196e1830c9b6c\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_32b266092fc6592d\RtkAudUService64.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  63  C:\Windows\System32\svchost.exe
   3  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\WirelessKB850NotificationService.exe
   2  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\SysWOW64\PnkBstrA.exe

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = hxxps://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 license.piriform.com
O1 - Hosts: 0.0.0.0 vvv.ccleaner.com
O1 - Hosts: 0.0.0.0 analytics.ff.avast.com
O1 - Hosts: 0.0.0.0 ipm-provider.ff.avast.com
O1 - Hosts: 0.0.0.0 license-api.ccleaner.com
O1 - Hosts: 0.0.0.0 shepherd.ff.avast.concc.avast.com
O1 - Hosts: 0.0.0.0 ncc.avast.com.edgesuite.net
O1 - Hosts: 0.0.0.0 ip-info.ff.avast.com
O1 - Hosts: 127.0.0.1 vvv.oncyazilim.com
O1 - Hosts: 127.0.0.1 vvv.lideryazilim.com
O1 - Hosts: 127.0.0.1 mirillis.com
O1 - Hosts: 0.0.0.0 netcad.com
O1 - Hosts: 0.0.0.0 netcad.com.tr
O1 - Hosts: 0.0.0.0 vvv.netcad.com
O1 - Hosts: 0.0.0.0 vvv.netcad.com.tr
O1 - Hosts: 0.0.0.0 update.netcad.com
O1 - Hosts: 0.0.0.0 update.netcad.com.tr
O1 - Hosts: 0.0.0.0 lisans.netcad.com
O1 - Hosts: 0.0.0.0 lisans.netcad.com.tr
O1 - Hosts: 127.0.0.1 germi
O1 - Hosts: 127.0.0.1 netcad.com
O1 - Hosts: 127.0.0.1 netcad.com.tr
O1 - Hosts: 127.0.0.1 update.netcad.com
O1 - Hosts: 127.0.0.1 update.netcad.com.tr
O1 - Hosts: 127.0.0.1 lisans.netcad.com
O1 - Hosts: 127.0.0.1 lisans.netcad.com.tr
O1 - Hosts: 127.0.0.1 update.netcad.com.tr
O1 - Hosts: 127.0.0.1 update.netcad.com
O1 - Hosts: 127.0.0.1 lisans.netcad.com
O1 - Hosts: 127.0.0.1 lisans.netcad.com.tr
O1 - Hosts: 127.0.0.1 dataupdate.netcad.com.tr
O1 - Hosts: 127.0.0.1 netcad.com
O1 - Hosts: 127.0.0.1 netcad.com.tr
O1 - Hosts: 127.0.0.1 netcadportal.com
O1 - Hosts: 127.0.0.1 netigma.com.tr
O1 - Hosts: 127.0.0.1 netcadkampus.com
O1 - Hosts: 127.0.0.1 netcad.ru
O1 - Hosts: 127.0.0.1 netcad.az
O1 - Hosts: 127.0.0.1 vvv.netcad.com
O1 - Hosts: 127.0.0.1 vvv.netcad.com.tr
O1 - Hosts: 127.0.0.1 vvv.netcadportal.com
O1 - Hosts: 127.0.0.1 vvv.netigma.com.tr
O1 - Hosts: 127.0.0.1 vvv.netcadkampus.com
O1 - Hosts: 127.0.0.1 vvv.netcad.ru
O1 - Hosts: 127.0.0.1 vvv.netcad.az
O1 - Hosts: 127.0.0.1 update.netcad.com.tr
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (sign: 'Tonec Inc.')
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll (sign: 'Oracle America, Inc.')
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll (sign: 'Oracle America, Inc.')
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (sign: 'Tonec Inc.')
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\130.0.6723.117\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - ActiveSetup: HKLM\..\OpenVPN_UserSetup: [StubPath] = C:\Windows\system32\reg.exe delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f (sign: 'Microsoft') (disabled)
O4 - HKCU\..\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (not signed - Tonec Inc. - 2948C4356C6AE01720FEC22AE131747F84067911)
O4 - HKCU\..\StartupApproved\Run: [CompactGUI] = C:\Users\FReeTime\Desktop\Uygulamalar\CompactGUI.exe -tray (2024/10/11) (not signed - IridiumIO - 3A98674EFE246FB69635707079F2F4CD56B5BA3B)
O4 - HKCU\..\StartupApproved\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent -launchcontext=boot (2024/03/27) (sign: 'Epic Games Inc.')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2023/02/05) (sign: 'Valve Corp.')
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_32b266092fc6592d\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Windows\system32\spool\DRIVERS\W32X86\3\New\PrintConfig.dll -> C:\Windows\system32\spool\DRIVERS\W32X86\3\PrintConfig.dll (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Windows\system32\spool\DRIVERS\x64\3\New\PrintConfig.dll -> C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (file missing)
O4 - HKLM\..\StartupApproved\Run: [Autodesk Access] = C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe --minimizedUi --autoLaunch (2024/04/14) (sign: 'Autodesk, Inc.')
O4 - MountPoints2: HKCU\..\{80b35a5e-48b8-11ee-ab82-00d861d43d72}\shell\AutoRun\command: (default) = "E:\OnePlus_setup.exe" /s (file missing)
O4 - Startup: C:\Users\FReeTime\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\downloadcli_v2.lnk    ->    C:\Users\FReeTime\AppData\Roaming\WinXBluRay.exe (file missing)
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (sign: 'Oracle America, Inc.')
O5 - Applet: C:\Windows\System32\plotman.cpl (sign: 'Autodesk, Inc.')
O5 - Applet: C:\Windows\System32\styleman.cpl (sign: 'Autodesk, Inc.')
O5 - Applet: C:\Windows\SysWOW64\BDEADMIN.CPL (not signed - no company - 2F63F06840D899BDF7A7917517921EC48F922636)
O5 - Applet: C:\Windows\SysWOW64\Firebird2Control.cpl (not signed - IBPhoenix - 6243781FDF6763B2302568E99B4EF4DD3897608C)
O7 - KnownFolder: C:\Users\Public\Music (folder missing)
O7 - Policy: (UAC) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System: [ConsentPromptBehaviorAdmin] = 0
O7 - Policy: (UAC) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System: [EnableLUA] = 0
O7 - Policy: (UAC) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System: [PromptOnSecureDesktop] = 0
O7 - Policy: HKCU\..\Windows\Explorer: [DisableSearchBoxSuggestions] = 1
O7 - Policy: HKLM\..\Windows\Explorer: [DisableSearchBoxSuggestions] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender\Features: [TamperProtection] = 4
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm (not signed - no company - 1A49C5F7A98580F8002AC1D6115AB39CB753975B)
O15 - Trusted Zone: hxxps://ogrgumushaneedutr-files.sharepoint.com
O15 - Trusted Zone: hxxps://ogrgumushaneedutr-myfiles.sharepoint.com
O15 - Trusted Zone: hxxps://wkuackr-files.sharepoint.com
O17 - DHCP DNS 1: 192.168.2.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (sign: 'Tonec Inc.')
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Windows\system32\AcSignIcon.dll (sign: 'Autodesk, Inc.')
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\Windows\explorer.exe (sign: 'Microsoft')
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B06BDC0F-FC47-4B7D-9AF4-87F14EBE13CB} - (no key)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B06BDC0F-FC47-4B7D-9AF4-87F14EBE13CB} - \AMDAutoUpdate (no xml)
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe -minimized (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) \Microsoft\Office\Office Performance Monitor - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6806.0{062391D6-E128-4FDD-B0C8-8E2FC4BE1E8B} - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6806.0\updater.exe --wake --system (sign: 'Google LLC')
O22 - Tasks: \HardDiskSentinel\Hard Disk Sentinel_FReeTime - D:\test\Hard Disk Sentinel\HDSentinel.exe /AUTORUN (file missing)
O22 - Tasks: \Microsoft\Windows\AppxDeploymentClient\AppInstallerUpdater - C:\Windows\system32\rundll32.exe C:\Windows\system32\AppxDeploymentClient.dll,AppInstallerUpdateAllTask (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Clip\ClipESU - C:\Windows\system32\clipesu.exe (sign: 'Microsoft')
O22 - Tasks: AMDInstallLauncher - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe /InstallAUEP (file missing)
O22 - Tasks: AMDRyzenMasterSDKTask - C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: Intelligent StandbyList Cleaner - C:\Users\FReeTime\Downloads\Programs\ISLC v1.0.3.3\Intelligent standby list cleaner ISLC.exe (sign: 'Wagnardsoft')
O22 - Tasks: Microsoft_Hardware_Launch_ipoint_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (sign: 'Microsoft')
O22 - Tasks: Microsoft_Hardware_Launch_itype_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (sign: 'Microsoft')
O22 - Tasks: Microsoft_Hardware_Launch_mousekeyboardcenter_exe - C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe (sign: 'Microsoft')
O22 - Tasks: Microsoft_MKC_Logon_Task_ceip.exe - C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe (sign: 'Microsoft')
O22 - Tasks: Microsoft_MKC_Logon_Task_ipoint.exe - C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (sign: 'Microsoft')
O22 - Tasks: Microsoft_MKC_Logon_Task_itype.exe - C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (sign: 'Microsoft')
O22 - Tasks: ModifyLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -UpdateCurrentUser (file missing)
O22 - Tasks: MSIAfterburner - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O22 - Tasks: RTSS - C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe /s (file missing)
O22 - Tasks: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay (file missing)
O22 - Tasks: StartCNHealth - C:\ProgramData\AMD\StartCNHealth\ATICMD.exe C:\Windows\system32\cmd.exe /c C:\ProgramData\AMD\StartCNHealth\ATICN.cmd (not signed - Advanced Micro Devices, Inc. - 3645518751ADD4625BE695BC0A20BE990F02ADDC)
O22 - Tasks: StartDVR - C:\Program Files\AMD\CNext\CNext\RSServCmd.exe (file missing)
O23 - Service R2: Autodesk Access Service Host - C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe (sign: 'Autodesk, Inc.')
O23 - Service R2: Autodesk Desktop Licensing Service - (AdskLicensingService) - C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe (sign: 'Autodesk, Inc.')
O23 - Service R2: Firebird Guardian - DefaultInstance - (FirebirdGuardianDefaultInstance) - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe -s DefaultInstance (not signed - Firebird Project - AF6B63F0B1C564E5D2A27E9887066355870CE213)
O23 - Service R2: FlexNet Licensing Service - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (sign: 'Flexera Software LLC')
O23 - Service R2: FlexNet Licensing Service 64 - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (sign: 'Flexera Software LLC')
O23 - Service R2: Microsoft Defender Çekirdek Hizmeti - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe (sign: 'Microsoft')
O23 - Service R2: NVIDIA Broadcast LocalSystem Container - (NvBroadcast.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe -s NvBroadcast.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvBroadcast.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\plugins\LocalSystem" -r -p 30000  (sign: 'Nvidia Corporation')
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ab3196e1830c9b6c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ab3196e1830c9b6c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem /ert (sign: 'NVIDIA Corporation')
O23 - Service R2: PnkBstrA - C:\Windows\system32\PnkBstrA.exe (file missing)
O23 - Service R2: Qualcomm MTU Service - (qcmtusvc) - C:\Program Files (x86)\QUALCOMM Incorporated\Qualcomm USB Drivers For Windows\DriverPackage\Qualcomm\Tools\qcmtusvc.exe (not signed - QUALCOMM, Inc. - 9725CB577B28F9A71D66AF1F5C075423C3F2C66A)
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_32b266092fc6592d\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')
O23 - Service R2: Sentinel LDK License Manager - (hasplms) - C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe -run (sign: 'Gemalto, Inc.')
O23 - Service R2: Wireless Keyboard 850 Notification Service - (WirelessKB850NotificationService) - C:\Windows\system32\WirelessKB850NotificationService.exe (sign: 'Microsoft')
O23 - Service R3: Firebird Server - DefaultInstance - (FirebirdServerDefaultInstance) - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe -s DefaultInstance (not signed - Firebird Project - 7990F2B77D2389C97591BEE13EED7CC4D785E24B)
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Dahili Hizmeti (GoogleUpdaterInternalService132.0.6806.0) - (GoogleUpdaterInternalService132.0.6806.0) - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6806.0\updater.exe --system --windows-service --service=update-internal (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Hizmeti (GoogleUpdaterService132.0.6806.0) - (GoogleUpdaterService132.0.6806.0) - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6806.0\updater.exe --system --windows-service --service=update (sign: 'Google LLC')
O23 - Service S3: Bentley Dgn Index Service - (DgnIndexingService) - C:\Program Files (x86)\Common Files\Bentley Shared\Dgn  Index Service\DgnIndexServer.exe (not signed - Bentley Systems Inc. - 08B0299B7447DF2AA7CA0D1918B24061E59263E3)
O23 - Service S3: Epic Online Services - (EpicOnlineServices) - C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe (sign: 'Epic Games Inc.')
O23 - Service S3: FACEITService - C:\Program Files\FACEIT AC\faceitservice.exe (sign: 'ESL Gaming GmbH')
O23 - Service S3: FileSyncHelper - C:\Program Files\Microsoft OneDrive\24.025.0204.0003\FileSyncHelper.exe (sign: 'Microsoft')
O23 - Service S3: Futuremark SystemInfo Service - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe (sign: 'Underwriters Laboratories Inc.')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\130.0.6723.117\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc (sign: 'Google LLC')
O23 - Service S3: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - (ICCS) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (sign: 'Intel Corporation - Intel® Management Engine Firmware')
O23 - Service S3: OneDrive Updater Service - C:\Program Files\Microsoft OneDrive\24.025.0204.0003\OneDriveUpdaterService.exe (sign: 'Microsoft')
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Service S3: TeamViewer - C:\Program Files\TeamViewer\TeamViewer_Service.exe (sign: 'TeamViewer Germany GmbH')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\Windows\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices')
O23 - Driver R1: FACEIT - C:\Program Files\FACEIT AC\FACEIT_AC.sys (sign: 'Microsoft' - no company)
O23 - Driver R1: MSIO - C:\Windows\system32\drivers\MsIo64.sys (sign: 'Microsoft' - MICSYS Technology Co., LTd)
O23 - Driver R2: aksdf - C:\Windows\system32\drivers\aksdf.sys (sign: 'Gemalto, Inc.')
O23 - Driver R2: aksfridge - C:\Windows\system32\drivers\aksfridge.sys (sign: 'Gemalto, Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV20 - C:\Windows\system32\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R2: Driver - C:\Program Files (x86)\EVGA\Kernel\driver-x64.sys (sign: 'EVGA Corp.')
O23 - Driver R2: hardlock - C:\Windows\system32\drivers\hardlock.sys (sign: 'Gemalto, Inc.')
O23 - Driver R2: IDMWFP - C:\Windows\System32\drivers\idmwfp.sys (sign: 'Microsoft' - Tonec Inc.)
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\Windows\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\Windows\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: AMD PCI - (AMDPCIDev) - C:\Windows\System32\drivers\AMDPCIDev.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Special Tools Driver - (AmdTools64) - C:\Windows\System32\drivers\AmdTools64.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: Microsoft Mouse and Keyboard Center Filter Driver - (Point64) - C:\Windows\System32\drivers\point64.sys (sign: 'Microsoft' - Microsoft Corporation)
O23 - Driver R3: MS Hardware Device Detection Driver (USB) - (dc3d) - C:\Windows\System32\drivers\dc3d.sys (sign: 'Microsoft' - Microsoft Corporation)
O23 - Driver R3: NVIDIA Broadcast - (nvrtxvad_WaveExtensible) - C:\Windows\system32\drivers\nvrtxvad64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: nvlddmkm - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ab3196e1830c9b6c\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Realtek RT640 NT Driver - (rt640x64) - C:\Windows\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: RTCore64 - C:\Program Files (x86)\MSI Afterburner\RTCore64.sys (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\Windows\system32\drivers\nvhda64v.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\Windows\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S2: inpoutx64 - C:\Windows\System32\Drivers\inpoutx64.sys (sign: 'Red Fox UK Limited')
O23 - Driver S2: Thaiphoon Burner hardware access driver - (SSGDIO) - C:\Windows\SysWOW64\DRIVERS\ssgdio64.sys (sign: 'ATI Technologies, Inc')
O23 - Driver S2: Virtual USB MultiKey - (multikey) - C:\Windows\System32\drivers\multikey.sys (file missing)
O23 - Driver S3: AMD HD Audio Bus Service - (AMDHDAudBusService) - C:\Windows\System32\drivers\amdhdaudbus.sys (sign: 'Microsoft' - Advanced Micro Devices)
O23 - Driver S3: AmdGpuTweak - C:\Windows\system32\drivers\AmdGpuTweak.sys (sign: 'WDKTestCert vega,132037776677716667', but untrusted root: 'WDKTestCert vega,132037776677716667' with fingerprint: 8F95257A0346EFE051BF3C3DADBC151E82C83637)
O23 - Driver S3: AsrDrv101 - C:\Windows\SysWOW64\Drivers\AsrDrv101.sys (sign: 'ASROCK Incorporation')
O23 - Driver S3: atillk64 - C:\Users\FReeTime\Desktop\XFX.RX-57XT83LD8.TRIPLE.CUSTOM-BUILT\XFX.RX-57XT83LD8.TRIPLE.CUSTOM-BUILT\atillk64.sys (file missing)
O23 - Driver S3: HWiNFO Kernel Driver (v174) - (HWiNFO_174) - C:\Users\FReeTime\AppData\Local\Temp\HWiNFO64A_174.SYS (file missing)
O23 - Driver S3: HWiNFO Kernel Driver (v190) - (HWiNFO_190) - C:\Users\FReeTime\AppData\Local\Temp\HWiNFO64A_190.SYS (file missing)
O23 - Driver S3: HWiNFO Kernel Driver (v191) - (HWiNFO_191) - C:\Users\FReeTime\AppData\Local\Temp\HWiNFO64A_191.SYS (file missing)
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: NTIOLib_CC_Clock - C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys (file missing)
O23 - Driver S3: PDFWKRNL - C:\Users\FReeTime\AppData\Local\Temp\USBCPDFW\pdfwkrnl.sys (file missing)
O23 - Driver S3: Qualcomm USB Device for Legacy Serial Communication - (qcusbser) - C:\Windows\system32\DRIVERS\qcusbser.sys (not signed - QUALCOMM Incorporated - 47974D8E6512497C9AD6A79919E1CD58366D5E97)
O23 - Driver S3: Revoflt - C:\Windows\system32\DRIVERS\revoflt.sys (sign: 'Microsoft' - VS Revo Group)
O23 - Driver S3: rspLLL - C:\Windows\system32\DRIVERS\rspLLL64.sys (sign: 'Daniel Terhell')
O23 - Driver S3: Sentinel HASP Key - (akshasp) - C:\Windows\system32\DRIVERS\akshasp.sys (sign: 'Gemalto, Inc.')
O23 - Driver S3: Sentinel USB Key - (aksusb) - C:\Windows\system32\DRIVERS\aksusb.sys (+safe mode) (sign: 'Gemalto, Inc.')
O23 - Driver S3: SIV Kernel Driver - (SIVDriver) - C:\Windows\system32\Drivers\SIVX64.sys (sign: 'Microsoft' - Ray Hinchliffe)
O23 - Driver S3: TAP-Windows Adapter V9 - (tap0901) - C:\Windows\System32\drivers\tap0901.sys (+safe mode) (sign: 'Microsoft' - The OpenVPN Project)
O23 - Driver S3: USB Mouse Rate Adjuster Lower Filter by SweetLow - (hidusbf) - C:\Windows\system32\DRIVERS\hidusbf.sys (sign: 'Jeshua Starr Scully')
O23 - Driver S3: WinRing0_1_2_2 - C:\Windows\system32\drivers\WinRing0_1_2_2.sys (sign: 'PAIPTAC  Driver')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'rt640x64'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'tap0901'
O27 - Account: (Bad profile) Folder is not referenced by any of user SIDs: C:\Users\webzo


--
End of file - Time spent: 24.4 sec. - 57830 bytes, CRC32: FFFFFFFF. Sign: 埒
 
Coffein dedi:
Yıllardır burada sayısız insana karşılıksız destek sağladınız, teknolojiye dair her türlü soruya sabırla yanıt verdiniz. Bilginiz, yardımseverliğiniz ve samimiyetinizle bu forumu herkes için daha değerli bir yer haline getirdiniz. Sizin gibi birine rastlamak gerçekten büyük bir şans. Gösterdiğiniz özveri ve emek için sonsuz teşekkürler. İyi ki varsınız. Eğer uygunsanız ben de bir yardım talep edeceğim sizden. Bir zararlı yazılım varlığından şüphe ediyorum, ekran görüntüsü alırken, bir dosya açacağımda yavaşlamalar gözlemliyorum, umarım bu bilgisayarımda çok uygulama olmasından kaynaklıdır da bunu sağlıklı bir formatla çözebileceğimi düşünüyorum. Değerli görüşleriniz için tekrardan minnettarım. Korsan hiçbir program veya oyun yüklemedim. Yüklediğim her program ve oyunu da kendi sitelerinden veya GitHub adreslerinden yüklemeye gayret ettim.
Genişletmek için tıkla...
Güzel sözleriniz için teşekkür ederim :) Biraz geç cevap veriyorum çünkü sosyalde fazla durmuyorum. Vakit buldukça yardım etmeye çalışıyorum.
İlk olarak zararlı bulunmuyor ancak bazı yazılımlar zararlıdan daha çok sistem kaynağı tükettiğinden ve işlem yaptığındna işlerinize karışabiliyor.
Docker, ActivityWatch, Kubernetes bunlar sistemi inceleyen ve yönetilmesini sağlayan programlar olduğundan dediğiniz sorunlara yol açabilir. Pano ve sistem izlemesini sağladıklarından yük getirirler. Kaspersky zaten kullanıyorsunuzeğer kuşkularınızdan bu yazılımları kullanıyorsanız gereksiz. Çünkü Kaspersky çoğu işlevi yeterlidir bu tür takipler için zararlı ve şüpheli durumlarda sizleri bilgilendirir ve korur.

Bunların dışında sistem üreticilerinin yazılımlarını gereksiz yere kurmayın gerekli olanları kurmanız yeterlidir.
Sandisk belleiğinizi şifrelemediyseniz Sandisk yazılımını kaldırabilirsiniz mesela.
ASUS Smart Display Control, Lenovo Display Control Center, Western Digital\SSD Dashboard, ASUS\Armoury Crate, ASUS\Update, Adobe Acrobat. Bunlar bana göre gereksiz örneğin, kullanmıyorsanız yüklenmemeli.
ASUS ve Lenovo daha bir çok servisi ve yazılımı çalışıyor kullanmadıklarınızı kaldırabilirsiniz.
XP-Pen Tablet adında bir sürücü var eğer bir çizim veya akıllı kalem cihazı kullanıyorsanız sürücüsünü yasal yerden indirin o sürücü imzasız gözüküyor sadece ve risk oluşturabilir.

Ferdi ALGIN dedi:
Merhaba bilgisayar da Performans düşüşü var gibi, antivirüs programım da var fakat uyarı falan yok. Arka planda işlemciye yük bindiren bir olay var mıdır? Acaba bilgi verirseniz çok mutlu olurum. Teşekkürler.
Genişletmek için tıkla...
Zararlı görünmüyor ancak temiz önyükleme yapmanız yararlı olur.
Bunları fixleyin:
Kod: 
O4 - HKCU\..\Run: [WallpaperEngine] = C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe -silent (sign: 'Skutta Software GmbH')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_5AD4028766A70AC09EC0E769180B2A5D] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --win-session-start (2023/12/09) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [Spotify] = C:\Users\ferdi\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (2024/03/02) (sign: 'Spotify AB')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2024/03/10) (sign: 'Valve Corp.')
O4 - HKCU\..\StartupApproved\Run: [Wargaming.net Game Center] = D:\OYUNLAR\Wargaming.net\GameCenter\wgc.exe --background (2023/12/09) (sign: 'Wargaming Group Limited')
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (sign: 'Microsoft')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O22 - Tasks: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (sign: 'Adobe Inc.')
O22 - Tasks: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (sign: 'Intel Corporation')
O22 - Tasks: IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic (sign: 'Intel Corporation')
O22 - Tasks: USER_ESRV_SVC_QUEENCREEK - C:\Windows\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" (sign: 'Microsoft')

lazye dedi:
@Murat5038 Performans düşüklüğü.
Genişletmek için tıkla...
Hosts dosyan değişmiş illegal yazılımlar kullandığınızdan, lisanslarını engellediğiniz AV ve yazılımlardan çok fazla program kurduğunuz görülüyor. Gereksiz yazılım ve kalıntıları kaldırmanız gerekiyor.

Bunları da fixleyin:
Kod: 
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\130.0.6723.117\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - ActiveSetup: HKLM\..\OpenVPN_UserSetup: [StubPath] = C:\Windows\system32\reg.exe delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f (sign: 'Microsoft') (disabled)
O4 - HKCU\..\StartupApproved\Run: [CompactGUI] = C:\Users\FReeTime\Desktop\Uygulamalar\CompactGUI.exe -tray (2024/10/11) (not signed - IridiumIO - 3A98674EFE246FB69635707079F2F4CD56B5BA3B)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Windows\system32\spool\DRIVERS\W32X86\3\New\PrintConfig.dll -> C:\Windows\system32\spool\DRIVERS\W32X86\3\PrintConfig.dll (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Windows\system32\spool\DRIVERS\x64\3\New\PrintConfig.dll -> C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (file missing)
O4 - MountPoints2: HKCU\..\{80b35a5e-48b8-11ee-ab82-00d861d43d72}\shell\AutoRun\command: (default) = "E:\OnePlus_setup.exe" /s (file missing)
O5 - Applet: C:\Windows\SysWOW64\BDEADMIN.CPL (not signed - no company - 2F63F06840D899BDF7A7917517921EC48F922636)
O5 - Applet: C:\Windows\SysWOW64\Firebird2Control.cpl (not signed - IBPhoenix - 6243781FDF6763B2302568E99B4EF4DD3897608C)
O22 - Tasks: \HardDiskSentinel\Hard Disk Sentinel_FReeTime - D:\test\Hard Disk Sentinel\HDSentinel.exe /AUTORUN (file missing)
O22 - Tasks: MSIAfterburner - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Driver S3: PDFWKRNL - C:\Users\FReeTime\AppData\Local\Temp\USBCPDFW\pdfwkrnl.sys (file missing)

Kullanıcı profilin hasar görmüş yeni bir profil açıp ondan devam edin. ISLC kullanmayın.
 
Son düzenleme:
@Murat5038 şöyle ki hiçbir av kullanmıyorum. Daha önce kurup sildiğim durum var fakat aktif olarak kullanmıyorum. CAD yazılımı kullanıyorum ve o yüzden host dosyam değişiklikler içeriyor.
ISLC sadece Önbelleğe alınan RAM miktarını azaltmak için kullanıyorum.

Gereksiz yazılım ve kalıntıları kaldıracağım hocam ilginiz için teşekkür ederim.
 
Kod: 
Logfile of HiJackThis+ (Plus) build 2024-11-10 Alpha v.3.4.0.12

Platform:  x64 Windows 11 (Pro), 10.0.26100.2454 (ReleaseId: 2009, 24H2), Service Pack: 0
Time:      28.11.2024 - 13:11 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    25935 MiB Free. Loading RAM (20 %), CPU (1 %)
Elevated:  Yes
Ran by:    cance    (group: Administrators; type: Microsoft) on MOBILYACEM, FirstRun: yes

Chrome:  131.0.6778.86
Internet Explorer: 11.0.26100.1882
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: On) (Code Integrity: On)

Running processes:
Number | Path
   1  C:\Program Files (x86)\Internet Download Manager\IDMan.exe
   2  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\avp.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\avpui.exe
  12  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe
   1  C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
  15  C:\Program Files\Google\Chrome\Application\chrome.exe
   1  C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2445.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.1.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24102.96.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
   1  C:\Users\cance\Downloads\Compressed\HiJackThis\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\System32\AggregatorHost.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\LsaIso.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\NgcIso.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\ShellHost.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  81  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
   1  C:\Windows\SysWOW64\dllhost.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

O1 - Hosts: 127.0.0.1 genuine-software.autodesk.com
O1 - Hosts: 127.0.0.1 genuine-software1.autodesk.com
O1 - Hosts: 127.0.0.1 genuine-software2.autodesk.com
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (sign: 'Tonec Inc.')
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (sign: 'Tonec Inc.')
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\131.0.6778.86\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2024/11/28) (sign: 'Tonec Inc.')
O4 - HKCU\..\StartupApproved\Run: [LGHUB] = C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe --minimized (2024/11/28) (sign: 'Logitech Inc')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_1888A25BB363A9A324B54E4DE78BB0C8] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --win-session-start (2024/11/23) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\cance\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2024/11/23) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [RiotClient] = C:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (2024/11/28) (sign: 'Riot Games, Inc.')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2024/11/25) (sign: 'Valve Corp.')
O4 - HKLM\..\StartupApproved\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (2024/11/28) (sign: 'Riot Games, Inc.')
O4 - HKLM\..\StartupApproved\Run: [RtkAudUService] = C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d986563d9ad51ee1\RtkAudUService64.exe -background (2024/11/28) (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2024/11/28) (sign: 'Microsoft')
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CCBService.lnk    ->    C:\Program Files (x86)\Chaos Group\Chaos Cosmos\cbservice.exe (file missing) start (2024/11/28)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ChaosUnifiedLogin.lnk    ->    C:\Program Files (x86)\Chaos\UnifiedLogin\ulasupervisor.exe (file missing) (2024/11/28)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start Chaos License Server.lnk    ->    C:\Program Files (x86)\Chaos\VRLService\vrlsupervisor.exe (file missing) start --vrol-path "C:\Program Files\Chaos\VRLService\vrol.exe" (2024/11/28)
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O4 - MountPoints2: HKCU\..\{a16fa401-a983-11ef-a2f3-58cdc9ed6be0}\shell\AutoRun\command: (default) = E:\Setup.exe (file missing)
O7 - KnownFolder: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders, Desktop = C:\Users\cance\Desktop
O7 - KnownFolder: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders, My Pictures = C:\Users\cance\Pictures
O7 - KnownFolder: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders, Personal = C:\Users\cance\Documents
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm (not signed - no company - 1A49C5F7A98580F8002AC1D6115AB39CB753975B)
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (sign: 'Tonec Inc.')
O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\WINDOWS\system32\fclip.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\WINDOWS\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Servicing\OOBEFodSetup - C:\WINDOWS\system32\OOBEFodSetup.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\SharedPC\Account Cleanup - {7750564D-D61C-4557-8A9D-7DF56BDCFF96} - C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser Exp - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun express (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\WINDOWS\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Sustainability\SustainabilityTelemetry - {6EE41D75-D091-4FB7-9AD5-018760DD25D4} - C:\WINDOWS\system32\EcoScoreTask.dll (sign: 'Microsoft')
O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{BC303D18-70A6-4753-A653-9FCB308459C7} - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe --wake --system (sign: 'Google LLC')
O22 - Tasks: \Microsoft\Windows\Containers\CmCleanup - {F50E9363-6BC8-4DC5-8CAB-7D9F8C1B81B4} - C:\WINDOWS\System32\cmcleanup.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Diagnosis\UnexpectedCodepath - C:\WINDOWS\system32\UCConfigTask.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\UsageDataReceiver - {D4C0420F-76BD-4F66-A91F-918A93ABEBEB} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Network Connectivity Status Indicator\NcsiIdentifyUserProxies - {706B965A-8308-4CD4-9900-87C2D79C121B} - C:\Windows\System32\netprofm.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\PerformanceTrace\RequestTrace - {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} - C:\WINDOWS\system32\PerformanceTraceHandler.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ReFsDedupSvc\Initialization - {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} - C:\WINDOWS\System32\ReFsDedupSvc.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Sustainability\PowerGridForecastTask - {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} - C:\WINDOWS\system32\PowerGridForecastTask.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\TPM\Tpm-PreAttestationHealthCheck - {5014B7C8-934E-4262-9816-887FA745A6C4},TpmPreAttestationHealthCheck - C:\WINDOWS\system32\TpmTasks.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (file missing)
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UUS Failover Task - C:\WINDOWS\System32\MLEngineStub.exe HandleUusFailoverEvaluationSignalFromWnf (sign: 'Microsoft')
O22 - Tasks: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (sign: 'Adobe Inc.')
O22 - Tasks: AMDLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -AMDLinkUpdate (sign: 'Advanced Micro Devices')
O22 - Tasks: Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} - C:\Program Files\Common Files\AV\Kaspersky\upgrade_launcher.exe /waitUpgrade (sign: 'AO Kaspersky Lab')
O22 - Tasks: ModifyLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -UpdateCurrentUser (sign: 'Advanced Micro Devices')
O22 - Tasks: MSI Task Host - LEDKeeper2_Host - C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-1064697690-2262194921-4121515155-1001 - C:\Users\cance\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O23 - Service R2: Kaspersky Hizmeti 21.19 - (AVP21.19) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\avp.exe -r (sign: 'Kaspersky Lab JSC')
O23 - Service R2: Microsoft Defender Çekirdek Hizmeti - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe (sign: 'Microsoft')
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 21.19 - (klvssbridge64_21.19) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.19\x64\vssbridge64.exe (sign: 'AO Kaspersky Lab')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\WINDOWS\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices')
O23 - Driver R0: AO Kaspersky Lab Cryptographic Module x64 (56 bit) - (cm_km) - C:\WINDOWS\system32\DRIVERS\cm_km.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-19_arkmon - C:\WINDOWS\System32\Drivers\klupd_K4W-21-19_arkmon.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-19_klbg - C:\WINDOWS\System32\Drivers\klupd_K4W-21-19_klbg.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Anti-Virus NDIS 6 Filter - (klim6) - C:\WINDOWS\system32\DRIVERS\klim6.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Driver.K4W-21-19 - (KLIF.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klif.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab format recognizer driver.K4W-21-19 - (klpd.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klpd.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Kernel DLL.K4W-21-19 - (klflt.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klbackupdisk.K4W-21-19 - (klbackupdisk.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klbackupdisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klbackupflt.K4W-21-19 - (klbackupflt.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klbackupflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab KLKBDFLT.K4W-21-19 - (klkbdflt.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klkbdflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klpnpflt.K4W-21-19 - (klpnpflt.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klpnpflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Security Extender Driver.K4W-21-19 - (klgse.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klgse.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab service driver.K4W-21-19 - (klhk.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klhk.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kldisk.K4W-21-19 - C:\WINDOWS\system32\DRIVERS\K4W-21-19\kldisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: klwtp.K4W-21-19 - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klwtp.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kneps.K4W-21-19 - C:\WINDOWS\system32\DRIVERS\K4W-21-19\kneps.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: MSIO - C:\WINDOWS\system32\drivers\MsIo64.sys (sign: 'Microsoft' - MICSYS Technology Co., LTd)
O23 - Driver R1: vgk - C:\Program Files\Riot Vanguard\vgk.sys (sign: 'Riot Games, Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV29 - C:\Program Files\AMD\RyzenMasterSDK\bin\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices')
O23 - Driver R2: IDMWFP - C:\WINDOWS\System32\drivers\idmwfp.sys (sign: 'Microsoft' - Tonec Inc.)
O23 - Driver R3: AMD Controller Emulation - (AMDXE) - C:\WINDOWS\System32\drivers\amdxe.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Crash Defender Driver - (amdfendr) - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_987f8cede005f427\amdfendr.sys (sign: 'Microsoft' - Advanced Micro Devices, Inc.)
O23 - Driver R3: AMD Crash Defender Manager Driver - (amdfendrmgr) - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_987f8cede005f427\amdfendrmgr.sys (sign: 'Microsoft' - Advanced Micro Devices, Inc.)
O23 - Driver R3: AMD Function Driver for HD Audio Service - (AtiHDAudioService) - C:\WINDOWS\System32\DriverStore\FileRepository\atihdwt6.inf_amd64_4ad1437aef138551\AtihdWT6.sys (sign: 'Microsoft' - Advanced Micro Devices)
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\WINDOWS\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\WINDOWS\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: amduw23g - C:\WINDOWS\System32\DriverStore\FileRepository\u0406695.inf_amd64_6133138125e49a58\B406235\amdkmdag.sys (sign: 'Advanced Micro Devices')
O23 - Driver R3: Kaspersky Lab KLMOUFLT.K4W-21-19 - (klmouflt.K4W-21-19) - C:\WINDOWS\system32\DRIVERS\K4W-21-19\klmouflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klids.K4W-21-19 - C:\ProgramData\Kaspersky Lab\AVP21.19\Bases\klids.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-19_klark - C:\WINDOWS\System32\Drivers\klupd_K4W-21-19_klark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-19_mark - C:\WINDOWS\System32\Drivers\klupd_K4W-21-19_mark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: Logitech G HUB Translation Layer Driver - (logi_joy_xlcore) - C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys (sign: 'Logitech Inc')
O23 - Driver R3: Logitech G HUB Virtual Bus Enumerator Driver - (logi_joy_bus_enum) - C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys (sign: 'Logitech Inc')
O23 - Driver R3: Logitech LampArray Device Driver - (logi_lamparray) - C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray.sys (sign: 'Logitech Inc')
O23 - Driver R3: Mediatek PCI LE Extensible Wireless LAN Card Driver - (mtkwlex) - C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_6194fff95628cf72\mtkwl6ex.sys (+safe mode) (sign: 'Microsoft' - MediaTek Inc.)
O23 - Driver R3: MTK BT Filter Driver - (MTKBTFilterx64) - C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_cde37df5add40ae6\mtkbtfilterx.sys (sign: 'Microsoft' - MediaTek Inc.)
O23 - Driver R3: NTIOLib_MysticLight - C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Lib\NTIOLib_X64.sys (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Driver R3: nvlddmkm - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Realtek RT640 NT Driver - (rt640x64) - C:\WINDOWS\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Realtek USB Audio Driver - (RtkUsbAD_2391) - C:\WINDOWS\System32\DriverStore\FileRepository\rtdusbad_msi.inf_amd64_38ebafb8e37bcbdb\RtUsbA64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\WINDOWS\system32\drivers\nvhda64v.sys (sign: 'NVIDIA Corporation')
O23 - Driver S3: Apple Lower Filter Driver - (AppleLowerFilter) - C:\WINDOWS\System32\drivers\AppleLowerFilter.sys (sign: 'Apple Inc.')
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: Logitech G HUB Virtual HID Device Driver - (logi_joy_vir_hid) - C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys (sign: 'Logitech Inc')
O23 - Driver S3: NTIOLib_CC_COMM - C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O23 - Driver S3: xhunter1 - C:\WINDOWS\xhunter1.sys (sign: 'Wellbia.com Co., Ltd.')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'klim6'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'klwtp.K4W-21-19'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'mtkwlex'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'rt640x64'


--
End of file - Time spent: 11,6 sec. - 43820 bytes, CRC32: FFFFFFFF. Sign: 攐▕


Merhaba bilgisayar açılır açılmaz masaüstünde arka arkaya çok hızlı 2 tane cmd açılıp kapanıyor. Adı: wmı commandline utility
bilgisayarımın işlemci sıcaklığına bakmak için msı centere giriyorum ilk baktığımda 55 derece gözüküyor, daha sonra sıcaklık hemen düşüyor ve fan hızı normale dönüyor.
Ve yine görev yöneticisine açılır açılmaz cpu kullanımı boşta %36 civarı gözüküyor yarım saniye sonra %2 ye düşüyor.
Temiz önyükleme ile beraber hitman pro ile tarama yaptım birşey bulamadım.
Yardımcı olabilir misiniz ?
 
evoo9 dedi:
Yardımcı olabilir misiniz ?
Genişletmek için tıkla...
Bu şekilde olması normaldir. Çoğu sistem bu şekilde. Bir sorun oluşturmaz eğer kalıcı veya Görev yöneticisi açıkken artmalar aşırı yaşanmıyorsa.
Bunları fixleyin:
Kod: 
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\131.0.6778.86\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_1888A25BB363A9A324B54E4DE78BB0C8] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --win-session-start (2024/11/23) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\cance\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2024/11/23) (sign: 'Microsoft')
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2024/11/28) (sign: 'Microsoft')
O4 - MountPoints2: HKCU\..\{a16fa401-a983-11ef-a2f3-58cdc9ed6be0}\shell\AutoRun\command: (default) = E:\Setup.exe (file missing)

Chaos adındaki yazılım sistem başlangıcındna servisleri bu cmd'leri yapıyor görünüyor.
 
Laptobu yeni aldım. Driver işini Windows Update ve tek tek kontrol ederek yaptım. Ama ara ara takılmalar yaşıyorum. Virüs mü bulaştı yoksa donanımsal bir hata mı var acaba? Teşekkürler şimdiden.

Kod: 
Logfile of HiJackThis+ (Plus) build 2024-11-10 Alpha v.3.4.0.12

Platform:  x64 Windows 11 (Home), 10.0.26100.2454 (ReleaseId: 2009, 24H2), Service Pack: 0
Time:      04.12.2024 - 02:24 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    28049 MiB Free. Loading RAM (15 %), CPU (3 %)
Elevated:  Yes
Ran by:    Cihan    (group: Administrators; type: Microsoft) on CANAVAR, FirstRun: yes

Chrome:  131.0.6778.86
Internet Explorer: 11.0.26100.1882
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: On) (Code Integrity: On)

Running processes:
Number | Path
   1  C:\Program Files (x86)\Feature Manager\Feature Manager Service.exe
   1  C:\Program Files (x86)\Feature Manager\Feature_Manager.exe
   1  C:\Program Files (x86)\Feature Manager\MSIAPService.exe
   1  C:\Program Files (x86)\Feature Manager\OmApSvcBroker.exe
   6  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   2  C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
   1  C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.1.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24102.96.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
   1  C:\Users\Cihan\Desktop\HiJackThis\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\System32\AggregatorHost.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   3  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
   1  C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_583af722d28308db\ipfsvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_2c7653f29a37d3f4\OneApp.IGCC.WinService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\AS\IAS\IntelAudioService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_helper.exe
   1  C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_uf.exe
   1  C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_881a68749106a57c\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a9e9122da4b4db5b\RtkAudUService64.exe
   1  C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\LsaIso.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\NgcIso.exe
   4  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\ShellHost.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  84  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   4  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SysWOW64\MSIService.exe

O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\131.0.6778.86\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_2290CA5D22A0CF51FC792BE002BC6E36] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --win-session-start (2024/11/28) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Program Files\Microsoft OneDrive\OneDrive.exe /background (2024/11/28) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2024/11/28) (sign: 'Valve Corp.')
O4 - HKLM\..\Run: [RtkAudUService] = C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a9e9122da4b4db5b\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\StartupApproved\Run32: [Keyboard Lighting Manager] = C:\Program Files (x86)\Keyboard Lighting Manager\Keyboard Lighting Manager.exe -systemstartup (2024/11/28) (sign: 'Micro-Star International CO., LTD.')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (file missing)
O17 - DHCP DNS 1: 178.233.140.110
O17 - DHCP DNS 2: 46.197.15.60
O17 - DHCP DNS 3: 46.196.235.35
O22 - Tasks: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\WINDOWS\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Servicing\OOBEFodSetup - C:\WINDOWS\system32\OOBEFodSetup.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\SharedPC\Account Cleanup - {7750564D-D61C-4557-8A9D-7DF56BDCFF96} - C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe -minimized (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) \Microsoft\Office\Office Performance Monitor - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser Exp - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun express (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\WINDOWS\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Sustainability\SustainabilityTelemetry - {6EE41D75-D091-4FB7-9AD5-018760DD25D4} - C:\WINDOWS\system32\EcoScoreTask.dll (sign: 'Microsoft')
O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{F60DA91C-C96E-4948-A6CF-2973F5BE7F26} - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe --wake --system (sign: 'Google LLC')
O22 - Tasks: \Microsoft\Windows\Diagnosis\UnexpectedCodepath - C:\WINDOWS\system32\UCConfigTask.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\UsageDataReceiver - {D4C0420F-76BD-4F66-A91F-918A93ABEBEB} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Network Connectivity Status Indicator\NcsiIdentifyUserProxies - {706B965A-8308-4CD4-9900-87C2D79C121B} - C:\Windows\System32\netprofm.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\PerformanceTrace\RequestTrace - {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} - C:\WINDOWS\system32\PerformanceTraceHandler.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ReFsDedupSvc\Initialization - {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} - C:\WINDOWS\System32\ReFsDedupSvc.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Sustainability\PowerGridForecastTask - {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} - C:\WINDOWS\system32\PowerGridForecastTask.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\TPM\Tpm-PreAttestationHealthCheck - {5014B7C8-934E-4262-9816-887FA745A6C4},TpmPreAttestationHealthCheck - C:\WINDOWS\system32\TpmTasks.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (file missing)
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UUS Failover Task - C:\WINDOWS\System32\MLEngineStub.exe HandleUusFailoverEvaluationSignalFromWnf (sign: 'Microsoft')
O22 - Tasks: Feature Manager - C:\Program Files (x86)\Feature Manager\Feature_Manager.exe (sign: 'Micro-Star International CO., LTD.')
O22 - Tasks: NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: OmApSvcBroker - C:\Program Files (x86)\Feature Manager\OmApSvcBroker.exe (sign: 'Micro-Star International CO., LTD.')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-3642336869-4069828061-3843680770-1001 - C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-3642336869-4069828061-3843680770-1002 - C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: ZoomUpdateTaskUser-S-1-5-21-3642336869-4069828061-3843680770-1001 - C:\Users\Cihan\AppData\Roaming\Zoom\bin\Zoom.exe --action=UpdateSchedule (sign: 'Zoom Video Communications, Inc.')
O23 - Service R2: DtsApo4Service - C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe (sign: 'DTS, Inc.')
O23 - Service R2: Intel(R) Audio Service - (IntelAudioService) - C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\\AS\\IAS\\IntelAudioService.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Dynamic Tuning Technology Telemetry Service - (dptftcs) - C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_583af722d28308db\ipfsvc.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Graphics Command Center Service - (igccservice) - C:\WINDOWS\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_2c7653f29a37d3f4\OneApp.IGCC.WinService.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Innovation Platform Framework Service - (ipfsvc) - C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_uf.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Management Engine WMI Provider Registration - (WMIRegistrationService) - C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (sign: 'Intel Corporation')
O23 - Service R2: Micro Star SCM - C:\WINDOWS\SysWOW64\MSIService.exe (sign: 'Micro-Star International CO., LTD.')
O23 - Service R2: Microsoft Defender Çekirdek Hizmeti - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe (sign: 'Microsoft')
O23 - Service R2: MSI Foundation Service - C:\Program Files (x86)\Feature Manager\MSIAPService.exe (sign: 'Micro-Star International CO., LTD.')
O23 - Service R2: NVIDIA Broadcast LocalSystem Container - (NvBroadcast.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe -s NvBroadcast.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvBroadcast.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\plugins\LocalSystem" -r -p 30000  (sign: 'Nvidia Corporation')
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_881a68749106a57c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_881a68749106a57c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem /ert (sign: 'NVIDIA Corporation')
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA Corporation\NVIDIA app\NvContainer\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000  -ert (sign: 'NVIDIA Corporation')
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a9e9122da4b4db5b\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')
O23 - Service S2: Google Güncelleyici Dahili Hizmeti (GoogleUpdaterInternalService132.0.6833.0) - (GoogleUpdaterInternalService132.0.6833.0) - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe --system --windows-service --service=update-internal (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Hizmeti (GoogleUpdaterService132.0.6833.0) - (GoogleUpdaterService132.0.6833.0) - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe --system --windows-service --service=update (sign: 'Google LLC')
O23 - Service S2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4ec1a03daa49235f\IntelCpHDCPSvc.exe (sign: 'Intel Corporation')
O23 - Service S2: Intel(R) Platform License Manager Service - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe (sign: 'Intel Corporation')
O23 - Service S3: FileSyncHelper - C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncHelper.exe (sign: 'Microsoft')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\131.0.6778.86\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service (sign: 'NVIDIA Corporation')
O23 - Service S3: OneDrive Updater Service - C:\Program Files\Microsoft OneDrive\24.221.1103.0003\OneDriveUpdaterService.exe (sign: 'Microsoft')
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Driver R3: ___ Windows 10 64 Bit için Intel(R) Wireless Bağdaştırıcı Sürücüsü  - (Netwtw14) - C:\WINDOWS\System32\DriverStore\FileRepository\netwtw6e.inf_amd64_477c028818b7a796\Netwtw14.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) GNA Scoring Accelerator service - (IntelGNA) - C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) HID Event Filter - (HidEventFilter) - C:\WINDOWS\System32\DriverStore\FileRepository\hideventfilter.inf_amd64_8b4344345b8897be\HidEventFilter.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Management Engine Interface  - (MEIx64) - C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_6b6e8cc42a3d1f09\x64\TeeDriverW10x64.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Serial IO GPIO Driver v2 - (iaLPSS2_GPIO2_ADL) - C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Serial IO I2C Driver v2 - (iaLPSS2_I2C_ADL) - C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Wireless Bluetooth(R) - (ibtusb) - C:\WINDOWS\System32\DriverStore\FileRepository\ibtusb.inf_amd64_1180c353e2642593\ibtusb.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology BUS - (IntcAudioBus) - C:\WINDOWS\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_799c962c58e6bfeb\IntcAudioBus.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology for Bluetooth® Audio - (IntcBTAu) - C:\WINDOWS\System32\DriverStore\FileRepository\intcbtau.inf_amd64_164a440e6b400316\IntcBTAu.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology for Bluetooth® LE Audio - (IntcBtLE) - C:\WINDOWS\System32\DriverStore\FileRepository\intcbtle.inf_amd64_0c9aadaff32d0209\IntcBtLE.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology for Digital Microphones - (IntcDMic) - C:\WINDOWS\System32\DriverStore\FileRepository\intcdmic.inf_amd64_acd402699ea3db34\IntcDMic.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology for USB Audio - (IntcUSB) - C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_c2a06a639869c7cd\IntcUSB.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology OED - (IntcOED) - C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\IntcOED.sys (sign: 'Intel Corporation')
O23 - Driver R3: ipf_acpi - C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_0bbfb278918dfdd5\ipf_acpi.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: ipf_cpu - C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_cpu.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: ipf_lf - C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_lf.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: NVIDIA Broadcast - (nvrtxvad_WaveExtensible) - C:\WINDOWS\system32\drivers\nvrtxvad64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) - (nvvad_WaveExtensible) - C:\WINDOWS\system32\drivers\nvvad64v.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: nvlddmkm - C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_881a68749106a57c\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: NVPCF Service - (nvpcf) - C:\WINDOWS\System32\drivers\nvpcf.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Realtek NetAdapter Driver - (rt68cx21) - C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_81b332badcdcaabe\rt68cx21x64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\WINDOWS\system32\drivers\nvhda64v.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\WINDOWS\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S3: ___ Windows 10 64 Bit için Intel(R) Wireless Bağdaştırıcı Sürücüsü  - (Netwtw12) - C:\WINDOWS\System32\DriverStore\FileRepository\netwtw6e.inf_amd64_9e7b9e1ba7e74592\Netwtw12.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver S3: igfxn - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4ec1a03daa49235f\igdkmdn64.sys (sign: 'Intel Corporation')
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw12'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw14'


--
End of file - Time spent: 14,8 sec. - 45850 bytes, CRC32: FFFFFFFF. Sign: 鳐

KİRLİ14 dedi:
Laptobu yeni aldım. Driver işini Windows Update ve tek tek kontrol ederek yaptım. Ama ara ara takılmalar yaşıyorum. Virüs mü bulaştı yoksa donanımsal bir hata mı var acaba? Teşekkürler şimdiden.

Kod: 
Logfile of HiJackThis+ (Plus) build 2024-11-10 Alpha v.3.4.0.12

Platform:  x64 Windows 11 (Home), 10.0.26100.2454 (ReleaseId: 2009, 24H2), Service Pack: 0
Time:      04.12.2024 - 02:24 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    28049 MiB Free. Loading RAM (15 %), CPU (3 %)
Elevated:  Yes
Ran by:    Cihan    (group: Administrators; type: Microsoft) on CANAVAR, FirstRun: yes

Chrome:  131.0.6778.86
Internet Explorer: 11.0.26100.1882
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: On) (Code Integrity: On)

Running processes:
Number | Path
   1  C:\Program Files (x86)\Feature Manager\Feature Manager Service.exe
   1  C:\Program Files (x86)\Feature Manager\Feature_Manager.exe
   1  C:\Program Files (x86)\Feature Manager\MSIAPService.exe
   1  C:\Program Files (x86)\Feature Manager\OmApSvcBroker.exe
   6  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   2  C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt\IGCC.exe
   1  C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.1.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24102.96.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
   1  C:\Users\Cihan\Desktop\HiJackThis\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\System32\AggregatorHost.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   3  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
   1  C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_583af722d28308db\ipfsvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_2c7653f29a37d3f4\OneApp.IGCC.WinService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\AS\IAS\IntelAudioService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_helper.exe
   1  C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_uf.exe
   1  C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_881a68749106a57c\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a9e9122da4b4db5b\RtkAudUService64.exe
   1  C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\LsaIso.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\NgcIso.exe
   4  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\ShellHost.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  84  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   4  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SysWOW64\MSIService.exe

O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\131.0.6778.86\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_2290CA5D22A0CF51FC792BE002BC6E36] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --win-session-start (2024/11/28) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Program Files\Microsoft OneDrive\OneDrive.exe /background (2024/11/28) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2024/11/28) (sign: 'Valve Corp.')
O4 - HKLM\..\Run: [RtkAudUService] = C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a9e9122da4b4db5b\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\StartupApproved\Run32: [Keyboard Lighting Manager] = C:\Program Files (x86)\Keyboard Lighting Manager\Keyboard Lighting Manager.exe -systemstartup (2024/11/28) (sign: 'Micro-Star International CO., LTD.')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (file missing)
O17 - DHCP DNS 1: 178.233.140.110
O17 - DHCP DNS 2: 46.197.15.60
O17 - DHCP DNS 3: 46.196.235.35
O22 - Tasks: (disabled) \Microsoft\Windows\Flighting\FeatureConfig\BootstrapUsageDataReporting - {D759C938-B375-41CB-A2A2-E6D866A767F4} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\WINDOWS\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Servicing\OOBEFodSetup - C:\WINDOWS\system32\OOBEFodSetup.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\SharedPC\Account Cleanup - {7750564D-D61C-4557-8A9D-7DF56BDCFF96} - C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe -minimized (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) \Microsoft\Office\Office Performance Monitor - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser Exp - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun express (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\WINDOWS\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Sustainability\SustainabilityTelemetry - {6EE41D75-D091-4FB7-9AD5-018760DD25D4} - C:\WINDOWS\system32\EcoScoreTask.dll (sign: 'Microsoft')
O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{F60DA91C-C96E-4948-A6CF-2973F5BE7F26} - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe --wake --system (sign: 'Google LLC')
O22 - Tasks: \Microsoft\Windows\Diagnosis\UnexpectedCodepath - C:\WINDOWS\system32\UCConfigTask.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Flighting\FeatureConfig\UsageDataReceiver - {D4C0420F-76BD-4F66-A91F-918A93ABEBEB} - C:\Windows\System32\fcon.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Network Connectivity Status Indicator\NcsiIdentifyUserProxies - {706B965A-8308-4CD4-9900-87C2D79C121B} - C:\Windows\System32\netprofm.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\PerformanceTrace\RequestTrace - {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} - C:\WINDOWS\system32\PerformanceTraceHandler.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ReFsDedupSvc\Initialization - {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} - C:\WINDOWS\System32\ReFsDedupSvc.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Sustainability\PowerGridForecastTask - {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} - C:\WINDOWS\system32\PowerGridForecastTask.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\TPM\Tpm-PreAttestationHealthCheck - {5014B7C8-934E-4262-9816-887FA745A6C4},TpmPreAttestationHealthCheck - C:\WINDOWS\system32\TpmTasks.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\WINDOWS\system32\MusNotification.exe (file missing)
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\UUS Failover Task - C:\WINDOWS\System32\MLEngineStub.exe HandleUusFailoverEvaluationSignalFromWnf (sign: 'Microsoft')
O22 - Tasks: Feature Manager - C:\Program Files (x86)\Feature Manager\Feature_Manager.exe (sign: 'Micro-Star International CO., LTD.')
O22 - Tasks: NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: OmApSvcBroker - C:\Program Files (x86)\Feature Manager\OmApSvcBroker.exe (sign: 'Micro-Star International CO., LTD.')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-3642336869-4069828061-3843680770-1001 - C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-3642336869-4069828061-3843680770-1002 - C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: ZoomUpdateTaskUser-S-1-5-21-3642336869-4069828061-3843680770-1001 - C:\Users\Cihan\AppData\Roaming\Zoom\bin\Zoom.exe --action=UpdateSchedule (sign: 'Zoom Video Communications, Inc.')
O23 - Service R2: DtsApo4Service - C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe (sign: 'DTS, Inc.')
O23 - Service R2: Intel(R) Audio Service - (IntelAudioService) - C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\\AS\\IAS\\IntelAudioService.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Dynamic Tuning Technology Telemetry Service - (dptftcs) - C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_583af722d28308db\ipfsvc.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Graphics Command Center Service - (igccservice) - C:\WINDOWS\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_2c7653f29a37d3f4\OneApp.IGCC.WinService.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Innovation Platform Framework Service - (ipfsvc) - C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_uf.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Management Engine WMI Provider Registration - (WMIRegistrationService) - C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (sign: 'Intel Corporation')
O23 - Service R2: Micro Star SCM - C:\WINDOWS\SysWOW64\MSIService.exe (sign: 'Micro-Star International CO., LTD.')
O23 - Service R2: Microsoft Defender Çekirdek Hizmeti - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe (sign: 'Microsoft')
O23 - Service R2: MSI Foundation Service - C:\Program Files (x86)\Feature Manager\MSIAPService.exe (sign: 'Micro-Star International CO., LTD.')
O23 - Service R2: NVIDIA Broadcast LocalSystem Container - (NvBroadcast.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe -s NvBroadcast.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvBroadcast.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\plugins\LocalSystem" -r -p 30000  (sign: 'Nvidia Corporation')
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_881a68749106a57c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_881a68749106a57c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem /ert (sign: 'NVIDIA Corporation')
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA Corporation\NVIDIA app\NvContainer\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000  -ert (sign: 'NVIDIA Corporation')
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a9e9122da4b4db5b\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')
O23 - Service S2: Google Güncelleyici Dahili Hizmeti (GoogleUpdaterInternalService132.0.6833.0) - (GoogleUpdaterInternalService132.0.6833.0) - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe --system --windows-service --service=update-internal (sign: 'Google LLC')
O23 - Service S2: Google Güncelleyici Hizmeti (GoogleUpdaterService132.0.6833.0) - (GoogleUpdaterService132.0.6833.0) - C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe --system --windows-service --service=update (sign: 'Google LLC')
O23 - Service S2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4ec1a03daa49235f\IntelCpHDCPSvc.exe (sign: 'Intel Corporation')
O23 - Service S2: Intel(R) Platform License Manager Service - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe (sign: 'Intel Corporation')
O23 - Service S3: FileSyncHelper - C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncHelper.exe (sign: 'Microsoft')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\131.0.6778.86\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service (sign: 'NVIDIA Corporation')
O23 - Service S3: OneDrive Updater Service - C:\Program Files\Microsoft OneDrive\24.221.1103.0003\OneDriveUpdaterService.exe (sign: 'Microsoft')
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Driver R3: ___ Windows 10 64 Bit için Intel(R) Wireless Bağdaştırıcı Sürücüsü  - (Netwtw14) - C:\WINDOWS\System32\DriverStore\FileRepository\netwtw6e.inf_amd64_477c028818b7a796\Netwtw14.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) GNA Scoring Accelerator service - (IntelGNA) - C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) HID Event Filter - (HidEventFilter) - C:\WINDOWS\System32\DriverStore\FileRepository\hideventfilter.inf_amd64_8b4344345b8897be\HidEventFilter.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Management Engine Interface  - (MEIx64) - C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_6b6e8cc42a3d1f09\x64\TeeDriverW10x64.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Serial IO GPIO Driver v2 - (iaLPSS2_GPIO2_ADL) - C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Serial IO I2C Driver v2 - (iaLPSS2_I2C_ADL) - C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Wireless Bluetooth(R) - (ibtusb) - C:\WINDOWS\System32\DriverStore\FileRepository\ibtusb.inf_amd64_1180c353e2642593\ibtusb.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology BUS - (IntcAudioBus) - C:\WINDOWS\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_799c962c58e6bfeb\IntcAudioBus.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology for Bluetooth® Audio - (IntcBTAu) - C:\WINDOWS\System32\DriverStore\FileRepository\intcbtau.inf_amd64_164a440e6b400316\IntcBTAu.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology for Bluetooth® LE Audio - (IntcBtLE) - C:\WINDOWS\System32\DriverStore\FileRepository\intcbtle.inf_amd64_0c9aadaff32d0209\IntcBtLE.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology for Digital Microphones - (IntcDMic) - C:\WINDOWS\System32\DriverStore\FileRepository\intcdmic.inf_amd64_acd402699ea3db34\IntcDMic.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology for USB Audio - (IntcUSB) - C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_c2a06a639869c7cd\IntcUSB.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel® Smart Sound Technology OED - (IntcOED) - C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\IntcOED.sys (sign: 'Intel Corporation')
O23 - Driver R3: ipf_acpi - C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_0bbfb278918dfdd5\ipf_acpi.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: ipf_cpu - C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_cpu.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: ipf_lf - C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_b25cc008923a9297\ipf_lf.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: NVIDIA Broadcast - (nvrtxvad_WaveExtensible) - C:\WINDOWS\system32\drivers\nvrtxvad64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) - (nvvad_WaveExtensible) - C:\WINDOWS\system32\drivers\nvvad64v.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: nvlddmkm - C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_881a68749106a57c\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: NVPCF Service - (nvpcf) - C:\WINDOWS\System32\drivers\nvpcf.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Realtek NetAdapter Driver - (rt68cx21) - C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_81b332badcdcaabe\rt68cx21x64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\WINDOWS\system32\drivers\nvhda64v.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\WINDOWS\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S3: ___ Windows 10 64 Bit için Intel(R) Wireless Bağdaştırıcı Sürücüsü  - (Netwtw12) - C:\WINDOWS\System32\DriverStore\FileRepository\netwtw6e.inf_amd64_9e7b9e1ba7e74592\Netwtw12.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver S3: igfxn - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4ec1a03daa49235f\igdkmdn64.sys (sign: 'Intel Corporation')
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw12'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw14'


--
End of file - Time spent: 14,8 sec. - 45850 bytes, CRC32: FFFFFFFF. Sign: 鳐
Genişletmek için tıkla...
@Murat5038 Hocam yardımcı olur musunuz? :::)
 
Son düzenleme:
KİRLİ14 dedi:
Laptobu yeni aldım. Driver işini Windows Update ve tek tek kontrol ederek yaptım. Ama ara ara takılmalar yaşıyorum. Virüs mü bulaştı yoksa donanımsal bir hata mı var acaba? Teşekkürler şimdiden.
Genişletmek için tıkla...
MSI araçlarını kaldırın. OneDrive kullanmıyorsanız kaldırın ve temiz önyükleme yapın.
Defender yerine daha az tüketim sağlayan bir güvenlik çözümü kullanın.
Zararlı olarak bir şey görünmedi.
 
Murat5038 dedi:
MSI araçlarını kaldırın. OneDrive kullanmıyorsanız kaldırın ve temiz önyükleme yapın.
Defender yerine daha az tüketim sağlayan bir güvenlik çözümü kullanın.
Zararlı olarak bir şey görünmedi.
Genişletmek için tıkla...
Temiz önyükleme nedir hocam? Msı araçları nedir ? Feature Manager diye bir uygulama var ondan mı bahsediyorsunuz?

KİRLİ14 dedi:
Temiz önyükleme nedir hocam? Msı araçları nedir ? Feature Manager diye bir uygulama var ondan mı bahsediyorsunuz?
Genişletmek için tıkla...
Çok teşekkürler bu arada 🙏🏽
 
Son düzenleme:

Benzer konular

taylaan
HijackThis Log Paylaşımı
Mesaj
0
Görüntüleme
550
taylaan
taylaan
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5.690
quarest
quarest
Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
1.006
acv
A
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
3.007
Murat5038
Murat5038
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
14.561
Windows 11 Bükücü
Windows 11 Bükücü

Technopat Haberler

Yeni konular

Yeni mesajlar

Geri
Yukarı