Rehber HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleme:
Genişletmek için tıkla...
MURAT5038 dönüşün için teşekkürler fixleyin derken tam anlamadım IOBIT şimdi sileceğim önceden Driver Booster ile driver güncellemiştim şimdi başka programını da indirmiştim de siliyorum.
 
İlginç şekilde 144fps aldığım oyunlarda anlık 80fps e kadar düşüyorum. Sistemimde sağlam. (Low ayarlarda gtx1080)


Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.18363.449 (ReleaseId: 1909), Service Pack: 0
Time:      08.11.2019 - 17:02 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Murat Akbaş    (group: Administrator) on RENDER, FirstRun: yes

Edge:    11.0.18362.449
Internet Explorer: 11.0.18362.1
Default: "C:\Users\Murat Akbaş\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
   1  C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
   1  C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe
   1  C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
   1  C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe
   1  C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
   1  C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
   1  C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
   1  C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
   1  C:\Program Files (x86)\Internet Download Manager\IDMan.exe
   1  C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
   1  C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
   1  C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\Origin\Origin.exe
   1  C:\Program Files (x86)\Origin\OriginWebHelperService.exe
   2  C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
   1  C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
   3  C:\Program Files\Autodesk\AutoCAD 2017\AcWebBrowser\AcWebBrowser.exe
   1  C:\Program Files\Autodesk\AutoCAD 2017\acad.exe
   3  C:\Program Files\Common Files\Autodesk Shared\CLM\V3\MSVC14\cliccore\acwebbrowser.exe
   1  C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
   1  C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
   1  C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x64__8wekyb3d8bbwe\Calculator.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.8.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19101.469.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\NisSrv.exe
  25  C:\Users\Murat Akbaş\AppData\Local\Programs\Opera\64.0.3417.92\opera.exe
   1  C:\Users\Murat Akbaş\AppData\Local\Programs\Opera\64.0.3417.92\opera_crashreporter.exe
   1  C:\Users\Murat Akbaş\Desktop\HiJackThis\HiJackThis.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   3  C:\Windows\SysWOW64\muachost.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\CompPkgSrv.exe
   7  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   2  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  65  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O4 - Global User Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk    ->    C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe -dataPath="C:\ProgramData\SteelSeries\SteelSeries Engine 3" -dbEnv=production -auto=true
O4 - HKCU\..\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\StartupApproved\Run: [CCXProcess] = C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (2019/11/04)
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/11/04)
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\Murat Akbaş\AppData\Local\Discord\app-0.0.305\Discord.exe (2019/11/03)
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O4 - HKLM\..\StartupApproved\Run32: [Autodesk Desktop App] = C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe -tray (2019/11/03)
O4 - HKLM\..\StartupApproved\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (2019/11/03)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DTS Custom.lnk    ->    C:\Program Files (x86)\DTS, Inc\DTS Custom\APO3GUI.exe /HIDEME (2019/11/03)
O4-32 - HKLM\..\Run: [CORSAIR iCUE Software] = C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe --autorun
O4-32 - HKLM\..\Run: [Lightshot] = C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O17 - DHCP DNS 1: 1.1.1.1
O17 - DHCP DNS 2: 1.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{bc1c0840-9d8d-4183-a4b9-76d451547076}: [NameServer] = 1.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{bc1c0840-9d8d-4183-a4b9-76d451547076}: [NameServer] = 1.1.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\AutoCAD Digital Signatures Icon Overlay Handler: AcSignIcon - {36A21736-36C2-4C11-8ACB-D4136F2B57BD} - C:\Windows\system32\AcSignIcon.dll
O23 - Service R2: ASUS Com Service - (asComSvc) - C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
O23 - Service R2: ASUS System Control Service - (AsSysCtrlService) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service R2: AsusFanControlService - C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe
O23 - Service R2: Corsair Service - (CorsairService) - C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service R3: FlexNet Licensing Service 64 - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe


--
End of file - Time spent: 14,2 sec. - 21718 bytes, CRC32: FFFFFFFF. Sign: 絤鉠
 
Google Chrome internete bağlanmıyor. Opera ve diğer tarayıcılarda sorun yok.

Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.18362.449 (ReleaseId: 1903), Service Pack: 0
Time:      13.11.2019 - 15:12 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Ahmet    (group: Administrator) on DESKTOP-A8M5QED, FirstRun: yes

Chrome:  78.0.3904.97
Edge:    11.0.18362.449
Internet Explorer: 11.0.18362.1
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
   1  C:\Program Files (x86)\Creative\Sound Blaster Cinema 3\Sound Blaster Cinema 3\SBCinema3.exe
   1  C:\Program Files (x86)\Hotkey\ComboKeyTray.exe
   1  C:\Program Files (x86)\Hotkey\Driver\x64\HKClipSvc.exe
   1  C:\Program Files (x86)\Hotkey\HkeyTray.exe
   1  C:\Program Files (x86)\Hotkey\HotkeyService.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
   1  C:\Program Files (x86)\Internet Download Manager\IDMan.exe
   1  C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\Origin\OriginWebHelperService.exe
   1  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
   1  C:\Program Files\Intel\WiFi\bin\EvtEng.exe
   1  C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxOutlook.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxTsr.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\NisSrv.exe
   1  C:\Users\Burak\Desktop\HiJackThis\HiJackThis.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\SysWOW64\PnkBstrA.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_767e7683f9ad126c\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_767e7683f9ad126c\igfxEM.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_fa086a952c21720f\IntelCpHDCPSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_fa086a952c21720f\IntelCpHeciSvc.exe
   4  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\ibtsiva.exe
   1  C:\Windows\System32\lsass.exe
   2  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  79  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WMIADAP.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   2  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\explorer.exe
   1  D:\Program Files\txgameassistant\appmarket\QMEmulatorService.exe

O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 www.monster-cheats.com
O1 - Hosts: 0.0.0.0 monster-cheats.com
O1 - Hosts: 0.0.0.0 www.bl-hackers.com
O1 - Hosts: 0.0.0.0 bl-hackers.com
O1 - Hosts: 0.0.0.0 theapathe.com
O1 - Hosts: 0.0.0.0 www.theapathe.com
O1 - Hosts: 0.0.0.0 theapathe.net
O1 - Hosts: 0.0.0.0 www.theapathe.net
O1 - Hosts: 0.0.0.0 theapathe.org
O1 - Hosts: 0.0.0.0 www.theapathe.org
O1 - Hosts: 0.0.0.0 sv1.theapathe.com
O1 - Hosts: 0.0.0.0 apathecheats.com
O1 - Hosts: 0.0.0.0 www.apathecheats.com
O1 - Hosts: 0.0.0.0 apathecheats.net
O1 - Hosts: 0.0.0.0 www.apathecheats.net
O1 - Hosts: 0.0.0.0 apathecheats.org
O1 - Hosts: 0.0.0.0 www.apathecheats.org
O1 - Hosts: 0.0.0.0 download.theapathe.com
O1 - Hosts: 0.0.0.0 www.sv1.theapathe.com
O1 - Hosts: 0.0.0.0 www.download.theapathe.com
O1 - Hosts: 0.0.0.0 www.hileliadam.co
O1 - Hosts: 0.0.0.0 hileliadam.co
O1 - Hosts: 0.0.0.0 www.hilenbizde.com
O1 - Hosts: 0.0.0.0 hilenbizde.com
O1 - Hosts: 0.0.0.0 www.wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.zulahile.com
O1 - Hosts: 0.0.0.0 zulahile.com
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 mrsnapznet.us
O1 - Hosts: 0.0.0.0 www.badeshan.com
O1 - Hosts: 0.0.0.0 www.thefrm.net
O1 - Hosts: 0.0.0.0 www.plathelper.net
O1 - Hosts: 0.0.0.0 www.thefrmonline.com
O1 - Hosts: 0.0.0.0 www.pro-hile.com
O1 - Hosts: 0.0.0.0 www.pro-hile.net
O1 - Hosts: 0.0.0.0 www.hileliadam.com
O1 - Hosts: 0.0.0.0 www.hilelikafa.com
O1 - Hosts: 0.0.0.0 www.gamehileleri.com
O1 - Hosts: 0.0.0.0 www.hilemekani.com
O1 - Hosts: 0.0.0.0 www.frmbull.com
O1 - Hosts: 0.0.0.0 www.turkfrm.net
O1 - Hosts: 0.0.0.0 www.hilesarayi.com
O1 - Hosts: 0.0.0.0 www.xcheats.com
O1 - Hosts: 0.0.0.0 www.xcheats.net
O1 - Hosts: 0.0.0.0 www.xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.com
O1 - Hosts: 0.0.0.0 xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.net
O1 - Hosts: 0.0.0.0 utilcheat.com
O1 - Hosts: 0.0.0.0 turkfrm.net
O1 - Hosts: 0.0.0.0 goldhile.net
O1 - Hosts: 0.0.0.0 onefrm.com
O1 - Hosts: 0.0.0.0 badeshan.com
O1 - Hosts: 0.0.0.0 thefrmonline.com
O1 - Hosts: 0.0.0.0 thefrm.net
O1 - Hosts: 0.0.0.0 pro-hile.com
O1 - Hosts: 0.0.0.0 pro-hile.net
O1 - Hosts: 0.0.0.0 zeusfrm.org
O1 - Hosts: 0.0.0.0 hileliadam.com
O1 - Hosts: 0.0.0.0 hilelikafa.com
O1 - Hosts: 0.0.0.0 gamehileleri.com
O1 - Hosts: 0.0.0.0 hilemekani.com
O1 - Hosts: 0.0.0.0 frmbull.com
O1 - Hosts: 0.0.0.0 plathelper.net
O1 - Hosts: 0.0.0.0 hilesarayi.com
O1 - Hosts: 0.0.0.0 yenilmezfrm.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.com
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.org
O1 - Hosts: 0.0.0.0 pro-hile.org
O1 - Hosts: 0.0.0.0 www.pro-hile.org
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 ultrafrm.net
O1 - Hosts: 0.0.0.0 www.ultrafrm.net
O1 - Hosts: 0.0.0.0 ultrafrm.org
O1 - Hosts: 0.0.0.0 www.ultrafrm.org
O1 - Hosts: 0.0.0.0 ultrafrm.com
O1 - Hosts: 0.0.0.0 www.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 ads.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.hileuzmani.com
O1 - Hosts: 0.0.0.0 hileuzmani.com
O1 - Hosts: 0.0.0.0 unitatis.net
O1 - Hosts: 0.0.0.0 www.unitatis.net
O1 - Hosts: 0.0.0.0 www.mrcheat.us
O1 - Hosts: 0.0.0.0 mrcheat.us
O1 - Hosts: 0.0.0.0 ultrahilem.com
O1 - Hosts: 0.0.0.0 www.ultrahilem.com
O1 - Hosts: 0.0.0.0 moiracheats.net
O1 - Hosts: 0.0.0.0 moiracheats.com
O1 - Hosts: 0.0.0.0 moiracheats.org
O1 - Hosts: 0.0.0.0 www.moiracheats.net
O1 - Hosts: 0.0.0.0 www.moiracheats.com
O1 - Hosts: 0.0.0.0 www.moiracheats.org
O1 - Hosts: 0.0.0.0 mo1racheats.net
O1 - Hosts: 0.0.0.0 mo1racheats.com
O1 - Hosts: 0.0.0.0 mo1racheats.org
O1 - Hosts: 0.0.0.0 www.mo1racheats.net
O1 - Hosts: 0.0.0.0 www.mo1racheats.com
O1 - Hosts: 0.0.0.0 www.mo1racheats.org
O1 - Hosts: 0.0.0.0 kral-hile.com
O1 - Hosts: 0.0.0.0 www.kral-hile.com
O1 - Hosts: 0.0.0.0 www.elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 hoxelizm.com
O1 - Hosts: 0.0.0.0 www.hoxelizm.com
O1 - Hosts: 0.0.0.0 virtualevolution.net
O1 - Hosts: 0.0.0.0 www.virtualevolution.net
O1 - Hosts: 0.0.0.0 virtualevolution.com
O1 - Hosts: 0.0.0.0 www.virtualevolution.com
O1 - Hosts: 0.0.0.0 virtualevolution.org
O1 - Hosts: 0.0.0.0 www.virtualevolution.org
O1 - Hosts: 0.0.0.0 zoomhacks.com
O1 - Hosts: 0.0.0.0 www.zoomhacks.com
O1 - Hosts: 0.0.0.0 www.download.zoomhacks.com
O1 - Hosts: 0.0.0.0 cheatsturkey.net
O1 - Hosts: 0.0.0.0 cheatsturkey.com
O1 - Hosts: 0.0.0.0 cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 unixcheats.com
O1 - Hosts: 0.0.0.0 www.unixcheats.com
O1 - Hosts: 0.0.0.0 unixcheats.net
O1 - Hosts: 0.0.0.0 www.unixcheats.net
O1 - Hosts: 0.0.0.0 unixcheats.org
O1 - Hosts: 0.0.0.0 www.unixcheats.org
O1 - Hosts: 0.0.0.0 gamecheat.center
O1 - Hosts: 0.0.0.0 www.gamecheat.center
O1 - Hosts: 0.0.0.0 www.masyaf.net
O1 - Hosts: 0.0.0.0 masyaf.net
O1 - Hosts: 0.0.0.0 www.masyaf.com
O1 - Hosts: 0.0.0.0 masyaf.com
O1 - Hosts: 0.0.0.0 www.masyaf.org
O1 - Hosts: 0.0.0.0 masyaf.org
O1 - Hosts: 0.0.0.0 serodeck.com
O1 - Hosts: 0.0.0.0 www.serodeck.com
O1 - Hosts: 0.0.0.0 hax4you.com
O1 - Hosts: 0.0.0.0 www.hax4you.com
O1 - Hosts: 0.0.0.0 hax4you.net
O1 - Hosts: 0.0.0.0 www.hax4you.net
O1 - Hosts: 0.0.0.0 hax4you.org
O1 - Hosts: 0.0.0.0 www.hax4you.org
O1 - Hosts: 0.0.0.0 unxc.xyz
O1 - Hosts: 0.0.0.0 www.unxc.xyz
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.net
O1 - Hosts: 0.0.0.0 www.exiledros.net
O1 - Hosts: 0.0.0.0 exiledros.com
O1 - Hosts: 0.0.0.0 www.exiledros.com
O1 - Hosts: 0.0.0.0 exiledros.info
O1 - Hosts: 0.0.0.0 www.exiledros.info
O1 - Hosts: 0.0.0.0 rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 citpekalongan.com
O1 - Hosts: 0.0.0.0 www.citpekalongan.com
O1 - Hosts: 0.0.0.0 vipmrcheats.org
O1 - Hosts: 0.0.0.0 www.vipmrcheats.org
O1 - Hosts: 0.0.0.0 luciros.tk
O1 - Hosts: 0.0.0.0 www.hotshotgamers.net
O1 - Hosts: 0.0.0.0 hotshotgamers.net
O1 - Hosts: 0.0.0.0 www.hotshotgamers.org
O1 - Hosts: 0.0.0.0 hotshotgamers.org
O1 - Hosts: 0.0.0.0 www.hotshotgamers.com
O1 - Hosts: 0.0.0.0 hotshotgamers.com
O1 - Hosts: 0.0.0.0 www.pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 woxcheats.com
O1 - Hosts: 0.0.0.0 www.woxcheats.com
O1 - Hosts: 0.0.0.0 woxcheats.net
O1 - Hosts: 0.0.0.0 www.woxcheats.net
O1 - Hosts: 0.0.0.0 woxcheats.org
O1 - Hosts: 0.0.0.0 www.woxcheats.org
O1 - Hosts.ICS: 192.168.137.1 DESKTOP-A8M5QED.mshome.net # 2024 11 1 11 10 34 39 782
O1 - Hosts.ICS: 192.168.137.107 RedmiNote7-Redmi.mshome.net # 2019 11 3 20 10 34 39 782
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O4 - HKCU\..\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/02/15)
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [MBCfg64] = C:\Windows\system32\MBCfg64.dll C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe
O4 - HKLM\..\StartupApproved\Run32: [USB Gamepad] = C:\Windows\USB Vibration\7906\USB Gamepad.exe -boot (2019/03/29)
O4-32 - HKLM\..\Run: [FxSound Enhancer] = C:\Program Files (x86)\DFX\dfx.exe -startup
O4-32 - HKLM\..\Run: [Sound Blaster Cinema 3] = C:\Program Files (x86)\Creative\Sound Blaster Cinema 3\Sound Blaster Cinema 3\SBCinema3.exe /r
O4-32 - HKLM\..\Run: [UpdReg] = C:\Windows\UpdReg.EXE
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O15 - Trusted Zone: https://connectify.me
O15 - Trusted Zone: https://fastspring.com
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: HotKey Clipboard Service - (HKClipSvc) - C:\Program Files (x86)\Hotkey\Driver\x64\HKClipSvc.exe
O23 - Service R2: Intel Bluetooth Service - (ibtsiva) - C:\WINDOWS\system32\ibtsiva.exe
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_fa086a952c21720f\IntelCpHDCPSvc.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) Extreme Tuning Utility Service - (XTU3SERVICE) - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_767e7683f9ad126c\igfxCUIService.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: Intel(R) PROSet/Wireless Event Log - (EvtEng) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service R2: Intel(R) PROSet/Wireless Registry Service - (RegSrvc) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service R2: Intel(R) PROSet/Wireless Zero Configuration Service - (ZeroConfigService) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service R2: PnkBstrA - C:\Windows\system32\PnkBstrA.exe  (file missing)
O23 - Service R2: PowerBiosServer - C:\Program Files (x86)\Hotkey\HotkeyService.exe
O23 - Service R2: QMEmulatorService - D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_fa086a952c21720f\IntelCpHeciSvc.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Intel(R) TPM Provisioning Service - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service S3: Office 64 Source Engine - (ose64) - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Uncheater for BattleGroundsLite_SE - (uncheater_bgl) - C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe
O23 - Service S3: Wireless PAN DHCP Server - (MyWiFiDHCPDNS) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe


--
End of file - Time spent: 19,8 sec. - 44606 bytes, CRC32: FFFFFFFF. Sign: 壘ꙷ
 
LeonS.Kennedy dedi:
Format Factory yoluyla bir iki toolbar tarzı bir uygulama(yani virüs) yüklenmişti.
Genişletmek için tıkla...
Toolbar virüs değildir. Zararlı da değildir. Zararlı içeren toolbarlar sadece olabiliyor. Format factory yanında gelenler sadece reklam amaçlı yüklenmiş yazılım olabilir bunu zaten yüklerken size soruyor siz evet dediğiniz için yüklüyor.
Reveral dedi:
Google Chrome internete bağlanmıyor. Opera ve diğer tarayıcılarda sorun yok.
Genişletmek için tıkla...
Bunları fixleyin:
Kod: 
O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 www.monster-cheats.com
O1 - Hosts: 0.0.0.0 monster-cheats.com
O1 - Hosts: 0.0.0.0 www.bl-hackers.com
O1 - Hosts: 0.0.0.0 bl-hackers.com
O1 - Hosts: 0.0.0.0 theapathe.com
O1 - Hosts: 0.0.0.0 www.theapathe.com
O1 - Hosts: 0.0.0.0 theapathe.net
O1 - Hosts: 0.0.0.0 www.theapathe.net
O1 - Hosts: 0.0.0.0 theapathe.org
O1 - Hosts: 0.0.0.0 www.theapathe.org
O1 - Hosts: 0.0.0.0 sv1.theapathe.com
O1 - Hosts: 0.0.0.0 apathecheats.com
O1 - Hosts: 0.0.0.0 www.apathecheats.com
O1 - Hosts: 0.0.0.0 apathecheats.net
O1 - Hosts: 0.0.0.0 www.apathecheats.net
O1 - Hosts: 0.0.0.0 apathecheats.org
O1 - Hosts: 0.0.0.0 www.apathecheats.org
O1 - Hosts: 0.0.0.0 download.theapathe.com
O1 - Hosts: 0.0.0.0 www.sv1.theapathe.com
O1 - Hosts: 0.0.0.0 www.download.theapathe.com
O1 - Hosts: 0.0.0.0 www.hileliadam.co
O1 - Hosts: 0.0.0.0 hileliadam.co
O1 - Hosts: 0.0.0.0 www.hilenbizde.com
O1 - Hosts: 0.0.0.0 hilenbizde.com
O1 - Hosts: 0.0.0.0 www.wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.zulahile.com
O1 - Hosts: 0.0.0.0 zulahile.com
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 mrsnapznet.us
O1 - Hosts: 0.0.0.0 www.badeshan.com
O1 - Hosts: 0.0.0.0 www.thefrm.net
O1 - Hosts: 0.0.0.0 www.plathelper.net
O1 - Hosts: 0.0.0.0 www.thefrmonline.com
O1 - Hosts: 0.0.0.0 www.pro-hile.com
O1 - Hosts: 0.0.0.0 www.pro-hile.net
O1 - Hosts: 0.0.0.0 www.hileliadam.com
O1 - Hosts: 0.0.0.0 www.hilelikafa.com
O1 - Hosts: 0.0.0.0 www.gamehileleri.com
O1 - Hosts: 0.0.0.0 www.hilemekani.com
O1 - Hosts: 0.0.0.0 www.frmbull.com
O1 - Hosts: 0.0.0.0 www.turkfrm.net
O1 - Hosts: 0.0.0.0 www.hilesarayi.com
O1 - Hosts: 0.0.0.0 www.xcheats.com
O1 - Hosts: 0.0.0.0 www.xcheats.net
O1 - Hosts: 0.0.0.0 www.xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.com
O1 - Hosts: 0.0.0.0 xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.net
O1 - Hosts: 0.0.0.0 utilcheat.com
O1 - Hosts: 0.0.0.0 turkfrm.net
O1 - Hosts: 0.0.0.0 goldhile.net
O1 - Hosts: 0.0.0.0 onefrm.com
O1 - Hosts: 0.0.0.0 badeshan.com
O1 - Hosts: 0.0.0.0 thefrmonline.com
O1 - Hosts: 0.0.0.0 thefrm.net
O1 - Hosts: 0.0.0.0 pro-hile.com
O1 - Hosts: 0.0.0.0 pro-hile.net
O1 - Hosts: 0.0.0.0 zeusfrm.org
O1 - Hosts: 0.0.0.0 hileliadam.com
O1 - Hosts: 0.0.0.0 hilelikafa.com
O1 - Hosts: 0.0.0.0 gamehileleri.com
O1 - Hosts: 0.0.0.0 hilemekani.com
O1 - Hosts: 0.0.0.0 frmbull.com
O1 - Hosts: 0.0.0.0 plathelper.net
O1 - Hosts: 0.0.0.0 hilesarayi.com
O1 - Hosts: 0.0.0.0 yenilmezfrm.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.com
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.org
O1 - Hosts: 0.0.0.0 pro-hile.org
O1 - Hosts: 0.0.0.0 www.pro-hile.org
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 ultrafrm.net
O1 - Hosts: 0.0.0.0 www.ultrafrm.net
O1 - Hosts: 0.0.0.0 ultrafrm.org
O1 - Hosts: 0.0.0.0 www.ultrafrm.org
O1 - Hosts: 0.0.0.0 ultrafrm.com
O1 - Hosts: 0.0.0.0 www.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 ads.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.hileuzmani.com
O1 - Hosts: 0.0.0.0 hileuzmani.com
O1 - Hosts: 0.0.0.0 unitatis.net
O1 - Hosts: 0.0.0.0 www.unitatis.net
O1 - Hosts: 0.0.0.0 www.mrcheat.us
O1 - Hosts: 0.0.0.0 mrcheat.us
O1 - Hosts: 0.0.0.0 ultrahilem.com
O1 - Hosts: 0.0.0.0 www.ultrahilem.com
O1 - Hosts: 0.0.0.0 moiracheats.net
O1 - Hosts: 0.0.0.0 moiracheats.com
O1 - Hosts: 0.0.0.0 moiracheats.org
O1 - Hosts: 0.0.0.0 www.moiracheats.net
O1 - Hosts: 0.0.0.0 www.moiracheats.com
O1 - Hosts: 0.0.0.0 www.moiracheats.org
O1 - Hosts: 0.0.0.0 mo1racheats.net
O1 - Hosts: 0.0.0.0 mo1racheats.com
O1 - Hosts: 0.0.0.0 mo1racheats.org
O1 - Hosts: 0.0.0.0 www.mo1racheats.net
O1 - Hosts: 0.0.0.0 www.mo1racheats.com
O1 - Hosts: 0.0.0.0 www.mo1racheats.org
O1 - Hosts: 0.0.0.0 kral-hile.com
O1 - Hosts: 0.0.0.0 www.kral-hile.com
O1 - Hosts: 0.0.0.0 www.elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 hoxelizm.com
O1 - Hosts: 0.0.0.0 www.hoxelizm.com
O1 - Hosts: 0.0.0.0 virtualevolution.net
O1 - Hosts: 0.0.0.0 www.virtualevolution.net
O1 - Hosts: 0.0.0.0 virtualevolution.com
O1 - Hosts: 0.0.0.0 www.virtualevolution.com
O1 - Hosts: 0.0.0.0 virtualevolution.org
O1 - Hosts: 0.0.0.0 www.virtualevolution.org
O1 - Hosts: 0.0.0.0 zoomhacks.com
O1 - Hosts: 0.0.0.0 www.zoomhacks.com
O1 - Hosts: 0.0.0.0 www.download.zoomhacks.com
O1 - Hosts: 0.0.0.0 cheatsturkey.net
O1 - Hosts: 0.0.0.0 cheatsturkey.com
O1 - Hosts: 0.0.0.0 cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 unixcheats.com
O1 - Hosts: 0.0.0.0 www.unixcheats.com
O1 - Hosts: 0.0.0.0 unixcheats.net
O1 - Hosts: 0.0.0.0 www.unixcheats.net
O1 - Hosts: 0.0.0.0 unixcheats.org
O1 - Hosts: 0.0.0.0 www.unixcheats.org
O1 - Hosts: 0.0.0.0 gamecheat.center
O1 - Hosts: 0.0.0.0 www.gamecheat.center
O1 - Hosts: 0.0.0.0 www.masyaf.net
O1 - Hosts: 0.0.0.0 masyaf.net
O1 - Hosts: 0.0.0.0 www.masyaf.com
O1 - Hosts: 0.0.0.0 masyaf.com
O1 - Hosts: 0.0.0.0 www.masyaf.org
O1 - Hosts: 0.0.0.0 masyaf.org
O1 - Hosts: 0.0.0.0 serodeck.com
O1 - Hosts: 0.0.0.0 www.serodeck.com
O1 - Hosts: 0.0.0.0 hax4you.com
O1 - Hosts: 0.0.0.0 www.hax4you.com
O1 - Hosts: 0.0.0.0 hax4you.net
O1 - Hosts: 0.0.0.0 www.hax4you.net
O1 - Hosts: 0.0.0.0 hax4you.org
O1 - Hosts: 0.0.0.0 www.hax4you.org
O1 - Hosts: 0.0.0.0 unxc.xyz
O1 - Hosts: 0.0.0.0 www.unxc.xyz
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.net
O1 - Hosts: 0.0.0.0 www.exiledros.net
O1 - Hosts: 0.0.0.0 exiledros.com
O1 - Hosts: 0.0.0.0 www.exiledros.com
O1 - Hosts: 0.0.0.0 exiledros.info
O1 - Hosts: 0.0.0.0 www.exiledros.info
O1 - Hosts: 0.0.0.0 rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 citpekalongan.com
O1 - Hosts: 0.0.0.0 www.citpekalongan.com
O1 - Hosts: 0.0.0.0 vipmrcheats.org
O1 - Hosts: 0.0.0.0 www.vipmrcheats.org
O1 - Hosts: 0.0.0.0 luciros.tk
O1 - Hosts: 0.0.0.0 www.hotshotgamers.net
O1 - Hosts: 0.0.0.0 hotshotgamers.net
O1 - Hosts: 0.0.0.0 www.hotshotgamers.org
O1 - Hosts: 0.0.0.0 hotshotgamers.org
O1 - Hosts: 0.0.0.0 www.hotshotgamers.com
O1 - Hosts: 0.0.0.0 hotshotgamers.com
O1 - Hosts: 0.0.0.0 www.pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 woxcheats.com
O1 - Hosts: 0.0.0.0 www.woxcheats.com
O1 - Hosts: 0.0.0.0 woxcheats.net
O1 - Hosts: 0.0.0.0 www.woxcheats.net
O1 - Hosts: 0.0.0.0 woxcheats.org
O1 - Hosts: 0.0.0.0 www.woxcheats.org
O1 - Hosts.ICS: 192.168.137.1 DESKTOP-A8M5QED.mshome.net # 2024 11 1 11 10 34 39 782
O1 - Hosts.ICS: 192.168.137.107 RedmiNote7-Redmi.mshome.net # 2019 11 3 20 10 34 39 782
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\Burak\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
 
Sanki bir sorun var gibi geliyor. İnternette yavaşlamalar var.
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.18362.418 (ReleaseId: 1903), Service Pack: 0
Time:      16.11.2019 - 12:35 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Anıl    (group: Administrator) on DESKTOP-N283H53, FirstRun: yes

Chrome:  78.0.3904.97
Edge:    11.0.18362.418
Internet Explorer: 11.0.18362.1
Default: "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe" -- "%1" (Brave)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\BraveCrashHandler64.exe
   1  C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
   1  C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
   1  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
   1  C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
   1  C:\Program Files (x86)\Origin\OriginWebHelperService.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
   1  C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe
   1  C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
   1  C:\Program Files\AMD\Performance Profile Client\AUEPUF.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\IDT\WDM\stacsv64.exe
   1  C:\Program Files\IDT\WDM\sttray64.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.7.71.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19102.525.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Users\Anıl\Desktop\HiJackThis.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0348545.inf_amd64_7dfd5f8aabf7d69f\B348697\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0348545.inf_amd64_7dfd5f8aabf7d69f\B348697\atiesrxx.exe
   3  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\Taskmgr.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   1  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\igfxCUIService.exe
   1  C:\Windows\System32\igfxEM.exe
   1  C:\Windows\System32\igfxHK.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\provtool.exe
   1  C:\Windows\System32\schtasks.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  73  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WMIADAP.exe
   1  C:\Windows\System32\wbem\WmiApSrv.exe
   3  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wermgr.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\explorer.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll
O4 - HKCU\..\Run: [Microsoft Edge Update] = C:\Users\Anıl\AppData\Local\Microsoft\EdgeUpdate\1.3.117.13\MicrosoftEdgeUpdateCore.exe
O4 - HKCU\..\RunOnce: [Application Restart #2] = C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe --enable-dom-distiller --disable-domain-reliability --no-pings --extension-content-verification=enforce_strict --extensions-install-verification=enforce --sync-url=https://no-thanks.invalid --enable-features=NewExtensionUpdaterService,PasswordImport,WebUIDarkMode,SimplifyHttpsIndicator --disable-features=AutofillServerCommunication,SyncUSSBookmarks,LookalikeUrlNavigationSuggestionsUI,NotificationTriggers,UnifiedConsent,AudioServiceOutOfProcess,SmsReceiver --flag-switches-begin --flag-switches-end --restore-last-session
O4 - HKCU\..\StartupApproved\Run: [Bloody2] = C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe Minimum (2019/09/25)
O4 - HKCU\..\StartupApproved\Run: [ClownfishVoiceChanger] = C:\Program Files (x86)\ClownfishVoiceChanger\ClownfishVoiceChanger.exe (2019/10/19)
O4 - HKCU\..\StartupApproved\Run: [DAEMON Tools Lite Automount] = C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun (2019/08/03)
O4 - HKCU\..\StartupApproved\Run: [DiscordPTB] = C:\Users\Anıl\AppData\Local\DiscordPTB\app-0.0.49\DiscordPTB.exe (2019/08/02)
O4 - HKCU\..\StartupApproved\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (2019/08/13)
O4 - HKCU\..\StartupApproved\Run: [Google Update] = C:\Users\Anıl\AppData\Local\Google\Update\1.3.35.342\GoogleUpdateCore.exe (2019/10/04)
O4 - HKCU\..\StartupApproved\Run: [Spotify] = C:\Users\Anıl\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (2019/08/13)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2019/08/04)
O4 - HKCU\..\StartupApproved\Run: [XW1QWHKBZI] = C:\Users\Anıl\87e7a63627.js  (file missing) (2019/09/25)
O4 - HKCU\..\StartupApproved\Run: [com.blitz.app] = C:\Users\Anıl\AppData\Local\Blitz\Update.exe --processStart "Blitz.exe" --process-start-args "--hidden" (2019/07/29)
O4 - HKCU\..\StartupApproved\Run: [kpm.exe] = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe autoStart (2019/09/25)
O4 - HKCU\..\StartupApproved\Run: [uTorrent] = C:\Users\Anıl\AppData\Roaming\uTorrent\uTorrent.exe (2019/08/13)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\Anıl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk    ->    C:\ProgramData\MEGAsync\MEGAsync.exe (2019/08/02)
O4 - HKLM\..\Run: [SysTrayApp] = C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\StartupApproved\Run32: [HPMessageService] = C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe (2019/09/25)
O4 - HKLM\..\StartupApproved\Run32: [LogMeIn Hamachi Ui] = C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start (2019/08/13)
O4 - HKLM\..\StartupApproved\Run32: [Wondershare Helper Compact.exe] = C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (2019/08/05)
O4 - HKLM\..\StartupApproved\Run: [RtHDVCpl] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s (file missing) (2019/08/04)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (2019/07/28)
O9 - Button: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9 - Tools menu item: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9-32 - Button: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9-32 - Tools menu item: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O10 - Unknown file in Winsock LSP: C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\ProgramData\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\ProgramData\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\ProgramData\MEGAsync\ShellExtX64.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\ProgramData\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\ProgramData\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\ProgramData\MEGAsync\ShellExtX32.dll
O23 - Service R2: AMD External Events Utility - C:\Windows\System32\DriverStore\FileRepository\c0348545.inf_amd64_7dfd5f8aabf7d69f\B348697\atiesrxx.exe
O23 - Service R2: AMD User Experience Program Launcher - (AUEPLauncher) - C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe
O23 - Service R2: Audio Service - (STacSV) - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service R2: HPWMISVC - C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\Windows\system32\igfxCUIService.exe
O23 - Service R2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service R2: Kaspersky Password Manager Service - (kpm_launch_service) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe
O23 - Service R2: LMIGuardianSvc - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service R2: LogMeIn Hamachi Tunneling Engine - (Hamachi2Svc) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe -s
O23 - Service R2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service R2: PACE License Services - (PaceLicenseDServices) - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe -u https://activation.paceap.com/InitiateActivation
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service S2: Brave Update Service (brave) - (brave) - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe /svc
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: HP Support Assistant Service - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe  (file missing)
O23 - Service S2: VBoxVmService - C:\vms\VBoxVmService64.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: Brave Update Service (bravem) - (bravem) - C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe /medsvc
O23 - Service S3: Disc Soft Lite Bus Service - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: HP Software Framework Service - (hpqwmiex) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Uncheater for BattleGroundsLite_SE - (uncheater_bgl) - C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"
O23 - Service S3: VirtualBox system service - (VBoxSDS) - C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe
O23 - Service S3: Wondershare Driver Install Service - (WsDrvInst) - C:\Program Files (x86)\Wondershare\Video Converter Ultimate(CPC)\Transfer\DriverInstall.exe  (file missing)


--
End of file - Time spent: 61,6 sec. - 31190 bytes, CRC32: FFFFFFFF. Sign: ꝘẰ
 

Benzer konular

taylaan
HijackThis Log Paylaşımı
Mesaj
0
Görüntüleme
548
taylaan
taylaan
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5.686
quarest
quarest
Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
1.001
acv
A
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
3.004
Murat5038
Murat5038
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
14.531
Windows 11 Bükücü
Windows 11 Bükücü

Technopat Haberler

Yeni konular

Yeni mesajlar

Geri
Yukarı