Rehber HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleme:
Genişletmek için tıkla...
karayel34 dedi:
Edge derken, yeni edge tarayıcısını kurdum hocam.
Genişletmek için tıkla...
Biliyorum onu demiştim zaten.
karayel34 dedi:
ALLAH razı olsun sizden.
Genişletmek için tıkla...
Sağolasın, senden de.
karayel34 dedi:
Hissediyorum Firefox ile bir sıkıntı var, ama ne? :)
Genişletmek için tıkla...
Kalıntısız temizleyebilsen anlaşılır da neyse artık bir sonraki güncellemelerde düzelir artık. Farklı konudan devam edeceksen edersin çünkü konu dışına çıkıyoruz şu an :)
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.18362.592 (ReleaseId: 1903), Service Pack: 0
Time:      21.02.2020 - 23:34 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    emirh    (group: Administrator) on DESKTOP-PK13F86, FirstRun: yes

Edge:    11.0.18362.476
Internet Explorer: 11.0.18362.1
Default: "C:\Users\emirh\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
   2  C:\Program Files (x86)\MSI\One Dragon Center\CC_Engine_x64.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
   1  C:\Program Files (x86)\Remotr\RemotrService.exe
   1  C:\Program Files (x86)\Steam\Steam.exe
   7  C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
   1  C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
   1  C:\Program Files\AMD\CNext\CNext\amdow.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   1  C:\Program Files\ESET\ESET Security\eguiProxy.exe
   1  C:\Program Files\ESET\ESET Security\ekrn.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
   1  C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
   3  C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3Client.exe
   1  C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19081.28230.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_12002.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\Program Files\WindowsApps\Microsoft.XboxApp_48.62.6002.0_x64__8wekyb3d8bbwe\XboxApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.37.29002.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19123.13.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20280.0_x64__8wekyb3d8bbwe\HxOutlook.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20280.0_x64__8wekyb3d8bbwe\HxTsr.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
   4  C:\Users\emirh\AppData\Local\Discord\app-0.0.305\Discord.exe
   1  C:\Users\emirh\OneDrive\Masaüstü\HiJackThis\HiJackThis.exe
   1  C:\Users\emirh\OneDrive\Masaüstü\Yeni klasör (2)\WLAN Optimizer.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   4  C:\Windows\SysWOW64\muachost.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0351505.inf_amd64_5938a70929a31401\B351435\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0351505.inf_amd64_5938a70929a31401\B351435\atiesrxx.exe
  11  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\backgroundTaskHost.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   2  C:\Windows\System32\schtasks.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  78  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local
O1 - Hosts: 0.0.0.0 keystone.mwbsys.com
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll
O4 - HKCU\..\Run: [Discord] = C:\Users\emirh\AppData\Local\Discord\app-0.0.305\Discord.exe
O4 - HKCU\..\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent
O4 - HKCU\..\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent
O4 - HKCU\..\Run: [WLAN Optimizer] = C:\Users\emirh\OneDrive\Masaüstü\Yeni klasör (2)\WLAN Optimizer.exe
O4 - HKCU\..\RunOnce: [Application Restart #4] = C:\Windows\SysWOW64\muachost.exe /RestartByRestartManager:8E253CFA-2E14-4189-AE6F-C5B8153A1B46 /RestartByRestartManager:C3DC2A7D-EAB6-414c-807E-1DFC268D9400 /RestartByRestartManager:BBDD6ECA-4CD2-4fc0-BC1C-99B265BEC8BF /RestartByRestartManager:7943D4A1-C559-4605-BF81-E48E1F166165
O4 - HKCU\..\RunOnce: [Application Restart #6] = C:\Windows\SysWOW64\muachost.exe /RestartByRestartManager:3674B8FA-31EF-42d0-BC98-29615A6E35E5 /RestartByRestartManager:6BCB40DF-F8A8-4078-A769-AA26AE4519DA /RestartByRestartManager:23761CAB-4D81-4b76-B648-F828F9D25AE4 /RestartByRestartManager:2A8F2E4E-5243-45cb-9729-8F56BE22D240
O4 - HKCU\..\StartupApproved\Run: [BitTorrent] = C:\Users\emirh\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED (2019/07/21)
O4 - HKCU\..\StartupApproved\Run: [GTAVTurk] = F:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVTurk\GTAVTurk.exe (2019/10/20)
O4 - HKCU\..\StartupApproved\Run: [LonelyScreen] = C:\Program Files (x86)\LonelyScreen\lonelyscreen.exe /start_context sys_auto (2019/06/16)
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\emirh\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2019/05/30)
O4 - HKCU\..\StartupApproved\Run: [Spotify] = C:\Users\emirh\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (2019/05/30)
O4 - HKCU\..\StartupApproved\Run: [Surfshark] = C:\Program Files (x86)\Surfshark\Surfshark.exe (file missing) (2020/02/01)
O4 - HKCU\..\StartupApproved\Run: [Web Companion] = C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (file missing) (2019/07/21)
O4 - HKLM\..\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O4 - HKLM\..\Run: [egui] = C:\Program Files\ESET\ESET Security\ecmds.exe /launch /hide /proxy
O4 - HKLM\..\StartupApproved\Run32: [LogMeIn Hamachi Ui] = C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start (2019/10/20)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk    ->    C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe -dataPath="C:\ProgramData\SteelSeries\SteelSeries Engine 3" -dbEnv=production -auto=true (2019/07/21)
O4 - User Startup: C:\Users\emirh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Forza Horizon 4 - Kısayol.lnk    ->   
O4-32 - HKLM\..\Run: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O10 - Unknown file in Winsock LSP: C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://webcompanion.com
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8a8ee9b5-1744-4e55-8adb-4fe1bb069f95}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8a8ee9b5-1744-4e55-8adb-4fe1bb069f95}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{c9218f93-172a-49f5-be34-1de653cda83c}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{c9218f93-172a-49f5-be34-1de653cda83c}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O23 - Service R2: AMD External Events Utility - C:\Windows\System32\DriverStore\FileRepository\c0351505.inf_amd64_5938a70929a31401\B351435\atiesrxx.exe
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: ESET Service - (ekrn) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service R2: LMIGuardianSvc - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service R2: LightKeeperService - C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
O23 - Service R2: LogMeIn Hamachi Tunneling Engine - (Hamachi2Svc) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe -s
O23 - Service R2: MSI Central Service - (MSI_Central_Service) - C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: Mystic_Light_Service - C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
O23 - Service R2: Remotr Service - C:\Program Files (x86)\Remotr\RemotrService.exe
O23 - Service R2: TeamViewer - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ad7cb5e55a410add\igfxCUIService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: ESET Firewall Helper - (ekrnEpfw) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service S3: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: Office 64 Source Engine - (ose64) - c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Uncheater for BattleGroundsLite_SE - (uncheater_bgl) - C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"


--
End of file - Time spent: 20,6 sec. - 27640 bytes, CRC32: FFFFFFFF. Sign: 檨鮑
emirhan23312 dedi:
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.18362.592 (ReleaseId: 1903), Service Pack: 0
Time:      21.02.2020 - 23:34 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    emirh    (group: Administrator) on DESKTOP-PK13F86, FirstRun: yes

Edge:    11.0.18362.476
Internet Explorer: 11.0.18362.1
Default: "C:\Users\emirh\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
   1  C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
   2  C:\Program Files (x86)\MSI\One Dragon Center\CC_Engine_x64.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
   1  C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
   1  C:\Program Files (x86)\Remotr\RemotrService.exe
   1  C:\Program Files (x86)\Steam\Steam.exe
   7  C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
   1  C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
   1  C:\Program Files\AMD\CNext\CNext\amdow.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   1  C:\Program Files\ESET\ESET Security\eguiProxy.exe
   1  C:\Program Files\ESET\ESET Security\ekrn.exe
   1  C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
   1  C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
   3  C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3Client.exe
   1  C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19081.28230.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_12002.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\Program Files\WindowsApps\Microsoft.XboxApp_48.62.6002.0_x64__8wekyb3d8bbwe\XboxApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.37.29002.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19123.13.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20280.0_x64__8wekyb3d8bbwe\HxOutlook.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12430.20280.0_x64__8wekyb3d8bbwe\HxTsr.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
   4  C:\Users\emirh\AppData\Local\Discord\app-0.0.305\Discord.exe
   1  C:\Users\emirh\OneDrive\Masaüstü\HiJackThis\HiJackThis.exe
   1  C:\Users\emirh\OneDrive\Masaüstü\Yeni klasör (2)\WLAN Optimizer.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   4  C:\Windows\SysWOW64\muachost.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0351505.inf_amd64_5938a70929a31401\B351435\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0351505.inf_amd64_5938a70929a31401\B351435\atiesrxx.exe
  11  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\backgroundTaskHost.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\rundll32.exe
   2  C:\Windows\System32\schtasks.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  78  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local
O1 - Hosts: 0.0.0.0 keystone.mwbsys.com
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll
O4 - HKCU\..\Run: [Discord] = C:\Users\emirh\AppData\Local\Discord\app-0.0.305\Discord.exe
O4 - HKCU\..\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent
O4 - HKCU\..\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent
O4 - HKCU\..\Run: [WLAN Optimizer] = C:\Users\emirh\OneDrive\Masaüstü\Yeni klasör (2)\WLAN Optimizer.exe
O4 - HKCU\..\RunOnce: [Application Restart #4] = C:\Windows\SysWOW64\muachost.exe /RestartByRestartManager:8E253CFA-2E14-4189-AE6F-C5B8153A1B46 /RestartByRestartManager:C3DC2A7D-EAB6-414c-807E-1DFC268D9400 /RestartByRestartManager:BBDD6ECA-4CD2-4fc0-BC1C-99B265BEC8BF /RestartByRestartManager:7943D4A1-C559-4605-BF81-E48E1F166165
O4 - HKCU\..\RunOnce: [Application Restart #6] = C:\Windows\SysWOW64\muachost.exe /RestartByRestartManager:3674B8FA-31EF-42d0-BC98-29615A6E35E5 /RestartByRestartManager:6BCB40DF-F8A8-4078-A769-AA26AE4519DA /RestartByRestartManager:23761CAB-4D81-4b76-B648-F828F9D25AE4 /RestartByRestartManager:2A8F2E4E-5243-45cb-9729-8F56BE22D240
O4 - HKCU\..\StartupApproved\Run: [BitTorrent] = C:\Users\emirh\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED (2019/07/21)
O4 - HKCU\..\StartupApproved\Run: [GTAVTurk] = F:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVTurk\GTAVTurk.exe (2019/10/20)
O4 - HKCU\..\StartupApproved\Run: [LonelyScreen] = C:\Program Files (x86)\LonelyScreen\lonelyscreen.exe /start_context sys_auto (2019/06/16)
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\emirh\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2019/05/30)
O4 - HKCU\..\StartupApproved\Run: [Spotify] = C:\Users\emirh\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (2019/05/30)
O4 - HKCU\..\StartupApproved\Run: [Surfshark] = C:\Program Files (x86)\Surfshark\Surfshark.exe (file missing) (2020/02/01)
O4 - HKCU\..\StartupApproved\Run: [Web Companion] = C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (file missing) (2019/07/21)
O4 - HKLM\..\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O4 - HKLM\..\Run: [egui] = C:\Program Files\ESET\ESET Security\ecmds.exe /launch /hide /proxy
O4 - HKLM\..\StartupApproved\Run32: [LogMeIn Hamachi Ui] = C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start (2019/10/20)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk    ->    C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe -dataPath="C:\ProgramData\SteelSeries\SteelSeries Engine 3" -dbEnv=production -auto=true (2019/07/21)
O4 - User Startup: C:\Users\emirh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Forza Horizon 4 - Kısayol.lnk    ->  
O4-32 - HKLM\..\Run: [Intel Driver & Support Assistant] = C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O10 - Unknown file in Winsock LSP: C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://webcompanion.com
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8a8ee9b5-1744-4e55-8adb-4fe1bb069f95}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8a8ee9b5-1744-4e55-8adb-4fe1bb069f95}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{c9218f93-172a-49f5-be34-1de653cda83c}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{c9218f93-172a-49f5-be34-1de653cda83c}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O23 - Service R2: AMD External Events Utility - C:\Windows\System32\DriverStore\FileRepository\c0351505.inf_amd64_5938a70929a31401\B351435\atiesrxx.exe
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: ESET Service - (ekrn) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service R2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service R2: LMIGuardianSvc - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service R2: LightKeeperService - C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
O23 - Service R2: LogMeIn Hamachi Tunneling Engine - (Hamachi2Svc) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe -s
O23 - Service R2: MSI Central Service - (MSI_Central_Service) - C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: Mystic_Light_Service - C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
O23 - Service R2: Remotr Service - C:\Program Files (x86)\Remotr\RemotrService.exe
O23 - Service R2: TeamViewer - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ad7cb5e55a410add\igfxCUIService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: ESET Firewall Helper - (ekrnEpfw) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service S3: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: Office 64 Source Engine - (ose64) - c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Uncheater for BattleGroundsLite_SE - (uncheater_bgl) - C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--run_as_user_process"


--
End of file - Time spent: 20,6 sec. - 27640 bytes, CRC32: FFFFFFFF. Sign: 檨鮑
Genişletmek için tıkla...
Sorunum anlık ping yükselmeleri ve internet yavaşlığı oyunlarda bir anda 3000e kadar pingim fırlayıp 5 saniye sonra geçiyor buda logum...
 
Bunları fixleyin:
Kod: 
C:\Users\emirh\OneDrive\Masaüstü\Yeni klasör (2)\WLAN Optimizer.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local
O1 - Hosts: 0.0.0.0 keystone.mwbsys.com
O4 - HKCU\..\RunOnce: [Application Restart #4] = C:\Windows\SysWOW64\muachost.exe /RestartByRestartManager:8E253CFA-2E14-4189-AE6F-C5B8153A1B46 /RestartByRestartManager:C3DC2A7D-EAB6-414c-807E-1DFC268D9400 /RestartByRestartManager:BBDD6ECA-4CD2-4fc0-BC1C-99B265BEC8BF /RestartByRestartManager:7943D4A1-C559-4605-BF81-E48E1F166165
O4 - HKCU\..\RunOnce: [Application Restart #6] = C:\Windows\SysWOW64\muachost.exe /RestartByRestartManager:3674B8FA-31EF-42d0-BC98-29615A6E35E5 /RestartByRestartManager:6BCB40DF-F8A8-4078-A769-AA26AE4519DA /RestartByRestartManager:23761CAB-4D81-4b76-B648-F828F9D25AE4 /RestartByRestartManager:2A8F2E4E-5243-45cb-9729-8F56BE22D240
O4 - HKCU\..\StartupApproved\Run: [LonelyScreen] = C:\Program Files (x86)\LonelyScreen\lonelyscreen.exe /start_context sys_auto (2019/06/16)
O4 - HKCU\..\StartupApproved\Run: [Surfshark] = C:\Program Files (x86)\Surfshark\Surfshark.exe (file missing) (2020/02/01
O4 - HKLM\..\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8a8ee9b5-1744-4e55-8adb-4fe1bb069f95}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8a8ee9b5-1744-4e55-8adb-4fe1bb069f95}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{c9218f93-172a-49f5-be34-1de653cda83c}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{c9218f93-172a-49f5-be34-1de653cda83c}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O23 - Service R2: Remotr Service - C:\Program Files (x86)\Remotr\RemotrService.exe
O23 - Service R3: Intel(R) Driver & Support Assistant Updater - (DSAUpdateService) - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service S3: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe "--AUTO_START" "--start" "--start_options_registry_key" "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ESRV_SVC_QUEENCREEK\_start"
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe

Lavasoft veya Eset'den birini kaldırın. Temiz önyükleme yapın.
 
Kod: 
Platform:  x64 Windows 10 (Pro), 10.0.17763.1039 (ReleaseId: 1809), Service Pack: 0
Time:      23.02.2020 - 18:40 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: English (0x809). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    MİRAC    (group: Administrator) on DESKTOP-K3G9R8V, FirstRun: yes

Chrome:  79.0.3945.130
Edge:    11.0.17763.1039
Internet Explorer: 11.0.17763.771
Default: "C:\Users\chunc\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" -- "%1" (Yandex)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\MSI\MSIRegister\MSIRegisterService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avpui.exe
   1  C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
   1  C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\Origin\OriginWebHelperService.exe
   2  C:\Program Files (x86)\Yandex\YandexBrowser\20.2.2.177\service_update.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\SUPERAntiSpyware\SASCore64.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1910.3121.0_x64__8wekyb3d8bbwe\Time.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_12002.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19123.13.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Program Files\txgameassistant\appmarket\QMEmulatorService.exe
  11  C:\Users\chunc\AppData\Local\Yandex\YandexBrowser\Application\browser.exe
   1  C:\Users\chunc\Downloads\Compressed\HiJackThis.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\MicrosoftEdgeCP.exe
   1  C:\Windows\System32\MicrosoftEdgeSH.exe
   7  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\browser_broker.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\inetsrv\inetinfo.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\mqsvc.exe
   1  C:\Windows\System32\mqtgsvc.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\snmp.exe
   1  C:\Windows\System32\spoolsv.exe
  77  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   2  C:\Windows\explorer.exe

O1 - Hosts: is empty
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2019/01/20)
O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2018/10/11)
O4 - HKCU\..\StartupApproved\Run: [Opera Browser Assistant] = C:\Users\chunc\AppData\Local\Programs\Opera\assistant\browser_assistant.exe (2020/01/30)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\chunc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk    ->    C:\Users\chunc\AppData\Local\MEGAsync\MEGAsync.exe (2020/01/30)
O4 - HKLM\..\Session Manager: [BootExecute] = sdnclean64.exe  (file missing)
O4 - HKLM\..\StartupApproved\Run32: [AdobeCS6ServiceManager] = C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin (2019/05/28)
O4 - HKLM\..\StartupApproved\Run32: [Live Update] = C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER (2018/11/14)
O4 - HKLM\..\StartupApproved\Run32: [MSIRegister] = C:\MSI\MSIRegister\MSIRegister.exe (2018/11/14)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2019/03/31)
O4 - HKLM\..\StartupApproved\Run32: [SwitchBoard] = C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (2019/04/15)
O4 - HKLM\..\StartupApproved\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (2019/05/28)
O4 - HKLM\..\StartupApproved\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (2020/02/17)
O4 - HKLM\..\StartupApproved\Run: [Cm108BSound] = C:\Program Files\Xear Audio Center\CPL\FaceLift_x64.exe /h /d (2019/02/02)
O4 - HKLM\..\StartupApproved\Run: [MsmqIntCert] = C:\Windows\System32\regsvr32.exe /s "C:\Windows\System32\mqrt.dll" (2018/11/04)
O4 - HKLM\..\StartupApproved\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s (2018/10/21)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3fb1cbba-d00f-49a0-9054-c807b0f9cafb}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3fb1cbba-d00f-49a0-9054-c807b0f9cafb}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{84c2bce8-3e91-4086-a5ef-91de1e085f61}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{84c2bce8-3e91-4086-a5ef-91de1e085f61}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YndCase0Sync: Yandex.Disk SyncShellIconOverlayImpl - {63D48440-63AB-44D0-B323-4731DFCDE9E9} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YndCase1Modified: Yandex.Disk ModifiedShellIconOverlayImpl - {7E7DC279-E6BE-4D57-9DEC-14FA0339DBC0} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YndCase2Error: Yandex.Disk ErrorShellIconOverlayImpl - {FB2FE984-05F5-4512-9D9B-69D3DE61F6D9} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YndCase3Shared: Yandex.Disk SharedShellIconOverlayImpl - {AF8D197E-7022-4c3d-BD88-68AD35C9C169} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX32.dll
O22 - Task (.job): (Not scheduled) SUPERAntiSpyware Scheduled Task 33d006f2-c272-4281-a51f-74baa4e73090.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:33d006f2-c272-4281-a51f-74baa4e73090
O22 - Task (.job): (Not scheduled) SUPERAntiSpyware Scheduled Task f36e7103-1d6f-4286-9e3f-94d8d2a4a4fc.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:f36e7103-1d6f-4286-9e3f-94d8d2a4a4fc
O22 - Task (.job): Yandex Browser güncelleme servisinin düzeltilmesi.job - C:\Program Files (x86)\Yandex\YandexBrowser\20.2.2.177\service_update.exe  --repair
O22 - Task (.job): Yandex Browser güncellemesi.job - C:\Users\chunc\AppData\Local\Yandex\YandexBrowser\Application\browser.exe  --background-update --noerrdialogs
O22 - Task (.job): Yandex Browser sistem güncellemesi.job - C:\Program Files (x86)\Yandex\YandexBrowser\20.2.2.177\service_update.exe  --run-as-launcher
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: Kaspersky Anti-Virus Hizmeti 20.0 - (AVP20.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe -r
O23 - Service R2: Kaspersky Secure Connection Service 4.0 - (KSDE4.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe -r
O23 - Service R2: MSI Live Update Service - (MSI_LiveUpdate_Service) - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service R2: MSIREGISTER_MR - C:\MSI\MSIRegister\MSIRegisterService.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service R2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: SAS Core Service - (!SASCORE) - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service R2: Yandex.Browser Update Service - (YandexBrowserService) - C:\Program Files (x86)\Yandex\YandexBrowser\20.2.2.177\service_update.exe --run-as-service
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Kaspersky Password Manager Service - (kpm_launch_service) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 20.0 - (klvssbridge64_20.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\vssbridge64.exe
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: SwitchBoard - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service S3: Uncheater for BattleGroundsLite_SE - (uncheater_bgl) - C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe


--
End of file - Time spent: 45,9 sec. - 28946 bytes, CRC32: FFFFFFFF. Sign: ெ儯
sorunum sistem yavaşlaması ve trojan,malware şüphesi
 
KTS kurulu zaten, Superantisypware kaldırman gerek. KTS'de kamera benzeri yoksa benzeri özellikleri devre dışı bırakabilirsin.
Kaspersky Secure Connection kaldırabilirsin işine yaramıyorsa. Kaspersky Password Manager şifreleri saklamıyorsan kapatabilir/kaldırabilirsin.

Bunları fixleyin:
Kod: 
C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
O1 - Hosts: is empty
O4 - HKLM\..\Session Manager: [BootExecute] = sdnclean64.exe  (file missing)
O4 - HKLM\..\StartupApproved\Run32: [Live Update] = C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER (2018/11/14)
O4 - HKLM\..\StartupApproved\Run32: [MSIRegister] = C:\MSI\MSIRegister\MSIRegister.exe (2018/11/14)
O4 - HKLM\..\StartupApproved\Run: [MsmqIntCert] = C:\Windows\System32\regsvr32.exe /s "C:\Windows\System32\mqrt.dll" (2018/11/04)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3fb1cbba-d00f-49a0-9054-c807b0f9cafb}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3fb1cbba-d00f-49a0-9054-c807b0f9cafb}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{84c2bce8-3e91-4086-a5ef-91de1e085f61}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{84c2bce8-3e91-4086-a5ef-91de1e085f61}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YndCase0Sync: Yandex.Disk SyncShellIconOverlayImpl - {63D48440-63AB-44D0-B323-4731DFCDE9E9} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YndCase1Modified: Yandex.Disk ModifiedShellIconOverlayImpl - {7E7DC279-E6BE-4D57-9DEC-14FA0339DBC0} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YndCase2Error: Yandex.Disk ErrorShellIconOverlayImpl - {FB2FE984-05F5-4512-9D9B-69D3DE61F6D9} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YndCase3Shared: Yandex.Disk SharedShellIconOverlayImpl - {AF8D197E-7022-4c3d-BD88-68AD35C9C169} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\chunc\AppData\Local\MEGAsync\ShellExtX32.dll
O22 - Task (.job): (Not scheduled) SUPERAntiSpyware Scheduled Task 33d006f2-c272-4281-a51f-74baa4e73090.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:33d006f2-c272-4281-a51f-74baa4e73090
O22 - Task (.job): (Not scheduled) SUPERAntiSpyware Scheduled Task f36e7103-1d6f-4286-9e3f-94d8d2a4a4fc.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:f36e7103-1d6f-4286-9e3f-94d8d2a4a4fc
O22 - Task (.job): Yandex Browser güncelleme servisinin düzeltilmesi.job - C:\Program Files (x86)\Yandex\YandexBrowser\20.2.2.177\service_update.exe  --repair
O22 - Task (.job): Yandex Browser güncellemesi.job - C:\Users\chunc\AppData\Local\Yandex\YandexBrowser\Application\browser.exe  --background-update --noerrdialogs
O22 - Task (.job): Yandex Browser sistem güncellemesi.job - C:\Program Files (x86)\Yandex\YandexBrowser\20.2.2.177\service_update.exe  --run-as-launcher
O23 - Service R2: MSI Live Update Service - (MSI_LiveUpdate_Service) - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service R2: MSIREGISTER_MR - C:\MSI\MSIRegister\MSIRegisterService.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
 
Murat5038 dedi:
Kalıntısız temizleyebilsen anlaşılır da neyse artık bir sonraki güncellemelerde düzelir artık. Farklı konudan devam edeceksen edersin çünkü konu dışına çıkıyoruz şu an :)
Genişletmek için tıkla...


Haklısınız hocam, konu uzadı biraz :)
Sonra ki güncelleme dediğiniz, Firefox güncellemesi sanırım. Biraz daha bakarım, durum düzelmez ise, bu sorun hakkında konu açarım. Ben başka bir program hakkında konusuna yazayım şimdi hocam. Siz müsait olduğunuzda bakarsanız sevinirim soruma.
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.18363.657 (ReleaseId: 1909), Service Pack: 0
Time:      29.02.2020 - 16:07 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Kaotik Kaos    (group: Administrator) on DESKTOP-NH60H3S, FirstRun: yes

Chrome:  80.0.3987.122
Edge:    11.0.18362.628
Internet Explorer: 11.0.18362.1
Default: "C:\Users\Kaotik Kaos\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Codebox\BitMeterOS\BitMeterCaptureService.exe
   1  C:\Program Files (x86)\Codebox\BitMeterOS\BitMeterWebService.exe
   1  C:\Program Files (x86)\GAMEPOWER Audio 7.1\GAMEPOWER Audio 7.1.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
   1  C:\Program Files\Intel\WiFi\bin\EvtEng.exe
   1  C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
   1  C:\Program Files\Java\jre6\bin\jusched.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
   1  C:\Program Files\OEM\Monster Kontrol Merkezi\UniwillService\GCUBridge.exe
   1  C:\Program Files\OEM\Monster Kontrol Merkezi\UniwillService\MyControlCenter\GCUService.exe
   1  C:\Program Files\OEM\Monster Kontrol Merkezi\UniwillService\MyControlCenter\OSDTpDetect.exe
   1  C:\Program Files\OEM\Monster Kontrol Merkezi\UniwillService\MyControlCenter\XTU\XtuService.exe
   1  C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20012.133.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Program Files\txgameassistant\appmarket\AppMarket.exe
   1  C:\Program Files\txgameassistant\appmarket\QMEmulatorService.exe
   2  C:\Program Files\txgameassistant\appmarket\TBSWebRenderer.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.10-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.10-0\NisSrv.exe
   1  C:\Users\Kaotik Kaos\Desktop\HiJackThis.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\SysWOW64\Creative.UWPRPCService.exe
   1  C:\Windows\System32\AudioDeviceService.exe
   1  C:\Windows\System32\CastSrv.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_de4302f9ce503910\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_de4302f9ce503910\igfxEM.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e335ebb186115025\RstMwService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7bd783ff1a7eabdf\IntelCpHDCPSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7bd783ff1a7eabdf\IntelCpHeciSvc.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvtfi.inf_amd64_27f0fd71b28223c6\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Windows\System32\RtkAudUService64.exe
  10  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\audiodg.exe
   4  C:\Windows\System32\backgroundTaskHost.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\ibtsiva.exe
   1  C:\Windows\System32\lsass.exe
   2  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  76  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\TFSPEQService.exe
   1  C:\Windows\explorer.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 www.monster-cheats.com
O1 - Hosts: 0.0.0.0 monster-cheats.com
O1 - Hosts: 0.0.0.0 www.bl-hackers.com
O1 - Hosts: 0.0.0.0 bl-hackers.com
O1 - Hosts: 0.0.0.0 theapathe.com
O1 - Hosts: 0.0.0.0 www.theapathe.com
O1 - Hosts: 0.0.0.0 theapathe.net
O1 - Hosts: 0.0.0.0 www.theapathe.net
O1 - Hosts: 0.0.0.0 theapathe.org
O1 - Hosts: 0.0.0.0 www.theapathe.org
O1 - Hosts: 0.0.0.0 sv1.theapathe.com
O1 - Hosts: 0.0.0.0 apathecheats.com
O1 - Hosts: 0.0.0.0 www.apathecheats.com
O1 - Hosts: 0.0.0.0 apathecheats.net
O1 - Hosts: 0.0.0.0 www.apathecheats.net
O1 - Hosts: 0.0.0.0 apathecheats.org
O1 - Hosts: 0.0.0.0 www.apathecheats.org
O1 - Hosts: 0.0.0.0 download.theapathe.com
O1 - Hosts: 0.0.0.0 www.sv1.theapathe.com
O1 - Hosts: 0.0.0.0 www.download.theapathe.com
O1 - Hosts: 0.0.0.0 www.hileliadam.co
O1 - Hosts: 0.0.0.0 hileliadam.co
O1 - Hosts: 0.0.0.0 www.hilenbizde.com
O1 - Hosts: 0.0.0.0 hilenbizde.com
O1 - Hosts: 0.0.0.0 www.wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.zulahile.com
O1 - Hosts: 0.0.0.0 zulahile.com
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 mrsnapznet.us
O1 - Hosts: 0.0.0.0 www.badeshan.com
O1 - Hosts: 0.0.0.0 www.thefrm.net
O1 - Hosts: 0.0.0.0 www.plathelper.net
O1 - Hosts: 0.0.0.0 www.thefrmonline.com
O1 - Hosts: 0.0.0.0 www.pro-hile.com
O1 - Hosts: 0.0.0.0 www.pro-hile.net
O1 - Hosts: 0.0.0.0 www.hileliadam.com
O1 - Hosts: 0.0.0.0 www.hilelikafa.com
O1 - Hosts: 0.0.0.0 www.gamehileleri.com
O1 - Hosts: 0.0.0.0 www.hilemekani.com
O1 - Hosts: 0.0.0.0 www.frmbull.com
O1 - Hosts: 0.0.0.0 www.turkfrm.net
O1 - Hosts: 0.0.0.0 www.hilesarayi.com
O1 - Hosts: 0.0.0.0 www.xcheats.com
O1 - Hosts: 0.0.0.0 www.xcheats.net
O1 - Hosts: 0.0.0.0 www.xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.com
O1 - Hosts: 0.0.0.0 xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.net
O1 - Hosts: 0.0.0.0 utilcheat.com
O1 - Hosts: 0.0.0.0 turkfrm.net
O1 - Hosts: 0.0.0.0 goldhile.net
O1 - Hosts: 0.0.0.0 onefrm.com
O1 - Hosts: 0.0.0.0 badeshan.com
O1 - Hosts: 0.0.0.0 thefrmonline.com
O1 - Hosts: 0.0.0.0 thefrm.net
O1 - Hosts: 0.0.0.0 pro-hile.com
O1 - Hosts: 0.0.0.0 pro-hile.net
O1 - Hosts: 0.0.0.0 zeusfrm.org
O1 - Hosts: 0.0.0.0 hileliadam.com
O1 - Hosts: 0.0.0.0 hilelikafa.com
O1 - Hosts: 0.0.0.0 gamehileleri.com
O1 - Hosts: 0.0.0.0 hilemekani.com
O1 - Hosts: 0.0.0.0 frmbull.com
O1 - Hosts: 0.0.0.0 plathelper.net
O1 - Hosts: 0.0.0.0 hilesarayi.com
O1 - Hosts: 0.0.0.0 yenilmezfrm.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.com
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.org
O1 - Hosts: 0.0.0.0 pro-hile.org
O1 - Hosts: 0.0.0.0 www.pro-hile.org
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 ultrafrm.net
O1 - Hosts: 0.0.0.0 www.ultrafrm.net
O1 - Hosts: 0.0.0.0 ultrafrm.org
O1 - Hosts: 0.0.0.0 www.ultrafrm.org
O1 - Hosts: 0.0.0.0 ultrafrm.com
O1 - Hosts: 0.0.0.0 www.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 ads.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.hileuzmani.com
O1 - Hosts: 0.0.0.0 hileuzmani.com
O1 - Hosts: 0.0.0.0 unitatis.net
O1 - Hosts: 0.0.0.0 www.unitatis.net
O1 - Hosts: 0.0.0.0 www.mrcheat.us
O1 - Hosts: 0.0.0.0 mrcheat.us
O1 - Hosts: 0.0.0.0 ultrahilem.com
O1 - Hosts: 0.0.0.0 www.ultrahilem.com
O1 - Hosts: 0.0.0.0 moiracheats.net
O1 - Hosts: 0.0.0.0 moiracheats.com
O1 - Hosts: 0.0.0.0 moiracheats.org
O1 - Hosts: 0.0.0.0 www.moiracheats.net
O1 - Hosts: 0.0.0.0 www.moiracheats.com
O1 - Hosts: 0.0.0.0 www.moiracheats.org
O1 - Hosts: 0.0.0.0 mo1racheats.net
O1 - Hosts: 0.0.0.0 mo1racheats.com
O1 - Hosts: 0.0.0.0 mo1racheats.org
O1 - Hosts: 0.0.0.0 www.mo1racheats.net
O1 - Hosts: 0.0.0.0 www.mo1racheats.com
O1 - Hosts: 0.0.0.0 www.mo1racheats.org
O1 - Hosts: 0.0.0.0 kral-hile.com
O1 - Hosts: 0.0.0.0 www.kral-hile.com
O1 - Hosts: 0.0.0.0 www.elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 hoxelizm.com
O1 - Hosts: 0.0.0.0 www.hoxelizm.com
O1 - Hosts: 0.0.0.0 virtualevolution.net
O1 - Hosts: 0.0.0.0 www.virtualevolution.net
O1 - Hosts: 0.0.0.0 virtualevolution.com
O1 - Hosts: 0.0.0.0 www.virtualevolution.com
O1 - Hosts: 0.0.0.0 virtualevolution.org
O1 - Hosts: 0.0.0.0 www.virtualevolution.org
O1 - Hosts: 0.0.0.0 zoomhacks.com
O1 - Hosts: 0.0.0.0 www.zoomhacks.com
O1 - Hosts: 0.0.0.0 www.download.zoomhacks.com
O1 - Hosts: 0.0.0.0 cheatsturkey.net
O1 - Hosts: 0.0.0.0 cheatsturkey.com
O1 - Hosts: 0.0.0.0 cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 unixcheats.com
O1 - Hosts: 0.0.0.0 www.unixcheats.com
O1 - Hosts: 0.0.0.0 unixcheats.net
O1 - Hosts: 0.0.0.0 www.unixcheats.net
O1 - Hosts: 0.0.0.0 unixcheats.org
O1 - Hosts: 0.0.0.0 www.unixcheats.org
O1 - Hosts: 0.0.0.0 gamecheat.center
O1 - Hosts: 0.0.0.0 www.gamecheat.center
O1 - Hosts: 0.0.0.0 www.masyaf.net
O1 - Hosts: 0.0.0.0 masyaf.net
O1 - Hosts: 0.0.0.0 www.masyaf.com
O1 - Hosts: 0.0.0.0 masyaf.com
O1 - Hosts: 0.0.0.0 www.masyaf.org
O1 - Hosts: 0.0.0.0 masyaf.org
O1 - Hosts: 0.0.0.0 serodeck.com
O1 - Hosts: 0.0.0.0 www.serodeck.com
O1 - Hosts: 0.0.0.0 hax4you.com
O1 - Hosts: 0.0.0.0 www.hax4you.com
O1 - Hosts: 0.0.0.0 hax4you.net
O1 - Hosts: 0.0.0.0 www.hax4you.net
O1 - Hosts: 0.0.0.0 hax4you.org
O1 - Hosts: 0.0.0.0 www.hax4you.org
O1 - Hosts: 0.0.0.0 unxc.xyz
O1 - Hosts: 0.0.0.0 www.unxc.xyz
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.net
O1 - Hosts: 0.0.0.0 www.exiledros.net
O1 - Hosts: 0.0.0.0 exiledros.com
O1 - Hosts: 0.0.0.0 www.exiledros.com
O1 - Hosts: 0.0.0.0 exiledros.info
O1 - Hosts: 0.0.0.0 www.exiledros.info
O1 - Hosts: 0.0.0.0 rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4.0F2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 www.rosvertex-4f2b8.firebaseapp.com
O1 - Hosts: 0.0.0.0 citpekalongan.com
O1 - Hosts: 0.0.0.0 www.citpekalongan.com
O1 - Hosts: 0.0.0.0 vipmrcheats.org
O1 - Hosts: 0.0.0.0 www.vipmrcheats.org
O1 - Hosts: 0.0.0.0 luciros.tk
O1 - Hosts: 0.0.0.0 www.hotshotgamers.net
O1 - Hosts: 0.0.0.0 hotshotgamers.net
O1 - Hosts: 0.0.0.0 www.hotshotgamers.org
O1 - Hosts: 0.0.0.0 hotshotgamers.org
O1 - Hosts: 0.0.0.0 www.hotshotgamers.com
O1 - Hosts: 0.0.0.0 hotshotgamers.com
O1 - Hosts: 0.0.0.0 www.pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 pinoygameaccounts.blogspot.com
O1 - Hosts: 0.0.0.0 www.exiledros.me
O1 - Hosts: 0.0.0.0 exiledros.me
O1 - Hosts: 0.0.0.0 woxcheats.com
O1 - Hosts: 0.0.0.0 www.woxcheats.com
O1 - Hosts: 0.0.0.0 woxcheats.net
O1 - Hosts: 0.0.0.0 www.woxcheats.net
O1 - Hosts: 0.0.0.0 woxcheats.org
O1 - Hosts: 0.0.0.0 www.woxcheats.org
O1 - Hosts: 0.0.0.0 realitycheats.com
O1 - Hosts: 0.0.0.0 www.realitycheats.com
O1 - Hosts: 0.0.0.0 realitycheats.net
O1 - Hosts: 0.0.0.0 www.realitycheats.net
O1 - Hosts: 0.0.0.0 realitycheats.org
O1 - Hosts: 0.0.0.0 www.realitycheats.org
O1 - Hosts: 0.0.0.0 reversehackers.com
O1 - Hosts: 0.0.0.0 www.reversehackers.com
O1 - Hosts: 0.0.0.0 reversehackers.net
O1 - Hosts: 0.0.0.0 www.reversehackers.net
O1 - Hosts: 0.0.0.0 reversehackers.org
O1 - Hosts: 0.0.0.0 www.reversehackers.org
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O4 - HKCU\..\Run: [Opera Browser Assistant] = C:\Users\Kaotik Kaos\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2019/07/28)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe  (file missing)
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\RtkAudUService64.exe -background
O4 - HKLM\..\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files\Java\jre6\bin\jusched.exe
O4-32 - HKLM\..\Run: [GAMEPOWER Audio 7.1] = C:\Program Files (x86)\GAMEPOWER Audio 7.1\GAMEPOWER Audio 7.1.exe
O5 - HKCU\Control Panel\don't load: [RTSnMg64.cpl] (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O10 - Unknown file in Winsock LSP: C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://webcompanion.com
O16 - DPF: HKLM\..\{8AD9C840-044E-11D1-B3E9-00805F499D93}\DownloadInformation: Java Plug-in 1.6.0_17 [CODEBASE] = http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
O16 - DPF: HKLM\..\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\DownloadInformation: Java Plug-in 1.6.0_17 [CODEBASE] = http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
O16 - DPF: HKLM\..\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\DownloadInformation: Java Plug-in 1.6.0_17 [CODEBASE] = http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
O17 - DHCP DNS 1: 208.67.222.222 (Well-known DNS: Cisco OpenDNS)
O17 - DHCP DNS 2: 208.67.220.220 (Well-known DNS: Cisco OpenDNS)
O17 - HKLM\System\CCS\Services\Tcpip\..\{46b6e76b-75b3-4f9d-88b6-f18cc0e8c995}: [NameServer] = 208.67.220.220 (Well-known DNS: Cisco OpenDNS)
O17 - HKLM\System\CCS\Services\Tcpip\..\{46b6e76b-75b3-4f9d-88b6-f18cc0e8c995}: [NameServer] = 208.67.222.222 (Well-known DNS: Cisco OpenDNS)
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O23 - Service R2: AudioDeviceService - C:\Windows\system32\AudioDeviceService.exe
O23 - Service R2: BitMeter Capture Service - (BitMeterCaptureService) - C:\Program Files (x86)\Codebox\BitMeterOS\BitMeterCaptureService.exe
O23 - Service R2: BitMeter Web Service - (BitMeterWebService) - C:\Program Files (x86)\Codebox\BitMeterOS\BitMeterWebService.exe
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: CAM Service - (CAMService) - C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
O23 - Service R2: GCUBridge - C:\Program Files\OEM\Monster Kontrol Merkezi\UniwillService\GCUBridge.exe
O23 - Service R2: Intel Bluetooth Service - (ibtsiva) - C:\Windows\system32\ibtsiva.exe
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7bd783ff1a7eabdf\IntelCpHDCPSvc.exe
O23 - Service R2: Intel(R) Extreme Tuning Utility Service - (XTU3SERVICE) - C:\Program Files\OEM\Monster Kontrol Merkezi\UniwillService\MyControlCenter\XTU\XtuService.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_de4302f9ce503910\igfxCUIService.exe
O23 - Service R2: Intel(R) PROSet/Wireless Event Log - (EvtEng) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service R2: Intel(R) PROSet/Wireless Registry Service - (RegSrvc) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service R2: Intel(R) PROSet/Wireless Zero Configuration Service - (ZeroConfigService) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nvtfi.inf_amd64_27f0fd71b28223c6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvtfi.inf_amd64_27f0fd71b28223c6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\RtkAudUService64.exe
O23 - Service R2: RstMwService - C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e335ebb186115025\RstMwService.exe
O23 - Service R2: TFSPEQService - C:\Windows\TFSPEQService.exe
O23 - Service R2: TeamViewer 14 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R2: UWP RPC Service - (UWPService) - C:\Windows\SysWOW64\Creative.UWPRPCService.exe
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7bd783ff1a7eabdf\IntelCpHeciSvc.exe
O23 - Service S2: Freemake Improver - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe  (file missing)
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service S2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service S2: Intel(R) TPM Provisioning Service - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service S2: McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe  (file missing)
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.122\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Wireless PAN DHCP Server - (MyWiFiDHCPDNS) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe


--
End of file - Time spent: 13,2 sec. - 45444 bytes, CRC32: FFFFFFFF. Sign: 髊

Tespitlerinizi beklerim.
 
Bunları fixle:
Kod: 
O5 - HKCU\Control Panel\don't load: [RTSnMg64.cpl] (file missing)
O16 - DPF: HKLM\..\{8AD9C840-044E-11D1-B3E9-00805F499D93}\DownloadInformation: Java Plug-in 1.6.0_17 [CODEBASE] = http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
O16 - DPF: HKLM\..\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\DownloadInformation: Java Plug-in 1.6.0_17 [CODEBASE] = http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
O16 - DPF: HKLM\..\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\DownloadInformation: Java Plug-in 1.6.0_17 [CODEBASE] = http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
O23 - Service R2: TFSPEQService - C:\Windows\TFSPEQService.exe
Bunların dışında hosts dosyasının değiştiğini biliyor olman lazım. Bazı gereksiz yazılımlar var onları da temiz önyükleme ile kapatabilirsin.
 
Kod: 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: 127.0.0.1 activation.acronis.com web-api-tih.acronis.com
O1 - Hosts: 127.0.0.1 acdid.acdsystems.com
O2 - HKLM\..\BHO: (no name) - AutorunsDisabled - (no file)
O2-32 - HKLM\..\BHO: (no name) - AutorunsDisabled - (no file)
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [egui] = C:\Program Files\ESET\ESET Security\ecmds.exe /run /hide /proxy
O4 - HKLM\..\SafeBoot: [AlternateShell] = (no file) (disabled)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe
O4 - User Startup: C:\Users\SeLim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled (folder)
O9-32 - Button: HKLM\..\AutorunsDisabled: (no name) - (no file)
O10 - Unknown file in Winsock LSP: C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\     AcronisDrive: (no name) - {5D74FD4B-4EFB-4586-8022-8637BBE40970} - C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_24_5_22510.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\     AcronisSyncError: (no name) - {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} - C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_24_5_22510.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\     AcronisSyncInProgress: (no name) - {00F848DC-B1D4-4892-9C25-CAADC86A215D} - C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_24_5_22510.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\     AcronisSyncOk: (no name) - {71573297-552E-46fc-BE3D-3DFAF88D47B7} - C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_24_5_22510.dll
O23 - Service R2: ESET Service - (ekrn) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R3: ESET Firewall Helper - (ekrnEpfw) - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service S3: Office 64 Source Engine - (ose64) - c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
 
Eksik paylaşmışsın. Bunları fixleyin:
Kod: 
O2 - HKLM\..\BHO: (no name) - AutorunsDisabled - (no file)
O2-32 - HKLM\..\BHO: (no name) - AutorunsDisabled - (no file)
O4 - HKLM\..\SafeBoot: [AlternateShell] = (no file) (disabled)
O4 - User Startup: C:\Users\SeLim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled (folder)
O9-32 - Button: HKLM\..\AutorunsDisabled: (no name) - (no file)
 

Benzer konular

taylaan
HijackThis Log Paylaşımı
Mesaj
0
Görüntüleme
526
taylaan
taylaan
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5.659
quarest
quarest
Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
985
acv
A
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
2.980
Murat5038
Murat5038
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
14.338
Windows 11 Bükücü
Windows 11 Bükücü

Technopat Haberler

Yeni konular

Yeni mesajlar

Geri
Yukarı