Rehber HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleme:
Genişletmek için tıkla...
Murat5038 dedi:
Bilinmedik VPN için para vermişsiniz tavsiye etmediğim şeyler bunlar karar sizin yine de.
IObit yazımlımları da dahil tavsiye etmediklerim arasında. Defrag pek gerekli değil güncel sistemlerde Win 10 kullanıyorsanız otomatik tanımlama ve onarım yapıyor zaten.
Zararlı yönündne belirgin bir şey yok.
Genişletmek için tıkla...

Kampanya ile çok ucuz fiyata geldi o yüzden aldım :) (5.5 usd gibi bir şeydi). Sadece IObit uninstallerı aktif olarak kullanıyorum. Diğer programlarını ayda 1. Windows 8.1 kullanıyorum. Teşekkür ederim incelemeniz için.
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform: x64 Windows 10 (Home), 10.0.18363.778 (ReleaseId: 1909), Service Pack: 0
Time: 05.05.2020 - 13:03 (UTC+03:00)
Language: OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated: Yes.
Ran by: FLMZo (group: Administrator) on, FirstRun: yes.

Chrome: 81.0.4044.129
Edge: 11.0.18362.752
Internet Explorer: 11.0.18362.1
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal.

Running processes:
Number | Path.
 1 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
 1 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
 1 C:\Program Files (x86)\Common Files\Steam\SteamService.exe
 1 C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
 1 C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp64.exe
 1 C:\Program Files (x86)\DFX\dfx.exe
 17 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 1 C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
 1 C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
 1 C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
 7 C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
 1 C:\Program Files (x86)\Steam\steam.exe
 1 C:\Program Files\Bonjour\mDNSResponder.exe
 2 C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
 1 C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
 1 C:\Program Files\Controller Companion\ControllerCompanion.exe
 2 C:\Program Files\LGHUB\lghub.exe
 1 C:\Program Files\LGHUB\lghub_agent.exe
 1 C:\Program Files\LGHUB\lghub_updater.exe
 1 C:\Program Files\LGHUB\logi_analytics_client.exe
 2 C:\Program Files\Locktime Software\NetLimiter 4\NLClientApp.exe
 1 C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe
 1 C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
 1 C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
 1 C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
 2 C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
 2 C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
 1 C:\Program Files\Rockstar Games\Launcher\Launcher.exe
 1 C:\Program Files\Rockstar Games\Launcher\LauncherPatcher.exe
 1 C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
 3 C:\Program Files\Rockstar Games\Social Club\SocialClubHelper.exe
 1 C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
 1 C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
 1 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20032.111.0_x64__8wekyb3d8bbwe\YourPhone.exe
 1 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20032.111.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe
 5 C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe
 1 C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
 6 C:\Users\FLMZo\AppData\Local\Discord\app-0.0.306\Discord.exe
 2 C:\Users\FLMZo\Downloads\HiJackThis\HiJackThis.exe
 1 C:\Users\FLMZo\Downloads\NPE (1).exe
 1 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
 1 C:\Windows\System32\ApplicationFrameHost.exe
 1 C:\Windows\System32\CompPkgSrv.exe
 1 C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxCUIService.exe
 1 C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxEM.exe
 1 C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
 1 C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_12bdb8127c4c0458\OneApp.IGCC.WinService.exe
 1 C:\Windows\System32\MicrosoftEdgeCP.exe
 1 C:\Windows\System32\MicrosoftEdgeSH.exe
 7 C:\Windows\System32\RuntimeBroker.exe
 1 C:\Windows\System32\SecurityHealthHost.exe
 1 C:\Windows\System32\SecurityHealthService.exe
 1 C:\Windows\System32\SecurityHealthSystray.exe
 1 C:\Windows\System32\SettingSyncHost.exe
 1 C:\Windows\System32\SgrmBroker.exe
 1 C:\Windows\System32\SystemSettingsBroker.exe
 1 C:\Windows\System32\audiodg.exe
 1 C:\Windows\System32\browser_broker.exe
 1 C:\Windows\System32\chkdsk.exe
 1 C:\Windows\System32\cmd.exe
 1 C:\Windows\System32\conhost.exe
 1 C:\Windows\System32\consent.exe
 2 C:\Windows\System32\csrss.exe
 1 C:\Windows\System32\ctfmon.exe
 4 C:\Windows\System32\dllhost.exe
 1 C:\Windows\System32\dwm.exe
 2 C:\Windows\System32\fontdrvhost.exe
 1 C:\Windows\System32\lsass.exe
 3 C:\Windows\System32\rundll32.exe
 1 C:\Windows\System32\services.exe
 1 C:\Windows\System32\sihost.exe
 1 C:\Windows\System32\smartscreen.exe
 1 C:\Windows\System32\smss.exe
 1 C:\Windows\System32\spoolsv.exe
 79 C:\Windows\System32\svchost.exe
 2 C:\Windows\System32\taskhostw.exe
 1 C:\Windows\System32\wbem\WmiPrvSE.exe
 1 C:\Windows\System32\wbem\unsecapp.exe
 1 C:\Windows\System32\wininit.exe
 1 C:\Windows\System32\winlogon.exe
 1 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
 1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
 1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
 1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
 1 C:\Windows\explorer.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex.
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex.
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [SuggestionsURL] = https://ie.search.yahoo.com/os?appid=ie8&command={searchTerms} - Yahoo!
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [TopResultURL] = https://tr.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180526__yaie&p={searchTerms} - Yahoo!
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [URL] = https://tr.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180526__yaie&p={searchTerms} - Yahoo!
O2 - HKLM\..\BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll
O4 - HKCU\..\Run: [LGHUB] = C:\Program Files\LGHUB\lghub.exe --background
O4 - HKCU\..\Run: [Opera Browser Assistant] = C:\Users\FLMZo\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
O4 - HKCU\..\StartupApproved\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (2018/07/21)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2018/05/01)
O4 - HKLM\..\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe
O4 - HKLM\..\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe
O4 - HKLM\..\StartupApproved\Run32: [AdobeCS6ServiceManager] = C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin (2019/03/20)
O4 - HKLM\..\StartupApproved\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (2019/03/20)
O4 - HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125358085\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'unknown: S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125358085')
O4 - HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125530409\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'unknown: S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125530409')
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125400203\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'unknown: S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125400203')
O4 - HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125531695\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'unknown: S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125531695')
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801\..\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (User 'unknown: S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801')
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801\..\Run: [LGHUB] = C:\Program Files\LGHUB\lghub.exe --background (User 'unknown: S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801')
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801\..\Run: [Opera Browser Assistant] = C:\Users\FLMZo\AppData\Local\Programs\Opera\assistant\browser_assistant.exe (User 'unknown: S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801')
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801\..\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (User 'unknown: S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801')
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801\..\StartupApproved\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (User 'unknown') (2018/07/21)
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125402801\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (User 'unknown') (2018/05/01)
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039\..\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (User 'unknown: S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039')
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039\..\Run: [LGHUB] = C:\Program Files\LGHUB\lghub.exe --background (User 'unknown: S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039')
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039\..\Run: [Opera Browser Assistant] = C:\Users\FLMZo\AppData\Local\Programs\Opera\assistant\browser_assistant.exe (User 'unknown: S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039')
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039\..\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (User 'unknown: S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039')
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039\..\StartupApproved\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (User 'unknown') (2018/07/21)
O4 - HKU\S-1-5-21-115170217-2968106155-2091938845-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125532039\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (User 'unknown') (2018/05/01)
O4-32 - HKLM\..\Run: [FxSound Enhancer] = C:\Program Files (x86)\DFX\dfx.exe -startup
O4-32 - HKLM\..\Run: [Lightshot] = C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4-32 - HKLM\..\Run: [Razer Synapse] = C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [SwitchBoard] = C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O15 - Trusted Zone: *.localhost
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{bea3f9be-a5e0-4692-8531-6dfc46a3c0ea}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{bea3f9be-a5e0-4692-8531-6dfc46a3c0ea}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O18 - HKLM\Software\Classes\Protocols\Handler\wlpg: [CLSID] = {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O22 - Task (.job): (Not scheduled) update-S-1-5-21-115170217-2968106155-2091938845-1001.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task (.job): (Not scheduled) update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: Intel(R) Storage Middleware Service - (RstMwService) - C:\WINDOWS\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
O23 - Service R2: LGHUB Updater Service - (LGHUBUpdaterService) - C:\Program Files\LGHUB/lghub_updater.exe --run-as-service
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service R2: Microsoft Office Click-to-Run Service - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000.
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S2: CloudAvUpdaterEx - C:\Program Files (x86)\Panda Security\Panda Security Protection\Setup.exe /Service /InstallImDriver (file missing)
O23 - Service S2: Panda Devices Agent - (PandaAgent) - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (file missing)
O23 - Service S2: Panda Product Service - (PSUAService) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (file missing)
O23 - Service S2: Panda Protection Service - (NanoServiceMain) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (file missing)
O23 - Service S3: Office 64 Source Engine - (ose64) - c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Panda VPN Service - C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe (file missing)
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe

--
End of file - Time spent: 142 sec. - 37688 bytes, CRC32: FFFFFFFF. Sign: ᅢ뱵

Bir problemim var mı yardımcı olur musunuz?
 
Son düzenleyen: Moderatör:
IOBIT ürünleri kaldır, NetLimiter 4 gerekli değilse kaldır.
Bunları fixle:
Kod: 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [SuggestionsURL] = https://ie.search.yahoo.com/os?appid=ie8&command={searchTerms} - Yahoo!
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [TopResultURL] = https://tr.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180526__yaie&p={searchTerms} - Yahoo!
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [URL] = https://tr.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180526__yaie&p={searchTerms} - Yahoo!
O2 - HKLM\..\BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)

MS mail uygulamasını kullanmıyorsanız bunları da fixleyin:
Kod: 
O4 - HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125358085\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'unknown: S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125358085')
O4 - HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125530409\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'unknown: S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125530409')
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125400203\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'unknown: S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125400203')
O4 - HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125531695\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'unknown: S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05052020125531695')
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade

Zararlı yok gözüküyor.
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Home Single Language), 10.0.18363.815 (ReleaseId: 1909), Service Pack: 0
Time:      10.05.2020 - 08:34 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Casper    (group: Administrator) on EXCALIBUR, FirstRun: yes

Chrome:  81.0.4044.129
Edge:    11.0.18362.815
Internet Explorer: 11.0.18362.1
Default: "C:\Users\Casper\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Hotkey\Driver\x64\HKClipSvc.exe
   1  C:\Program Files (x86)\Hotkey\HotkeyService.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
   1  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
   1  C:\Program Files\Intel\WiFi\bin\EvtEng.exe
   1  C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   1  C:\Users\Casper\Desktop\HiJackThis.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   2  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\dasHost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\igfxCUIService.exe
   1  C:\Windows\System32\igfxEM.exe
   1  C:\Windows\System32\igfxHK.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  69  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://oem15.msn.com/?pc=NMTE
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EAB13430-4F9C-4349-AE3F-66E9A416344F}: [URL] = http://www.google.com/search?q={searchTerms} - Google
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll
O2 - HKLM\..\BHO: ScriptInjectionPluginBrowserHelperObject - {9F904093-6E18-4536-BF5F-B03689CF00F0} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll
O3 - HKLM\..\Toolbar: Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll (file missing)
O17 - DHCP DNS 1: 192.168.1.1
O21-32 - HKLM\..\ShellExecuteHooks: [{B5A7F190-DDA6-4420-B3BA-52453494E6CD}] - Groove GFS Stub Execution Hook - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (disabled)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub): Groove Explorer Icon Overlay 1 (GFS Unread Stub) - {99FD978C-D287-4F50-827F-B2C658EDA8E7} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub): Groove Explorer Icon Overlay 2 (GFS Stub) - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder): Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) - {920E6DB1-9907-4370-B3A0-BAFC03D81399} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder): Groove Explorer Icon Overlay 3 (GFS Folder) - {16F3DD56-1AF5-4347-846D-7C10C4192619} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark): Groove Explorer Icon Overlay 4 (GFS Unread Mark) - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\Windows\explorer.exe /NOUACCHECK
O23 - Service R2: HotKey Clipboard Service - (HKClipSvc) - C:\Program Files (x86)\Hotkey\Driver\x64\HKClipSvc.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: Intel(R) PROSet/Wireless Event Log - (EvtEng) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service R2: Intel(R) PROSet/Wireless Registry Service - (RegSrvc) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service R2: Intel(R) PROSet/Wireless Zero Configuration Service - (ZeroConfigService) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
O23 - Service R2: Intel(R) Security Assist Helper - (isaHelperSvc) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: PowerBiosServer - C:\Program Files (x86)\Hotkey\HotkeyService.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service S2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\system32\IntelCpHDCPSvc.exe
O23 - Service S2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service S2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service S2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Intel(R) Security Assist - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service S3: Kaspersky Anti-Virus Hizmeti 20.0 - (AVP20.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe -r
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 20.0 - (klvssbridge64_20.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\vssbridge64.exe
O23 - Service S3: Microsoft Office Diagnostics Service - (odserv) - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
O23 - Service S3: Microsoft Office Groove Audit Service - C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
O23 - Service S3: SAS Core Service - (!SASCORE) - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: Uncheater for BattleGroundsLite_SE - (uncheater_bgl) - C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe
O23 - Service S3: Wireless PAN DHCP Server - (MyWiFiDHCPDNS) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service S3: Wise Boot Assistant - (WiseBootAssistant) - D:\FPS Optimization\Wise Care 365\BootTime.exe


--
End of file - Time spent: 20,5 sec. - 20374 bytes, CRC32: FFFFFFFF. Sign: 蛇ക
Problem var mı? Yardımcı olursanız mutlu olurum.
 
Kaspersky yüklü zaten bakmaya gerek yok yine de bunları fixleyin:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://oem15.msn.com/?pc=NMTE
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EAB13430-4F9C-4349-AE3F-66E9A416344F}: [URL] = http://www.google.com/search?q={searchTerms} - Google
O21-32 - HKLM\..\ShellExecuteHooks: [{B5A7F190-DDA6-4420-B3BA-52453494E6CD}] - Groove GFS Stub Execution Hook - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (disabled)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub): Groove Explorer Icon Overlay 1 (GFS Unread Stub) - {99FD978C-D287-4F50-827F-B2C658EDA8E7} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub): Groove Explorer Icon Overlay 2 (GFS Stub) - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder): Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) - {920E6DB1-9907-4370-B3A0-BAFC03D81399} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder): Groove Explorer Icon Overlay 3 (GFS Folder) - {16F3DD56-1AF5-4347-846D-7C10C4192619} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark): Groove Explorer Icon Overlay 4 (GFS Unread Mark) - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
 
Sizce virüs var mı?
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Home Single Language), 10.0.18363.815 (ReleaseId: 1909), Service Pack: 0
Time:      12.05.2020 - 11:00 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    hp    (group: Administrator) on *****, FirstRun: yes

Chrome:  81.0.4044.138
Edge:    11.0.18362.815
Internet Explorer: 11.0.18362.1
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Steam\SteamService.exe
   1  C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
   1  C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
   1  C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
   1  C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
   1  C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
   1  C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
   1  C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
   1  C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
   1  C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
   1  C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\Origin\OriginWebHelperService.exe
   1  C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
   1  C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
   1  C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
   2  C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe
   1  C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
   1  C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
   1  C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
   1  C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
   1  C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
   7  C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
   1  C:\Program Files (x86)\Steam\steam.exe
   1  C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
   1  C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe
   1  C:\Program Files\HPCommRecovery\HPCommRecovery.exe
   1  C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
   1  C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
   1  C:\Program Files\Intel\WiFi\bin\EvtEng.exe
   1  C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   1  C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.14.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
   1  C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.88.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20022.11011.0_x64__8wekyb3d8bbwe\Video.UI.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
   1  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
   1  C:\Users\hp\Desktop\HiJackThis.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\TouchpointAnalyticsClientService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\AppHelperCap.exe
   1  C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\NetworkCap.exe
   1  C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\SysInfoCap.exe
   1  C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_59a0a32410fb19a2\x64\OmenCap.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
   1  C:\Windows\System32\PnkBstrA.exe
  10  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\ibtsiva.exe
   1  C:\Windows\System32\inetsrv\inetinfo.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\mqsvc.exe
   1  C:\Windows\System32\mqtgsvc.exe
   2  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  77  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WMIADAP.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   2  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://hp17win10.msn.com/?pc=HCTE
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O2 - HKLM\..\BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll
O2 - HKLM\..\BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
O2-32 - HKLM\..\BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKCU\..\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent
O4 - HKCU\..\Run: [Synapse3] = C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized
O4 - HKLM\..\Run: [DisplayLinkUI] = C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe -basicMode
O4 - HKLM\..\Run: [IAStorIcon] = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe
O4 - HKU\.DEFAULT\..\Run: [Synapse3] = C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized
O4 - User Startup: C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitör Mürekkep Uyarıları - HP Deskjet Ink Adv 2060 K110.lnk    ->    C:\WINDOWS\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet Ink Adv 2060 K110\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN1BP33JN405M9;CONNECTION=USB;MONITOR=1;
O4-32 - HKLM\..\Run: [CLVirtualDrive] = C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R
O4-32 - HKLM\..\Run: [HP Software Update] = C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4-32 - HKLM\..\Run: [HPMessageService] = C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
O4-32 - HKLM\..\Run: [YouCam Service] = C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s
O9 - Button: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: Bağlantı sorunlarını çözmenize yardımcı olacak şekilde HP Ağ Denetimini başlatır - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Tools menu item: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: HP Ağ Denetimi - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9-32 - Button: HKLM\..\{22CC3EBD-C286-43aa-B8E6-06B115F74162}: HP Smart Print - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9-32 - Button: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: Bağlantı sorunlarını çözmenize yardımcı olacak şekilde HP Ağ Denetimini başlatır - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9-32 - Tools menu item: HKLM\..\{22CC3EBD-C286-43aa-B8E6-06B115F74162}: HP Smart Print - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9-32 - Tools menu item: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: HP Ağ Denetimi - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: HP Analytics service - (HpTouchpointAnalyticsService) - C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\TouchpointAnalyticsClientService.exe
O23 - Service R2: HP App Helper HSA Service - (HPAppHelperCap) - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\AppHelperCap.exe
O23 - Service R2: HP Comm Recovery - (HP Comm Recover) - C:\Program Files\HPCommRecovery\HPCommRecovery.exe
O23 - Service R2: HP JumpStart Bridge - (HPJumpStartBridge) - c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
O23 - Service R2: HP Network HSA Service - (HPNetworkCap) - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\NetworkCap.exe
O23 - Service R2: HP Omen HSA Service - (HPOmenCap) - C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_59a0a32410fb19a2\x64\OmenCap.exe
O23 - Service R2: HP System Info HSA Service - (HPSysInfoCap) - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\SysInfoCap.exe
O23 - Service R2: HPWMISVC - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service R2: Intel Bluetooth Service - (ibtsiva) - C:\WINDOWS\System32\ibtsiva.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) Extreme Tuning Utility Service - (XTU3SERVICE) - c:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
O23 - Service R2: Intel(R) PROSet/Wireless Event Log - (EvtEng) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service R2: Intel(R) PROSet/Wireless Registry Service - (RegSrvc) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service R2: Intel(R) PROSet/Wireless Zero Configuration Service - (ZeroConfigService) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
O23 - Service R2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service R2: Intel(R) Storage Middleware Service - (RstMwService) - C:\WINDOWS\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service R2: PnkBstrA - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service R2: Razer Central Service - (RzActionSvc) - C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
O23 - Service R2: Razer Chroma SDK Server - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
O23 - Service R2: Razer Chroma SDK Service - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
O23 - Service R2: Razer Game Manager - (Razer Game Manager Service) - C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
O23 - Service R2: Razer Synapse Service - C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R2: TeamViewer - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R3: HP CASL Framework Service - (hpqcaslwmiex) - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service R3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S2: Advanced SystemCare Service 13 - (AdvancedSystemCareService13) - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: IObit Uninstaller Service - (IObitUnSvr) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.138\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Intel(R) Optane(TM) Memory Service - (iaStorAfsService) - C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: Thunderbolt(TM) Service - (ThunderboltService) - C:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe
O23 - Service S3: Uncheater for BattleGrounds_GL - (ucldr_battlegrounds_gl) - C:\Program Files\Common Files\Uncheater\ucldr_battlegrounds_gl.exe
O23 - Service S3: Wireless PAN DHCP Server - (MyWiFiDHCPDNS) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe


--
End of file - Time spent: 38,8 sec. - 35910 bytes, CRC32: FFFFFFFF. Sign: 璯砂
 
Zararlı gözüken yok istenmeyen yazılımlar var sadece. IOBİT ve HP'nin gereksiz yazılımlarını kaldır. Temiz önyükleme yapın.
Bunları da fixle:
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://hp17win10.msn.com/?pc=HCTE
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O2 - HKLM\..\BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll
 
Performans düşüşünden ziyade Virüs bulaşmasından şüpheliyim. Chrome'yi her açtığım zaman "Page Redirection" diye bir kimliği belirsiz site açılıyor başlangıçta.

Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x32 Windows 7 (Ultimate), 6.1.7601.0, Service Pack: 1
Time:      14.05.2020 - 06:22 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    WİN7    (group: Administrator) on **********, FirstRun: yes

Chrome:  81.0.4044.138
Internet Explorer: 9.0.8112.16421
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files\CCleaner\CCleaner.exe
   1  C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
   1  C:\Program Files\Intel\Bluetooth\devmonsrv.exe
   1  C:\Program Files\Intel\Bluetooth\ibtsiva.exe
   1  C:\Program Files\Intel\Bluetooth\mediasrv.exe
   1  C:\Program Files\Intel\Bluetooth\obexsrv.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
   1  C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
   1  C:\Program Files\Remote Mouse\RemoteMouse.exe
   1  C:\Program Files\Remote Mouse\RemoteMouseCore.exe
   1  C:\Program Files\Remote Mouse\RemoteMouseService.exe
   1  C:\Program Files\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
   1  C:\ProgramData\ManyCam\Service\ManyCamService.exe
   1  C:\Users\WİN7\Desktop\HiJackThis.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\dwm.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\lsm.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  10  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskeng.exe
   1  C:\Windows\System32\taskhost.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\svchost.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyServer] = 192.168.49.1:8282 (disabled)
O1 - Hosts: Reset contents to default
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O1 - Hosts: 127.0.0.1 www.xilisoft.com
O1 - Hosts: 127.0.0.1 online.xilisoft.com
O1 - Hosts: 127.0.0.1 www.imtoo.com
O1 - Hosts: 127.0.0.1 online.imtoo.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 na1r.services.adobe.com
O1 - Hosts: 127.0.0.1 hlrcv.stage.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 reg.wisecleaner.com
O1 - Hosts: 127.0.0.1 api.adguard.com
O1 - Hosts: 127.0.0.1 api-b.adguard.com
O1 - Hosts: 127.0.0.1 api-c.adguard.com
O1 - Hosts: 127.0.0.1 api-d.adguard.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner.exe /MONITOR
O4 - HKCU\..\Run: [WİN7] = C:\Windows\explorer.exe http://exinariuminix.info
O4 - HKLM\..\Run: [BTMTrayAgent] = C:\Program Files\Intel\Bluetooth\btmshellex.dll "C:\Program Files\Intel\Bluetooth\btmshellex.dll",TrayApp
O4 - HKLM\..\Run: [Lightshot] = C:\Program Files\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - MSConfig\startupreg: AdobeAAMUpdater-1.0 [command] = C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (HKLM) (2019/12/29) (file missing)
O4 - MSConfig\startupreg: AdobeCS6ServiceManager [command] = C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin (HKLM) (2019/12/29) (file missing)
O4 - MSConfig\startupreg: GoogleDriveSync [command] = C:\Program Files\Google\Drive\googledrivesync.exe /autostart (HKCU) (2019/12/29) (file missing)
O4 - MSConfig\startupreg: SwitchBoard [command] = C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (HKLM) (2019/12/29) (file missing)
O4 - MSConfig\startupreg: UnlockerAssistant [command] = C:\Program Files\Unlocker\UnlockerAssistant.exe (HKLM) (2019/12/29)
O4 - MSConfig\startupreg: VirtualCloneDrive [command] = C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe /s (HKLM) (2019/12/29)
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32\Wbem
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32\WindowsPowerShell\v1.0
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files\Internet Download Manager\IEGetAll.htm
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\WİN7\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\WİN7\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\WİN7\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files\Internet Download Manager\IDMShellExt.dll
O23 - Service R2: Bluetooth Device Monitor - C:\Program Files\Intel\Bluetooth\devmonsrv.exe
O23 - Service R2: Bluetooth Media Service - C:\Program Files\Intel\Bluetooth\mediasrv.exe
O23 - Service R2: Bluetooth OBEX Service - C:\Program Files\Intel\Bluetooth\obexsrv.exe
O23 - Service R2: Intel Bluetooth Service - (iBtSiva) - C:\Program Files\Intel\Bluetooth\ibtsiva.exe
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service R2: ManyCam Service - C:\ProgramData\ManyCam\Service\ManyCamService.exe
O23 - Service R2: Microsoft Office Tıklat-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe /service
O23 - Service R2: Power Manager - (PowerManager) - C:\Windows\svchost.exe
O23 - Service R2: RemoteMouseService - C:\Program Files\Remote Mouse\RemoteMouseService.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\81.0.4044.138\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Remote Packet Capture Protocol v.0 (experimental) - (rpcapd) - C:\Program Files\WinPcap\rpcapd.exe -d -f "C:\Program Files\WinPcap\rpcapd.ini"
O23 - Service S3: SHAREit Hotspot Service - (uSHAREitSvc) - C:\Program Files\SHAREit Technologies\SHAREit\SHAREit.Service.exe


--
End of file - Time spent: 22,9 sec. - 16044 bytes, CRC32: FFFFFFFF. Sign: ⮏⊕

Şu virüs illetinden kurtulmama yardımcı olun, lütfen :)

Edit: Ayrıca bazen karşıma "cmd" geliyor gidiyor salise farkıyla. Eskiden böyle olmazdı.
 
LeonS.Kennedy dedi:
Performans düşüşünden ziyade Virüs bulaşmasından şüpheliyim. Chrome'yi her açtığım zaman "Page Redirection" diye bir kimliği belirsiz site açılıyor başlangıçta.

Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x32 Windows 7 (Ultimate), 6.1.7601.0, Service Pack: 1
Time:      14.05.2020 - 06:22 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    WİN7    (group: Administrator) on **********, FirstRun: yes

Chrome:  81.0.4044.138
Internet Explorer: 9.0.8112.16421
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files\CCleaner\CCleaner.exe
   1  C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
   1  C:\Program Files\Intel\Bluetooth\devmonsrv.exe
   1  C:\Program Files\Intel\Bluetooth\ibtsiva.exe
   1  C:\Program Files\Intel\Bluetooth\mediasrv.exe
   1  C:\Program Files\Intel\Bluetooth\obexsrv.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
   1  C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
   1  C:\Program Files\Remote Mouse\RemoteMouse.exe
   1  C:\Program Files\Remote Mouse\RemoteMouseCore.exe
   1  C:\Program Files\Remote Mouse\RemoteMouseService.exe
   1  C:\Program Files\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
   1  C:\ProgramData\ManyCam\Service\ManyCamService.exe
   1  C:\Users\WİN7\Desktop\HiJackThis.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\dwm.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\lsm.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  10  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskeng.exe
   1  C:\Windows\System32\taskhost.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\svchost.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyServer] = 192.168.49.1:8282 (disabled)
O1 - Hosts: Reset contents to default
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O1 - Hosts: 127.0.0.1 www.xilisoft.com
O1 - Hosts: 127.0.0.1 online.xilisoft.com
O1 - Hosts: 127.0.0.1 www.imtoo.com
O1 - Hosts: 127.0.0.1 online.imtoo.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 na1r.services.adobe.com
O1 - Hosts: 127.0.0.1 hlrcv.stage.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 reg.wisecleaner.com
O1 - Hosts: 127.0.0.1 api.adguard.com
O1 - Hosts: 127.0.0.1 api-b.adguard.com
O1 - Hosts: 127.0.0.1 api-c.adguard.com
O1 - Hosts: 127.0.0.1 api-d.adguard.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner.exe /MONITOR
O4 - HKCU\..\Run: [WİN7] = C:\Windows\explorer.exe http://exinariuminix.info
O4 - HKLM\..\Run: [BTMTrayAgent] = C:\Program Files\Intel\Bluetooth\btmshellex.dll "C:\Program Files\Intel\Bluetooth\btmshellex.dll",TrayApp
O4 - HKLM\..\Run: [Lightshot] = C:\Program Files\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - MSConfig\startupreg: AdobeAAMUpdater-1.0 [command] = C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (HKLM) (2019/12/29) (file missing)
O4 - MSConfig\startupreg: AdobeCS6ServiceManager [command] = C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin (HKLM) (2019/12/29) (file missing)
O4 - MSConfig\startupreg: GoogleDriveSync [command] = C:\Program Files\Google\Drive\googledrivesync.exe /autostart (HKCU) (2019/12/29) (file missing)
O4 - MSConfig\startupreg: SwitchBoard [command] = C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (HKLM) (2019/12/29) (file missing)
O4 - MSConfig\startupreg: UnlockerAssistant [command] = C:\Program Files\Unlocker\UnlockerAssistant.exe (HKLM) (2019/12/29)
O4 - MSConfig\startupreg: VirtualCloneDrive [command] = C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe /s (HKLM) (2019/12/29)
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32\Wbem
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32\WindowsPowerShell\v1.0
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files\Internet Download Manager\IEGetAll.htm
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\WİN7\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\WİN7\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\WİN7\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files\Internet Download Manager\IDMShellExt.dll
O23 - Service R2: Bluetooth Device Monitor - C:\Program Files\Intel\Bluetooth\devmonsrv.exe
O23 - Service R2: Bluetooth Media Service - C:\Program Files\Intel\Bluetooth\mediasrv.exe
O23 - Service R2: Bluetooth OBEX Service - C:\Program Files\Intel\Bluetooth\obexsrv.exe
O23 - Service R2: Intel Bluetooth Service - (iBtSiva) - C:\Program Files\Intel\Bluetooth\ibtsiva.exe
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service R2: ManyCam Service - C:\ProgramData\ManyCam\Service\ManyCamService.exe
O23 - Service R2: Microsoft Office Tıklat-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe /service
O23 - Service R2: Power Manager - (PowerManager) - C:\Windows\svchost.exe
O23 - Service R2: RemoteMouseService - C:\Program Files\Remote Mouse\RemoteMouseService.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\81.0.4044.138\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Remote Packet Capture Protocol v.0 (experimental) - (rpcapd) - C:\Program Files\WinPcap\rpcapd.exe -d -f "C:\Program Files\WinPcap\rpcapd.ini"
O23 - Service S3: SHAREit Hotspot Service - (uSHAREitSvc) - C:\Program Files\SHAREit Technologies\SHAREit\SHAREit.Service.exe


--
End of file - Time spent: 22,9 sec. - 16044 bytes, CRC32: FFFFFFFF. Sign: ⮏⊕

Şu virüs illetinden kurtulmama yardımcı olun, lütfen :)

Edit: Ayrıca bazen karşıma "cmd" geliyor gidiyor salise farkıyla. Eskiden böyle olmazdı.
Genişletmek için tıkla...
Bir şeyin servisi olabilir cmd Bitdefender kullanıyorum bilgisayarım her açıldığında saliselik bir cmd geliyor ve kapanıyor ama virüs tespit edilmiyor bilgisayarımda 😀
 
LeonS.Kennedy dedi:
Şu virüs illetinden kurtulmama yardımcı olun, lütfen :)
Genişletmek için tıkla...
Kod: 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyServer] = 192.168.49.1:8282 (disabled)
O1 - Hosts: Reset contents to default
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O1 - Hosts: 127.0.0.1 www.xilisoft.com
O1 - Hosts: 127.0.0.1 online.xilisoft.com
O1 - Hosts: 127.0.0.1 www.imtoo.com
O1 - Hosts: 127.0.0.1 online.imtoo.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 na1r.services.adobe.com
O1 - Hosts: 127.0.0.1 hlrcv.stage.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 reg.wisecleaner.com
O1 - Hosts: 127.0.0.1 api.adguard.com
O1 - Hosts: 127.0.0.1 api-b.adguard.com
O1 - Hosts: 127.0.0.1 api-c.adguard.com
O1 - Hosts: 127.0.0.1 api-d.adguard.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O4 - HKCU\..\Run: [WİN7] = C:\Windows\explorer.exe http://exinariuminix.info
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32\Wbem
O7 - TroubleShooting: (EV) %PATH% has missing system folder: C:\Windows\System32\WindowsPowerShell\v1.0
O23 - Service R2: Power Manager - (PowerManager) - C:\Windows\svchost.exe
O23 - Service R2: RemoteMouseService - C:\Program Files\Remote Mouse\RemoteMouseService.exe
O23 - Service S3: Remote Packet Capture Protocol v.0 (experimental) - (rpcapd) - C:\Program Files\WinPcap\rpcapd.exe -d -f "C:\Program Files\WinPcap\rpcapd.ini"
O23 - Service S3: SHAREit Hotspot Service - (uSHAREitSvc) - C:\Program Files\SHAREit Technologies\SHAREit\SHAREit.Service.exe
Bunları fixleyin.
kakaolupuding dedi:
Bir şeyin servisi olabilir cmd Bitdefender kullanıyorum bilgisayarım her açıldığında saliselik bir cmd geliyor ve kapanıyor ama virüs tespit edilmiyor bilgisayarımda 😀
Genişletmek için tıkla...
Seninki ayrı onunki ayrı :) Zararlı var bilgisayarında.
 

Benzer konular

taylaan
HijackThis Log Paylaşımı
Mesaj
0
Görüntüleme
546
taylaan
taylaan
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5.686
quarest
quarest
Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
1.001
acv
A
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
3.004
Murat5038
Murat5038
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
14.518
Windows 11 Bükücü
Windows 11 Bükücü

Technopat Haberler

Yeni konular

Yeni mesajlar

Geri
Yukarı