HijackThis Log Paylaşımı ve Çözümleri

emrah_8 · 17 Aralık 2023

Murat5038 dedi:
Host dosyası dğişmiş orj. ile değiştirin.

Bunları fixleyin:

Kod:

O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\120.0.6099.110\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC') O4 - HKCU\..\StartupApproved\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (2023/12/16) (not signed - Tonec Inc. - F575BA8062DEBCFEBA0D131D6A7050E4F7C03578) O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (sign: 'Microsoft') O4-32 - HKLM\..\Run: [CORSAIR iCUE Software] = C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe --autorun (sign: 'Corsair Memory, Inc.') O20 - HKLM\..\Winlogon\Notify\DfLogon: [DllName] = LogonDll.dll (file missing)

Sound Blaster sürücünüz orj. değil doğru yerden indirin.
Wise Registry kaldırın.
Gereksiz Asus yazılımlarını kaldırın.
İnternet sürücülerinizi güncelleyin.

Bunların dışında zararlı olarak bir şey yok.

Host dosyası büyük ihtimal Wİndowsun telemetri hizmetlerini bloklarken değişmiş sanırım, sıfırlamasını silerek mi yapıyoruz?

İnternet sürücüleri derken ethernet vs mi demek istediniz? Anakart, Asus Rog Strix B-550F. Oradan internet ve Chipsetleri indirip kurmuştum zaten.

Murat5038 · 17 Aralık 2023

emrah_8 dedi:
Host dosyası büyük ihtimal Wİndowsun telemetri hizmetlerini bloklarken değişmiş sanırım, sıfırlamasını silerek mi yapıyoruz?

Hosts dosyasını varsayılana sıfırlama - Microsoft Desteği

Bu makalede Hosts dosyasının varsayılanına nasıl sıfırlanacağı açıklanmaktadır.

support.microsoft.com

emrah_8 dedi:
İnternet sürücüleri derken ethernet vs mi demek istediniz?

Evet, Wifi varsa o da.

emrah_8 dedi:
Anakart, Asus Rog Strix B-550F. Oradan internet ve Chipsetleri indirip kurmuştum zaten.

Anakart her zaman güncel sürüc vermez donanıomüreticilerinden kontrol edin. Örneğin Ethernet için sizin İntel oradan kontrol edin aygıtınızı.

Trollust · 23 Aralık 2023

SSD ile normal kapat-aç yaptığımda 10-15 saniyede açılan bilgisayarım, yeniden başlat yaptığımda 5-6 dakikada açılıyor.

Kod:

Logfile of HijackThis+ (Plus) build 2023-12-21 Beta v.3.3.0.11

Platform:  x64 Windows 10 (Pro), 10.0.19045.3803 (ReleaseId: 2009, 22H2), Service Pack: 0
Time:      23.12.2023 - 21:23 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    8323 MiB Free. Loading RAM (49 %), CPU (25 %)
Elevated:  Yes
Ran by:    Furkan Çelebi    (group: Administrators; type: Local) on DESKTOP-8SA29U3, FirstRun: yes

Chrome:  120.0.6099.129
Firefox: 121.0.0.8745
Internet Explorer: 11.0.19041.3636
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: Off) (Code Integrity: On)

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Steam\steamservice.exe
   1  C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\Internet Download Manager\IDMan.exe
   5  C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe
   1  C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
   1  C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
   7  C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
   1  C:\Program Files (x86)\Steam\steam.exe
   1  C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe
   1  C:\Program Files\Avast Software\Avast\afwServ.exe
   1  C:\Program Files\Avast Software\Avast\aswEngSrv.exe
   1  C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
   1  C:\Program Files\Avast Software\Avast\AvastSvc.exe
   5  C:\Program Files\Avast Software\Avast\AvastUI.exe
   1  C:\Program Files\Avast Software\Avast\wsc_proxy.exe
   1  C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
  21  C:\Program Files\Google\Chrome\Application\chrome.exe
   1  C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
   1  C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Program Files\Parsec\pservice.exe
   1  C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
   1  C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
   1  C:\Program Files\SteelSeries\GG\apps\sonar\SteelSeriesSonar.exe
   1  C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
   1  C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5287.0_x64__8j3eq9eme6ctt\IGCC.exe
   1  C:\Program Files\WindowsApps\CLEVOCO.FnhotkeysandOSD_6.52.4.0_x64__6h6z29zh29qx0\FnKey\FnKey.exe
   1  C:\Program Files\WindowsApps\Microsoft.GamingServices_17.84.7001.0_x64__8wekyb3d8bbwe\gamingservices.exe
   1  C:\Program Files\WindowsApps\Microsoft.GamingServices_17.84.7001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23102.126.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
   1  C:\Users\Furkan Çelebi\Desktop\HiJackThis\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\CompPkgSrv.exe
   4  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\acpibridge1.inf_amd64_2a0208b3676c8a9c\DCHUService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxEM.exe
   1  C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
   1  C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_b56b111c605faf54\OneApp.IGCC.WinService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHDCPSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHeciSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nvcvi.inf_amd64_94c13c86a7bcf278\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe
   1  C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_d372a4ea3b959b1c\aesm_service.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\Locator.exe
   1  C:\Windows\System32\LsaIso.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\oobe\UserOOBEBroker.exe
   1  C:\Windows\System32\OpenSSH\ssh-agent.exe
   1  C:\Windows\System32\rundll32.exe
   6  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   2  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
   1  C:\Windows\System32\sppsvc.exe
  95  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\SystemSettingsBroker.exe
   2  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\vmcompute.exe
   1  C:\Windows\System32\wbem\WMIC.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   3  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\SysWOW64\Creative.UWPRPCService.exe
   1  C:\Windows\SysWOW64\PnkBstrA.exe
   1  vmmem

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyServer] = 192.168.49.1:8282 (disabled)
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = hxxps://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 127.0.0.1 license.piriform.com
O1 - Hosts: 127.0.0.1 www.license.piriform.com
O1 - Hosts: 127.0.0.1 speccy.piriform.com
O1 - Hosts: 127.0.0.1 www.speccy.piriform.com
O1 - Hosts: 127.0.0.1 recuva.piriform.com
O1 - Hosts: 127.0.0.1 www.recuva.piriform.com
O1 - Hosts: 127.0.0.1 defraggler.piriform.com
O1 - Hosts: 127.0.0.1 www.defraggler.piriform.com
O1 - Hosts: 127.0.0.1 ccleaner.piriform.com
O1 - Hosts: 127.0.0.1 www.ccleaner.piriform.com
O1 - Hosts: 127.0.0.1 license-api.ccleaner.com
O1 - Hosts: 0.0.0.0 www.bandicam.com
O1 - Hosts: 0.0.0.0 bandicam.com
O1 - Hosts: 0.0.0.0 www.bandisoft.com
O1 - Hosts: 0.0.0.0 bandisoft.com
O1 - Hosts: 0.0.0.0 cert.bandicam.com
O1 - Hosts: 0.0.0.0 ssl.bandisoft.com
O1 - Hosts: 127.0.0.1 media-match.com
O1 - Hosts: 127.0.0.1 adclick.g.doublecklick.net
O1 - Hosts: 127.0.0.1 googleads.g.doubleclick.net
O1 - Hosts: 127.0.0.1 hxxp://www.googleadservices.com
O1 - Hosts: 127.0.0.1 pagead2.googlesyndication.com
O1 - Hosts: 0.0.0.0 ads.spotify.com
O1 - Hosts: 0.0.0.0 ads-fa.spotify.com0.0.0.0 blacklist2.teamspeak.com
O1 - Hosts: 127.0.0.1 holocron.mwbsys.com
O1 - Hosts: 127.0.0.1 iris.mwbsys.com
O1 - Hosts: 127.0.0.1 keystone.mwbsys.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 na2m-pr.licenses.adobe.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 na1r.services.adobe.com
O1 - Hosts: 127.0.0.1 hlrcv.stage.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 0.0.0.0 www.bandicam.com
O1 - Hosts: 0.0.0.0 bandicam.com
O1 - Hosts: 0.0.0.0 www.bandisoft.com
O1 - Hosts: 0.0.0.0 bandisoft.com
O1 - Hosts: 0.0.0.0 cert.bandicam.com
O1 - Hosts: 0.0.0.0 ssl.bandisoft.com
O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 3dns.adobe.com
O1 - Hosts: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-1.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-4.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-5.adobe.com
O1 - Hosts: 127.0.0.1 hh-software.com
O1 - Hosts: 127.0.0.1 www.hh-software.com
O1 - Hosts: 127.0.0.1 activate.adobe.de
O1 - Hosts: 127.0.0.1 practivate.adobe.de
O1 - Hosts: 127.0.0.1 ereg.adobe.de
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.de
O1 - Hosts: 127.0.0.1 wip3.adobe.de
O1 - Hosts: 127.0.0.1 3dns-3.adobe.de
O1 - Hosts: 127.0.0.1 3dns-2.adobe.de
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.de
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.de
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.de
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.de
O1 - Hosts: 127.0.0.1 activate-sea.adobe.de
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.de
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.de
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.de
O1 - Hosts: 127.0.0.1 hl2rcv.adobe.de
O1 - Hosts: 127.0.0.1 nero.com
O1 - Hosts: 127.0.0.1 www.nero.com
O1 - Hosts: 127.0.0.1 activate.nero.com
O1 - Hosts: 127.0.0.1 www.activate.nero.com
O1 - Hosts: 127.0.0.1 nero.de
O1 - Hosts: 127.0.0.1 www.nero.de
O1 - Hosts: 127.0.0.1 activate.nero.de
O1 - Hosts: 127.0.0.1 www.activate.nero.de
O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 na2m-pr.licenses.adobe.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 na1r.services.adobe.com
O1 - Hosts: 127.0.0.1 hlrcv.stage.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com127.0.0.1 3dns.adobe.com
O1 - Hosts: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts: 127.0.0.1 3dns-5.adobe.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip1.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip2.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip4.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-1.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-4.adobe.com
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip1.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip2.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip4.adobe.com
O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.ipp
O1 - Hosts: 127.0.0.1 practivate.adobe.newoa
O1 - Hosts: 127.0.0.1 practivate.adobe.ntp
O1 - Hosts: 127.0.0.1 wip.adobe.com
O1 - Hosts: 127.0.0.1 wip1.adobe.com
O1 - Hosts: 127.0.0.1 wip2.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip4.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip100.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip101.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip102.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip103.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip104.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip105.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip106.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip107.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip108.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip109.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip110.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip111.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip112.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip113.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip114.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip115.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip116.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip117.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip118.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip119.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip120.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip121.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip122.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip123.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip124.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip125.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip30.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip31.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip32.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip33.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip34.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip35.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip36.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip37.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip38.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip39.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip40.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip41.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip42.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip43.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip44.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip45.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip46.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip47.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip48.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip49.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip50.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip51.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip52.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip53.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip54.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip55.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip56.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip57.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip58.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip59.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip61.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip62.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip63.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip64.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip65.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip66.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip67.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip68.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip69.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip70.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip71.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip72.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip73.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip74.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip75.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip76.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip77.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip78.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip79.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip80.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip81.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip82.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip83.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip84.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip85.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip86.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip87.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip88.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip89.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip90.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip91.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip92.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip93.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip94.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip95.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip96.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip97.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip98.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip99.adobe.com
O1 - Hosts: 127.0.0.1 crl.versign.net
O1 - Hosts: 127.0.0.1 ood.opsource.net127.0.0.1 lm-prd-da1.licenses.adobe.com
O1 - Hosts: 127.0.0.1 practivate-da1.adobe.com
O1 - Hosts: 127.0.0.1 license.adobe.com
O1 - Hosts: 127.0.0.1 helpexamples.com
O1 - Hosts: 127.0.0.1 genuine.adobe.com
O1 - Hosts: 127.0.0.1 prod.adobegenuine.com
O1 - Hosts.ICS: 172.20.9.5 3d267dea-93cb-430c-b99f-f2b9eac4689a.mshome.net # 2022 10 3 26 21 2 5 971
O1 - Hosts.ICS: 172.20.0.1 DESKTOP-8SA29U3.mshome.net # 2027 10 1 18 21 2 5 971
O1 - Hosts.ICS: 332
O1 - Hosts.ICS: 6
O1 - Hosts.ICS: 127.0.0.1 license.piriform.com
O1 - Hosts.ICS: 127.0.0.1 www.license.piriform.com
O1 - Hosts.ICS: 127.0.0.1 speccy.piriform.com
O1 - Hosts.ICS: 127.0.0.1 www.speccy.piriform.com
O1 - Hosts.ICS: 127.0.0.1 recuva.piriform.com
O1 - Hosts.ICS: 127.0.0.1 www.recuva.piriform.com
O1 - Hosts.ICS: 127.0.0.1 defraggler.piriform.com
O1 - Hosts.ICS: 127.0.0.1 www.defraggler.piriform.com
O1 - Hosts.ICS: 127.0.0.1 ccleaner.piriform.com
O1 - Hosts.ICS: 127.0.0.1 www.ccleaner.piriform.com
O1 - Hosts.ICS: 127.0.0.1 license-api.ccleaner.com
O1 - Hosts.ICS: 127.0.0.1 media-match.com
O1 - Hosts.ICS: 127.0.0.1 adclick.g.doublecklick.net
O1 - Hosts.ICS: 127.0.0.1 googleads.g.doubleclick.net
O1 - Hosts.ICS: 127.0.0.1 hxxp://www.googleadservices.com
O1 - Hosts.ICS: 127.0.0.1 pagead2.googlesyndication.com
O1 - Hosts.ICS: 0.0.0.0 ads.spotify.com
O1 - Hosts.ICS: 0.0.0.0 ads-fa.spotify.com0.0.0.0 blacklist2.teamspeak.com
O1 - Hosts.ICS: 127.0.0.1 holocron.mwbsys.com
O1 - Hosts.ICS: 127.0.0.1 iris.mwbsys.com
O1 - Hosts.ICS: 127.0.0.1 keystone.mwbsys.com
O1 - Hosts.ICS: 127.0.0.1 activate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts.ICS: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts.ICS: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts.ICS: 127.0.0.1 na2m-pr.licenses.adobe.com
O1 - Hosts.ICS: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts.ICS: 127.0.0.1 na1r.services.adobe.com
O1 - Hosts.ICS: 127.0.0.1 hlrcv.stage.adobe.com
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.adobe.com
O1 - Hosts.ICS: 0.0.0.0 www.bandicam.com
O1 - Hosts.ICS: 0.0.0.0 bandicam.com
O1 - Hosts.ICS: 0.0.0.0 www.bandisoft.com
O1 - Hosts.ICS: 0.0.0.0 bandisoft.com
O1 - Hosts.ICS: 0.0.0.0 cert.bandicam.com
O1 - Hosts.ICS: 0.0.0.0 ssl.bandisoft.com
O1 - Hosts.ICS: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobeereg.com
O1 - Hosts.ICS: 127.0.0.1 activate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-1.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-5.adobe.com
O1 - Hosts.ICS: 127.0.0.1 hh-software.com
O1 - Hosts.ICS: 127.0.0.1 www.hh-software.com
O1 - Hosts.ICS: 127.0.0.1 activate.adobe.de
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.de
O1 - Hosts.ICS: 127.0.0.1 ereg.adobe.de
O1 - Hosts.ICS: 127.0.0.1 activate.wip3.adobe.de
O1 - Hosts.ICS: 127.0.0.1 wip3.adobe.de
O1 - Hosts.ICS: 127.0.0.1 3dns-3.adobe.de
O1 - Hosts.ICS: 127.0.0.1 3dns-2.adobe.de
O1 - Hosts.ICS: 127.0.0.1 adobe-dns.adobe.de
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-2.adobe.de
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-3.adobe.de
O1 - Hosts.ICS: 127.0.0.1 ereg.wip3.adobe.de
O1 - Hosts.ICS: 127.0.0.1 activate-sea.adobe.de
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip60.adobe.de
O1 - Hosts.ICS: 127.0.0.1 activate-sjc0.adobe.de
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip60.adobe.de
O1 - Hosts.ICS: 127.0.0.1 hl2rcv.adobe.de
O1 - Hosts.ICS: 127.0.0.1 nero.com
O1 - Hosts.ICS: 127.0.0.1 www.nero.com
O1 - Hosts.ICS: 127.0.0.1 activate.nero.com
O1 - Hosts.ICS: 127.0.0.1 www.activate.nero.com
O1 - Hosts.ICS: 127.0.0.1 nero.de
O1 - Hosts.ICS: 127.0.0.1 www.nero.de
O1 - Hosts.ICS: 127.0.0.1 activate.nero.de
O1 - Hosts.ICS: 127.0.0.1 www.activate.nero.de
O1 - Hosts.ICS: 127.0.0.1 validation.sls.microsoft.com
O1 - Hosts.ICS: 127.0.0.1 activate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts.ICS: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts.ICS: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts.ICS: 127.0.0.1 na2m-pr.licenses.adobe.com
O1 - Hosts.ICS: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts.ICS: 127.0.0.1 na1r.services.adobe.com
O1 - Hosts.ICS: 127.0.0.1 hlrcv.stage.adobe.com
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.adobe.com127.0.0.1 3dns.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 3dns-5.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.wip1.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.wip2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate.wip4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts.ICS: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-1.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobe-dns-4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 adobeereg.com
O1 - Hosts.ICS: 127.0.0.1 ereg.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.wip.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.wip1.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.wip2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 ereg.wip4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.com
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.ipp
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.newoa
O1 - Hosts.ICS: 127.0.0.1 practivate.adobe.ntp
O1 - Hosts.ICS: 127.0.0.1 wip.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wip1.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wip2.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wip3.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wip4.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip100.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip101.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip102.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip103.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip104.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip105.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip106.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip107.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip108.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip109.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip110.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip111.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip112.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip113.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip114.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip115.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip116.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip117.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip118.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip119.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip120.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip121.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip122.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip123.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip124.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip125.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip30.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip31.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip32.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip33.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip34.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip35.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip36.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip37.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip38.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip39.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip40.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip41.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip42.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip43.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip44.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip45.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip46.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip47.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip48.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip49.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip50.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip51.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip52.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip53.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip54.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip55.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip56.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip57.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip58.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip59.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip61.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip62.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip63.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip64.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip65.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip66.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip67.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip68.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip69.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip70.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip71.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip72.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip73.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip74.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip75.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip76.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip77.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip78.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip79.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip80.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip81.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip82.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip83.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip84.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip85.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip86.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip87.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip88.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip89.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip90.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip91.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip92.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip93.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip94.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip95.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip96.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip97.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip98.adobe.com
O1 - Hosts.ICS: 127.0.0.1 wwis-dubc1-vip99.adobe.com
O1 - Hosts.ICS: 127.0.0.1 crl.versign.net
O1 - Hosts.ICS: 127.0.0.1 ood.opsource.net
O2 - HKLM\..\BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (sign: 'Adobe Inc.')
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (sign: 'Tonec Inc.')
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (sign: 'Oracle America, Inc.')
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (sign: 'Oracle America, Inc.')
O2 - HKLM\..\BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (sign: 'Adobe Inc.')
O2-32 - HKLM\..\BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (sign: 'Adobe Inc.')
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (sign: 'Tonec Inc.')
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_341\bin\jp2ssv.dll (sign: 'Oracle America, Inc.')
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_341\bin\ssv.dll (sign: 'Oracle America, Inc.')
O2-32 - HKLM\..\BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (sign: 'Adobe Inc.')
O3 - HKLM\..\Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll (sign: 'Adobe Inc.')
O3-32 - HKLM\..\Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll (sign: 'Adobe Inc.')
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\120.0.6099.129\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\Run: [IDMan] = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (not signed - Tonec Inc. - 19AC2D9C4F8A10294D39D75966227105310B4B6F)
O4 - HKCU\..\StartupApproved\Run: [com.squirrel.Teams.Teams] = C:\Users\Furkan Çelebi\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated" (file missing) (2022/08/28)
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\Furkan Çelebi\AppData\Local\Discord\Update.exe --processStart Discord.exe (2022/08/28) (sign: 'Discord Inc.')
O4 - HKCU\..\StartupApproved\Run: [EADM] = C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe -silent (2022/08/28) (sign: 'Electronic Arts, Inc.')
O4 - HKCU\..\StartupApproved\Run: [Figma Agent] = C:\Users\Furkan Çelebi\AppData\Local\FigmaAgent\figma_agent.exe (2022/11/21) (sign: 'Figma, Inc.')
O4 - HKCU\..\StartupApproved\Run: [GogGalaxy] = C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (2022/08/28) (sign: 'GOG Sp. z o.o.')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_563E4F9826F00CA38D7BEAE1A13BFF41] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (2022/08/28) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [Parsec.App.0] = C:\Program Files\Parsec\parsecd.exe app_silent=1 (2023/11/17) (sign: 'Parsec Cloud, Inc.')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2022/08/28) (sign: 'Valve Corp.')
O4 - HKCU\..\StartupApproved\Run: [ut] = C:\Users\Furkan Çelebi\AppData\Roaming\uTorrent\uTorrent.exe (2022/11/15) (sign: 'BitTorrent Inc')
O4 - HKLM\..\Run: [AvastUI.exe] = C:\Program Files\Avast Software\Avast\AvLaunch.exe /gui (sign: 'Avast Software s.r.o.')
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\Run: [SteelSeriesGG] = C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe -dataPath="C:\ProgramData\SteelSeries\GG" -dbEnv=production -auto=true (sign: 'SteelSeries ApS')
O4 - HKLM\..\StartupApproved\Run: [Acrobat Assistant 8.0] = C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe (2023/12/08) (invalid sign - Adobe Systems Inc. - 649017AD170C6A64AF33A6487702A96F810669BA)
O4 - HKLM\..\StartupApproved\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (2022/08/28) (sign: 'Adobe Systems Incorporated')
O4 - HKLM\..\StartupApproved\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (2022/11/22) (sign: 'Adobe Inc.')
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (2022/08/28) (sign: 'Microsoft')
O4 - HKLM\..\StartupApproved\Run: [TuneupUI.exe] = C:\Program Files\Avast Software\Cleanup\TuneupUI.exe /nogui (2022/08/28) (sign: 'Avast Software s.r.o.')
O4 - HKLM\..\StartupApproved\Run32: [Adobe CCXProcess] = C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (2022/08/28) (sign: 'Adobe Inc.')
O4 - HKLM\..\StartupApproved\Run32: [Adobe Creative Cloud] = C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true (2022/11/22) (sign: 'Adobe Inc.')
O4 - HKLM\..\StartupApproved\Run32: [APSDaemon] = C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (2022/08/28) (sign: 'Apple Inc.')
O4 - HKLM\..\StartupApproved\Run32: [Lightshot] = C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe (2022/08/28) (sign: 'Kilonova LLC')
O4 - HKLM\..\StartupApproved\Run32: [RadminVPN] = C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe /minimized (2023/09/16) (sign: 'Famatech Corp.')
O4 - HKLM\..\StartupApproved\Run32: [StudioApp.exe] = c:\Users\Public\Documents\Product Manager\StudioApp.exe (2022/09/20) (sign: 'ООО "АРТУ"')
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2022/08/28) (sign: 'Oracle America, Inc.')
O4 - HKU\S-1-5-19\..\StartupApproved\Run: [OneDriveSetup] = C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (2023/10/17) (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\StartupApproved\Run: [OneDriveSetup] = C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (2023/10/17) (sign: 'Microsoft')
O7 - Policy: (UAC) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System: [ConsentPromptBehaviorAdmin] = 0
O7 - Policy: (UAC) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System: [PromptOnSecureDesktop] = 0
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiSpyware] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiVirus] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender\Features: [TamperProtection] = 4
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm (not signed - no company - 1A49C5F7A98580F8002AC1D6115AB39CB753975B)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (file missing)
O15 - Trusted Zone: hxxps://yeniyuzyil-files.sharepoint.com
O15 - Trusted Zone: hxxps://yeniyuzyil-myfiles.sharepoint.com
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll (sign: 'Adobe Inc.')
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (sign: 'Tonec Inc.')
O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files\Avast Software\Avast\ashShell.dll (sign: 'Avast Software s.r.o.')
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files\Avast Software\Avast\x86\ashShell.dll (sign: 'Avast Software s.r.o.')
O22 - BITS Job: (download) {6C44A41B-E41F-4237-923C-F25034272394} - hxxps://download-installer.cdn.mozilla.net/pub/firefox/releases/121.0/update/win64/tr/firefox-120.0.1-121.0.partial.mar -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\updates\downloading\update.mar
O22 - BITS Job: Fix all (including legit)
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\Windows\explorer.exe (sign: 'Microsoft')
O22 - Task (.job): CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe (sign: 'PIRIFORM SOFTWARE LIMITED')
O22 - Task (.job): update-S-1-5-21-1247693271-2025708363-3673534442-1001.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Task (.job): update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Outbyte\PC Repair (empty)
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (user missing) (sign: 'Microsoft')
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (user missing) (sign: 'Microsoft')
O22 - Tasks: (disabled) \Agent Activation Runtime\S-1-5-21-1247693271-2025708363-3673534442-1001 - C:\Windows\System32\AgentActivationRuntimeStarter.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Apple\AppleSoftwareUpdate - C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task (sign: 'Apple Inc.')
O22 - Tasks: (disabled) \Microsoft\Office\Office Performance Monitor - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Office\Office Serviceability Manager - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\Windows\system32\fclip.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) AdobeGCInvoker-1.0 - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe -mode=scheduled (sign: 'Adobe Inc.')
O22 - Tasks: (disabled) Adobe-Genuine-Software-Integrity-Scheduler-1.0 - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (sign: 'Adobe Inc.')
O22 - Tasks: (disabled) CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe (sign: 'Piriform Software Ltd')
O22 - Tasks: (disabled) CCleanerCrashReporting - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "2ca0ec8f-b539-4076-93b4-e295dfb2e662" --version "6.09.10300" --silent (sign: 'PIRIFORM SOFTWARE LIMITED')
O22 - Tasks: (disabled) infatica_p2b - C:\Program Files (x86)\Infatica P2B\infatica-service-app.exe (sign: 'Infatica pte ltd')
O22 - Tasks: (disabled) infatica_p2b_expire - C:\Program Files (x86)\Infatica P2B\unins000.exe /verysilent /norestart /suppressmsgboxes /expire (not signed - no company - 6538CBBDFBA290BC8E965FD292E284BFE0553EA3)
O22 - Tasks: (disabled) IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)
O22 - Tasks: (disabled) klcp_update - C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe /verysilent /update /freq=30 (not signed - no company - 3891CBD73D9CEB4CC43393E8721956360DCFDE80)
O22 - Tasks: (disabled) SamsungMagician - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe /AUTOHIDE (sign: 'Samsung Electronics Co., Ltd.')
O22 - Tasks: (disabled) UninstallTool_SkipUAC_Furkan Çelebi - C:\Program Files\Uninstall Tool\UninstallTool.exe $(Arg0) /tasksch (invalid sign - CrystalIDEA Software - E991D9F121AB4F7C1B8647712D03AA22B006B2BA)
O22 - Tasks: (disabled) update-S-1-5-21-1247693271-2025708363-3673534442-1001 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: (disabled) update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: \Avast Software\Avast Cleanup BugReport - C:\Program Files\Avast Software\Cleanup\AvBugReport.exe --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log"  --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\Cleanup\log" --guid f48b3a88-ef7b-4bb8-8c62-903581421fe5 (sign: 'Avast Software s.r.o.')
O22 - Tasks: \Avast Software\Avast Cleanup Update - C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe /update:avast-tu /silent (sign: 'Avast Software s.r.o.')
O22 - Tasks: \Avast Software\Overseer - C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe /from_scheduler:1 (sign: 'Avast Software s.r.o.')
O22 - Tasks: \Lenovo\ImController\Lenovo iM Controller Monitor - C:\Windows\system32\ImController.InfInstaller.exe -checkremoval (sign: 'Lenovo')
O22 - Tasks: \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance - C:\Windows\system32\sc.exe START ImControllerService (sign: 'Microsoft')
O22 - Tasks: \Microsoft\VisualStudio\VSIX Auto Update 14 - C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe (file missing)
O22 - Tasks: \Microsoft\Windows\AppListBackup\BackupNonMaintenance - {E0DCC2CC-3354-45F2-8914-519E07809082} - C:\Windows\system32\AppListBackupLauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\AppxDeploymentClient\UCPD velocity - C:\Windows\system32\UCPDMgr.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\CloudRestore\Backup - {722D0F89-B69C-4700-AE8C-4A44350E4876},$(Arg0) - C:\Windows\System32\CloudRestoreLauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask - {82aa0895-198a-4c1b-b2d1-c16894218afb} - C:\Windows\System32\unifiedconsent.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache - {07369A67-07A6-4608-ABEA-379491CB7C46} - C:\Windows\System32\UpdatePolicy.dll (sign: 'Microsoft')
O22 - Tasks: \Mozilla\Firefox Background Update 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate (sign: 'Mozilla Corporation')
O22 - Tasks: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (sign: 'Mozilla Corporation')
O22 - Tasks: \R@1n-KMS\Windows100Professional - c:\windows\system32\wbem\wmic.exe path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate (sign: 'Microsoft')
O22 - Tasks: \THX Ltd\THX Update Service\THX-Update-Service-With-Syslog - C:\Program Files\THX\thx-update-svc.exe -syslog (file missing)
O22 - Tasks: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (sign: 'Adobe Inc.')
O22 - Tasks: Avast Emergency Update - C:\Program Files\Avast Software\Avast\AvEmUpdate.exe (sign: 'Avast Software s.r.o.')
O22 - Tasks: CCleanerSkipUAC - Furkan Çelebi - C:\Program Files\CCleaner\CCleaner.exe $(Arg0) (sign: 'PIRIFORM SOFTWARE LIMITED')
O22 - Tasks: GoogleUpdateTaskMachineCore{F4D35DA2-9622-4DE1-9CCC-F53C6586AE98} - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c (sign: 'Google LLC')
O22 - Tasks: GoogleUpdateTaskMachineUA{B92BF192-6F73-4FC4-8BB1-23C840F26EB8} - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (sign: 'Google LLC')
O22 - Tasks: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log (sign: 'NVIDIA Corporation')
O22 - Tasks: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler (sign: 'NVIDIA Corporation')
O22 - Tasks: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: throttlestop - C:\Users\Furkan Çelebi\Desktop\ThrottleStop.exe (sign: 'TechPowerUp LLC')
O23 - Service R2: Avast Antivirus - (avast! Antivirus) - C:\Program Files\Avast Software\Avast\AvastSvc.exe /runassvc (sign: 'Avast Software s.r.o.')
O23 - Service R2: Avast Cleanup - (CleanupPSvc) - C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe (sign: 'Avast Software s.r.o.')
O23 - Service R2: Avast Firewall Service - (avast! Firewall) - C:\Program Files\Avast Software\Avast\afwServ.exe (sign: 'Avast Software s.r.o.')
O23 - Service R2: Avast Tools - (avast! Tools) - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe /runassvc (sign: 'Avast Software s.r.o.')
O23 - Service R2: AvastWscReporter - C:\Program Files\Avast Software\Avast\wsc_proxy.exe /runassvc /rpcserver (sign: 'Avast Software s.r.o.')
O23 - Service R2: CMigrationService - C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe (sign: 'Samsung Electronics Co., Ltd.')
O23 - Service R2: Control Center Hotkey Service - (CCDCHUService) - C:\Windows\System32\DriverStore\FileRepository\acpibridge1.inf_amd64_2a0208b3676c8a9c\DCHUService.exe (sign: 'Microsoft')
O23 - Service R2: Gaming Services - (GamingServices) - C:\Program Files\WindowsApps\Microsoft.GamingServices_17.84.7001.0_x64__8wekyb3d8bbwe\GamingServices.exe (sign: 'Microsoft')
O23 - Service R2: Gaming Services - (GamingServicesNet) - C:\Program Files\WindowsApps\Microsoft.GamingServices_17.84.7001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (sign: 'Microsoft')
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHDCPSvc.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (sign: 'Intel(R) Embedded Subsystems and IP Blocks Group')
O23 - Service R2: Intel(R) Graphics Command Center Service - (igccservice) - C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_b56b111c605faf54\OneApp.IGCC.WinService.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxCUIService.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel(R) Management Engine WMI Provider Registration - (WMIRegistrationService) - C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (sign: 'Intel Corporation')
O23 - Service R2: Intel® SGX AESM - (AESMService) - C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_d372a4ea3b959b1c\aesm_service.exe (sign: 'Intel Corporation')
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nvcvi.inf_amd64_94c13c86a7bcf278\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvcvi.inf_amd64_94c13c86a7bcf278\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem /ert (sign: 'NVIDIA Corporation')
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" (sign: 'NVIDIA Corporation')
O23 - Service R2: Parsec - C:\Program Files\Parsec\pservice.exe (sign: 'Parsec Cloud, Inc.')
O23 - Service R2: PnkBstrA - C:\Windows\system32\PnkBstrA.exe (file missing)
O23 - Service R2: Radmin VPN Control Service - (RvControlSvc) - C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe /service (sign: 'Famatech Corp.')
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')
O23 - Service R2: SamsungMagicianSVC - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe (sign: 'Samsung Electronics Co., Ltd.')
O23 - Service R2: UWP RPC Service - (UWPService) - C:\Windows\SysWOW64\Creative.UWPRPCService.exe (sign: 'Microsoft')
O23 - Service R3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe (sign: 'Intel Corporation')
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHeciSvc.exe (sign: 'Intel Corporation')
O23 - Service R3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc (sign: 'Google LLC')
O23 - Service S2: HotKey Clipboard Service - (HKClipSvc) - C:\Program Files (x86)\ControlCenter\Driver\x64\HKClipSvc.exe (sign: 'Microsoft')
O23 - Service S2: Intel(R) TPM Provisioning Service - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe (sign: 'Intel Corporation')
O23 - Service S2: Qualcomm MTU Service - (qcmtusvc) - C:\Program Files (x86)\QUALCOMM Incorporated\Qualcomm USB Drivers For Windows\DriverPackage\Qualcomm\Tools\qcmtusvc.exe (not signed - QUALCOMM, Inc. - 555C0BCB9E79FA30D2C33A4F72B57F660F61082F)
O23 - Service S3: aswbIDSAgent - C:\Program Files\Avast Software\Avast\aswidsagent.exe (sign: 'Avast Software s.r.o.')
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (sign: 'BattlEye Innovations e.K.')
O23 - Service S3: Easy Anti-Cheat (Epic Online Services) - (EasyAntiCheat_EOS) - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: Epic Online Services - (EpicOnlineServices) - C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe (sign: 'Epic Games Inc.')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\120.0.6099.129\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc (sign: 'Google LLC')
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (sign: 'Mozilla Corporation')
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service (sign: 'NVIDIA Corporation')
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe (sign: 'Rockstar Games, Inc.')
O23 - Service S3: SteelSeries GG Update Service Proxy - (SteelSeriesGGUpdateServiceProxy) - C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe (sign: 'SteelSeries ApS')
O23 - Driver R: (no name) - C:\Windows\System32\drivers\dump_secnvme.sys (file missing)
O23 - Driver R: (no name) - C:\Windows\System32\drivers\H2OFFT64.sys (file missing)
O23 - Driver R0: aswbidsh - C:\Windows\system32\drivers\aswbidsh.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R0: aswbuniv - C:\Windows\system32\drivers\aswbuniv.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R0: aswRvrt - C:\Windows\system32\drivers\aswRvrt.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R0: aswVmm - C:\Windows\system32\drivers\aswVmm.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R0: Intel(R) Core(TM) 4xxxU and 4xxxY Processor Line Power Engine Plug-in Driver - (hswultpep) - C:\Windows\System32\drivers\hswultpep.sys (sign: 'Intel Corporation - Software and Firmware Products')
O23 - Driver R0: secnvme - C:\Windows\System32\drivers\secnvme.sys (sign: 'Samsung Electronics Co., Ltd.')
O23 - Driver R0: UnlockerDriver5 - C:\Users\Furkan Çelebi\AppData\Local\Temp\Rar$EXa12576.16878\UnlockerDriver5.sys (file missing)
O23 - Driver R1: aswArPot - C:\Windows\system32\drivers\aswArPot.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R1: aswbidsdriver - C:\Windows\system32\drivers\aswbidsdriver.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R1: aswKbd - C:\Windows\system32\drivers\aswKbd.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R1: aswMonFlt - C:\Windows\system32\drivers\aswMonFlt.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R1: aswNetHub - C:\Windows\system32\drivers\aswNetHub.sys (+safe mode) (sign: 'Microsoft' - AVAST Software)
O23 - Driver R1: aswRdr - C:\Windows\system32\drivers\aswRdr2.sys (+safe mode) (sign: 'Microsoft' - AVAST Software)
O23 - Driver R1: aswSnx - C:\Windows\system32\drivers\aswSnx.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R1: aswSP - C:\Windows\system32\drivers\aswSP.sys (sign: 'Microsoft' - AVAST Software)
O23 - Driver R2: IDMWFP - C:\Windows\system32\DRIVERS\idmwfp.sys (sign: 'Tonec Inc.')
O23 - Driver R2: speedfan - C:\Windows\SysWOW64\speedfan.sys (sign: 'SOKNO S.R.L.')
O23 - Driver R3: ___ Windows 10 64 Bit için Intel(R) Wireless Bağdaştırıcı Sürücüsü  - (Netwtw10) - C:\Windows\System32\drivers\Netwtw10.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Acpi Bridge Service - (AcpiBridge) - C:\Windows\System32\drivers\AcpiBridge.sys (sign: 'Microsoft' - Insyde Software Corporation)
O23 - Driver R3: Famatech Radmin VPN Miniport - (RvNetMP60) - C:\Windows\System32\drivers\RvNetMP60.sys (+safe mode) (sign: 'Microsoft' - Famatech Corp.)
O23 - Driver R3: igfx - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\igdkmd64.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Display Audio - (IntcDAud) - C:\Windows\System32\DriverStore\FileRepository\intcdaud.inf_amd64_718877413f6508de\IntcDAud.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) HID Event Filter - (HidEventFilter) - C:\Windows\System32\DriverStore\FileRepository\hideventfilter.inf_amd64_8b4344345b8897be\HidEventFilter.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Management Engine Interface  - (MEIx64) - C:\Windows\System32\DriverStore\FileRepository\heci.inf_amd64_f44b025d83c4bf24\x64\TeeDriverW10x64.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Serial IO GPIO Driver v2 - (iaLPSS2_GPIO2) - C:\Windows\System32\DriverStore\FileRepository\ialpss2gpio2.inf_amd64_1eea7b2e68ba7be5\iaLPSS2_GPIO2.sys (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Serial IO I2C Driver v2 - (iaLPSS2_I2C) - C:\Windows\System32\DriverStore\FileRepository\ialpss2i2c.inf_amd64_f3cb5a0a4eaf97f1\iaLPSS2_I2C.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: Intel(R) Wireless Bluetooth(R) - (ibtusb) - C:\Windows\System32\DriverStore\FileRepository\ibtusb.inf_amd64_8fe4255931d4280a\ibtusb.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: MBfilt - C:\Windows\system32\drivers\MBfilt64.sys (sign: 'Microsoft' - Creative Technology Ltd.)
O23 - Driver R3: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) - (nvvad_WaveExtensible) - C:\Windows\system32\drivers\nvvad64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: nvlddmkm - C:\Windows\System32\DriverStore\FileRepository\nvcvi.inf_amd64_94c13c86a7bcf278\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: NvModuleTracker - C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: NVVHCI Enumerator Service - (nvvhci) - C:\Windows\System32\drivers\nvvhci.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: Parsec Virtual USB Adapter Service - (parsecvusba) - C:\Windows\System32\drivers\parsecvusba.sys (sign: 'Microsoft' - Parsec)
O23 - Driver R3: parsecudeaudio - C:\Windows\System32\drivers\parsecudeaudio.sys (sign: 'Microsoft' - Parsec)
O23 - Driver R3: Realtek PCIE Card Reader - PER - (RTSPER) - C:\Windows\System32\drivers\RtsPer.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Realtek RT640 NT Driver - (rt640x64) - C:\Windows\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\Windows\system32\drivers\nvhda64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\Windows\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: SteelSeries Device Factory Service - (ssdevfactory) - C:\Windows\System32\drivers\ssdevfactory.sys (sign: 'Microsoft' - SteelSeries ApS)
O23 - Driver R3: SteelSeries HID Service - (sshid) - C:\Windows\System32\drivers\sshid.sys (sign: 'Microsoft' - SteelSeries ApS)
O23 - Driver R3: SteelSeries Sonar Driver - (SteelSeries_Sonar_VAD) - C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys (sign: 'SteelSeries ApS')
O23 - Driver S1: AMSDK Driver - (amsdk) - C:\Windows\system32\drivers\amsdk.sys (file missing)
O23 - Driver S2: aswStm - C:\Windows\system32\drivers\aswStm.sys (+safe mode) (sign: 'Microsoft' - AVAST Software)
O23 - Driver S3: CH341SER_A64 - C:\Windows\System32\Drivers\CH341S64.SYS (not signed - www.winchiphead.com - 4E158E8D2D8BD8BC87D92AD103875DB860F70068)
O23 - Driver S3: CisUtMonitor - C:\Windows\system32\DRIVERS\CisUtMonitor.sys (sign: 'Software Security Systems ChTUP')
O23 - Driver S3: HotKey Keyboard Class Filter Service - (HKKbdFltr) - C:\Windows\system32\DRIVERS\HKKbdFltr.sys (sign: 'WDKTestCert stone.cheng,131963286194994418', but untrusted root: 'WDKTestCert stone.cheng,131963286194994418' with fingerprint: 7B0B33CF7EA3AC9EDE8B0754255DCD9C5691A739)
O23 - Driver S3: HotKey Mouse Class Filter Service - (HKMouFltr) - C:\Windows\system32\DRIVERS\HKMouFltr.sys (sign: 'WDKTestCert stone.cheng,131963286194994418', but untrusted root: 'WDKTestCert stone.cheng,131963286194994418' with fingerprint: 7B0B33CF7EA3AC9EDE8B0754255DCD9C5691A739)
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: Mozilla Split Tunnel Service - (MozillaVPNSplitTunnel) - C:\Program Files\Mozilla\Mozilla VPN\mullvad-split-tunnel.sys (file missing)
O23 - Driver S3: PdaNet Broadband - (pneteth) - C:\Windows\System32\drivers\pneteth.sys (sign: 'June Fabrics Technology Inc.')
O23 - Driver S3: SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.) - (ssudmdm) - C:\Windows\system32\DRIVERS\ssudmdm.sys (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.) - (dg_ssudbus) - C:\Windows\system32\DRIVERS\ssudbus2.sys (+safe mode) (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: semav6msr64 - C:\Windows\system32\drivers\semav6msr64.sys (file missing)
O23 - Driver S3: sprdvcom - C:\Windows\system32\DRIVERS\sprdvcom.sys (sign: 'Beijing Unisoc Technologies Co., Ltd.')
O23 - Driver S3: VoiceAIDriver - C:\Windows\System32\DriverStore\FileRepository\voiceaidriver.inf_amd64_214d6aacf9c41414\voiceaidriver.sys (sign: 'Voice AI LLC')
O23 - Driver S3: wdm_usb - C:\Windows\system32\DRIVERS\usb2ser.sys (sign: 'MEDIATEK INC.')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'aswNetHub'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'aswStm'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw10'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'rt640x64'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'RvNetMP60'


--
End of file - Time spent: 24,4 sec. - 139484 bytes, CRC32: FFFFFFFF. Sign: Ĭ꯰

Murat5038 · 23 Aralık 2023

Trollust dedi:
SSD ile normal kapat-aç yaptığımda 10-15 saniyede açılan bilgisayarım, yeniden başlat yaptığımda 5-6 dakikada açılıyor.

Zararlı yönden bir sıkıntı görünmüyor. Adobe ve Piriform yazılımlarını crack kullanıyorsunuz anlaşılan.
Avast sistemi yavaşlamasını sağlayabilir, farklı bir AV yüklemenizi tavsiye ederim. IDM de aynı şekilde. Bazı yüklü yazılımların açılışta etki etmesi de neden olabilir. Bunun için temiz önyükleme yapmanız yararlı olabilir. Onun dışında hızlı başlat ve sistem servisleri ile oynadıysanız SSD ile ilgili gerekli bileşenleri önyükleme cache hizmetleri vb çalıştığına emin olabilirsiniz kontrol için.

Bunları yine de fixleyin:

Kod:

O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (2022/08/28) (sign: 'Microsoft')
O4 - HKLM\..\StartupApproved\Run: [TuneupUI.exe] = C:\Program Files\Avast Software\Cleanup\TuneupUI.exe /nogui (2022/08/28) (sign: 'Avast Software s.r.o.')
O4 - HKLM\..\StartupApproved\Run32: [APSDaemon] = C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (2022/08/28) (sign: 'Apple Inc.')
O4 - HKLM\..\StartupApproved\Run32: [Lightshot] = C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe (2022/08/28) (sign: 'Kilonova LLC')
O4 - HKLM\..\StartupApproved\Run32: [RadminVPN] = C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe /minimized (2023/09/16) (sign: 'Famatech Corp.')
O4 - HKLM\..\StartupApproved\Run32: [StudioApp.exe] = c:\Users\Public\Documents\Product Manager\StudioApp.exe (2022/09/20) (sign: 'ООО "АРТУ"')
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2022/08/28) (sign: 'Oracle America, Inc.')
O4 - HKU\S-1-5-19\..\StartupApproved\Run: [OneDriveSetup] = C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (2023/10/17) (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\StartupApproved\Run: [OneDriveSetup] = C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (2023/10/17) (sign: 'Microsoft')
O22 - BITS Job: (download) {6C44A41B-E41F-4237-923C-F25034272394} - hxxps://download-installer.cdn.mozilla.net/pub/firefox/releases/121.0/update/win64/tr/firefox-120.0.1-121.0.partial.mar -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\updates\downloading\update.mar
O22 - Task (.job): CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe (sign: 'PIRIFORM SOFTWARE LIMITED')
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Outbyte\PC Repair (empty)
O22 - Tasks: (disabled) CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe (sign: 'Piriform Software Ltd')
O22 - Tasks: (disabled) CCleanerCrashReporting - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "2ca0ec8f-b539-4076-93b4-e295dfb2e662" --version "6.09.10300" --silent (sign: 'PIRIFORM SOFTWARE LIMITED')
O22 - Tasks: (disabled) infatica_p2b - C:\Program Files (x86)\Infatica P2B\infatica-service-app.exe (sign: 'Infatica pte ltd')
O22 - Tasks: (disabled) infatica_p2b_expire - C:\Program Files (x86)\Infatica P2B\unins000.exe /verysilent /norestart /suppressmsgboxes /expire (not signed - no company - 6538CBBDFBA290BC8E965FD292E284BFE0553EA3)
O22 - Tasks: (disabled) SamsungMagician - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe /AUTOHIDE (sign: 'Samsung Electronics Co., Ltd.')
O22 - Tasks: (disabled) UninstallTool_SkipUAC_Furkan Çelebi - C:\Program Files\Uninstall Tool\UninstallTool.exe $(Arg0) /tasksch (invalid sign - CrystalIDEA Software - E991D9F121AB4F7C1B8647712D03AA22B006B2BA)
O22 - Tasks: \R@1n-KMS\Windows100Professional - c:\windows\system32\wbem\wmic.exe path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate (sign: 'Microsoft')

MarmaraGarbo · 11 Ocak 2024

Aylık kontrol.

Kod:

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 15:43:49, on 11.01.2024
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.22621.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.14\ksdeui.exe
C:\Users\Bross\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\120.0.2210.121\BHO\ie_to_edge_bho.dll
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: IObit Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\ADVANC~1\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (file missing)
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office16\GROOVEEX.DLL
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_EC4722622D63B3E65078423EFD2541D3] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start
O4 - HKCU\..\Run: [kpm.exe] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 23.2\kpm.exe" autoStart
O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~1\MICROS~2\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote'a G& nder - res://C:\PROGRA~1\MICROS~2\Office16\ONBttnIE.dll/105
O9 - Extra button: OneNote'a G nder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote'a G& nder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Ba lant l  &Notlar  - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Ba lant l  &Notlar  - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlansp_c.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{c14a8f1c-bd5c-4015-ad57-b1fa4c49ca92}: NameServer = 1.0.0.1,1.1.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{db484304-db04-6aa0-a33d-7236836b364d}: NameServer = 127.0.2.2,127.0.2.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{f21f1acd-d972-4dce-af32-d94df974d197}: NameServer = 198.51.100.1,198.51.100.2
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\u0375394.inf_amd64_2789ccbab3c70816\B374167\atiesrxx.exe
O23 - Service: Kaspersky Hizmeti 21.15 (AVP21.15) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_593e3 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @oem40.inf,%ServiceDisplayName%;Intel(R) Dynamic Tuning service (esifsvc) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\GameInputSvc.exe,-101 (GameInputSvc) - Unknown owner - C:\WINDOWS\System32\GameInputSvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files\Google\Chrome\Application\120.0.6099.217\elevation_service.exe
O23 - Service: Google G ncelleme Hizmeti (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google G ncelleme Hizmeti (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem15.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\System32\ibtsiva (file missing)
O23 - Service: Intel(R) Graphics Command Center Service (igccservice) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
O23 - Service: @oem27.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) - Intel(R) Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
O23 - Service: @oem27.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) - Intel(R) Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Kaspersky Volume Shadow Copy Service Bridge 21.15 (klvssbridge64_21.15) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\x64\vssbridge64.exe
O23 - Service: Kaspersky Password Manager 23.2 Service (kpm_service_23.2) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 23.2\kpm_service.exe
O23 - Service: Kaspersky VPN Secure Connection Hizmeti 5.14 (KSDE5.14) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.14\ksde.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: RalinkRegistryWriter - Ralink Technology, Corp. - C:\Program Files (x86)\Inca\Common\RaRegistry.exe
O23 - Service: RalinkRegistryWriter64 - Ralink Technology, Corp. - C:\Program Files (x86)\Inca\Common\RaRegistry64.exe
O23 - Service: Ralink UPnP Media Server (RaMediaServer) - Unknown owner - C:\Program Files (x86)\Inca\Common\RaMediaServer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @oem26.inf,%RstMwService.ServiceName%;Intel(R) Storage Middleware Service (RstMwService) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @oem4.inf,%SynTPEnhService.SVCDESC%;SynTPEnhService (SynTPEnhService) - Unknown owner - C:\WINDOWS\System32\SynTPEnhService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Management Engine WMI Provider Registration (WMIRegistrationService) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @oem21.inf,%OCServiceName%;XTUOCDriverService (XTU3SERVICE) - Intel(R) Corporation - C:\WINDOWS\SysWOW64\XtuService.exe

--
End of file - 13106 bytes

MarcoV · 13 Ocak 2024

Merhaba. Genellikle oyun oynarken birden 3-4 saniyelik bir donma yaşıyorum. Bir iki defa da kasma yaşadığım zamanlar oldu ama asıl problemim donma sıkıntısı. Tam oyunun en heyecanlı yerinde zınk diye donuyor ve makine kendine geldiğinde sanki internet bağlantısı ile gelen bilgiler hızlıca yüklenip olup bitiyor.

Şimdiden teşekkürler,

Kod:

Logfile of HijackThis+ (Plus) build 2023-12-21 Beta v.3.3.0.11

Platform:  x64 Windows 11 (Pro), 10.0.22631.3007 (ReleaseId: 2009, 23H2), Service Pack: 0
Time:      13.01.2024 - 22:37 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    24771 MiB Free. Loading RAM (25 %), CPU (1 %)
Elevated:  Yes
Ran by:    Tolga    (group: Administrators; type: Microsoft) on DESKTOP-4KN3UNO, FirstRun: no

Internet Explorer: 11.0.22621.1
Default: "C:\Users\Tolga\AppData\Local\Programs\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal (Secure Boot: Off) (Code Integrity: On)

Running processes:
Number | Path
   9  C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
   1  C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
   1  C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
   1  C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.35\AsusFanControlService.exe
   1  C:\Program Files (x86)\ASUS\AXSP\4.02.32\atkexComSvc.exe
   1  C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
   1  C:\Program Files (x86)\Creative\Creative App\Creative.App.exe
   1  C:\Program Files (x86)\Creative\Creative App\Creative.VADMonitorService.exe
   1  C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\avp.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\avpui.exe
   1  C:\Program Files (x86)\LightingService\LightingService.exe
  12  C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
   7  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.133\msedgewebview2.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
   1  C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
   2  C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe
   1  C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
   1  C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
   1  C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
   1  C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
   1  C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
   1  C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
   1  C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
   1  C:\Program Files\LGHUB\lghub_agent.exe
   1  C:\Program Files\LGHUB\lghub_updater.exe
   1  C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
   1  C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
   1  C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
   1  C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Program Files\WindowsApps\Microsoft.GamingApp_2312.1001.18.0_x64__8wekyb3d8bbwe\XboxGameBarWidgets.exe
   1  C:\Program Files\WindowsApps\Microsoft.GamingApp_2312.1001.18.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
   1  C:\Program Files\WindowsApps\Microsoft.GamingServices_17.84.7001.0_x64__8wekyb3d8bbwe\gamingservices.exe
   1  C:\Program Files\WindowsApps\Microsoft.GamingServices_17.84.7001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.400.20.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.400.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
   1  C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
   1  C:\Users\Tolga\AppData\Local\NhNotifSys\sonicstudio\asusns.exe
   1  C:\Users\Tolga\AppData\Local\Programs\Opera\106.0.4998.28\opera_crashreporter.exe
  22  C:\Users\Tolga\AppData\Local\Programs\Opera\opera.exe
   1  C:\Users\Tolga\Downloads\HiJackThis.exe
   1  C:\Windows\explorer.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\System32\AggregatorHost.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\audiodg.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcacheSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcacheUser.exe
   2  C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_866484083fc526af\Display.NvContainer\NVDisplay.Container.exe
   2  C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_4c10eeff886a3252\RtkAudUService64.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\LocationNotificationWindows.exe
   1  C:\Windows\System32\LsaIso.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\NahimicService.exe
   2  C:\Windows\System32\NahimicSvc64.exe
   1  C:\Windows\System32\oobe\UserOOBEBroker.exe
   1  C:\Windows\System32\rundll32.exe
   6  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  92  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\SystemSettingsBroker.exe
   2  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\unsecapp.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   2  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\SysWOW64\NahimicSvc32.exe
   2  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

O4 - Autorun.inf: G:\autorun.inf - (unknown target)
O4 - HKCU\..\Run: [Discord] = C:\Users\Tolga\AppData\Local\Discord\Update.exe --processStart Discord.exe (sign: 'Discord Inc.')
O4 - HKCU\..\Run: [EADM] = C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe -silent (sign: 'Electronic Arts, Inc.')
O4 - HKCU\..\Run: [EpicGamesLauncher] = F:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent -launchcontext=boot (sign: 'Epic Games Inc.')
O4 - HKCU\..\Run: [LGHUB] = C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe --minimized (sign: 'Logitech Inc')
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_0398D975D338DE710E0F0E44A94F9EF4] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (sign: 'Microsoft')
O4 - HKLM\..\Run: [Logitech Download Assistant] = C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch (sign: 'Microsoft')
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_4c10eeff886a3252\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Windows\system32\gamingservicesproxy_3.dll.0 -> DELETE
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O4-32 - HKLM\..\Run: [Creative.Creative App] = C:\Program Files (x86)\Creative\Creative App\Creative.App.exe /background (sign: 'Creative Technology Ltd')
O17 - DHCP DNS 1: 192.168.1.1
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (user missing) (sign: 'Microsoft')
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (user missing) (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\Windows\system32\fclip.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\Windows\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\Windows\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: \ASUS\AcPowerNotification - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\ArmourySocketServer - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\ASUSUpdateTaskMachineCore1da452d4266329c - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /c (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\ASUSUpdateTaskMachineUA - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /ua /installsource scheduler (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\Framework Service - C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe --delay (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\NoiseCancelingEngine - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\P508PowerAgent_sdk - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (file missing)
O22 - Tasks: \Microsoft\Windows\AppListBackup\BackupNonMaintenance - {E0DCC2CC-3354-45F2-8914-519E07809082} - C:\Windows\system32\AppListBackupLauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\AppxDeploymentClient\UCPD velocity - C:\Windows\system32\UCPDMgr.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\CloudRestore\Backup - {722D0F89-B69C-4700-AE8C-4A44350E4876},$(Arg0) - C:\Windows\System32\CloudRestoreLauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask - {82AA0895-198A-4C1B-B2D1-C16894218AFB} - C:\Windows\System32\unifiedconsent.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\InputSettingsRestoreDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},InputSettingsRestoreDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\syncpensettings - {3ECEE215-83F5-4123-A592-74F1FE4C3D59},SYNC_PEN_SETTINGS - C:\Windows\System32\SettingsHandlers_Pen.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\InstallService\RestoreDevice - {7F019157-05C8-473F-8664-2BA04A090DC8} - C:\Windows\System32\InstallServiceTasks.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (file missing)
O22 - Tasks: \Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache - {07369A67-07A6-4608-ABEA-379491CB7C46} - C:\Windows\System32\UpdatePolicy.dll (sign: 'Microsoft')
O22 - Tasks: Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} - C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe /waitUpgrade (sign: 'AO Kaspersky Lab')
O22 - Tasks: MSIAfterburner - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O22 - Tasks: NahimicTask32 - C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (sign: 'A-Volute SAS')
O22 - Tasks: NahimicTask64 - C:\Windows\system32\.\NahimicSvc64.exe $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (sign: 'A-Volute SAS')
O22 - Tasks: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log (sign: 'NVIDIA Corporation')
O22 - Tasks: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler (sign: 'NVIDIA Corporation')
O22 - Tasks: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-1180797924-2560622078-85474692-1001 - C:\Users\Tolga\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: Opera scheduled Autoupdate 1705051180 - C:\Users\Tolga\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (sign: 'Opera Norway AS')
O23 - Service R2: AMD 3D V-Cache Performance Optimizer Service - (amd3dvcacheSvc) - C:\Windows\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcacheSvc.exe (sign: 'Microsoft')
O23 - Service R2: ARMOURY CRATE Service - (ArmouryCrateService) - C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS AURA SYNC lighting service - (LightingService) - C:\Program Files (x86)\LightingService\LightingService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: Asus Certificate Service - (AsusCertService) - C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS Com Service - (asComSvc) - C:\Program Files (x86)\ASUS\AXSP\4.02.32\atkexComSvc.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: AsusFanControlService - C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.35\AsusFanControlService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: Creative Audio Service - (CTAudSvcService) - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (sign: 'Creative Technology Ltd')
O23 - Service R2: GameSDK Service - C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: Gaming Services - (GamingServices) - C:\Program Files\WindowsApps\Microsoft.GamingServices_17.84.7001.0_x64__8wekyb3d8bbwe\GamingServices.exe (sign: 'Microsoft')
O23 - Service R2: Gaming Services - (GamingServicesNet) - C:\Program Files\WindowsApps\Microsoft.GamingServices_17.84.7001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (sign: 'Microsoft')
O23 - Service R2: Kaspersky Hizmeti 21.15 - (AVP21.15) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\avp.exe -r (sign: 'Kaspersky Lab JSC')
O23 - Service R2: LGHUB Updater Service - (LGHUBUpdaterService) - C:\Program Files\LGHUB\lghub_updater.exe --run-as-service (sign: 'Logitech Inc')
O23 - Service R2: Logi Options+ - (OptionsPlusUpdaterService) - C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe --run-as-service (sign: 'Logitech Inc')
O23 - Service R2: Nahimic service - (NahimicService) - C:\Windows\system32\NahimicService.exe (sign: 'A-Volute SAS')
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_866484083fc526af\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_866484083fc526af\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem /ert (sign: 'NVIDIA Corporation')
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" (sign: 'NVIDIA Corporation')
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_4c10eeff886a3252\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')
O23 - Service R2: ROG Live Service - C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: VoiceDetect Monitor Service - (Creative.VADMonitorService) - C:\Program Files (x86)\Creative\Creative App\Creative.VADMonitorService.exe (sign: 'Creative Technology Ltd')
O23 - Service R3: EABackgroundService - C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe -start (sign: 'Electronic Arts, Inc.')
O23 - Service S2: ASUS Güncelleme Hizmeti (asus) - (asus) - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /svc (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service S2: AsusUpdateCheck - C:\Windows\System32\AsusUpdateCheck.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service S3: ASUS Güncelleme Hizmeti (asusm) - (asusm) - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /medsvc (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: Epic Online Services - (EpicOnlineServices) - C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe (sign: 'Epic Games Inc.')
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 21.15 - (klvssbridge64_21.15) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\x64\vssbridge64.exe (sign: 'AO Kaspersky Lab')
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service (sign: 'NVIDIA Corporation')
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Driver R: ASUS Kernel Mode Driver for NT  - C:\Windows\system32\drivers\IOMap64.sys (sign: 'ASUSTeK COMPUTER INC.')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\Windows\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R0: AO Kaspersky Lab Cryptographic Module x64 (56 bit) - (cm_km) - C:\Windows\system32\DRIVERS\cm_km.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-15_arkmon - C:\Windows\System32\Drivers\klupd_K4W-21-15_arkmon.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-15_klbg - C:\Windows\System32\Drivers\klupd_K4W-21-15_klbg.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Asusgio3 - C:\Windows\system32\drivers\AsIO3.sys (sign: 'ASUSTeK COMPUTER INC.')
O23 - Driver R1: CTIAIO - C:\Windows\system32\drivers\CtiAIo64.sys (sign: 'Microsoft' - Creative Technology Innovation Co., LTd.)
O23 - Driver R1: Kaspersky Anti-Virus NDIS 6 Filter - (klim6) - C:\Windows\system32\DRIVERS\klim6.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Driver.K4W-21-15 - (KLIF.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klif.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab format recognizer driver.K4W-21-15 - (klpd.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klpd.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Kernel DLL.K4W-21-15 - (klflt.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab KLKBDFLT.K4W-21-15 - (klkbdflt.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klkbdflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klpnpflt.K4W-21-15 - (klpnpflt.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klpnpflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Security Extender Driver.K4W-21-15 - (klgse.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klgse.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab service driver.K4W-21-15 - (klhk.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klhk.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kldisk.K4W-21-15 - C:\Windows\system32\DRIVERS\K4W-21-15\kldisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: klwtp.K4W-21-15 - C:\Windows\system32\DRIVERS\K4W-21-15\klwtp.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kneps.K4W-21-15 - C:\Windows\system32\DRIVERS\K4W-21-15\kneps.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: MSIO - C:\Windows\system32\drivers\MsIo64.sys (sign: 'Microsoft' - MICSYS Technology Co., LTd)
O23 - Driver R3: AMD 3D V-Cache Performance Optimizer Kernel Driver - (amd3dvcache) - C:\Windows\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcache.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\Windows\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices INC.')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\Windows\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: AMD I2C Controller Service - (amdi2c) - C:\Windows\System32\drivers\amdi2c.sys (+safe mode) (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD PCI - (AMDPCIDev) - C:\Windows\System32\drivers\AMDPCIDev.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: cpuz157 - C:\Windows\temp\cpuz157\cpuz157_x64.sys (sign: 'Microsoft' - CPUID)
O23 - Driver R3: Creative USB Kernel Audio Driver 64 - (CtUSBa64) - C:\Windows\system32\drivers\CtUSBa64.sys (sign: 'Microsoft' - Creative Technology Ltd.)
O23 - Driver R3: Intel(R) PCI Express Network Connection NetAdapter Driver - (e2fnexpress) - C:\Windows\System32\DriverStore\FileRepository\e2fn.inf_amd64_d9445744f52b5b9b\e2fn.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: klids.K4W-21-15 - C:\ProgramData\Kaspersky Lab\AVP21.15\Bases\klids.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-15_arkmon_3EAA902C - C:\ProgramData\Kaspersky Lab\AVP21.15\Temp\3EAA902C0B5097D0258FD5FE1D8A2AA9\klupd_K4W-21-15_arkmon.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-15_klark - C:\Windows\System32\Drivers\klupd_K4W-21-15_klark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-15_mark - C:\Windows\System32\Drivers\klupd_K4W-21-15_mark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: Logitech G HUB Translation Layer Driver - (logi_joy_xlcore) - C:\Windows\system32\drivers\logi_joy_xlcore.sys (sign: 'Logitech Inc')
O23 - Driver R3: Logitech G HUB Virtual Bus Enumerator Driver - (logi_joy_bus_enum) - C:\Windows\system32\drivers\logi_joy_bus_enum.sys (sign: 'Logitech Inc')
O23 - Driver R3: Logitech G HUB Virtual HID Device Driver - (logi_joy_vir_hid) - C:\Windows\system32\drivers\logi_joy_vir_hid.sys (sign: 'Logitech Inc')
O23 - Driver R3: Mediatek PCI LE Extensible Wireless LAN Card Driver - (mtkwlex) - C:\Windows\System32\drivers\mtkwl6ex.sys (+safe mode) (sign: 'Microsoft' - MediaTek Inc.)
O23 - Driver R3: MTK BT Filter Driver - (MTKBTFilterx64) - C:\Windows\System32\drivers\mtkbtfilterx.sys (sign: 'Microsoft' - MediaTek Inc.)
O23 - Driver R3: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) - (nvvad_WaveExtensible) - C:\Windows\system32\drivers\nvvad64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: nvlddmkm - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_866484083fc526af\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: NvModuleTracker - C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: NVVHCI Enumerator Service - (nvvhci) - C:\Windows\System32\drivers\nvvhci.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: Realtek USB Audio Driver - (RtkUsbAD_2342) - C:\Windows\System32\DriverStore\FileRepository\rtdusbad_asus.inf_amd64_18c806ee4356d088\RtUsbA64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\Windows\system32\drivers\nvhda64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: Sonic Studio Virtual Mixer - Driver - (AVoluteSS3Vad) - C:\Windows\System32\drivers\AVoluteSS3Vad.sys (sign: 'A-Volute')
O23 - Driver S1: Kaspersky Lab klbackupdisk.K4W-21-15 - (klbackupdisk.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klbackupdisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver S1: Kaspersky Lab klbackupflt.K4W-21-15 - (klbackupflt.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klbackupflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver S3: Bluetooth Modem Communications Driver - (BTHMODEM) - C:\Windows\System32\drivers\bthmodem.sys (not signed - Microsoft Corporation - 4F9AFC33289DADF4FC78FC744B3B163810C7ECD1)
O23 - Driver S3: cpuz158 - C:\Windows\temp\cpuz158\cpuz158_x64.sys (sign: 'Microsoft' - CPUID)
O23 - Driver S3: Intel(R) PCI Express Network Connection Driver R - (e2f68) - C:\Windows\System32\drivers\e2f68.sys (+safe mode) (sign: 'INTELEPGSW2022')
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: Kaspersky Lab KLMOUFLT.K4W-21-15 - (klmouflt.K4W-21-15) - C:\Windows\system32\DRIVERS\K4W-21-15\klmouflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)


--
End of file - Time spent: 15,2 sec. - 59540 bytes, CRC32: FFFFFFFF. Sign: 的턊

Murat5038 · 14 Ocak 2024

MarmaraGarbo dedi:
Aylık kontrol.

Kod:

O10 - Unknown file in Winsock LSP: c:\windows\system32\nlansp_c.dll

Bunu fixleyin. Bir sorun yok zararlı anlamında.

MarcoV dedi:
Şimdiden teşekkürler.

İlk olarak temiz önyükleme yapın. Gereksiz Asus ve üretici yazılımlarını kaldırın.

Bunları fixleyin:

Kod:

O4 - Autorun.inf: G:\autorun.inf - (unknown target)
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_0398D975D338DE710E0F0E44A94F9EF4] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (sign: 'Microsoft')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O22 - Tasks: \ASUS\ASUSUpdateTaskMachineCore1da452d4266329c - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /c (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \ASUS\ASUSUpdateTaskMachineUA - C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe /ua /installsource scheduler (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (file missing)
O22 - Tasks: MSIAfterburner - C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (sign: 'MICRO-STAR INTERNATIONAL CO., LTD.')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-1180797924-2560622078-85474692-1001 - C:\Users\Tolga\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O23 - Service R2: AMD 3D V-Cache Performance Optimizer Service - (amd3dvcacheSvc) - C:\Windows\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcacheSvc.exe (sign: 'Microsoft')
O23 - Driver R3: AMD 3D V-Cache Performance Optimizer Kernel Driver - (amd3dvcache) - C:\Windows\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0b3c99dc64473f00\amd3dvcache.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: cpuz157 - C:\Windows\temp\cpuz157\cpuz157_x64.sys (sign: 'Microsoft' - CPUID)
O23 - Driver S3: cpuz158 - C:\Windows\temp\cpuz158\cpuz158_x64.sys (sign: 'Microsoft' - CPUID)

BERKE ALGL · 7 Şubat 2024

Kod:

Logfile of HiJackThis+ (Plus) build 2024-02-06 Alpha v.3.4.0.3

Platform:  x64 Windows 11 (Pro), 10.0.22631.3085 (ReleaseId: 2009, 23H2), Service Pack: 0
Time:      07.02.2024 - 06:13 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    27034 MiB Free. Loading RAM (19 %), CPU (4 %)
Elevated:  Yes
Ran by:    berke    (group: Administrators; type: Microsoft) on FSHVIVWOOI, FirstRun: no

Internet Explorer: 11.1.22621.0
Default: "C:\Users\berke\AppData\Local\Programs\Opera GX\Launcher.exe" -noautoupdate -- "%1" (Opera GX Internet Browser)

Boot mode: Normal (Secure Boot: On)

Running processes:
Number | Path
   1  C:\Program Files (x86)\AdGuardVpn\AdGuardVpnSvc.exe
   2  C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe
   1  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.16\avp.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.16\avpui.exe
   8  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\121.0.2277.98\msedgewebview2.exe
   1  C:\Program Files\AMD\CNext\CNext\amdow.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
   1  C:\Program Files\AMD\CNext\CNext\cncmd.exe
   1  C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
   1  C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
   1  C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
   1  C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
   1  C:\Program Files\SteelSeries\GG\apps\moments\SteelSeriesSvcLauncher.exe
   1  C:\Program Files\SteelSeries\GG\apps\sonar\SteelSeriesSonar.exe
   1  C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.3.14.0_x64__8wekyb3d8bbwe\PCManager\MSPCManager.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.3.14.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.3.14.0_x64__8wekyb3d8bbwe\PCManager\MSPCWndManager.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
  25  C:\Users\berke\AppData\Local\Programs\Opera GX\opera.exe
   1  C:\Users\berke\OneDrive\Masaüstü\Yeni klasör (2)\HiJackThis.exe
   2  C:\Windows\explorer.exe
   1  C:\Windows\System32\AMD\ANR\AMDNoiseSuppression.exe
   1  C:\Windows\System32\amdfendrsr.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\cmd.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_844e1459fc4a4c84\RtkAudUService64.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0399752.inf_amd64_b15dedb279802d6f\B399690\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0399752.inf_amd64_b15dedb279802d6f\B399690\atiesrxx.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   4  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  70  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\SysWOW64\dllhost.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = hxxps://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: C:\Windows\System32\drivers\etc\45537ebm9h
O1 - Hosts: 127.0.0.1 user-cheat.com
O1 - Hosts: 127.0.0.1 vvv.user-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.user-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.user-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://user-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://user-cheat.com
O1 - Hosts: 127.0.0.1 est-cheat.net
O1 - Hosts: 127.0.0.1 vvv.est-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.est-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.est-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://est-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://est-cheat.net
O1 - Hosts: 127.0.0.1 playpro.tk
O1 - Hosts: 127.0.0.1 vvv.playpro.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.playpro.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.playpro.tk
O1 - Hosts: 127.0.0.1 hxxps://playpro.tk
O1 - Hosts: 127.0.0.1 hxxp://playpro.tk
O1 - Hosts: 127.0.0.1 typecheats.pro
O1 - Hosts: 127.0.0.1 vvv.typecheats.pro
O1 - Hosts: 127.0.0.1 hxxps://vvv.typecheats.pro
O1 - Hosts: 127.0.0.1 hxxp://vvv.typecheats.pro
O1 - Hosts: 127.0.0.1 hxxps://typecheats.pro
O1 - Hosts: 127.0.0.1 hxxp://typecheats.pro
O1 - Hosts: 127.0.0.1 mediahacker.net
O1 - Hosts: 127.0.0.1 vvv.mediahacker.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.mediahacker.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.mediahacker.net
O1 - Hosts: 127.0.0.1 hxxps://mediahacker.net
O1 - Hosts: 127.0.0.1 hxxp://mediahacker.net
O1 - Hosts: 127.0.0.1 oziicheat.com
O1 - Hosts: 127.0.0.1 vvv.oziicheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.oziicheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.oziicheat.com
O1 - Hosts: 127.0.0.1 hxxps://oziicheat.com
O1 - Hosts: 127.0.0.1 hxxp://oziicheat.com
O1 - Hosts: 127.0.0.1 taeprobot.ml
O1 - Hosts: 127.0.0.1 vvv.taeprobot.ml
O1 - Hosts: 127.0.0.1 hxxps://vvv.taeprobot.ml
O1 - Hosts: 127.0.0.1 hxxp://vvv.taeprobot.ml
O1 - Hosts: 127.0.0.1 hxxps://taeprobot.ml
O1 - Hosts: 127.0.0.1 hxxp://taeprobot.ml
O1 - Hosts: 127.0.0.1 hackerth.tk
O1 - Hosts: 127.0.0.1 vvv.hackerth.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.hackerth.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.hackerth.tk
O1 - Hosts: 127.0.0.1 hxxps://hackerth.tk
O1 - Hosts: 127.0.0.1 hxxp://hackerth.tk
O1 - Hosts: 127.0.0.1 objectcheat.net
O1 - Hosts: 127.0.0.1 vvv.objectcheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.objectcheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.objectcheat.net
O1 - Hosts: 127.0.0.1 hxxps://objectcheat.net
O1 - Hosts: 127.0.0.1 hxxp://objectcheat.net
O1 - Hosts: 127.0.0.1 xyzd3dd.com
O1 - Hosts: 127.0.0.1 vvv.xyzd3dd.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.xyzd3dd.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.xyzd3dd.com
O1 - Hosts: 127.0.0.1 hxxps://xyzd3dd.com
O1 - Hosts: 127.0.0.1 hxxp://xyzd3dd.com
O1 - Hosts: 127.0.0.1 oshack.xyz
O1 - Hosts: 127.0.0.1 vvv.oshack.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.oshack.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.oshack.xyz
O1 - Hosts: 127.0.0.1 hxxps://oshack.xyz
O1 - Hosts: 127.0.0.1 hxxp://oshack.xyz
O1 - Hosts: 127.0.0.1 mammothz.com
O1 - Hosts: 127.0.0.1 vvv.mammothz.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.mammothz.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.mammothz.com
O1 - Hosts: 127.0.0.1 hxxps://mammothz.com
O1 - Hosts: 127.0.0.1 hxxp://mammothz.com
O1 - Hosts: 127.0.0.1 zxcprobot.xyz
O1 - Hosts: 127.0.0.1 vvv.zxcprobot.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.zxcprobot.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.zxcprobot.xyz
O1 - Hosts: 127.0.0.1 hxxps://zxcprobot.xyz
O1 - Hosts: 127.0.0.1 hxxp://zxcprobot.xyz
O1 - Hosts: 127.0.0.1 cat-cheat.tk
O1 - Hosts: 127.0.0.1 vvv.cat-cheat.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.cat-cheat.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.cat-cheat.tk
O1 - Hosts: 127.0.0.1 hxxps://cat-cheat.tk
O1 - Hosts: 127.0.0.1 hxxp://cat-cheat.tk
O1 - Hosts: 127.0.0.1 only-th.net
O1 - Hosts: 127.0.0.1 vvv.only-th.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.only-th.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.only-th.net
O1 - Hosts: 127.0.0.1 hxxps://only-th.net
O1 - Hosts: 127.0.0.1 hxxp://only-th.net
O1 - Hosts: 127.0.0.1 playpro-z.xyz
O1 - Hosts: 127.0.0.1 vvv.playpro-z.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.playpro-z.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.playpro-z.xyz
O1 - Hosts: 127.0.0.1 hxxps://playpro-z.xyz
O1 - Hosts: 127.0.0.1 hxxp://playpro-z.xyz
O1 - Hosts: 127.0.0.1 1sk-cheat.net
O1 - Hosts: 127.0.0.1 vvv.1sk-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.1sk-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.1sk-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://1sk-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://1sk-cheat.net
O1 - Hosts: 127.0.0.1 my-cheat.com
O1 - Hosts: 127.0.0.1 vvv.my-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.my-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.my-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://my-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://my-cheat.com
O1 - Hosts: 127.0.0.1 th-pro.xyz
O1 - Hosts: 127.0.0.1 vvv.th-pro.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.th-pro.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.th-pro.xyz
O1 - Hosts: 127.0.0.1 hxxps://th-pro.xyz
O1 - Hosts: 127.0.0.1 hxxp://th-pro.xyz
O1 - Hosts: 127.0.0.1 0x64.biz
O1 - Hosts: 127.0.0.1 vvv.0x64.biz
O1 - Hosts: 127.0.0.1 hxxps://vvv.0x64.biz
O1 - Hosts: 127.0.0.1 hxxp://vvv.0x64.biz
O1 - Hosts: 127.0.0.1 hxxps://0x64.biz
O1 - Hosts: 127.0.0.1 hxxp://0x64.biz
O1 - Hosts: 127.0.0.1 yami-cheat.net
O1 - Hosts: 127.0.0.1 vvv.yami-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.yami-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.yami-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://yami-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://yami-cheat.net
O1 - Hosts: 127.0.0.1 0x64-esp.com
O1 - Hosts: 127.0.0.1 vvv.0x64-esp.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.0x64-esp.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.0x64-esp.com
O1 - Hosts: 127.0.0.1 hxxps://0x64-esp.com
O1 - Hosts: 127.0.0.1 hxxp://0x64-esp.com
O1 - Hosts: 127.0.0.1 isus-pro.com
O1 - Hosts: 127.0.0.1 vvv.isus-pro.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.isus-pro.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.isus-pro.com
O1 - Hosts: 127.0.0.1 hxxps://isus-pro.com
O1 - Hosts: 127.0.0.1 hxxp://isus-pro.com
O1 - Hosts: 127.0.0.1 bbcheats.net
O1 - Hosts: 127.0.0.1 vvv.bbcheats.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.bbcheats.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.bbcheats.net
O1 - Hosts: 127.0.0.1 hxxps://bbcheats.net
O1 - Hosts: 127.0.0.1 hxxp://bbcheats.net
O1 - Hosts: 127.0.0.1 varlinpro.com
O1 - Hosts: 127.0.0.1 vvv.varlinpro.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.varlinpro.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.varlinpro.com
O1 - Hosts: 127.0.0.1 hxxps://varlinpro.com
O1 - Hosts: 127.0.0.1 hxxp://varlinpro.com
O1 - Hosts: 127.0.0.1 dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 vvv.dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 hxxps://dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 hxxp://dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 shoppro.link
O1 - Hosts: 127.0.0.1 vvv.shoppro.link
O1 - Hosts: 127.0.0.1 hxxps://vvv.shoppro.link
O1 - Hosts: 127.0.0.1 hxxp://vvv.shoppro.link
O1 - Hosts: 127.0.0.1 hxxps://shoppro.link
O1 - Hosts: 127.0.0.1 hxxp://shoppro.link
O1 - Hosts: 127.0.0.1 d3dxz.com
O1 - Hosts: 127.0.0.1 vvv.d3dxz.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.d3dxz.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.d3dxz.com
O1 - Hosts: 127.0.0.1 hxxps://d3dxz.com
O1 - Hosts: 127.0.0.1 hxxp://d3dxz.com
O1 - Hosts: 127.0.0.1 zexternal.com
O1 - Hosts: 127.0.0.1 vvv.zexternal.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.zexternal.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.zexternal.com
O1 - Hosts: 127.0.0.1 hxxps://zexternal.com
O1 - Hosts: 127.0.0.1 hxxp://zexternal.com
O1 - Hosts: 127.0.0.1 pro-th.xyz
O1 - Hosts: 127.0.0.1 vvv.pro-th.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.pro-th.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.pro-th.xyz
O1 - Hosts: 127.0.0.1 hxxps://pro-th.xyz
O1 - Hosts: 127.0.0.1 hxxp://pro-th.xyz
O1 - Hosts: 127.0.0.1 scottcheat.com
O1 - Hosts: 127.0.0.1 vvv.scottcheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.scottcheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.scottcheat.com
O1 - Hosts: 127.0.0.1 hxxps://scottcheat.com
O1 - Hosts: 127.0.0.1 hxxp://scottcheat.com
O1 - Hosts: 127.0.0.1 g7-prox2.com
O1 - Hosts: 127.0.0.1 vvv.g7-prox2.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.g7-prox2.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.g7-prox2.com
O1 - Hosts: 127.0.0.1 hxxps://g7-prox2.com
O1 - Hosts: 127.0.0.1 hxxp://g7-prox2.com
O1 - Hosts: 127.0.0.1 nguhex.tk
O1 - Hosts: 127.0.0.1 vvv.nguhex.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.nguhex.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.nguhex.tk
O1 - Hosts: 127.0.0.1 hxxps://nguhex.tk
O1 - Hosts: 127.0.0.1 hxxp://nguhex.tk
O1 - Hosts: 127.0.0.1 zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 vvv.zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 nguhex.com
O1 - Hosts: 127.0.0.1 vvv.nguhex.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.nguhex.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.nguhex.com
O1 - Hosts: 127.0.0.1 hxxps://nguhex.com
O1 - Hosts: 127.0.0.1 hxxp://nguhex.com
O1 - Hosts: 127.0.0.1 nguhex.net
O1 - Hosts: 127.0.0.1 vvv.nguhex.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.nguhex.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.nguhex.net
O1 - Hosts: 127.0.0.1 hxxps://nguhex.net
O1 - Hosts: 127.0.0.1 hxxp://nguhex.net
O1 - Hosts: 127.0.0.1 maxprobot.xyz
O1 - Hosts: 127.0.0.1 vvv.maxprobot.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.maxprobot.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.maxprobot.xyz
O1 - Hosts: 127.0.0.1 hxxps://maxprobot.xyz
O1 - Hosts: 127.0.0.1 hxxp://maxprobot.xyz
O1 - Hosts: 127.0.0.1 zenitsu-cheat
O1 - Hosts: 127.0.0.1 vvv.zenitsu-cheat
O1 - Hosts: 127.0.0.1 hxxps://vvv.zenitsu-cheat
O1 - Hosts: 127.0.0.1 hxxp://vvv.zenitsu-cheat
O1 - Hosts: 127.0.0.1 hxxps://zenitsu-cheat
O1 - Hosts: 127.0.0.1 hxxp://zenitsu-cheat
O1 - Hosts: 127.0.0.1 cracky-cheat.com
O1 - Hosts: 127.0.0.1 vvv.cracky-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.cracky-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.cracky-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://cracky-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://cracky-cheat.com
O1 - Hosts: 127.0.0.1 stoneshop.me
O1 - Hosts: 127.0.0.1 vvv.stoneshop.me
O1 - Hosts: 127.0.0.1 hxxps://vvv.stoneshop.me
O1 - Hosts: 127.0.0.1 hxxp://vvv.stoneshop.me
O1 - Hosts: 127.0.0.1 hxxps://stoneshop.me
O1 - Hosts: 127.0.0.1 hxxp://stoneshop.me
O1 - Hosts: 127.0.0.1 dx-hax.net
O1 - Hosts: 127.0.0.1 vvv.dx-hax.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.dx-hax.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.dx-hax.net
O1 - Hosts: 127.0.0.1 hxxps://dx-hax.net
O1 - Hosts: 127.0.0.1 hxxp://dx-hax.net
O1 - Hosts: 127.0.0.1 gib-cheat.tk
O1 - Hosts: 127.0.0.1 vvv.gib-cheat.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.gib-cheat.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.gib-cheat.tk
O1 - Hosts: 127.0.0.1 hxxps://gib-cheat.tk
O1 - Hosts: 127.0.0.1 hxxp://gib-cheat.tk
O1 - Hosts: 127.0.0.1 execheats.xyz
O1 - Hosts: 127.0.0.1 vvv.execheats.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.execheats.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.execheats.xyz
O1 - Hosts: 127.0.0.1 hxxps://execheats.xyz
O1 - Hosts: 127.0.0.1 hxxp://execheats.xyz
O1 - Hosts.ICS: 127.0.0.1 localhost
O1 - Hosts.ICS: ::1 localhost
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll (sign: 'Oracle America, Inc.')
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre-1.8\bin\ssv.dll (sign: 'Oracle America, Inc.')
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre-1.8\bin\jp2ssv.dll (sign: 'Oracle America, Inc.')
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre-1.8\bin\ssv.dll (sign: 'Oracle America, Inc.')
O4 - HKCU\..\Run: [AMDNoiseSuppression] = C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe (sign: 'Advanced Micro Devices Inc.')
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\berke\AppData\Local\Discord\Update.exe --processStart Discord.exe (2023/07/21) (sign: 'Discord Inc.')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_8843045CE79A396D0483BAC25CD52E21] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (2023/07/21) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [Opera GX Browser Assistant] = C:\Users\berke\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe (2023/07/21) (sign: 'Opera Norway AS')
O4 - HKCU\..\StartupApproved\Run: [Opera GX Stable] = C:\Users\berke\AppData\Local\Programs\Opera GX\launcher.exe (2023/07/21) (sign: 'Opera Norway AS')
O4 - HKCU\..\StartupApproved\Run: [RiotClient] = C:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (2023/07/21) (sign: 'Riot Games, Inc.')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2023/07/21) (sign: 'Valve Corp.')
O4 - HKCU\Control Panel\Desktop: [SCRNSAVE.EXE] = C:\Windows\SysWOW64\launcher.scr (sign: 'Riot Games, Inc.')
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_844e1459fc4a4c84\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\Run: [SteelSeriesGG] = C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe -dataPath="C:\ProgramData\SteelSeries\GG" -dbEnv=production -auto=true (sign: 'SteelSeries ApS')
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Users\berke\Local Settings\Microsoft\Windows\WebCache\WebCacheV01.jfm -> DELETE
O4 - HKLM\..\StartupApproved\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (2024/01/31) (sign: 'Riot Games, Inc.')
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (2023/10/11) (sign: 'Microsoft')
O4 - HKLM\..\StartupApproved\Run32: [AdGuardVpn] = C:\Program Files (x86)\AdGuardVpn\AdGuardVpn.exe /nosplash (2024/01/01) (sign: 'Adguard Software Limited')
O4 - HKLM\..\StartupApproved\Run32: [Discord] = C:\ProgramData\SquirrelMachineInstalls\Discord.exe --checkInstall (2023/10/11) (sign: 'Discord Inc.')
O4 - HKLM\..\StartupApproved\Run32: [LeagueDisplays] = C:\Riot Games\LeagueDisplays\assistant\LeagueDisplaysAssistant.exe /onWindowsStart (2023/08/31) (not signed - no company - B5713F46A75A5B18F1B0EEE05E55F008F3E19A47)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2023/10/03) (sign: 'Oracle America, Inc.')
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk    ->    C:\Program Files (x86)\AnyDesk\AnyDesk.exe --control (2023/10/01) (sign: 'philandro Software GmbH')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiSpyware] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiVirus] = 1
O7 - TroubleShooting (EV): HKLM\..\Environment: [PSModulePath] = %ProgramFiles(x86)%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules (Missing: %ProgramFiles%\WindowsPowerShell\Modules)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (file missing)
O17 - DHCP DNS 1: 192.168.1.1
O17 - HKLM\Software\..\Telephony: [DomainName] = fsHVIVwoOI
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: [Domain] = fsHVIVwoOI
O22 - Task (.job): update-S-1-5-21-1297163635-1600585970-1943179299-1003.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Task (.job): update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Tasks: !Kaspersky Setup Restricted - C:\Windows\temp\CFF249AA9C35EE11FB619F215E95916A\startup.exe /-restricted_service (file missing)
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (user missing) (sign: 'Microsoft')
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (user missing) (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\Windows\system32\fclip.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\Windows\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) DB Bigupgrade Task (One Time) - C:\Program Files (x86)\IObit\Driver Booster\Pub\dbupgrade.exe /upgrade /round=1 (sign: 'IObit CO., LTD')
O22 - Tasks: (disabled) Driver Booster Update - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\AutoUpdate.exe /auto (sign: 'IObit CO., LTD')
O22 - Tasks: (disabled) DriverFix - C:\Program Files (x86)\DriverFix\DriverFix.exe -auto (file missing)
O22 - Tasks: (disabled) update-S-1-5-21-1297163635-1600585970-1943179299-1003 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: (disabled) update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\Windows\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: \ASUS\P508PowerAgent_sdk - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (file missing)
O22 - Tasks: \Microsoft\Windows\PLA\CPU - {FF679DA1-8FF2-4474-9C9E-52BBD409B557},CPU|$(Arg0) - C:\Windows\system32\pla.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\PLA\GPU - {FF679DA1-8FF2-4474-9C9E-52BBD409B557},GPU|$(Arg0) - C:\Windows\system32\pla.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (file missing)
O22 - Tasks: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (sign: 'Adobe Inc.')
O22 - Tasks: AMDAutoUpdate - C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: AMDInstallLauncher - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe /InstallAUEP (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: AMDInstallUEP - C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: AMDLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -AMDLinkUpdate (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: AMDRyzenMasterSDKTask - C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: BlueStacksHelper_nxt - C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe -sr (file missing)
O22 - Tasks: Cloud - C:\Program Files\GIGABYTE\Control Center\GbtCloudMatrix.exe (sign: 'GIGA-BYTE TECHNOLOGY CO., LTD.')
O22 - Tasks: Driver Booster Scheduler - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\Scheduler.exe /scheduler (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster SkipUAC (berke) - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\DriverBooster.exe /skipuac (sign: 'IObit CO., LTD')
O22 - Tasks: Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} - C:\Program Files\Common Files\AV\Kaspersky\upgrade_launcher.exe /waitUpgrade (sign: 'AO Kaspersky Lab')
O22 - Tasks: ModifyLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -UpdateCurrentUser (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-1297163635-1600585970-1943179299-1003 - C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: Opera GX scheduled assistant Autoupdate 1689947476 - C:\Users\berke\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate --component-name=assistant --component-path="C:\Users\berke\AppData\Local\Programs\Opera GX\assistant" $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks: Opera GX scheduled Autoupdate 1689947469 - C:\Users\berke\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks: StartAUEP - C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: StartDVR - C:\Program Files\AMD\CNext\CNext\RSServCmd.exe (sign: 'Advanced Micro Devices Inc.')
O23 - Service R2: Adguard VPN Service - C:\Program Files (x86)\AdGuardVpn\AdGuardVpnSvc.exe (sign: 'Adguard Software Limited')
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (sign: 'Adobe Inc.')
O23 - Service R2: AMD Crash Defender Service - C:\Windows\System32\amdfendrsr.exe (sign: 'Microsoft')
O23 - Service R2: AMD External Events Utility - C:\Windows\System32\DriverStore\FileRepository\u0399752.inf_amd64_b15dedb279802d6f\B399690\atiesrxx.exe (sign: 'Advanced Micro Devices Inc.')
O23 - Service R2: Kaspersky Hizmeti 21.16 - (AVP21.16) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.16\avp.exe -r (sign: 'Kaspersky Lab JSC')
O23 - Service R2: PCManager Service (Store) - (PCManager Service Store) - C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.3.14.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe (sign: 'Microsoft')
O23 - Service S2: AnyDesk Service - (AnyDesk) - C:\Program Files (x86)\AnyDesk\AnyDesk.exe --service (sign: 'philandro Software GmbH')
O23 - Service S2: AsusUpdateCheck - C:\Windows\System32\AsusUpdateCheck.exe (sign: 'ASUSTeK Computer Inc.')
O23 - Service S2: Microsoft Update Health Service - (uhssvc) - C:\Program Files\Microsoft Update Health Tools\uhssvc.exe (file missing)
O23 - Service S2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe (sign: 'Tencent Technology(Shenzhen) Company Limited')
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (sign: 'BattlEye Innovations e.K.')
O23 - Service S3: Easy Anti-Cheat (Epic Online Services) - (EasyAntiCheat_EOS) - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: FileSyncHelper - C:\Program Files\Microsoft OneDrive\24.010.0114.0003\FileSyncHelper.exe (sign: 'Microsoft')
O23 - Service S3: Gameforge Client Service - (GameforgeClientService) - C:\Program Files (x86)\GameforgeClient\gfservice.exe (sign: 'Gameforge 4D GmbH')
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 21.16 - (klvssbridge64_21.16) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.16\x64\vssbridge64.exe (sign: 'AO Kaspersky Lab')
O23 - Service S3: OneDrive Updater Service - C:\Program Files\Microsoft OneDrive\24.010.0114.0003\OneDriveUpdaterService.exe (sign: 'Microsoft')
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe (file missing)
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe (sign: 'Riot Games, Inc.')
O23 - Driver R0: AMD PCI Root Bus Lower Filter - (amdkmpfd) - C:\Windows\System32\drivers\amdkmpfd.sys (+safe mode) (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\Windows\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R0: AO Kaspersky Lab Cryptographic Module x64 (56 bit) - (cm_km) - C:\Windows\system32\DRIVERS\cm_km.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-16_arkmon - C:\Windows\System32\Drivers\klupd_K4W-21-16_arkmon.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-16_klbg - C:\Windows\System32\Drivers\klupd_K4W-21-16_klbg.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: adgvpnnetworkwfpdrv - C:\Windows\system32\drivers\adgvpnnetworkwfpdrv.sys (+safe mode) (sign: 'Microsoft' - Adguard Software Limited)
O23 - Driver R1: Asusgio3 - C:\Windows\system32\drivers\AsIO3.sys (sign: 'ASUSTeK COMPUTER INC.')
O23 - Driver R1: Kaspersky Anti-Virus NDIS 6 Filter - (klim6) - C:\Windows\system32\DRIVERS\klim6.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Driver.K4W-21-16 - (KLIF.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klif.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab format recognizer driver.K4W-21-16 - (klpd.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klpd.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Kernel DLL.K4W-21-16 - (klflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klbackupdisk.K4W-21-16 - (klbackupdisk.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klbackupdisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klbackupflt.K4W-21-16 - (klbackupflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klbackupflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab KLKBDFLT.K4W-21-16 - (klkbdflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klkbdflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klpnpflt.K4W-21-16 - (klpnpflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klpnpflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Security Extender Driver.K4W-21-16 - (klgse.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klgse.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab service driver.K4W-21-16 - (klhk.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klhk.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kldisk.K4W-21-16 - C:\Windows\system32\DRIVERS\K4W-21-16\kldisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: klwtp.K4W-21-16 - C:\Windows\system32\DRIVERS\K4W-21-16\klwtp.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kneps.K4W-21-16 - C:\Windows\system32\DRIVERS\K4W-21-16\kneps.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: MSIO - C:\Windows\system32\drivers\MsIo64.sys (sign: 'Microsoft' - MICSYS Technology Co., LTd)
O23 - Driver R1: sndeap - C:\Windows\system32\drivers\sndeap.sys (sign: 'PROMOSOFT CORPORATION')
O23 - Driver R2: AMDRyzenMasterDriverV20 - C:\Program Files\AMD\Performance Profile Client\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV21 - C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV22 - C:\Windows\system32\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R2: aow_drv - C:\Program Files\TxGameAssistant\UI\3.21.4873.80\aow_drv_x64_ev.sys (sign: 'Tencent Technology(Shenzhen) Company Limited')
O23 - Driver R2: BlueStacks Hypervisor_nxt - (BlueStacksDrv_nxt) - C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys (sign: 'Microsoft' - Bluestack System Inc.)
O23 - Driver R2: inpoutx64 - C:\Windows\System32\Drivers\inpoutx64.sys (sign: 'Red Fox UK Limited')
O23 - Driver R3: AMD Crash Defender Driver - (amdfendr) - C:\Windows\System32\drivers\amdfendr.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Function Driver for HD Audio Service - (AtiHDAudioService) - C:\Windows\system32\drivers\AtihdWT6.sys (sign: 'Microsoft' - Advanced Micro Devices)
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\Windows\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices INC.')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\Windows\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: AMD PCI - (AMDPCIDev) - C:\Windows\System32\drivers\AMDPCIDev.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Special Tools Driver - (AmdTools64) - C:\Windows\System32\drivers\AmdTools64.sys (sign: 'Microsoft' - no company)
O23 - Driver R3: AMDSAFD - C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: amduw23g - C:\Windows\System32\DriverStore\FileRepository\u0399752.inf_amd64_b15dedb279802d6f\B399690\amdkmdag.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: Kaspersky Lab KLMOUFLT.K4W-21-16 - (klmouflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klmouflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klids.K4W-21-16 - C:\ProgramData\Kaspersky Lab\AVP21.16\Bases\klids.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-16_klark - C:\Windows\System32\Drivers\klupd_K4W-21-16_klark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-16_mark - C:\Windows\System32\Drivers\klupd_K4W-21-16_mark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: Realtek RT640 NT Driver - (rt640x64) - C:\Windows\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\Windows\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: SteelSeries Device Factory Service - (ssdevfactory) - C:\Windows\System32\drivers\ssdevfactory.sys (sign: 'Microsoft' - SteelSeries ApS)
O23 - Driver R3: SteelSeries HID Service - (sshid) - C:\Windows\System32\drivers\sshid.sys (sign: 'Microsoft' - SteelSeries ApS)
O23 - Driver R3: SteelSeries Sonar Driver - (SteelSeries_Sonar_VAD) - C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys (sign: 'SteelSeries ApS')
O23 - Driver S3: "Microsoft Bluetooth A2dp driver" ; {Placeholder="Microsoft Bluetooth"} - (BthA2dp) - C:\Windows\System32\drivers\BthA2dp.sys (not signed - Microsoft Corporation - 0A28B364FDC725894B5116D38897C20E638DD43C)
O23 - Driver S3: "Microsoft Bluetooth Hands-Free Profile driver" ; {Placeholder="Microsoft Bluetooth"} - (BthHFEnum) - C:\Windows\System32\drivers\bthhfenum.sys (not signed - Microsoft Corporation - 12641FE9F6A4953C5C4394DC4DC7F4AD3A5F08F6)
O23 - Driver S3: AMD Crash Defender Manager Driver - (amdfendrmgr) - C:\Windows\System32\drivers\amdfendrmgr.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver S3: AMD Link Controller Emulation - (AMDXE) - C:\Windows\System32\drivers\amdxe.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver S3: atvi-randgrid - C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys (sign: 'Activision Publishing Inc')
O23 - Driver S3: atvi-randgrid_sr - C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\randgrid.sys (sign: 'Activision Publishing Inc')
O23 - Driver S3: Bluetooth Modem Communications Driver - (BTHMODEM) - C:\Windows\System32\drivers\bthmodem.sys (not signed - Microsoft Corporation - 98F206942E354585A70D8AA75BCE27FA7D86AB63)
O23 - Driver S3: cpuz157 - C:\Windows\temp\cpuz157\cpuz157_x64.sys (file missing)
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: IObitUnlocker - C:\Users\berke\OneDrive\Masaüstü\IObitUnlocker.sys (file missing)
O23 - Driver S3: KExplore - C:\Users\berke\AppData\Local\Temp\fb6d4caa-d00d-48be-abcc-ddabda7e4695_SkyFlick5.6.zip.695\SkyFlick5.6\KExplore.sys (file missing)
O23 - Driver S3: KRegExp - C:\Users\berke\AppData\Local\Temp\fb6d4caa-d00d-48be-abcc-ddabda7e4695_SkyFlick5.6.zip.695\SkyFlick5.6\KRegExp.sys (file missing)
O23 - Driver S3: R0SteelSeriesSystemMonitor - C:\Program Files\SteelSeries\GG\apps\engine\engineApps\system-stats\SteelSeriesSystemMonitor.sys (sign: 'Noriyuki MIYAZAKI')
O23 - Driver S3: Realtek NetAdapter Driver - (rt68cx21) - C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_0f3a2b5f72186666\rt68cx21x64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S3: SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.) - (ssudmdm) - C:\Windows\system32\DRIVERS\ssudmdm.sys (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.) - (dg_ssudbus) - C:\Windows\system32\DRIVERS\ssudbus2.sys (+safe mode) (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: SAMSUNG Mobile USB Connectivity Device Driver V2 - (ss_conn_usb_driver2) - C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys (+safe mode) (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: UniFairy_x64 - C:\Windows\system32\drivers\UniFairy_x64.sys (sign: 'Tencent Technology(Shenzhen) Company Limited')
O23 - Driver S3: unirsdt - C:\Windows\system32\drivers\unirsdt.sys (sign: 'Tencent Technology(Shenzhen) Company Limited')
O23 - Driver S3: xhunter1 - C:\Windows\xhunter1.sys (sign: 'Wellbia.com Co., Ltd.')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'klim6'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'klwtp.K4W-21-16'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'rt640x64'


--
End of file - Time spent: 15,6 sec. - 82590 bytes, CRC32: FFFFFFFF. Sign: ⫼砃

BERKE ALGL dedi:

Kod:

Logfile of HiJackThis+ (Plus) build 2024-02-06 Alpha v.3.4.0.3

Platform:  x64 Windows 11 (Pro), 10.0.22631.3085 (ReleaseId: 2009, 23H2), Service Pack: 0
Time:      07.02.2024 - 06:13 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory:    27034 MiB Free. Loading RAM (19 %), CPU (4 %)
Elevated:  Yes
Ran by:    berke    (group: Administrators; type: Microsoft) on FSHVIVWOOI, FirstRun: no

Internet Explorer: 11.1.22621.0
Default: "C:\Users\berke\AppData\Local\Programs\Opera GX\Launcher.exe" -noautoupdate -- "%1" (Opera GX Internet Browser)

Boot mode: Normal (Secure Boot: On)

Running processes:
Number | Path
   1  C:\Program Files (x86)\AdGuardVpn\AdGuardVpnSvc.exe
   2  C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe
   1  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.16\avp.exe
   1  C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.16\avpui.exe
   8  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\121.0.2277.98\msedgewebview2.exe
   1  C:\Program Files\AMD\CNext\CNext\amdow.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
   1  C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
   1  C:\Program Files\AMD\CNext\CNext\cncmd.exe
   1  C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
   1  C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
   1  C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
   1  C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
   1  C:\Program Files\SteelSeries\GG\apps\moments\SteelSeriesSvcLauncher.exe
   1  C:\Program Files\SteelSeries\GG\apps\sonar\SteelSeriesSonar.exe
   1  C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.3.14.0_x64__8wekyb3d8bbwe\PCManager\MSPCManager.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.3.14.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.3.14.0_x64__8wekyb3d8bbwe\PCManager\MSPCWndManager.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
  25  C:\Users\berke\AppData\Local\Programs\Opera GX\opera.exe
   1  C:\Users\berke\OneDrive\Masaüstü\Yeni klasör (2)\HiJackThis.exe
   2  C:\Windows\explorer.exe
   1  C:\Windows\System32\AMD\ANR\AMDNoiseSuppression.exe
   1  C:\Windows\System32\amdfendrsr.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\cmd.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_844e1459fc4a4c84\RtkAudUService64.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0399752.inf_amd64_b15dedb279802d6f\B399690\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\u0399752.inf_amd64_b15dedb279802d6f\B399690\atiesrxx.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   4  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  70  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\SysWOW64\dllhost.exe
   1  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = hxxps://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = hxxps://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: C:\Windows\System32\drivers\etc\45537ebm9h
O1 - Hosts: 127.0.0.1 user-cheat.com
O1 - Hosts: 127.0.0.1 vvv.user-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.user-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.user-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://user-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://user-cheat.com
O1 - Hosts: 127.0.0.1 est-cheat.net
O1 - Hosts: 127.0.0.1 vvv.est-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.est-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.est-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://est-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://est-cheat.net
O1 - Hosts: 127.0.0.1 playpro.tk
O1 - Hosts: 127.0.0.1 vvv.playpro.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.playpro.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.playpro.tk
O1 - Hosts: 127.0.0.1 hxxps://playpro.tk
O1 - Hosts: 127.0.0.1 hxxp://playpro.tk
O1 - Hosts: 127.0.0.1 typecheats.pro
O1 - Hosts: 127.0.0.1 vvv.typecheats.pro
O1 - Hosts: 127.0.0.1 hxxps://vvv.typecheats.pro
O1 - Hosts: 127.0.0.1 hxxp://vvv.typecheats.pro
O1 - Hosts: 127.0.0.1 hxxps://typecheats.pro
O1 - Hosts: 127.0.0.1 hxxp://typecheats.pro
O1 - Hosts: 127.0.0.1 mediahacker.net
O1 - Hosts: 127.0.0.1 vvv.mediahacker.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.mediahacker.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.mediahacker.net
O1 - Hosts: 127.0.0.1 hxxps://mediahacker.net
O1 - Hosts: 127.0.0.1 hxxp://mediahacker.net
O1 - Hosts: 127.0.0.1 oziicheat.com
O1 - Hosts: 127.0.0.1 vvv.oziicheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.oziicheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.oziicheat.com
O1 - Hosts: 127.0.0.1 hxxps://oziicheat.com
O1 - Hosts: 127.0.0.1 hxxp://oziicheat.com
O1 - Hosts: 127.0.0.1 taeprobot.ml
O1 - Hosts: 127.0.0.1 vvv.taeprobot.ml
O1 - Hosts: 127.0.0.1 hxxps://vvv.taeprobot.ml
O1 - Hosts: 127.0.0.1 hxxp://vvv.taeprobot.ml
O1 - Hosts: 127.0.0.1 hxxps://taeprobot.ml
O1 - Hosts: 127.0.0.1 hxxp://taeprobot.ml
O1 - Hosts: 127.0.0.1 hackerth.tk
O1 - Hosts: 127.0.0.1 vvv.hackerth.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.hackerth.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.hackerth.tk
O1 - Hosts: 127.0.0.1 hxxps://hackerth.tk
O1 - Hosts: 127.0.0.1 hxxp://hackerth.tk
O1 - Hosts: 127.0.0.1 objectcheat.net
O1 - Hosts: 127.0.0.1 vvv.objectcheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.objectcheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.objectcheat.net
O1 - Hosts: 127.0.0.1 hxxps://objectcheat.net
O1 - Hosts: 127.0.0.1 hxxp://objectcheat.net
O1 - Hosts: 127.0.0.1 xyzd3dd.com
O1 - Hosts: 127.0.0.1 vvv.xyzd3dd.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.xyzd3dd.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.xyzd3dd.com
O1 - Hosts: 127.0.0.1 hxxps://xyzd3dd.com
O1 - Hosts: 127.0.0.1 hxxp://xyzd3dd.com
O1 - Hosts: 127.0.0.1 oshack.xyz
O1 - Hosts: 127.0.0.1 vvv.oshack.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.oshack.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.oshack.xyz
O1 - Hosts: 127.0.0.1 hxxps://oshack.xyz
O1 - Hosts: 127.0.0.1 hxxp://oshack.xyz
O1 - Hosts: 127.0.0.1 mammothz.com
O1 - Hosts: 127.0.0.1 vvv.mammothz.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.mammothz.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.mammothz.com
O1 - Hosts: 127.0.0.1 hxxps://mammothz.com
O1 - Hosts: 127.0.0.1 hxxp://mammothz.com
O1 - Hosts: 127.0.0.1 zxcprobot.xyz
O1 - Hosts: 127.0.0.1 vvv.zxcprobot.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.zxcprobot.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.zxcprobot.xyz
O1 - Hosts: 127.0.0.1 hxxps://zxcprobot.xyz
O1 - Hosts: 127.0.0.1 hxxp://zxcprobot.xyz
O1 - Hosts: 127.0.0.1 cat-cheat.tk
O1 - Hosts: 127.0.0.1 vvv.cat-cheat.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.cat-cheat.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.cat-cheat.tk
O1 - Hosts: 127.0.0.1 hxxps://cat-cheat.tk
O1 - Hosts: 127.0.0.1 hxxp://cat-cheat.tk
O1 - Hosts: 127.0.0.1 only-th.net
O1 - Hosts: 127.0.0.1 vvv.only-th.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.only-th.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.only-th.net
O1 - Hosts: 127.0.0.1 hxxps://only-th.net
O1 - Hosts: 127.0.0.1 hxxp://only-th.net
O1 - Hosts: 127.0.0.1 playpro-z.xyz
O1 - Hosts: 127.0.0.1 vvv.playpro-z.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.playpro-z.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.playpro-z.xyz
O1 - Hosts: 127.0.0.1 hxxps://playpro-z.xyz
O1 - Hosts: 127.0.0.1 hxxp://playpro-z.xyz
O1 - Hosts: 127.0.0.1 1sk-cheat.net
O1 - Hosts: 127.0.0.1 vvv.1sk-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.1sk-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.1sk-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://1sk-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://1sk-cheat.net
O1 - Hosts: 127.0.0.1 my-cheat.com
O1 - Hosts: 127.0.0.1 vvv.my-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.my-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.my-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://my-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://my-cheat.com
O1 - Hosts: 127.0.0.1 th-pro.xyz
O1 - Hosts: 127.0.0.1 vvv.th-pro.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.th-pro.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.th-pro.xyz
O1 - Hosts: 127.0.0.1 hxxps://th-pro.xyz
O1 - Hosts: 127.0.0.1 hxxp://th-pro.xyz
O1 - Hosts: 127.0.0.1 0x64.biz
O1 - Hosts: 127.0.0.1 vvv.0x64.biz
O1 - Hosts: 127.0.0.1 hxxps://vvv.0x64.biz
O1 - Hosts: 127.0.0.1 hxxp://vvv.0x64.biz
O1 - Hosts: 127.0.0.1 hxxps://0x64.biz
O1 - Hosts: 127.0.0.1 hxxp://0x64.biz
O1 - Hosts: 127.0.0.1 yami-cheat.net
O1 - Hosts: 127.0.0.1 vvv.yami-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.yami-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.yami-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://yami-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://yami-cheat.net
O1 - Hosts: 127.0.0.1 0x64-esp.com
O1 - Hosts: 127.0.0.1 vvv.0x64-esp.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.0x64-esp.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.0x64-esp.com
O1 - Hosts: 127.0.0.1 hxxps://0x64-esp.com
O1 - Hosts: 127.0.0.1 hxxp://0x64-esp.com
O1 - Hosts: 127.0.0.1 isus-pro.com
O1 - Hosts: 127.0.0.1 vvv.isus-pro.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.isus-pro.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.isus-pro.com
O1 - Hosts: 127.0.0.1 hxxps://isus-pro.com
O1 - Hosts: 127.0.0.1 hxxp://isus-pro.com
O1 - Hosts: 127.0.0.1 bbcheats.net
O1 - Hosts: 127.0.0.1 vvv.bbcheats.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.bbcheats.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.bbcheats.net
O1 - Hosts: 127.0.0.1 hxxps://bbcheats.net
O1 - Hosts: 127.0.0.1 hxxp://bbcheats.net
O1 - Hosts: 127.0.0.1 varlinpro.com
O1 - Hosts: 127.0.0.1 vvv.varlinpro.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.varlinpro.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.varlinpro.com
O1 - Hosts: 127.0.0.1 hxxps://varlinpro.com
O1 - Hosts: 127.0.0.1 hxxp://varlinpro.com
O1 - Hosts: 127.0.0.1 dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 vvv.dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 hxxps://dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 hxxp://dragon-cheat.xyz
O1 - Hosts: 127.0.0.1 shoppro.link
O1 - Hosts: 127.0.0.1 vvv.shoppro.link
O1 - Hosts: 127.0.0.1 hxxps://vvv.shoppro.link
O1 - Hosts: 127.0.0.1 hxxp://vvv.shoppro.link
O1 - Hosts: 127.0.0.1 hxxps://shoppro.link
O1 - Hosts: 127.0.0.1 hxxp://shoppro.link
O1 - Hosts: 127.0.0.1 d3dxz.com
O1 - Hosts: 127.0.0.1 vvv.d3dxz.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.d3dxz.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.d3dxz.com
O1 - Hosts: 127.0.0.1 hxxps://d3dxz.com
O1 - Hosts: 127.0.0.1 hxxp://d3dxz.com
O1 - Hosts: 127.0.0.1 zexternal.com
O1 - Hosts: 127.0.0.1 vvv.zexternal.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.zexternal.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.zexternal.com
O1 - Hosts: 127.0.0.1 hxxps://zexternal.com
O1 - Hosts: 127.0.0.1 hxxp://zexternal.com
O1 - Hosts: 127.0.0.1 pro-th.xyz
O1 - Hosts: 127.0.0.1 vvv.pro-th.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.pro-th.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.pro-th.xyz
O1 - Hosts: 127.0.0.1 hxxps://pro-th.xyz
O1 - Hosts: 127.0.0.1 hxxp://pro-th.xyz
O1 - Hosts: 127.0.0.1 scottcheat.com
O1 - Hosts: 127.0.0.1 vvv.scottcheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.scottcheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.scottcheat.com
O1 - Hosts: 127.0.0.1 hxxps://scottcheat.com
O1 - Hosts: 127.0.0.1 hxxp://scottcheat.com
O1 - Hosts: 127.0.0.1 g7-prox2.com
O1 - Hosts: 127.0.0.1 vvv.g7-prox2.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.g7-prox2.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.g7-prox2.com
O1 - Hosts: 127.0.0.1 hxxps://g7-prox2.com
O1 - Hosts: 127.0.0.1 hxxp://g7-prox2.com
O1 - Hosts: 127.0.0.1 nguhex.tk
O1 - Hosts: 127.0.0.1 vvv.nguhex.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.nguhex.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.nguhex.tk
O1 - Hosts: 127.0.0.1 hxxps://nguhex.tk
O1 - Hosts: 127.0.0.1 hxxp://nguhex.tk
O1 - Hosts: 127.0.0.1 zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 vvv.zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 hxxps://zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 hxxp://zerotwox2-cheat.net
O1 - Hosts: 127.0.0.1 nguhex.com
O1 - Hosts: 127.0.0.1 vvv.nguhex.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.nguhex.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.nguhex.com
O1 - Hosts: 127.0.0.1 hxxps://nguhex.com
O1 - Hosts: 127.0.0.1 hxxp://nguhex.com
O1 - Hosts: 127.0.0.1 nguhex.net
O1 - Hosts: 127.0.0.1 vvv.nguhex.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.nguhex.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.nguhex.net
O1 - Hosts: 127.0.0.1 hxxps://nguhex.net
O1 - Hosts: 127.0.0.1 hxxp://nguhex.net
O1 - Hosts: 127.0.0.1 maxprobot.xyz
O1 - Hosts: 127.0.0.1 vvv.maxprobot.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.maxprobot.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.maxprobot.xyz
O1 - Hosts: 127.0.0.1 hxxps://maxprobot.xyz
O1 - Hosts: 127.0.0.1 hxxp://maxprobot.xyz
O1 - Hosts: 127.0.0.1 zenitsu-cheat
O1 - Hosts: 127.0.0.1 vvv.zenitsu-cheat
O1 - Hosts: 127.0.0.1 hxxps://vvv.zenitsu-cheat
O1 - Hosts: 127.0.0.1 hxxp://vvv.zenitsu-cheat
O1 - Hosts: 127.0.0.1 hxxps://zenitsu-cheat
O1 - Hosts: 127.0.0.1 hxxp://zenitsu-cheat
O1 - Hosts: 127.0.0.1 cracky-cheat.com
O1 - Hosts: 127.0.0.1 vvv.cracky-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://vvv.cracky-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://vvv.cracky-cheat.com
O1 - Hosts: 127.0.0.1 hxxps://cracky-cheat.com
O1 - Hosts: 127.0.0.1 hxxp://cracky-cheat.com
O1 - Hosts: 127.0.0.1 stoneshop.me
O1 - Hosts: 127.0.0.1 vvv.stoneshop.me
O1 - Hosts: 127.0.0.1 hxxps://vvv.stoneshop.me
O1 - Hosts: 127.0.0.1 hxxp://vvv.stoneshop.me
O1 - Hosts: 127.0.0.1 hxxps://stoneshop.me
O1 - Hosts: 127.0.0.1 hxxp://stoneshop.me
O1 - Hosts: 127.0.0.1 dx-hax.net
O1 - Hosts: 127.0.0.1 vvv.dx-hax.net
O1 - Hosts: 127.0.0.1 hxxps://vvv.dx-hax.net
O1 - Hosts: 127.0.0.1 hxxp://vvv.dx-hax.net
O1 - Hosts: 127.0.0.1 hxxps://dx-hax.net
O1 - Hosts: 127.0.0.1 hxxp://dx-hax.net
O1 - Hosts: 127.0.0.1 gib-cheat.tk
O1 - Hosts: 127.0.0.1 vvv.gib-cheat.tk
O1 - Hosts: 127.0.0.1 hxxps://vvv.gib-cheat.tk
O1 - Hosts: 127.0.0.1 hxxp://vvv.gib-cheat.tk
O1 - Hosts: 127.0.0.1 hxxps://gib-cheat.tk
O1 - Hosts: 127.0.0.1 hxxp://gib-cheat.tk
O1 - Hosts: 127.0.0.1 execheats.xyz
O1 - Hosts: 127.0.0.1 vvv.execheats.xyz
O1 - Hosts: 127.0.0.1 hxxps://vvv.execheats.xyz
O1 - Hosts: 127.0.0.1 hxxp://vvv.execheats.xyz
O1 - Hosts: 127.0.0.1 hxxps://execheats.xyz
O1 - Hosts: 127.0.0.1 hxxp://execheats.xyz
O1 - Hosts.ICS: 127.0.0.1 localhost
O1 - Hosts.ICS: ::1 localhost
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll (sign: 'Oracle America, Inc.')
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre-1.8\bin\ssv.dll (sign: 'Oracle America, Inc.')
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre-1.8\bin\jp2ssv.dll (sign: 'Oracle America, Inc.')
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre-1.8\bin\ssv.dll (sign: 'Oracle America, Inc.')
O4 - HKCU\..\Run: [AMDNoiseSuppression] = C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe (sign: 'Advanced Micro Devices Inc.')
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\berke\AppData\Local\Discord\Update.exe --processStart Discord.exe (2023/07/21) (sign: 'Discord Inc.')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_8843045CE79A396D0483BAC25CD52E21] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (2023/07/21) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [Opera GX Browser Assistant] = C:\Users\berke\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe (2023/07/21) (sign: 'Opera Norway AS')
O4 - HKCU\..\StartupApproved\Run: [Opera GX Stable] = C:\Users\berke\AppData\Local\Programs\Opera GX\launcher.exe (2023/07/21) (sign: 'Opera Norway AS')
O4 - HKCU\..\StartupApproved\Run: [RiotClient] = C:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (2023/07/21) (sign: 'Riot Games, Inc.')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2023/07/21) (sign: 'Valve Corp.')
O4 - HKCU\Control Panel\Desktop: [SCRNSAVE.EXE] = C:\Windows\SysWOW64\launcher.scr (sign: 'Riot Games, Inc.')
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_844e1459fc4a4c84\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\Run: [SteelSeriesGG] = C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe -dataPath="C:\ProgramData\SteelSeries\GG" -dbEnv=production -auto=true (sign: 'SteelSeries ApS')
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Users\berke\Local Settings\Microsoft\Windows\WebCache\WebCacheV01.jfm -> DELETE
O4 - HKLM\..\StartupApproved\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe (2024/01/31) (sign: 'Riot Games, Inc.')
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (2023/10/11) (sign: 'Microsoft')
O4 - HKLM\..\StartupApproved\Run32: [AdGuardVpn] = C:\Program Files (x86)\AdGuardVpn\AdGuardVpn.exe /nosplash (2024/01/01) (sign: 'Adguard Software Limited')
O4 - HKLM\..\StartupApproved\Run32: [Discord] = C:\ProgramData\SquirrelMachineInstalls\Discord.exe --checkInstall (2023/10/11) (sign: 'Discord Inc.')
O4 - HKLM\..\StartupApproved\Run32: [LeagueDisplays] = C:\Riot Games\LeagueDisplays\assistant\LeagueDisplaysAssistant.exe /onWindowsStart (2023/08/31) (not signed - no company - B5713F46A75A5B18F1B0EEE05E55F008F3E19A47)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2023/10/03) (sign: 'Oracle America, Inc.')
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk    ->    C:\Program Files (x86)\AnyDesk\AnyDesk.exe --control (2023/10/01) (sign: 'philandro Software GmbH')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiSpyware] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiVirus] = 1
O7 - TroubleShooting (EV): HKLM\..\Environment: [PSModulePath] = %ProgramFiles(x86)%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules (Missing: %ProgramFiles%\WindowsPowerShell\Modules)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (file missing)
O17 - DHCP DNS 1: 192.168.1.1
O17 - HKLM\Software\..\Telephony: [DomainName] = fsHVIVwoOI
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: [Domain] = fsHVIVwoOI
O22 - Task (.job): update-S-1-5-21-1297163635-1600585970-1943179299-1003.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Task (.job): update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Tasks: !Kaspersky Setup Restricted - C:\Windows\temp\CFF249AA9C35EE11FB619F215E95916A\startup.exe /-restricted_service (file missing)
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (user missing) (sign: 'Microsoft')
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (user missing) (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\Windows\system32\fclip.exe (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\Windows\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (disabled) DB Bigupgrade Task (One Time) - C:\Program Files (x86)\IObit\Driver Booster\Pub\dbupgrade.exe /upgrade /round=1 (sign: 'IObit CO., LTD')
O22 - Tasks: (disabled) Driver Booster Update - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\AutoUpdate.exe /auto (sign: 'IObit CO., LTD')
O22 - Tasks: (disabled) DriverFix - C:\Program Files (x86)\DriverFix\DriverFix.exe -auto (file missing)
O22 - Tasks: (disabled) update-S-1-5-21-1297163635-1600585970-1943179299-1003 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: (disabled) update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\Windows\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: \ASUS\P508PowerAgent_sdk - C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (file missing)
O22 - Tasks: \Microsoft\Windows\PLA\CPU - {FF679DA1-8FF2-4474-9C9E-52BBD409B557},CPU|$(Arg0) - C:\Windows\system32\pla.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\PLA\GPU - {FF679DA1-8FF2-4474-9C9E-52BBD409B557},GPU|$(Arg0) - C:\Windows\system32\pla.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (file missing)
O22 - Tasks: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (sign: 'Adobe Inc.')
O22 - Tasks: AMDAutoUpdate - C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: AMDInstallLauncher - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe /InstallAUEP (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: AMDInstallUEP - C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: AMDLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -AMDLinkUpdate (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: AMDRyzenMasterSDKTask - C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: BlueStacksHelper_nxt - C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe -sr (file missing)
O22 - Tasks: Cloud - C:\Program Files\GIGABYTE\Control Center\GbtCloudMatrix.exe (sign: 'GIGA-BYTE TECHNOLOGY CO., LTD.')
O22 - Tasks: Driver Booster Scheduler - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\Scheduler.exe /scheduler (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster SkipUAC (berke) - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\DriverBooster.exe /skipuac (sign: 'IObit CO., LTD')
O22 - Tasks: Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} - C:\Program Files\Common Files\AV\Kaspersky\upgrade_launcher.exe /waitUpgrade (sign: 'AO Kaspersky Lab')
O22 - Tasks: ModifyLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -UpdateCurrentUser (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-1297163635-1600585970-1943179299-1003 - C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: Opera GX scheduled assistant Autoupdate 1689947476 - C:\Users\berke\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate --component-name=assistant --component-path="C:\Users\berke\AppData\Local\Programs\Opera GX\assistant" $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks: Opera GX scheduled Autoupdate 1689947469 - C:\Users\berke\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks: StartAUEP - C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay (sign: 'Advanced Micro Devices Inc.')
O22 - Tasks: StartDVR - C:\Program Files\AMD\CNext\CNext\RSServCmd.exe (sign: 'Advanced Micro Devices Inc.')
O23 - Service R2: Adguard VPN Service - C:\Program Files (x86)\AdGuardVpn\AdGuardVpnSvc.exe (sign: 'Adguard Software Limited')
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (sign: 'Adobe Inc.')
O23 - Service R2: AMD Crash Defender Service - C:\Windows\System32\amdfendrsr.exe (sign: 'Microsoft')
O23 - Service R2: AMD External Events Utility - C:\Windows\System32\DriverStore\FileRepository\u0399752.inf_amd64_b15dedb279802d6f\B399690\atiesrxx.exe (sign: 'Advanced Micro Devices Inc.')
O23 - Service R2: Kaspersky Hizmeti 21.16 - (AVP21.16) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.16\avp.exe -r (sign: 'Kaspersky Lab JSC')
O23 - Service R2: PCManager Service (Store) - (PCManager Service Store) - C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.3.14.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe (sign: 'Microsoft')
O23 - Service S2: AnyDesk Service - (AnyDesk) - C:\Program Files (x86)\AnyDesk\AnyDesk.exe --service (sign: 'philandro Software GmbH')
O23 - Service S2: AsusUpdateCheck - C:\Windows\System32\AsusUpdateCheck.exe (sign: 'ASUSTeK Computer Inc.')
O23 - Service S2: Microsoft Update Health Service - (uhssvc) - C:\Program Files\Microsoft Update Health Tools\uhssvc.exe (file missing)
O23 - Service S2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe (sign: 'Tencent Technology(Shenzhen) Company Limited')
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe (sign: 'BattlEye Innovations e.K.')
O23 - Service S3: Easy Anti-Cheat (Epic Online Services) - (EasyAntiCheat_EOS) - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (sign: 'EasyAntiCheat Oy')
O23 - Service S3: FileSyncHelper - C:\Program Files\Microsoft OneDrive\24.010.0114.0003\FileSyncHelper.exe (sign: 'Microsoft')
O23 - Service S3: Gameforge Client Service - (GameforgeClientService) - C:\Program Files (x86)\GameforgeClient\gfservice.exe (sign: 'Gameforge 4D GmbH')
O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 21.16 - (klvssbridge64_21.16) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.16\x64\vssbridge64.exe (sign: 'AO Kaspersky Lab')
O23 - Service S3: OneDrive Updater Service - C:\Program Files\Microsoft OneDrive\24.010.0114.0003\OneDriveUpdaterService.exe (sign: 'Microsoft')
O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe (file missing)
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe (sign: 'Riot Games, Inc.')
O23 - Driver R0: AMD PCI Root Bus Lower Filter - (amdkmpfd) - C:\Windows\System32\drivers\amdkmpfd.sys (+safe mode) (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\Windows\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R0: AO Kaspersky Lab Cryptographic Module x64 (56 bit) - (cm_km) - C:\Windows\system32\DRIVERS\cm_km.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-16_arkmon - C:\Windows\System32\Drivers\klupd_K4W-21-16_arkmon.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R0: klupd_K4W-21-16_klbg - C:\Windows\System32\Drivers\klupd_K4W-21-16_klbg.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: adgvpnnetworkwfpdrv - C:\Windows\system32\drivers\adgvpnnetworkwfpdrv.sys (+safe mode) (sign: 'Microsoft' - Adguard Software Limited)
O23 - Driver R1: Asusgio3 - C:\Windows\system32\drivers\AsIO3.sys (sign: 'ASUSTeK COMPUTER INC.')
O23 - Driver R1: Kaspersky Anti-Virus NDIS 6 Filter - (klim6) - C:\Windows\system32\DRIVERS\klim6.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Driver.K4W-21-16 - (KLIF.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klif.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab format recognizer driver.K4W-21-16 - (klpd.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klpd.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Kernel DLL.K4W-21-16 - (klflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klbackupdisk.K4W-21-16 - (klbackupdisk.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klbackupdisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klbackupflt.K4W-21-16 - (klbackupflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klbackupflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab KLKBDFLT.K4W-21-16 - (klkbdflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klkbdflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab klpnpflt.K4W-21-16 - (klpnpflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klpnpflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab Security Extender Driver.K4W-21-16 - (klgse.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klgse.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: Kaspersky Lab service driver.K4W-21-16 - (klhk.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klhk.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kldisk.K4W-21-16 - C:\Windows\system32\DRIVERS\K4W-21-16\kldisk.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: klwtp.K4W-21-16 - C:\Windows\system32\DRIVERS\K4W-21-16\klwtp.sys (+safe mode) (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: kneps.K4W-21-16 - C:\Windows\system32\DRIVERS\K4W-21-16\kneps.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R1: MSIO - C:\Windows\system32\drivers\MsIo64.sys (sign: 'Microsoft' - MICSYS Technology Co., LTd)
O23 - Driver R1: sndeap - C:\Windows\system32\drivers\sndeap.sys (sign: 'PROMOSOFT CORPORATION')
O23 - Driver R2: AMDRyzenMasterDriverV20 - C:\Program Files\AMD\Performance Profile Client\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV21 - C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R2: AMDRyzenMasterDriverV22 - C:\Windows\system32\AMDRyzenMasterDriver.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R2: aow_drv - C:\Program Files\TxGameAssistant\UI\3.21.4873.80\aow_drv_x64_ev.sys (sign: 'Tencent Technology(Shenzhen) Company Limited')
O23 - Driver R2: BlueStacks Hypervisor_nxt - (BlueStacksDrv_nxt) - C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys (sign: 'Microsoft' - Bluestack System Inc.)
O23 - Driver R2: inpoutx64 - C:\Windows\System32\Drivers\inpoutx64.sys (sign: 'Red Fox UK Limited')
O23 - Driver R3: AMD Crash Defender Driver - (amdfendr) - C:\Windows\System32\drivers\amdfendr.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Function Driver for HD Audio Service - (AtiHDAudioService) - C:\Windows\system32\drivers\AtihdWT6.sys (sign: 'Microsoft' - Advanced Micro Devices)
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\Windows\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices INC.')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\Windows\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: AMD PCI - (AMDPCIDev) - C:\Windows\System32\drivers\AMDPCIDev.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AMD Special Tools Driver - (AmdTools64) - C:\Windows\System32\drivers\AmdTools64.sys (sign: 'Microsoft' - no company)
O23 - Driver R3: AMDSAFD - C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: amduw23g - C:\Windows\System32\DriverStore\FileRepository\u0399752.inf_amd64_b15dedb279802d6f\B399690\amdkmdag.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: Kaspersky Lab KLMOUFLT.K4W-21-16 - (klmouflt.K4W-21-16) - C:\Windows\system32\DRIVERS\K4W-21-16\klmouflt.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klids.K4W-21-16 - C:\ProgramData\Kaspersky Lab\AVP21.16\Bases\klids.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-16_klark - C:\Windows\System32\Drivers\klupd_K4W-21-16_klark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: klupd_K4W-21-16_mark - C:\Windows\System32\Drivers\klupd_K4W-21-16_mark.sys (sign: 'Microsoft' - AO Kaspersky Lab)
O23 - Driver R3: Realtek RT640 NT Driver - (rt640x64) - C:\Windows\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\Windows\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: SteelSeries Device Factory Service - (ssdevfactory) - C:\Windows\System32\drivers\ssdevfactory.sys (sign: 'Microsoft' - SteelSeries ApS)
O23 - Driver R3: SteelSeries HID Service - (sshid) - C:\Windows\System32\drivers\sshid.sys (sign: 'Microsoft' - SteelSeries ApS)
O23 - Driver R3: SteelSeries Sonar Driver - (SteelSeries_Sonar_VAD) - C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys (sign: 'SteelSeries ApS')
O23 - Driver S3: "Microsoft Bluetooth A2dp driver" ; {Placeholder="Microsoft Bluetooth"} - (BthA2dp) - C:\Windows\System32\drivers\BthA2dp.sys (not signed - Microsoft Corporation - 0A28B364FDC725894B5116D38897C20E638DD43C)
O23 - Driver S3: "Microsoft Bluetooth Hands-Free Profile driver" ; {Placeholder="Microsoft Bluetooth"} - (BthHFEnum) - C:\Windows\System32\drivers\bthhfenum.sys (not signed - Microsoft Corporation - 12641FE9F6A4953C5C4394DC4DC7F4AD3A5F08F6)
O23 - Driver S3: AMD Crash Defender Manager Driver - (amdfendrmgr) - C:\Windows\System32\drivers\amdfendrmgr.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver S3: AMD Link Controller Emulation - (AMDXE) - C:\Windows\System32\drivers\amdxe.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver S3: atvi-randgrid - C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys (sign: 'Activision Publishing Inc')
O23 - Driver S3: atvi-randgrid_sr - C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\randgrid.sys (sign: 'Activision Publishing Inc')
O23 - Driver S3: Bluetooth Modem Communications Driver - (BTHMODEM) - C:\Windows\System32\drivers\bthmodem.sys (not signed - Microsoft Corporation - 98F206942E354585A70D8AA75BCE27FA7D86AB63)
O23 - Driver S3: cpuz157 - C:\Windows\temp\cpuz157\cpuz157_x64.sys (file missing)
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: IObitUnlocker - C:\Users\berke\OneDrive\Masaüstü\IObitUnlocker.sys (file missing)
O23 - Driver S3: KExplore - C:\Users\berke\AppData\Local\Temp\fb6d4caa-d00d-48be-abcc-ddabda7e4695_SkyFlick5.6.zip.695\SkyFlick5.6\KExplore.sys (file missing)
O23 - Driver S3: KRegExp - C:\Users\berke\AppData\Local\Temp\fb6d4caa-d00d-48be-abcc-ddabda7e4695_SkyFlick5.6.zip.695\SkyFlick5.6\KRegExp.sys (file missing)
O23 - Driver S3: R0SteelSeriesSystemMonitor - C:\Program Files\SteelSeries\GG\apps\engine\engineApps\system-stats\SteelSeriesSystemMonitor.sys (sign: 'Noriyuki MIYAZAKI')
O23 - Driver S3: Realtek NetAdapter Driver - (rt68cx21) - C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_0f3a2b5f72186666\rt68cx21x64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S3: SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.) - (ssudmdm) - C:\Windows\system32\DRIVERS\ssudmdm.sys (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.) - (dg_ssudbus) - C:\Windows\system32\DRIVERS\ssudbus2.sys (+safe mode) (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: SAMSUNG Mobile USB Connectivity Device Driver V2 - (ss_conn_usb_driver2) - C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys (+safe mode) (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: UniFairy_x64 - C:\Windows\system32\drivers\UniFairy_x64.sys (sign: 'Tencent Technology(Shenzhen) Company Limited')
O23 - Driver S3: unirsdt - C:\Windows\system32\drivers\unirsdt.sys (sign: 'Tencent Technology(Shenzhen) Company Limited')
O23 - Driver S3: xhunter1 - C:\Windows\xhunter1.sys (sign: 'Wellbia.com Co., Ltd.')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'klim6'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'klwtp.K4W-21-16'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'rt640x64'


--
End of file - Time spent: 15,6 sec. - 82590 bytes, CRC32: FFFFFFFF. Sign: ⫼砃

Kusura bakmayın not ekledim sanıp mesajı göndermişim bilgisayarımda fps düşüşü var ve bilgisayarım fazlası ile geç kapanmaya başladı

Murat5038 · 9 Şubat 2024

BERKE ALGL dedi:
Kusura bakmayın, not ekledim sanıp mesajı göndermişim. Bilgisayarımda FPS düşüşü var ve bilgisayarım fazlası ile geç kapanmaya başladı.

İlk olarak temiz önyükleme yapıp işlemlere devam edin. Sürücü bulucu kullanmışssınız, bir daha kullanmayın ve temizleyin.

Hosts dosyasını sıfırlayın:

Hosts dosyasını varsayılana sıfırlama - Microsoft Desteği

Bu makalede Hosts dosyasının varsayılanına nasıl sıfırlanacağı açıklanmaktadır.

support.microsoft.com

Bunları fixleyin:

Kod:

O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_8843045CE79A396D0483BAC25CD52E21] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (2023/07/21) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [Opera GX Browser Assistant] = C:\Users\berke\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe (2023/07/21) (sign: 'Opera Norway AS')
O4 - HKCU\..\StartupApproved\Run: [Opera GX Stable] = C:\Users\berke\AppData\Local\Programs\Opera GX\launcher.exe (2023/07/21) (sign: 'Opera Norway AS')
O4 - HKCU\Control Panel\Desktop: [SCRNSAVE.EXE] = C:\Windows\SysWOW64\launcher.scr (sign: 'Riot Games, Inc.')
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Users\berke\Local Settings\Microsoft\Windows\WebCache\WebCacheV01.jfm -> DELETE
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (2023/10/11) (sign: 'Microsoft')
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O17 - HKLM\Software\..\Telephony: [DomainName] = fsHVIVwoOI
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: [Domain] = fsHVIVwoOI
O22 - Tasks: !Kaspersky Setup Restricted - C:\Windows\temp\CFF249AA9C35EE11FB619F215E95916A\startup.exe /-restricted_service (file missing)
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (user missing) (sign: 'Microsoft')
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (user missing) (sign: 'Microsoft')
O22 - Tasks: (disabled) DB Bigupgrade Task (One Time) - C:\Program Files (x86)\IObit\Driver Booster\Pub\dbupgrade.exe /upgrade /round=1 (sign: 'IObit CO., LTD')
O22 - Tasks: (disabled) Driver Booster Update - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\AutoUpdate.exe /auto (sign: 'IObit CO., LTD')
O22 - Tasks: (disabled) DriverFix - C:\Program Files (x86)\DriverFix\DriverFix.exe -auto (file missing)
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: Driver Booster Scheduler - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\Scheduler.exe /scheduler (sign: 'IObit CO., LTD')
O22 - Tasks: Driver Booster SkipUAC (berke) - C:\Program Files (x86)\IObit\Driver Booster\11.1.0\DriverBooster.exe /skipuac (sign: 'IObit CO., LTD')
O23 - Driver S3: cpuz157 - C:\Windows\temp\cpuz157\cpuz157_x64.sys (file missing)
O23 - Driver S3: IObitUnlocker - C:\Users\berke\OneDrive\Masaüstü\IObitUnlocker.sys (file missing)
O23 - Driver S3: KExplore - C:\Users\berke\AppData\Local\Temp\fb6d4caa-d00d-48be-abcc-ddabda7e4695_SkyFlick5.6.zip.695\SkyFlick5.6\KExplore.sys (file missing)
O23 - Driver S3: KRegExp - C:\Users\berke\AppData\Local\Temp\fb6d4caa-d00d-48be-abcc-ddabda7e4695_SkyFlick5.6.zip.695\SkyFlick5.6\KRegExp.sys (file missing)

kurga243 · 12 Şubat 2024


[CODE]Logfile of HiJackThis+ (Plus) build 2024-02-08 Alpha v.3.4.0.4
Platform: x64 Windows 10 (Home), 10.0.19045.3930 (ReleaseId: 2009, 22H2), Service Pack: 0
Time: 12.02.2024 - 02:55 (UTC+03:00)
Language: OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Memory: 11471 MiB Free. Loading RAM (31 %), CPU (9 %)
Elevated: Yes
Ran by: gener (group: Administrators; type: Microsoft) on DESKTOP-5MMH4LA, FirstRun: yes
Chrome: 121.0.6167.161
Internet Explorer: 11.0.19041.3636
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)
Boot mode: Normal (Secure Boot: Off)
Running processes:
Number | Path
1 C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
1 C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
1 C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
1 C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
1 C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
1 C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
1 C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
1 C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe
33 C:\Program Files\Google\Chrome\Application\chrome.exe
2 C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
1 C:\Program Files\WindowsApps\microsoft.windows.photos_2024.11010.23003.0_x64__8wekyb3d8bbwe\PhotosApp.exe
2 C:\Program Files\WindowsApps\microsoft.windows.photos_2024.11010.23003.0_x64__8wekyb3d8bbwe\PhotosService\PhotosService.exe
6 C:\Users\gener.DESKTOP-5MMH4LA\AppData\Local\Discord\app-1.0.9032\Discord.exe
1 C:\Users\gener.DESKTOP-5MMH4LA\AppData\Local\Temp\Rar$EXa11352.13197\HiJackThis.exe
1 C:\Windows\explorer.exe
1 C:\Windows\System32\ApplicationFrameHost.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\CompPkgSrv.exe
1 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
1 C:\Windows\System32\dasHost.exe
2 C:\Windows\System32\dllhost.exe
2 C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_a3a35b9b20ddd8f1\Display.NvContainer\NVDisplay.Container.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\mmc.exe
1 C:\Windows\System32\msdtc.exe
2 C:\Windows\System32\RtkAudUService64.exe
1 C:\Windows\System32\rundll32.exe
4 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
2 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\SgrmBroker.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
69 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\Taskmgr.exe
1 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\121.0.6167.161\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - HKCU\..\Run: [Discord] = C:\Users\gener.DESKTOP-5MMH4LA\AppData\Local\Discord\Update.exe --processStart Discord.exe (sign: 'Discord Inc.')
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_078848C872E0FDB87E5E545FF74B8F47] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (2024/02/11) (sign: 'Microsoft')
O4 - HKCU\..\StartupApproved\Run: [RiotClient] = D:\Riot Games\Riot Client\RiotClientServices.exe --launch-background-mode (2024/02/11) (sign: 'Riot Games, Inc.')
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2024/02/11) (sign: 'Valve Corp.')
O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = c:\program files (x86)\iobit\advanced systemcare\drivers\win10_amd64 -> DELETE (file missing)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Windows\system32\SecurityHealthSystray.exe (sign: 'Microsoft')
O4-32 - HKLM\..\Run: [Lightshot] = C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe (sign: 'Kilonova LLC')
O4-32 - HKLM\..\Run: [PSUAMain] = C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe /LaunchSysTray (sign: 'Panda Security S.L.')
O5 - Applet: C:\Windows\System32\RTSnMg64.cpl (sign: 'Realtek Semiconductor Corp.')
O7 - Policy: (UAC) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System: [PromptOnSecureDesktop] = 0
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiSpyware] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiVirus] = 1
O7 - Policy: HKLM\Software\Microsoft\Windows Defender\Features: [TamperProtection] = 4
O7 - Policy: HKLM\Software\Microsoft\Windows Defender\Real-Time Protection: [DisableRealtimeMonitoring] = 1
O7 - Policy: HKLM\Software\Policies\Microsoft\Windows Defender: [DisableAntiSpyware] = 1
O7 - Policy: HKLM\Software\Policies\Microsoft\Windows Defender: [DisableAntiVirus] = 1
O17 - DHCP DNS 1: 192.168.1.1
O22 - Task (.job): update-S-1-5-21-3075894536-1912265950-2290956415-1001.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Task (.job): update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (sign: 'OOO Lightshot')
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (user missing) (sign: 'Microsoft')
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (user missing) (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: (telemetry) NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: \Microsoft\Windows\SMB\UninstallSMB1ClientTask - C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& C:\Windows\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client" (sign: '')
O22 - Tasks: \Microsoft\Windows\SMB\UninstallSMB1ServerTask - C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& C:\Windows\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server" (sign: '')
O22 - Tasks: ASC_SkipUac_gener - C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac (file missing)
O22 - Tasks: GoogleUpdateTaskMachineCore{90F52B49-E8AE-4FED-B3F4-104D0D7280F7} - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c (sign: 'Google LLC')
O22 - Tasks: GoogleUpdateTaskMachineUA{B9A2F35C-5B51-4BE9-824C-55AB61129EEC} - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (sign: 'Google LLC')
O22 - Tasks: IObit VltSale (One-Time) - C:\Program Files (x86)\IObit\Driver Booster\Pub\vltsale.exe /vlt (file missing)
O22 - Tasks: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log (sign: 'NVIDIA Corporation')
O22 - Tasks: NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler (sign: 'NVIDIA Corporation')
O22 - Tasks: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (sign: 'NVIDIA Corporation')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-3075894536-1912265950-2290956415-1001 - C:\Users\gener.DESKTOP-5MMH4LA\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: Opera GX scheduled Autoupdate 1707672608 - C:\Users\gener.DESKTOP-5MMH4LA\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (sign: 'Opera Norway AS')
O22 - Tasks: update-S-1-5-21-3075894536-1912265950-2290956415-1001 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O22 - Tasks: update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate (sign: 'OOO Lightshot')
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_a3a35b9b20ddd8f1\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_a3a35b9b20ddd8f1\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem /ert (sign: 'NVIDIA Corporation')
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" (sign: 'NVIDIA Corporation')
O23 - Service R2: Panda Cloud Antivirus Service - (NanoServiceMain) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (sign: 'Panda Security S.L.') (+safe mode)
O23 - Service R2: Panda Devices Agent - (PandaAgent) - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (sign: 'Panda Security S.L.')
O23 - Service R2: Panda Elam Service Protection - (pselamsvc) - C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe (sign: 'Panda Security S.L.')
O23 - Service R2: Panda Product Service - (PSUAService) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (sign: 'Panda Security S.L.') (+safe mode)
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc (sign: 'Google LLC')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\121.0.6167.161\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc (sign: 'Google LLC')
O23 - Service S3: NVIDIA FrameView SDK service - (FvSvc) - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -service (sign: 'NVIDIA Corporation')
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService (sign: 'Valve Corp.')
O23 - Driver R0: AMD PSP Service - (amdpsp) - C:\Windows\System32\drivers\amdpsp.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R1: NNSDNS - C:\Windows\system32\DRIVERS\NNSDNS.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSHTTP - C:\Windows\system32\DRIVERS\NNSHTTP.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSHTTPS - C:\Windows\system32\DRIVERS\NNSHTTPS.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSIDS - C:\Windows\system32\DRIVERS\NNSIDS.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSNAHSL - C:\Windows\system32\DRIVERS\NNSNAHSL.sys (+safe mode) (sign: 'Microsoft' - Panda Security, S.L.)
O23 - Driver R1: NNSNHWFP - C:\Windows\system32\DRIVERS\NNSNHWFP.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSPICC - C:\Windows\system32\DRIVERS\NNSPICC.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSPOP3 - C:\Windows\system32\DRIVERS\NNSPOP3.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSPROT - C:\Windows\system32\DRIVERS\NNSPROT.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSPRV - C:\Windows\system32\DRIVERS\NNSPRV.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSSMTP - C:\Windows\system32\DRIVERS\NNSSMTP.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: NNSSTRM - C:\Windows\system32\DRIVERS\NNSSTRM.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R1: PSINKNC - C:\Windows\system32\DRIVERS\PSINKNC.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R2: PSINAflt - C:\Windows\system32\DRIVERS\PSINAflt.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R2: PSINFile - C:\Windows\system32\DRIVERS\PSINFile.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R2: PSINProc - C:\Windows\system32\DRIVERS\PSINProc.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R2: PSINProt - C:\Windows\system32\DRIVERS\PSINProt.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R2: PSINReg - C:\Windows\system32\DRIVERS\PSINReg.sys (sign: 'WatchGuard Technologies, Inc.')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio2) - C:\Windows\System32\drivers\amdgpio2.sys (sign: 'Advanced Micro Devices INC.')
O23 - Driver R3: AMD GPIO Client Driver - (amdgpio3) - C:\Windows\System32\drivers\amdgpio3.sys (sign: 'ASMedia Technology Inc.')
O23 - Driver R3: AMD PCI - (AMDPCIDev) - C:\Windows\System32\drivers\AMDPCIDev.sys (sign: 'Advanced Micro Devices Inc.')
O23 - Driver R3: AnchorFree TAP-Windows Adapter V9 - (aftap0901) - C:\Windows\System32\drivers\aftap0901.sys (+safe mode) (sign: 'AnchorFree Inc')
O23 - Driver R3: AscFileFilter - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (sign: 'IObit CO., LTD')
O23 - Driver R3: AscRegistryFilter - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (sign: 'IObit CO., LTD')
O23 - Driver R3: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) - (nvvad_WaveExtensible) - C:\Windows\system32\drivers\nvvad64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: nvlddmkm - C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_a3a35b9b20ddd8f1\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: NvModuleTracker - C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: NVVHCI Enumerator Service - (nvvhci) - C:\Windows\System32\drivers\nvvhci.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: PSKMAD - C:\Windows\System32\DRIVERS\PSKMAD.sys (sign: 'Microsoft' - Panda Security, S.L.U.)
O23 - Driver R3: Realtek RT640 NT Driver - (rt640x64) - C:\Windows\System32\drivers\rt640x64.sys (+safe mode) (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\Windows\system32\drivers\nvhda64v.sys (sign: 'Nvidia Corporation')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\Windows\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver S3: @oem25.inf,%IntcAudioBus.SVCDESC%;Intel(R) Smart Sound Technology Veri Yolu - (IntcAudioBus) - C:\Windows\System32\drivers\IntcAudioBus.sys (sign: 'Smart Sound Technology')
O23 - Driver S3: @oem44.inf,%IntcOED.SVCDESC%;Intel(R) Smart Sound Technology OED - (IntcOED) - C:\Windows\System32\drivers\IntcOED.sys (sign: 'Smart Sound Technology')
O23 - Driver S3: gdrv3 - C:\WINDOWS\System32\drivers\gdrv3.sys (sign: 'GIGA-BYTE Technology Co., Ltd.')
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: NVIDIA USB Type-C PPC Service - (UcmCxUcsiNvppc) - C:\Windows\System32\DriverStore\FileRepository\nvppc.inf_amd64_dff9c5601205b03c\UcmCxUcsiNvppc.sys (sign: 'NVIDIA Corporation')
O23 - Driver S3: SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.) - (dg_ssudbus) - C:\Windows\System32\drivers\ssudbus2.sys (+safe mode) (sign: 'Samsung Electronics CO., LTD.')
O23 - Driver S3: SAMSUNG Mobile USB QCRMNET Filter Driver - (ssudqcfilter) - C:\Windows\System32\drivers\ssudqcfilter.sys (sign: 'Samsung Electronics CO., LTD.')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'aftap0901'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'NNSNAHSL'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service: 'rt640x64'
O26 - Debugger: HKLM\..\mpcmdrun.exe: [Debugger] = C:\WINDOWS\System32\systray.exe (sign: 'Microsoft')
--
End of file - Time spent: 59,8 sec. - 40970 bytes, CRC32: FFFFFFFF. Sign: 骫ʑ[/CODE]

disk sorunu yaşıyorum aynı zamanda şöyle bir görsel bırakıyorum size

HijackThis Log Paylaşımı ve Çözümleri

Ayrıntılı düzenleme

HiJackThis

emrah_8

Kilopat

Murat5038

Yottapat!

Hosts dosyasını varsayılana sıfırlama - Microsoft Desteği

Trollust

Hectopat

Murat5038

Yottapat!

MarmaraGarbo

Femtopat

MarcoV

Hectopat

Murat5038

Yottapat!

BERKE ALGL

Femtopat

Murat5038

Yottapat!

Hosts dosyasını varsayılana sıfırlama - Microsoft Desteği

kurga243

Kilopat

Dosya Ekleri

Benzer konular

Yeni konular

Yeni mesajlar

Gizliliğinize önem veriyoruz