Merhaba değerli forum uyeleri, 2 hafta once RAT yemiştim. Temiz bir format atıp sorunu cozmuştum. Aradan 1 hafta gecti ve yine aynı sorunlarla karşılaşıldı. Konusunda tecrubeli hocalarımdan rica etsem birisi bakabilir mi? HiJackThis Log'unu ekleyeceğim.

Kod:Panoya kopyala
Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.23 Platform: x64 Windows 7 (Ultimate), 6.1.7601.24544, Service Pack: 1 Time: 02.10.2022 - 18:08 (UTC+03:00) Language: OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F) Memory: 1063 MiB Free (73 %). CPU Loading: (42 %) Elevated: Yes Ran by: KARTAL (group: Administrators) on KARTAL-PC, FirstRun: yes Chrome: 106.0.5249.91 Internet Explorer: 11.0.9600.19597 Default: "C:Program FilesGoogleChromeApplicationchrome.exe" --single-argument %1 (Google Chrome) Boot mode: Normal Running processes: Number | Path 1 C:Program Files (x86)GoogleUpdate1.3.36.152GoogleCrashHandler.exe 1 C:Program Files (x86)GoogleUpdate1.3.36.152GoogleCrashHandler64.ex e 1 C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.3avp.exe 1 C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.3avpui.exe 1 C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.3plugins_nms.exe 1 C:Program Files (x86)Kaspersky LabKaspersky VPN 5.7ksde.exe 1 C:Program Files (x86)Kaspersky LabKaspersky VPN 5.7ksdeui.exe 22 C:Program FilesGoogleChromeApplicationchrome.exe 1 C:Program FilesHitmanProhmpsched.exe 1 C:Program FilesRealtekAudioHDARAVCpl64.exe 1 C:Program FilesWindows Media Playerwmpnetwk.exe 1 C:UsersKARTALDesktopHiJackThisHiJackThis.exe 1 C:Windowsexplorer.exe 1 C:WindowsMicrosoft.NETFramework64v3.0WPFPresentati onFontCache.exe 1 C:WindowsSystem32audiodg.exe 1 C:WindowsSystem32cmd.exe 1 C:WindowsSystem32conhost.exe 2 C:WindowsSystem32csrss.exe 1 C:WindowsSystem32dwm.exe 1 C:WindowsSystem32igfxCUIService.exe 1 C:WindowsSystem32igfxEM.exe 1 C:WindowsSystem32igfxHK.exe 1 C:WindowsSystem32igfxTray.exe 1 C:WindowsSystem32lsass.exe 1 C:WindowsSystem32lsm.exe 1 C:WindowsSystem32SearchFilterHost.exe 1 C:WindowsSystem32SearchIndexer.exe 1 C:WindowsSystem32SearchProtocolHost.exe 1 C:WindowsSystem32services.exe 1 C:WindowsSystem32smss.exe 1 C:WindowsSystem32spoolsv.exe 12 C:WindowsSystem32svchost.exe 1 C:WindowsSystem32taskhost.exe 1 C:WindowsSystem32wininit.exe 1 C:WindowsSystem32winlogon.exe 1 C:WindowsSystem32wuauclt.exe 1 C:WindowsSystem32WUDFHost.exe O4 - HKLM..Run: RTHDVCPL = C:Program FilesRealtekAudioHDARAVCpl64.exe -s O5 - Applet: C:WindowsSystem32RTSnMg64.cpl (Sign: 'Realtek Semiconductor Corp') O17 - DHCP DNS 1: 192.168.1.1 O22 - Task: (damaged) HKLMSOFTWAREMicrosoftWindows NTCurrentVersionScheduleTaskCacheTreeWPD (empty) O22 - Tasks: (activation) MicrosoftWindowsWindows Activation TechnologiesValidationTask - C:Windowssystem32WatWatAdminSvc.exe /run (Microsoft) O22 - Tasks: (activation) MicrosoftWindowsWindows Activation TechnologiesValidationTaskDeadline - C:Windowssystem32schtasks.exe /run /I /TN "MicrosoftWindowsWindows Activation TechnologiesValidationTask" O22 - Tasks: (damaged) MicrosoftWindowsApplication ExperienceMicrosoft Compatibility Appraiser - C:Windowssystem32CompatTelRunner.exe (Microsoft) (user missing) O22 - Tasks: (telemetry) MicrosoftWindowsApplication ExperienceMicrosoft Compatibility Appraiser - C:Windowssystem32compattelDiagTrackRunner.exe /UploadEtlFilesOnly (Microsoft) O22 - Tasks: (telemetry) MicrosoftWindowsApplication ExperienceMicrosoft Compatibility Appraiser - C:Windowssystem32CompatTelRunner.exe (Microsoft) O22 - Tasks: (telemetry) MicrosoftWindowsApplication ExperienceProgramDataUpdater - C:Windowssystem32compattelrunner.exe -maintenance (Microsoft) O22 - Tasks: BraveSoftwareUpdateTaskMachineCore - C:Program Files (x86)BraveSoftwareUpdateBraveUpdate.exe /c O22 - Tasks: BraveSoftwareUpdateTaskMachineUA - C:Program Files (x86)BraveSoftwareUpdateBraveUpdate.exe /ua /installsource scheduler O22 - Tasks: GoogleUpdateTaskMachineCore - C:Program Files (x86)GoogleUpdateGoogleUpdate.exe /c O22 - Tasks: GoogleUpdateTaskMachineUA - C:Program Files (x86)GoogleUpdateGoogleUpdate.exe /ua /installsource scheduler O22 - Tasks: Kaspersky_Upgrade_Launcher_ - C:Program FilesCommon FilesAVKaspersky Labupgrade_launcher.exe /waitUpgrade O23 - Service R2: Diagnostics Tracking Service - (DiagTrack) - C:WindowsSystem32svchost.exe -k utcsvc; "ServiceDll" = C:Windowssystem32diagtrack.dll O23 - Service R2: HitmanPro Scheduler - (HitmanProScheduler) - C:Program FilesHitmanProhmpsched.exe O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService1.0.0.0) - C:Windowssystem32igfxCUIService.exe O23 - Service R2: Kaspersky Anti-Virus Hizmeti 21.3 - (AVP21.3) - C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.3avp.exe -r O23 - Service R2: Kaspersky VPN Secure Connection Hizmeti 5.7 - (KSDE5.7) - C:Program Files (x86)Kaspersky LabKaspersky VPN 5.7ksde.exe -r O23 - Service S2: Brave Guncelleme Hizmeti (brave) - (brave) - C:Program Files (x86)BraveSoftwareUpdateBraveUpdate.exe /svc O23 - Service S2: Google Guncelleme Hizmeti (gupdate) - (gupdate) - C:Program Files (x86)GoogleUpdateGoogleUpdate.exe /svc O23 - Service S3: Brave Elevation Service (BraveElevationService) - (BraveElevationService) - C:Program FilesBraveSoftwareBrave-BrowserApplication106.1.44.105elevation_service.ex e (file missing) O23 - Service S3: Brave Guncelleme Hizmeti (bravem) - (bravem) - C:Program Files (x86)BraveSoftwareUpdateBraveUpdate.exe /medsvc O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:Program FilesGoogleChromeApplication106.0.5249.91elevation _service.exe O23 - Service S3: Google Guncelleme Hizmeti (gupdatem) - (gupdatem) - C:Program Files (x86)GoogleUpdateGoogleUpdate.exe /medsvc O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:WindowsSysWow64IntelCpHeciSvc.exe O23 - Service S3: Kaspersky Volume Shadow Copy Service Bridge 21.3 - (klvssbridge64_21.3) - C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.3x64vssbridge64.exe -- End of file - Time spent: 14,6 sec. - 13188 bytes, CRC32: FFFFFFFF. Sign: ጓ唅