HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode
Paste Code

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleyen: Moderatör:
Genişletmek için tıkla...
@RotaQ ,

Verdiğim satırları işaretleyip fixleyin.
Kod: 
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR
O4 - HKCU\..\Run: [Discord] = C:\Users\psiko\AppData\Local\Discord\app-0.0.304\Discord.exe
O4 - HKCU\..\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc

Temel Sistem Bakım ve Performans Optimizasyonu Yönergesi - Technopat Sosyal Konudaki 2, 4, 5, 6, 8 ve 10. adımları uygulayıp sistemi yeniden başlatın. Bir süre kullandıktan sonra tekrardan yeniden başlatın.
 
Bu url'ler nedir. Bir de görev yönetici açılıyor, ama kullanımları güncel göstermiyor takılıyor. @THE_MILLER


Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Home Single Language), 10.0.17763.253 (ReleaseId: 1809), Service Pack: 0
Time:      30.01.2019 - 20:21 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    xd    (group: Administrator) on DESKTOP-H3T8MI9, FirstRun: yes

Chrome:  71.0.3578.98
Firefox: 64.0.2.6947
Edge:    11.0.17763.253
Internet Explorer: 11.0.17763.1
Default: "C:\WINDOWS\system32\LaunchWinApp.exe" "%1" (Microsoft Edge)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
   1  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
   1  C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
   1  C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
   1  C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
   1  C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
   1  C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
   1  C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
   1  C:\Program Files (x86)\NordVPN\nordvpn-service.exe
   1  C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
   1  C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
   1  C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
   1  C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe
   1  C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
   1  C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
   1  C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
   1  C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
   1  C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
   1  C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
   1  C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
   1  C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   1  C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
   1  C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
   1  C:\Program Files\Logitech Gaming Software\LCore.exe
   6  C:\Program Files\Mozilla Firefox\firefox.exe
   2  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   1  C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
   1  C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
   1  C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\dnscrypt-proxy.exe
   1  C:\Program Files\goodbyedpi-0.1.5rc3\x86_64\goodbyedpi.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\NisSrv.exe
   2  C:\Users\xd\AppData\Local\Akamai\netsession_win.exe
   1  C:\Users\xd\AppData\Local\Microsoft\OneDrive\OneDrive.exe
   1  C:\Users\xd\AppData\Roaming\Octoshape\Octoshape Streaming Services\InfiniteMediaAcceleration.exe
   1  C:\Users\xd\Desktop\HiJackThis.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\SysWOW64\PnkBstrA.exe
   1  C:\Windows\SysWOW64\cmd.exe
   1  C:\Windows\SysWOW64\vmnat.exe
   1  C:\Windows\SysWOW64\vmnetdhcp.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\CompPkgSrv.exe
   1  C:\Windows\System32\CompatTelRunner.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0337968.inf_amd64_d248ffd59bb9b64f\B337967\atieclxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\c0337968.inf_amd64_d248ffd59bb9b64f\B337967\atiesrxx.exe
   1  C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHDCPSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHeciSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxEM.exe
   1  C:\Windows\System32\Intel\DPTF\esif_uf.exe
   1  C:\Windows\System32\MicrosoftEdgeCP.exe
   1  C:\Windows\System32\MicrosoftEdgeSH.exe
   6  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\SgrmBroker.exe
   2  C:\Windows\System32\SrTasks.exe
   1  C:\Windows\System32\VSSVC.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\browser_broker.exe
   6  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\drivers\AdminService.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\msiexec.exe
   1  C:\Windows\System32\schtasks.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  76  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.PeopleExperienceHost_cw5n1h2txyewy\PeopleExperienceHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\Temp\DPTF\esif_assist_64.exe
   1  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://www.yandex.com.tr/?win=360&clid=2257151-10
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\ce087430-179c-11e8-81ce-588a5a124ab1: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?uil=ru&part={searchTerms} - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\ce087430-179c-11e8-81ce-588a5a124ab1: [URL] = https://yandex.com.tr/search/?win=321&clid=2255507-213&text={searchTerms} - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 127.0.0.1 badeshan.com
O1 - Hosts: 127.0.0.1 coldhack.org
O1 - Hosts: 127.0.0.1 coldhacks.com
O1 - Hosts: 127.0.0.1 forumzero.net
O1 - Hosts: 127.0.0.1 frmexe.com
O1 - Hosts: 127.0.0.1 galaxyfrm.com
O1 - Hosts: 127.0.0.1 gamehileleri.com
O1 - Hosts: 127.0.0.1 gamekredi.com
O1 - Hosts: 127.0.0.1 hile.biz
O1 - Hosts: 127.0.0.1 hilebol.com
O1 - Hosts: 127.0.0.1 hilebol.net
O1 - Hosts: 127.0.0.1 hilebol.org
O1 - Hosts: 127.0.0.1 hilebudur.com
O1 - Hosts: 127.0.0.1 hileci.biz
O1 - Hosts: 127.0.0.1 hileclub.blogspot.com.tr
O1 - Hosts: 127.0.0.1 hileevreni.com
O1 - Hosts: 127.0.0.1 hileliadam.co
O1 - Hosts: 127.0.0.1 hileliadam.com
O1 - Hosts: 127.0.0.1 hilelicocuk.org
O1 - Hosts: 127.0.0.1 hilelikafa.com
O1 - Hosts: 127.0.0.1 hilemekani.com
O1 - Hosts: 127.0.0.1 jeyhun.ru
O1 - Hosts: 127.0.0.1 www.jeyhun.ru
O1 - Hosts: 127.0.0.1 maviware.com
O1 - Hosts: 127.0.0.1 lolhile.com
O1 - Hosts: 127.0.0.1 www.lolhile.com
O1 - Hosts: 127.0.0.1 lolhile.com
O1 - Hosts: 127.0.0.1 baksen.org
O1 - Hosts: 127.0.0.1 megadosya.com
O1 - Hosts: 127.0.0.1 megadosyam.com
O1 - Hosts: 127.0.0.1 metin2blogun.blogspot.com
O1 - Hosts: 127.0.0.1 metin2force.com
O1 - Hosts: 127.0.0.1 myhile.com
O1 - Hosts: 127.0.0.1 onefrm.com
O1 - Hosts: 127.0.0.1 oyunhilecik.com
O1 - Hosts: 127.0.0.1 pro-hile.com
O1 - Hosts: 127.0.0.1 pro-hile.net
O1 - Hosts: 127.0.0.1 proyuncu.com
O1 - Hosts: 127.0.0.1 sirinhanimkokorec.com
O1 - Hosts: 127.0.0.1 teknohop.com
O1 - Hosts: 127.0.0.1 thefrmonline.com
O1 - Hosts: 127.0.0.1 wolfhelper.net
O1 - Hosts: 127.0.0.1 wolfteam-hesap.com
O1 - Hosts: 127.0.0.1 wthileleri.com
O1 - Hosts: 127.0.0.1 www.wthileleri.com
O1 - Hosts: 127.0.0.1 www.hilenbizde.com
O1 - Hosts: 127.0.0.1 hilenbizde.com
O1 - Hosts: 127.0.0.1 www.badeshan.com
O1 - Hosts: 127.0.0.1 www.coldhack.org
O1 - Hosts: 127.0.0.1 www.coldhacks.com
O1 - Hosts: 127.0.0.1 www.forumzero.net
O1 - Hosts: 127.0.0.1 www.forum.turkmmo.com
O1 - Hosts: 127.0.0.1 forum.turkmmo.com
O1 - Hosts: 127.0.0.1 www.turkmmo.com
O1 - Hosts: 127.0.0.1 www.frmexe.com
O1 - Hosts: 127.0.0.1 www.galaxyfrm.com
O1 - Hosts: 127.0.0.1 www.gamehileleri.com
O1 - Hosts: 127.0.0.1 www.gamekredi.com
O1 - Hosts: 127.0.0.1 www.hile.biz
O1 - Hosts: 127.0.0.1 www.hilebudur.com
O1 - Hosts: 127.0.0.1 www.hileci.biz
O1 - Hosts: 127.0.0.1 www.hileclub.blogspot.com.tr
O1 - Hosts: 127.0.0.1 www.hileevreni.com
O1 - Hosts: 127.0.0.1 www.hileliadam.co
O1 - Hosts: 127.0.0.1 www.hileliadam.com
O1 - Hosts: 127.0.0.1 www.hilelicocuk.org
O1 - Hosts: 127.0.0.1 www.hilelikafa.com
O1 - Hosts: 127.0.0.1 www.hilemekani.com
O1 - Hosts: 127.0.0.1 www.maviware.com
O1 - Hosts: 127.0.0.1 www.megadosya.com
O1 - Hosts: 127.0.0.1 www.megadosyam.com
O1 - Hosts: 127.0.0.1 www.metin2blogun.blogspot.com
O1 - Hosts: 127.0.0.1 www.metin2force.com
O1 - Hosts: 127.0.0.1 www.myhile.com
O1 - Hosts: 127.0.0.1 www.onefrm.com
O1 - Hosts: 127.0.0.1 www.pro-hile.com
O1 - Hosts: 127.0.0.1 www.pro-hile.net
O1 - Hosts: 127.0.0.1 www.proyuncu.com
O1 - Hosts: 127.0.0.1 www.sirinhanimkokorec.com
O1 - Hosts: 127.0.0.1 www.teknohop.com
O1 - Hosts: 127.0.0.1 www.thefrmonline.com
O1 - Hosts: 127.0.0.1 www.wolfhelper.net
O1 - Hosts: 127.0.0.1 www.oyunhilecik.com
O1 - Hosts: 127.0.0.1 www.wolfteam-hesap.com
O1 - Hosts: 127.0.0.1 hilecicocuk.org
O1 - Hosts: 127.0.0.1 www.hilecicocuk.org
O1 - Hosts: 127.0.0.1 uthilem.com
O1 - Hosts: 127.0.0.1 www.uthilem.com
O1 - Hosts: 127.0.0.1 zulahile.com
O1 - Hosts: 127.0.0.1 www.zulahile.com
O1 - Hosts: 127.0.0.1 oyuncheat.com
O1 - Hosts: 127.0.0.1 www.oyuncheat.com
O1 - Hosts: 127.0.0.1 depohile.com
O1 - Hosts: 127.0.0.1 www.depohile.com
O1 - Hosts: 127.0.0.1 hileci.site
O1 - Hosts: 127.0.0.1 www.hileci.site
O1 - Hosts: 127.0.0.1 pointblankhileleri.com
O1 - Hosts: 127.0.0.1 www.pointblankhileleri.com
O1 - Hosts: 127.0.0.1 hilebudur.club
O1 - Hosts: 127.0.0.1 www.hilebudur.club
O1 - Hosts: 127.0.0.1 nmxtr.com
O1 - Hosts: 127.0.0.1 www.nmxtr.com
O1 - Hosts: 127.0.0.1 sentinus.org
O1 - Hosts: 127.0.0.1 www.sentinus.org
O1 - Hosts: 127.0.0.1 www.alonedev.org
O1 - Hosts: 127.0.0.1 alonedev.org
O1 - Hosts: 127.0.0.1 www.lalaker1.org
O1 - Hosts: 127.0.0.1 lalaker1.org
O1 - Hosts: 127.0.0.1 metin2hilecim.com
O1 - Hosts: 127.0.0.1 www.metin2hilecim.com
O1 - Hosts: 127.0.0.1 mhmtyc.com
O1 - Hosts: 127.0.0.1 www.mhmtyc.com
O1 - Hosts: 127.0.0.1 holyafk.com
O1 - Hosts: 127.0.0.1 www.holyafk.com
O1 - Hosts: 127.0.0.1 musitab.com
O1 - Hosts: 127.0.0.1 www.musitab.com
O1 - Hosts: 127.0.0.1 metin2trhileindir.com
O1 - Hosts: 127.0.0.1 www.metin2trhileindir.com
O1 - Hosts: 127.0.0.1 lolhileleri.com
O1 - Hosts: 127.0.0.1 www.lolhileleri.com
O1 - Hosts: 127.0.0.1 nexthile.com
O1 - Hosts: 127.0.0.1 www.nexthile.com
O1 - Hosts: 127.0.0.1 www.memoryhackers.net
O1 - Hosts: 127.0.0.1 memoryhackers.net
O1 - Hosts: 127.0.0.1 nmxtr.com
O1 - Hosts: 127.0.0.1 www.nmxtr.com
O1 - Hosts: 127.0.0.1 hilebol.online
O1 - Hosts: 127.0.0.1 www.hilebol.online
O1 - Hosts: 127.0.0.1 loyein.com
O1 - Hosts: 127.0.0.1 www.loyein.com
O1 - Hosts: 127.0.0.1 svside.com
O1 - Hosts: 127.0.0.1 www.svside.com
O1 - Hosts: 127.0.0.1 oscount.techsmith.com
O1 - Hosts: 127.0.0.1 activation.cloud.techsmith.com
O1 - Hosts: 127.0.0.1 bandicam.com
O1 - Hosts: 127.0.0.1 ssl.bandisoft.com
O2 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll
O2-32 - HKLM\..\BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O4 - HKCU\..\Run: [Akamai NetSession Interface] = C:\Users\xd\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [Gaijin.Net Agent] = C:\Users\xd\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
O4 - HKCU\..\Run: [Octoshape Streaming Services] = C:\Users\xd\AppData\Roaming\Octoshape\Octoshape Streaming Services\InfiniteMediaAcceleration.exe -inv:bootrun
O4 - HKCU\..\Run: [OneDrive] = C:\Users\xd\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft)
O4 - HKCU\..\Run: [Synapse3] = C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized
O4 - HKCU\..\StartupApproved\Run: [CyberGhost] = C:\Program Files\CyberGhost 6\CyberGhost.exe /autostart /min (2018/09/29)
O4 - HKCU\..\StartupApproved\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (2018/07/15)
O4 - HKCU\..\StartupApproved\Run: [Feem] = C:\Program Files (x86)\Feem 2017\Feem.exe --hide (2018/07/15)
O4 - HKCU\..\StartupApproved\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent (2018/08/16)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [Launch LCore] = C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [RtHDVBg_PushButton] = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /IM
O4 - HKLM\..\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe
O4 - HKLM\..\Run: [WavesSvc] = C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe -Jack
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (file missing)
O4 - HKU\.DEFAULT\..\Run: [Synapse3] = C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized
O4-32 - HKLM\..\Run: [Adobe Creative Cloud] = C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4-32 - HKLM\..\Run: [vmware-tray.exe] = C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Tüm bağlantıları IDM ile indir: (default) = C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O17 - DHCP DNS 1: 127.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{36a21b3d-f6e1-4156-b896-f17d66cae433}: [NameServer] = 127.0.0.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\            IDM Shell Extension: IDM Shell Extension - {CDC95B92-E27C-4745-A8C5-64A52A78855D} - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco1: AccExtIco1 Class - {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco2: AccExtIco2 Class - {853B7E05-C47D-4985-909A-D0DC5C6D7303} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco3: AccExtIco3 Class - {42D38F2E-98E9-4382-B546-E24E4D6D04BB} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX32.dll
O23 - Service R2: AMD External Events Utility - C:\WINDOWS\System32\DriverStore\FileRepository\c0337968.inf_amd64_d248ffd59bb9b64f\B337967\atiesrxx.exe
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: AtherosSvc - C:\WINDOWS\System32\drivers\AdminService.exe
O23 - Service R2: DNSCrypt client proxy - (dnscrypt-proxy) - C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\dnscrypt-proxy.exe
O23 - Service R2: ESIF Upper Framework Service - (esifsvc) - C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe
O23 - Service R2: ExpressVPN Service - (ExpressVPNService) - C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
O23 - Service R2: GoodbyeDPI - C:\Program Files\goodbyedpi-0.1.5rc3\x86_64\goodbyedpi.exe -1 --blacklist "C:\Program Files\goodbyedpi-0.1.5rc3\blacklist.txt"
O23 - Service R2: HuaweiHiSuiteService64.exe - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe -/service
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHDCPSvc.exe
O23 - Service R2: Intel(R) Extreme Tuning Utility Service - (XTU3SERVICE) - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxCUIService.exe
O23 - Service R2: Logitech Gaming Registry Service - (LogiRegistryService) - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: PnkBstrA - C:\Windows\system32\PnkBstrA.exe  (file missing)
O23 - Service R2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: Razer Central Service - (RzActionSvc) - C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
O23 - Service R2: Razer Chroma SDK Server - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
O23 - Service R2: Razer Chroma SDK Service - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
O23 - Service R2: Razer Game Manager - (Razer Game Manager Service) - C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
O23 - Service R2: Razer Synapse Service - C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R2: VMware Authorization Service - (VMAuthdService) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O23 - Service R2: VMware DHCP Service - (VMnetDHCP) - C:\WINDOWS\SysWOW64\vmnetdhcp.exe
O23 - Service R2: VMware NAT Service - C:\WINDOWS\SysWOW64\vmnat.exe
O23 - Service R2: VMware USB Arbitration Service - (VMUSBArbService) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service R2: VMware Workstation Server - (VMwareHostd) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe -u "C:\ProgramData\VMware\hostd\config.xml"
O23 - Service R2: Waves Audio Services - (WavesSysSvc) - C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
O23 - Service R2: nordvpn-service - C:\Program Files (x86)\NordVPN\nordvpn-service.exe
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHeciSvc.exe
O23 - Service S2: CyberGhost 6 Service - (CG6Service) - C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service S2: TeamViewer 14 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Office 64 Source Engine - (ose64) - c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: nProtect GameGuard Service - (npggsvc) - C:\Windows\system32\GameMon.des -service


--
End of file - Time spent: 107,2 sec. - 49842 bytes, CRC32: FFFFFFFF. Sign: ⫙៺
 
@Cengizhan Poykalı ,

Oyunlarda kullandığın hileden veya zararlıdan kaynaklı hosts dosyaların orijinalliğini kaybetmiş.

Verdiğim satırları işaretleyip fixleyin.
Kod: 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://www.yandex.com.tr/?win=360&clid=2257151-10
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\ce087430-179c-11e8-81ce-588a5a124ab1: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?uil=ru&part={searchTerms} - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\ce087430-179c-11e8-81ce-588a5a124ab1: [URL] = https://yandex.com.tr/search/?win=321&clid=2255507-213&text={searchTerms} - Yandex
O1 - Hosts: Reset contents to default
O1 - Hosts: 127.0.0.1 badeshan.com
O1 - Hosts: 127.0.0.1 coldhack.org
O1 - Hosts: 127.0.0.1 coldhacks.com
O1 - Hosts: 127.0.0.1 forumzero.net
O1 - Hosts: 127.0.0.1 frmexe.com
O1 - Hosts: 127.0.0.1 galaxyfrm.com
O1 - Hosts: 127.0.0.1 gamehileleri.com
O1 - Hosts: 127.0.0.1 gamekredi.com
O1 - Hosts: 127.0.0.1 hile.biz
O1 - Hosts: 127.0.0.1 hilebol.com
O1 - Hosts: 127.0.0.1 hilebol.net
O1 - Hosts: 127.0.0.1 hilebol.org
O1 - Hosts: 127.0.0.1 hilebudur.com
O1 - Hosts: 127.0.0.1 hileci.biz
O1 - Hosts: 127.0.0.1 hileclub.blogspot.com.tr
O1 - Hosts: 127.0.0.1 hileevreni.com
O1 - Hosts: 127.0.0.1 hileliadam.co
O1 - Hosts: 127.0.0.1 hileliadam.com
O1 - Hosts: 127.0.0.1 hilelicocuk.org
O1 - Hosts: 127.0.0.1 hilelikafa.com
O1 - Hosts: 127.0.0.1 hilemekani.com
O1 - Hosts: 127.0.0.1 jeyhun.ru
O1 - Hosts: 127.0.0.1 www.jeyhun.ru
O1 - Hosts: 127.0.0.1 maviware.com
O1 - Hosts: 127.0.0.1 lolhile.com
O1 - Hosts: 127.0.0.1 www.lolhile.com
O1 - Hosts: 127.0.0.1 lolhile.com
O1 - Hosts: 127.0.0.1 baksen.org
O1 - Hosts: 127.0.0.1 megadosya.com
O1 - Hosts: 127.0.0.1 megadosyam.com
O1 - Hosts: 127.0.0.1 metin2blogun.blogspot.com
O1 - Hosts: 127.0.0.1 metin2force.com
O1 - Hosts: 127.0.0.1 myhile.com
O1 - Hosts: 127.0.0.1 onefrm.com
O1 - Hosts: 127.0.0.1 oyunhilecik.com
O1 - Hosts: 127.0.0.1 pro-hile.com
O1 - Hosts: 127.0.0.1 pro-hile.net
O1 - Hosts: 127.0.0.1 proyuncu.com
O1 - Hosts: 127.0.0.1 sirinhanimkokorec.com
O1 - Hosts: 127.0.0.1 teknohop.com
O1 - Hosts: 127.0.0.1 thefrmonline.com
O1 - Hosts: 127.0.0.1 wolfhelper.net
O1 - Hosts: 127.0.0.1 wolfteam-hesap.com
O1 - Hosts: 127.0.0.1 wthileleri.com
O1 - Hosts: 127.0.0.1 www.wthileleri.com
O1 - Hosts: 127.0.0.1 www.hilenbizde.com
O1 - Hosts: 127.0.0.1 hilenbizde.com
O1 - Hosts: 127.0.0.1 www.badeshan.com
O1 - Hosts: 127.0.0.1 www.coldhack.org
O1 - Hosts: 127.0.0.1 www.coldhacks.com
O1 - Hosts: 127.0.0.1 www.forumzero.net
O1 - Hosts: 127.0.0.1 www.forum.turkmmo.com
O1 - Hosts: 127.0.0.1 forum.turkmmo.com
O1 - Hosts: 127.0.0.1 www.turkmmo.com
O1 - Hosts: 127.0.0.1 www.frmexe.com
O1 - Hosts: 127.0.0.1 www.galaxyfrm.com
O1 - Hosts: 127.0.0.1 www.gamehileleri.com
O1 - Hosts: 127.0.0.1 www.gamekredi.com
O1 - Hosts: 127.0.0.1 www.hile.biz
O1 - Hosts: 127.0.0.1 www.hilebudur.com
O1 - Hosts: 127.0.0.1 www.hileci.biz
O1 - Hosts: 127.0.0.1 www.hileclub.blogspot.com.tr
O1 - Hosts: 127.0.0.1 www.hileevreni.com
O1 - Hosts: 127.0.0.1 www.hileliadam.co
O1 - Hosts: 127.0.0.1 www.hileliadam.com
O1 - Hosts: 127.0.0.1 www.hilelicocuk.org
O1 - Hosts: 127.0.0.1 www.hilelikafa.com
O1 - Hosts: 127.0.0.1 www.hilemekani.com
O1 - Hosts: 127.0.0.1 www.maviware.com
O1 - Hosts: 127.0.0.1 www.megadosya.com
O1 - Hosts: 127.0.0.1 www.megadosyam.com
O1 - Hosts: 127.0.0.1 www.metin2blogun.blogspot.com
O1 - Hosts: 127.0.0.1 www.metin2force.com
O1 - Hosts: 127.0.0.1 www.myhile.com
O1 - Hosts: 127.0.0.1 www.onefrm.com
O1 - Hosts: 127.0.0.1 www.pro-hile.com
O1 - Hosts: 127.0.0.1 www.pro-hile.net
O1 - Hosts: 127.0.0.1 www.proyuncu.com
O1 - Hosts: 127.0.0.1 www.sirinhanimkokorec.com
O1 - Hosts: 127.0.0.1 www.teknohop.com
O1 - Hosts: 127.0.0.1 www.thefrmonline.com
O1 - Hosts: 127.0.0.1 www.wolfhelper.net
O1 - Hosts: 127.0.0.1 www.oyunhilecik.com
O1 - Hosts: 127.0.0.1 www.wolfteam-hesap.com
O1 - Hosts: 127.0.0.1 hilecicocuk.org
O1 - Hosts: 127.0.0.1 www.hilecicocuk.org
O1 - Hosts: 127.0.0.1 uthilem.com
O1 - Hosts: 127.0.0.1 www.uthilem.com
O1 - Hosts: 127.0.0.1 zulahile.com
O1 - Hosts: 127.0.0.1 www.zulahile.com
O1 - Hosts: 127.0.0.1 oyuncheat.com
O1 - Hosts: 127.0.0.1 www.oyuncheat.com
O1 - Hosts: 127.0.0.1 depohile.com
O1 - Hosts: 127.0.0.1 www.depohile.com
O1 - Hosts: 127.0.0.1 hileci.site
O1 - Hosts: 127.0.0.1 www.hileci.site
O1 - Hosts: 127.0.0.1 pointblankhileleri.com
O1 - Hosts: 127.0.0.1 www.pointblankhileleri.com
O1 - Hosts: 127.0.0.1 hilebudur.club
O1 - Hosts: 127.0.0.1 www.hilebudur.club
O1 - Hosts: 127.0.0.1 nmxtr.com
O1 - Hosts: 127.0.0.1 www.nmxtr.com
O1 - Hosts: 127.0.0.1 sentinus.org
O1 - Hosts: 127.0.0.1 www.sentinus.org
O1 - Hosts: 127.0.0.1 www.alonedev.org
O1 - Hosts: 127.0.0.1 alonedev.org
O1 - Hosts: 127.0.0.1 www.lalaker1.org
O1 - Hosts: 127.0.0.1 lalaker1.org
O1 - Hosts: 127.0.0.1 metin2hilecim.com
O1 - Hosts: 127.0.0.1 www.metin2hilecim.com
O1 - Hosts: 127.0.0.1 mhmtyc.com
O1 - Hosts: 127.0.0.1 www.mhmtyc.com
O1 - Hosts: 127.0.0.1 holyafk.com
O1 - Hosts: 127.0.0.1 www.holyafk.com
O1 - Hosts: 127.0.0.1 musitab.com
O1 - Hosts: 127.0.0.1 www.musitab.com
O1 - Hosts: 127.0.0.1 metin2trhileindir.com
O1 - Hosts: 127.0.0.1 www.metin2trhileindir.com
O1 - Hosts: 127.0.0.1 lolhileleri.com
O1 - Hosts: 127.0.0.1 www.lolhileleri.com
O1 - Hosts: 127.0.0.1 nexthile.com
O1 - Hosts: 127.0.0.1 www.nexthile.com
O1 - Hosts: 127.0.0.1 www.memoryhackers.net
O1 - Hosts: 127.0.0.1 memoryhackers.net
O1 - Hosts: 127.0.0.1 nmxtr.com
O1 - Hosts: 127.0.0.1 www.nmxtr.com
O1 - Hosts: 127.0.0.1 hilebol.online
O1 - Hosts: 127.0.0.1 www.hilebol.online
O1 - Hosts: 127.0.0.1 loyein.com
O1 - Hosts: 127.0.0.1 www.loyein.com
O1 - Hosts: 127.0.0.1 svside.com
O1 - Hosts: 127.0.0.1 www.svside.com
O1 - Hosts: 127.0.0.1 oscount.techsmith.com
O1 - Hosts: 127.0.0.1 activation.cloud.techsmith.com
O1 - Hosts: 127.0.0.1 bandicam.com
O1 - Hosts: 127.0.0.1 ssl.bandisoft.com
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O4 - HKCU\..\Run: [Octoshape Streaming Services] = C:\Users\xd\AppData\Roaming\Octoshape\Octoshape Streaming Services\InfiniteMediaAcceleration.exe -inv:bootrun
O4 - HKCU\..\Run: [OneDrive] = C:\Users\xd\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft)
O4 - HKCU\..\StartupApproved\Run: [CyberGhost] = C:\Program Files\CyberGhost 6\CyberGhost.exe /autostart /min (2018/09/29)
O4 - HKCU\..\StartupApproved\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (2018/07/15)
O4 - HKCU\..\StartupApproved\Run: [Feem] = C:\Program Files (x86)\Feem 2017\Feem.exe --hide (2018/07/15)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (file missing)
O4-32 - HKLM\..\Run: [Adobe Creative Cloud] = C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4-32 - HKLM\..\Run: [vmware-tray.exe] = C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{36a21b3d-f6e1-4156-b896-f17d66cae433}: [NameServer] = 127.0.0.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco1: AccExtIco1 Class - {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco2: AccExtIco2 Class - {853B7E05-C47D-4985-909A-D0DC5C6D7303} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco3: AccExtIco3 Class - {42D38F2E-98E9-4382-B546-E24E4D6D04BB} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Pending):  MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Synced):  MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX32.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ MEGA (Syncing):  MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\xd\AppData\Local\MEGAsync\ShellExtX32.dll
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: GoodbyeDPI - C:\Program Files\goodbyedpi-0.1.5rc3\x86_64\goodbyedpi.exe -1 --blacklist "C:\Program Files\goodbyedpi-0.1.5rc3\blacklist.txt"
O23 - Service R2: HuaweiHiSuiteService64.exe - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe -/service
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: VMware Authorization Service - (VMAuthdService) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O23 - Service R2: VMware DHCP Service - (VMnetDHCP) - C:\WINDOWS\SysWOW64\vmnetdhcp.exe
O23 - Service R2: VMware NAT Service - C:\WINDOWS\SysWOW64\vmnat.exe
O23 - Service R2: VMware USB Arbitration Service - (VMUSBArbService) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service R2: VMware Workstation Server - (VMwareHostd) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe -u "C:\ProgramData\VMware\hostd\config.xml"
O23 - Service R2: nordvpn-service - C:\Program Files (x86)\NordVPN\nordvpn-service.exe
O23 - Service S2: CyberGhost 6 Service - (CG6Service) - C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service S2: TeamViewer 14 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Office 64 Source Engine - (ose64) - c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe

Downloads - SurfRight Bu adresten Hitman Pro indirip, uygulamayı çalıştırın. Taratmadan önce options(settings) dan, lisans kısmına girip 30 günlük deneme sürümünü aktif edin. Ardından tarama yapıp bulduklarını silin.

Yönergesine göre uygulayın. Complete Internet Repair ile İnternet Bağlantı Ayar Onarımı - Technopat Sosyal

Yönergeye göre uygulayın. Adware Removal Tool ile Zararlı Tarayıcı Eklentisi Temizliği - Technopat Sosyal

Temel Sistem Bakım ve Performans Optimizasyonu Yönergesi Konudaki 2, 4, 5, 6, ve 8. adımları uygulayıp sistemi yeniden başlatın.


Komut satırını (CMD) yönetici olarak çalıştırın. Sırası ile işlemler bitene kadar bu kodları girip enterlayın.

Kod: 
sfc /scannow

ENTER

Kod: 
dism /online /cleanup-image /scanhealth

ENTER

Kod: 
dism /online /cleanup-image /checkhealth

ENTER

Kod: 
dism /online /cleanup-image /restorehealth

ENTER
 
Kod: 
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 12:41:19, on 2.02.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)


Boot mode: Normal

Running processes:
C:\Users\musta\Downloads\Programs\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'Local Service')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'Local Service')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O8 - Extra context menu item: IDM ile indir - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tüm bağlantıları IDM ile indir - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: OneNote'a Gönder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote'a G&önder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service: Google Güncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Güncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\WINDOWS\system32\HPSIsvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 8034 bytes
Performans sorunları var sistem yavaş biraz.
 
@DeletedUser01 ,

Verdiğim satırları işaretleyip fixleyin.
Kod: 
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'Local Service')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'Local Service')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: OneNote'a Gönder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote'a G&önder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service: Google Güncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Güncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\WINDOWS\system32\HPSIsvc.exe (file missing)

Konudaki 4, 5, 6 ve 8. adımları uygulayın. Temel Sistem Bakım ve Performans Optimizasyonu Yönergesi - Technopat Sosyal

1809 sürümüne sistemi yükseltin. Windows 10 Türkçe İndirme ve Kurulum - Technopat Sosyal
 
Bilgisayarı açtıktan sonra kilitleniyor. Fare imleci hareket ediyor fakat hiç bir işlem yapamıyorum. Bu 1-2 dakika sürüyor. Acaba virüs mü? Nasıl bir yol izleyebilirim. Comodo ile taradım bir şey bulamadı. Biliyorsunuz daha önce de Hijackthis ile fixleme yapmıştık.
 
THE_MILLER dedi:
@yavinas ,

Yeni HJ raporu ekler misin? Kullandığın uygulamalar kaynaklı da olabilir. Sistem eski ise veya SSD yok ise genelde bu durum hemen hemen herkesin yaşadığı durum.
Genişletmek için tıkla...
Daha önceleri olmuyordu. Evet SSD yok. HJ raporu buyrun. Teşekkürler.

Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.17763.253 (ReleaseId: 1809), Service Pack: 0
Time:      05.02.2019 - 21:52 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    ernes    (group: Administrator) on YAVINAS, FirstRun: yes

Chrome:  71.0.3578.98
Firefox: 44.0.0.5866
Edge:    11.0.17763.253
Internet Explorer: 11.0.17763.1
Default: "C:\Program Files (x86)\Comodo\Dragon\dragon.exe" -- "%1" (Comodo Dragon)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Comodo\COMODO Secure Shopping\csssrv64.exe
   1  C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
   1  C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
   1  C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
  14  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
   1  C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
   1  C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
   1  C:\Program Files\COMODO\COMODO Internet Security\cis.exe
   1  C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
   1  C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe
   1  C:\Users\ernes\OneDrive\Masaüstü\programlar\HiJackThis\HiJackThis.exe
   1  C:\Windows\ImmersiveControlPanel\SystemSettings.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   5  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\SystemSettingsBroker.exe
   1  C:\Windows\System32\audiodg.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  71  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe

O2 - HKLM\..\BHO: IeUrlFilter Class - {2DD257A3-5028-41AE-A1E7-A12F76A08893} - C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll
O2-32 - HKLM\..\BHO: IeUrlFilter Class - {2DD257A3-5028-41AE-A1E7-A12F76A08893} - C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho32.dll
O4 - HKLM\..\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] = C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4-32 - HKLM\..\Run: [IseUI] = C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
O4-32 - HKLM\..\Run: [vdcss] = C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe -tray
O17 - DHCP DNS 1: 156.154.70.25
O17 - DHCP DNS 2: 156.154.71.25
O17 - HKLM\System\CCS\Services\Tcpip\..\{a8cb25a9-01d2-47c0-9cb8-37f2c6d25110}: [NameServer] = 156.154.70.25
O17 - HKLM\System\CCS\Services\Tcpip\..\{a8cb25a9-01d2-47c0-9cb8-37f2c6d25110}: [NameServer] = 156.154.71.25
O23 - Service R2: COMODO Dragon Update Service - (DragonUpdater) - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service R2: COMODO Internet Security Helper Service - (CmdAgent) - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service R2: csssrv - C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe -service
O23 - Service R2: isesrv - C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe -service
O23 - Service S3: COMODO Virtual Service Manager - (cmdvirth) - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
--
End of file - Time spent: 63,9 sec. - 8886 bytes, CRC32: FFFFFFFF. Sign: 㨷멥
 

Benzer konular

Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
666
acv
A
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5B
quarest
quarest
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
10B
Windows 11 Bükücü
Windows 11 Bükücü
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
2B
Murat5038
Murat5038
B
Trojan ve Keylogger Temizleme
Mesaj
3
Görüntüleme
4B
Murat5038
Murat5038

Yeni konular

Yeni mesajlar

Geri
Yukarı