HijackThis Log Paylaşımı ve Çözümleri

1543056134722.png


Sisteminizde yaşadığınız performans düşüşü, kilitlenme, zararlı etkisi, uygulama hatalarından kaynaklanan sorunsalları analiz etmek ve performans iyileştirmesi, zararlı etkisini inaktif etmek için bize HijackThis yazılımı ile yaptığınız tarama Logunu burada paylaşmanız gerekmektedir.



Kullanımı:

1) Bir geliştirici tarafından yeni özellikler kazandırılan güncel sürümünü buradan indirip, arşiv dosyasından masaüstüne uygulamayı çıkartın.

HiJackThis

Program, zararlı temizliğinde imza veritabanı kullanmadan sezgisel tespite dayalı bir yöntemle kullanılır. Çok hızlı bir tarama ile, zararlı bulaşmamış bir sistemden farklı olarak çalışan işlemlerin bir listesini çıkartır. Bu işlemlerin tamamı...
www.technopat.net www.technopat.net

Alternatif: Download HiJackThis Fork - MajorGeeks

Eski Sürüm: HiJackThis | Free software downloads at SourceForge.net

2) Bilgisayarınızı yeniden başlatın 3 dk işlem yapmadan bekleyin.

3) HijackThis yazılımına sağ tıklayıp yönetici olarak çalıştırın (XP için geçerli değil).

1543056459730.png


4) Açılan arayüzde, "Do a system scan and save a log file" butonuna tıklayın.

1543053000396.png


5) Otomatik olarak Hijackthis taraması başlayacak, taramanın tamamlanması sürece fare ve klavyeyi kullanmayın.
1543053111358.png


6) Tarama tamamlandığında HijackThis raporunu içeren bir Log dosyası karşınıza gelecektir.

1543053449185.png



*7) Log dosyasını incelememiz için buraya cevaplama bölümünden eklemeniz gerekmektedir.

1543053710016.png

Kod'a tıklayın.

1543053809056.png


Log'da yazanları mavi bölmenin içine yapıştırıp "Devam Et" butonuna basın.

Uyarı: Sitede kod eklemede sorun yaşarsanız kod paylaşımlarını altta verilen sitelerden birine yapıştırıp linki paylaşmanız gerekmektedir. Bu durumda *7. seçeneği şu anlık kullanmayın.

Paste ofCode
Paste Code

8) Ayrıca sisteminizde var olan sorunu detaylıca (Performans düşüşü, Malware varlığı şüphesi vb.) belirterek konuyu cevaplayın.
(Bunu yapmayana cevap verilmeyecektir)

Fixleme:

Konuda şahsım tarafından veya uzman kişilerden geri dönüş yapıldığında Hijackthis uygulama arayüzünden söylediğimiz satırların başlarına tik işareti koyun. Ardından "Fix checked" butonuna basın.
1543054420492.png
 
Son düzenleyen: Moderatör:
Genişletmek için tıkla...
@Beyaz Gölgelerden ,

Verdiğim satırları işaretleyip fixleyin.
Kod: 
F2 - REG:system.ini: UserInit=
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Discord] C:\Users\Samet\AppData\Local\Discord\app-0.0.304\Discord.exe
O4 - HKCU\..\Run: [Spotify] C:\Users\Samet\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'Local Service')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O17 - HKLM\System\CCS\Services\Tcpip\..\{26cfef4b-c786-40e1-aed0-54033f7a12ba}: NameServer = 209.244.0.3,209.244.0.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{26cfef4b-c786-40e1-aed0-54033f7a12ba}: NameServer = 209.244.0.3,209.244.0.4
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\elevation_service.exe
O23 - Service: Google Güncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Güncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

Aktif olarak bir zararlı göremedim. Eski Hijackthis uygulamasını kullanarak rapor oluşturmuşsun. Eset Online Scanner - Alternatif Tarama Amaçlı - Technopat Sosyal Eset'in bu aracı ile tarama yap. Zararlı bulursa da ekran görüntüsü ekle. Konudaki güncel Hijackthis uygulaması ile rapor ekle.
 
Hocam benim bir sorunum var kafayı yiyeceğim. Şimdi Windows logosuna tıklıyorum bilgisayarı yeniden başlatıyorum. İşte ekranda yazı geliyor yeniden başlatılıyor diye. Sonra monitör kendini beklemeye alıyor. Ama kasa çalışıyor tahminen Windows normal bir şekilde açılıyor. Bu durumu düzeltmek için de mecburen powerdan kapatıyorum. Böyle yaptıkça HDD zarar görüyor. Bunun bir çözümü yok mu?
@THE_MILLER
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.17134.590 (ReleaseId: 1803), Service Pack: 0
Time:      21.02.2019 - 13:06 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Bedirhan    (group: Administrator) on DESKTOP-722SC7L, FirstRun: yes

Opera:   58.0.3135.65
Chrome:  72.0.3626.109
Edge:    11.0.17134.556
Internet Explorer: 11.0.17134.1
Default: "C:\Program Files\Opera\Launcher.exe" -noautoupdate -- "%1" (Opera Internet Browser)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
   1  C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
   1  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
   1  C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
   1  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
   1  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
   1  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
   2  C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
   1  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
   1  C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
   1  C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
   1  C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
   1  C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
   1  C:\Program Files (x86)\IObit\Driver Booster\5.2.0\Scheduler.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
   1  C:\Program Files (x86)\Origin\Origin.exe
   3  C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
   1  C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
   1  C:\Program Files (x86)\Windows  Defender\Windows Defender.exe
   1  C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   3  C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
   1  C:\Program Files\Windows Defender\MSASCuiL.exe
   1  C:\Program Files\WindowsApps\AppleInc.iTunes_12093.3.37141.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
   1  C:\Program Files\rempl\sedsvc.exe
   1  C:\Users\Bedirhan\AppData\Local\Intel\iaa23.exe
   1  C:\Users\Bedirhan\Desktop\HiJackThis.exe
   1  C:\Windows\System32\MusNotification.exe
  11  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\audiodg.exe
   5  C:\Windows\System32\backgroundTaskHost.exe
   1  C:\Windows\System32\cmd.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  70  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WMIADAP.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe
   1  D:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe
   1  D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
   1  D:\Program Files\TxGameAssistant\AppMarket\QQExternal.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://tr.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10454__180420__yaie
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [SuggestionsURL_JSON] = https://suggest.yandex.com.tr/suggest-ff.cgi?srv=ie11&uil=tr&part={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8C3078A0-9AAB-4371-85D1-656CA8E46EE8}: [URL] = https://yandex.com.tr/search/?text={searchTerms}&clid=2233630 - Yandex
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [SuggestionsURL] = https://ie.search.yahoo.com/os?appid=ie8&command={searchTerms} - Yahoo!
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [TopResultURL] = https://tr.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180420__yaie&p={searchTerms} - Yahoo!
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: [URL] = https://tr.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180420__yaie&p={searchTerms} - Yahoo!
O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.0 www.monster-cheats.com
O1 - Hosts: 0.0.0.0 monster-cheats.com
O1 - Hosts: 0.0.0.0 www.bl-hackers.com
O1 - Hosts: 0.0.0.0 bl-hackers.com
O1 - Hosts: 0.0.0.0 theapathe.com
O1 - Hosts: 0.0.0.0 www.theapathe.com
O1 - Hosts: 0.0.0.0 theapathe.net
O1 - Hosts: 0.0.0.0 www.theapathe.net
O1 - Hosts: 0.0.0.0 theapathe.org
O1 - Hosts: 0.0.0.0 www.theapathe.org
O1 - Hosts: 0.0.0.0 sv1.theapathe.com
O1 - Hosts: 0.0.0.0 apathecheats.com
O1 - Hosts: 0.0.0.0 www.apathecheats.com
O1 - Hosts: 0.0.0.0 apathecheats.net
O1 - Hosts: 0.0.0.0 www.apathecheats.net
O1 - Hosts: 0.0.0.0 apathecheats.org
O1 - Hosts: 0.0.0.0 www.apathecheats.org
O1 - Hosts: 0.0.0.0 download.theapathe.com
O1 - Hosts: 0.0.0.0 www.sv1.theapathe.com
O1 - Hosts: 0.0.0.0 www.download.theapathe.com
O1 - Hosts: 0.0.0.0 www.hileliadam.co
O1 - Hosts: 0.0.0.0 hileliadam.co
O1 - Hosts: 0.0.0.0 www.hilenbizde.com
O1 - Hosts: 0.0.0.0 hilenbizde.com
O1 - Hosts: 0.0.0.0 www.wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteamhacker.com
O1 - Hosts: 0.0.0.0 wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.wolfteam-hile.com
O1 - Hosts: 0.0.0.0 www.zulahile.com
O1 - Hosts: 0.0.0.0 zulahile.com
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 mrsnapznet.us
O1 - Hosts: 0.0.0.0 www.badeshan.com
O1 - Hosts: 0.0.0.0 www.thefrm.net
O1 - Hosts: 0.0.0.0 www.plathelper.net
O1 - Hosts: 0.0.0.0 www.thefrmonline.com
O1 - Hosts: 0.0.0.0 www.pro-hile.com
O1 - Hosts: 0.0.0.0 www.pro-hile.net
O1 - Hosts: 0.0.0.0 www.hileliadam.com
O1 - Hosts: 0.0.0.0 www.hilelikafa.com
O1 - Hosts: 0.0.0.0 www.gamehileleri.com
O1 - Hosts: 0.0.0.0 www.hilemekani.com
O1 - Hosts: 0.0.0.0 www.frmbull.com
O1 - Hosts: 0.0.0.0 www.turkfrm.net
O1 - Hosts: 0.0.0.0 www.hilesarayi.com
O1 - Hosts: 0.0.0.0 www.xcheats.com
O1 - Hosts: 0.0.0.0 www.xcheats.net
O1 - Hosts: 0.0.0.0 www.xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.com
O1 - Hosts: 0.0.0.0 xcheats.org
O1 - Hosts: 0.0.0.0 xcheats.net
O1 - Hosts: 0.0.0.0 utilcheat.com
O1 - Hosts: 0.0.0.0 turkfrm.net
O1 - Hosts: 0.0.0.0 goldhile.net
O1 - Hosts: 0.0.0.0 onefrm.com
O1 - Hosts: 0.0.0.0 badeshan.com
O1 - Hosts: 0.0.0.0 thefrmonline.com
O1 - Hosts: 0.0.0.0 thefrm.net
O1 - Hosts: 0.0.0.0 pro-hile.com
O1 - Hosts: 0.0.0.0 pro-hile.net
O1 - Hosts: 0.0.0.0 zeusfrm.org
O1 - Hosts: 0.0.0.0 hileliadam.com
O1 - Hosts: 0.0.0.0 hilelikafa.com
O1 - Hosts: 0.0.0.0 gamehileleri.com
O1 - Hosts: 0.0.0.0 hilemekani.com
O1 - Hosts: 0.0.0.0 frmbull.com
O1 - Hosts: 0.0.0.0 plathelper.net
O1 - Hosts: 0.0.0.0 hilesarayi.com
O1 - Hosts: 0.0.0.0 yenilmezfrm.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.net
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.com
O1 - Hosts: 0.0.0.0 www.ads.pro-hile.org
O1 - Hosts: 0.0.0.0 pro-hile.org
O1 - Hosts: 0.0.0.0 www.pro-hile.org
O1 - Hosts: 0.0.0.0 www.mrsnapz.net
O1 - Hosts: 0.0.0.0 mrsnapz.net
O1 - Hosts: 0.0.0.0 www.mrsnapznet.us
O1 - Hosts: 0.0.0.0 ultrafrm.net
O1 - Hosts: 0.0.0.0 www.ultrafrm.net
O1 - Hosts: 0.0.0.0 ultrafrm.org
O1 - Hosts: 0.0.0.0 www.ultrafrm.org
O1 - Hosts: 0.0.0.0 ultrafrm.com
O1 - Hosts: 0.0.0.0 www.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.com
O1 - Hosts: 0.0.0.0 moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.moira.ultrafrm.net
O1 - Hosts: 0.0.0.0 ads.ultrafrm.net
O1 - Hosts: 0.0.0.0 www.hileuzmani.com
O1 - Hosts: 0.0.0.0 hileuzmani.com
O1 - Hosts: 0.0.0.0 unitatis.net
O1 - Hosts: 0.0.0.0 www.unitatis.net
O1 - Hosts: 0.0.0.0 www.mrcheat.us
O1 - Hosts: 0.0.0.0 mrcheat.us
O1 - Hosts: 0.0.0.0 ultrahilem.com
O1 - Hosts: 0.0.0.0 www.ultrahilem.com
O1 - Hosts: 0.0.0.0 moiracheats.net
O1 - Hosts: 0.0.0.0 moiracheats.com
O1 - Hosts: 0.0.0.0 moiracheats.org
O1 - Hosts: 0.0.0.0 www.moiracheats.net
O1 - Hosts: 0.0.0.0 www.moiracheats.com
O1 - Hosts: 0.0.0.0 www.moiracheats.org
O1 - Hosts: 0.0.0.0 mo1racheats.net
O1 - Hosts: 0.0.0.0 mo1racheats.com
O1 - Hosts: 0.0.0.0 mo1racheats.org
O1 - Hosts: 0.0.0.0 www.mo1racheats.net
O1 - Hosts: 0.0.0.0 www.mo1racheats.com
O1 - Hosts: 0.0.0.0 www.mo1racheats.org
O1 - Hosts: 0.0.0.0 kral-hile.com
O1 - Hosts: 0.0.0.0 www.kral-hile.com
O1 - Hosts: 0.0.0.0 www.elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 elitehackers.rf.gd
O1 - Hosts: 0.0.0.0 hoxelizm.com
O1 - Hosts: 0.0.0.0 www.hoxelizm.com
O1 - Hosts: 0.0.0.0 virtualevolution.net
O1 - Hosts: 0.0.0.0 www.virtualevolution.net
O1 - Hosts: 0.0.0.0 virtualevolution.com
O1 - Hosts: 0.0.0.0 www.virtualevolution.com
O1 - Hosts: 0.0.0.0 virtualevolution.org
O1 - Hosts: 0.0.0.0 www.virtualevolution.org
O1 - Hosts: 0.0.0.0 zoomhacks.com
O1 - Hosts: 0.0.0.0 www.zoomhacks.com
O1 - Hosts: 0.0.0.0 www.download.zoomhacks.com
O1 - Hosts: 0.0.0.0 cheatsturkey.net
O1 - Hosts: 0.0.0.0 cheatsturkey.com
O1 - Hosts: 0.0.0.0 cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 cheatsturkey.xyz
O1 - Hosts: 0.0.0.0 download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.com
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.org
O1 - Hosts: 0.0.0.0 www.download.cheatsturkey.net
O1 - Hosts: 0.0.0.0 unixcheats.com
O1 - Hosts: 0.0.0.0 www.unixcheats.com
O1 - Hosts: 0.0.0.0 unixcheats.net
O1 - Hosts: 0.0.0.0 www.unixcheats.net
O1 - Hosts: 0.0.0.0 unixcheats.org
O1 - Hosts: 0.0.0.0 www.unixcheats.org
O1 - Hosts: 0.0.0.0 gamecheat.center
O1 - Hosts: 0.0.0.0 www.gamecheat.center
O1 - Hosts: 0.0.0.0 www.masyaf.net
O1 - Hosts: 0.0.0.0 masyaf.net
O1 - Hosts: 0.0.0.0 serodeck.com
O1 - Hosts: 0.0.0.0 www.serodeck.com
O2 - HKLM\..\BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre-10.0.2\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Advanced SystemCare 12] = C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe /Auto
O4 - HKCU\..\Run: [EADM] = C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKCU\..\Run: [Intel® Application Accelerator] = C:\Users\Bedirhan\AppData\Local\Intel\IntelApplicationAccelerator.exe
O4 - HKCU\..\Run: [Windows Defender] = C:\Program Files (x86)\Windows  Defender\Windows Defender.exe
O4 - HKCU\..\StartupApproved\Run: [Discord] = C:\Users\Bedirhan\AppData\Local\Discord\app-0.0.301\Discord.exe (2018/06/14)
O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\Bedirhan\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2018/04/01)
O4 - HKCU\..\StartupApproved\Run: [vidnotifier.exe] = C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe (2018/04/01)
O4 - HKCU\..\StartupApproved\StartupFolder: C:\Users\Bedirhan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WO Mic Client.lnk    ->    C:\Program Files (x86)\WOMic\WOMicClient.exe (2018/06/14)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\StartupApproved\Run32: [Lightshot] = C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe (2018/04/01)
O4 - HKLM\..\StartupApproved\Run32: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2018/04/01)
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4-32 - HKLM\..\Run: [Adobe Creative Cloud] = C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://webcompanion.com
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco1: AccExtIco1 Class - {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco2: AccExtIco2 Class - {853B7E05-C47D-4985-909A-D0DC5C6D7303} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   AccExtIco3: AccExtIco3 Class - {42D38F2E-98E9-4382-B546-E24E4D6D04BB} - C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
O22 - Task (.job): (Not scheduled) update-S-1-5-21-1584699026-217736922-1295308184-1001.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O22 - Task (.job): (Not scheduled) update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: AdobeUpdateService - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service R2: Advanced SystemCare Service 12 - (AdvancedSystemCareService12) - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service R2: Digital Wave Update Service - (DigitalWave.Update.Service) - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
O23 - Service R2: Microsoft Office Tıkla-Çalıştır Hizmeti - (ClickToRunSvc) - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe /service
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: NVIDIA Telemetry Container - (NvTelemetryContainer) - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
O23 - Service R2: QMEmulatorService - D:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: TeamViewer 13 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R2: Windows Remediation Service - (sedsvc) - C:\Program Files\rempl\sedsvc.exe
O23 - Service S2: Google Güncelleme Hizmeti (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\elevation_service.exe
O23 - Service S3: Google Güncelleme Hizmeti (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service S3: Office 64 Source Engine - (ose64) - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService


--
End of file - Time spent: 76,4 sec. - 39464 bytes, CRC32: FFFFFFFF. Sign: ྷ


Advanced SystemCare 12 fazladan bu çalışıyor arkada.
 
@mahoni55555 ,

Bahsettiğin durum hızlı kapatma ile alakalı. Sistemsel bir sorun olduğunu düşünüyorsan yeni bir konu açmanı öneririm. HJ ile alakası yok.

@bedofflol ,

Iobit'in tüm ürünlerini System Care dahil kaldırıp bir daha kullanmayın. Sistem ayarlarını bozmuş olabilir. eğer bir sorununuz varsa ve belirttiğim adımları çözmez ise temiz Windows 10 kurulumu yapmanız gerekir.

Yönergeye göre uygulayın. RstHosts 2.0 - Hosts Dosyası Onarımı - Technopat Sosyal

EEK ile tam tarama yapın. Emsisoft Emergency Kit [EEK] - Alternatif Zararlı Temizleme Aracı - Technopat Sosyal

Ardından kontrol amaçlı tekrardan HJ raporu ekleyin.
 
Kod: 
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Pro), 10.0.17763.316 (ReleaseId: 1809), Service Pack: 0
Time:      23.02.2019 - 21:31 (UTC+03:00)
Language:  OS: Turkish (0x41F). Display: Turkish (0x41F). Non-Unicode: Turkish (0x41F)
Elevated:  Yes
Ran by:    Administrator    (group: Administrator) on DESKTOP-508NC26, FirstRun: yes

Opera:   58.0.3135.65
Chrome:  72.0.3626.109
Edge:    11.0.17763.316
Internet Explorer: 11.0.17763.1
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\CryptoTabCrashHandler.exe
   1  C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\CryptoTabCrashHandler64.exe
   1  C:\Program Files (x86)\Garena\Garena\2.0.1812.2810\gxxsvc.exe
  10  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
   1  C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
   1  C:\Program Files (x86)\Origin\Origin.exe
   2  C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
   2  C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
   1  C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
   1  C:\Program Files\Mem Reduct\memreduct.exe
   1  C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
   1  C:\Program Files\OpenVPN\bin\openvpnserv.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
   1  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
   1  C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\YourPhone.exe
   5  C:\Users\Administrator\AppData\Local\Discord\app-0.0.304\Discord.exe
   2  C:\Users\Administrator\AppData\Local\messengerfordesktop\app-2.0.9\Messenger for Desktop.exe
   1  C:\Users\Administrator\Desktop\HiJackThis.exe
   4  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\SpatialAudioLicenseSrv.exe
   1  C:\Windows\System32\Taskmgr.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\backgroundTaskHost.exe
   2  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\schtasks.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  73  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WMIADAP.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wermgr.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe
   1  C:\cFosSpeed\spd.exe

O2 - HKLM\..\BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll
O2-32 - HKLM\..\BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O4 - HKCU\..\Run: [Discord] = C:\Users\Administrator\AppData\Local\Discord\app-0.0.304\Discord.exe
O4 - HKCU\..\Run: [EADM] = C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_361C1DD22E1256C6B68316A32E8B1949] = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window /prefetch:5
O4 - HKCU\..\Run: [Mem Reduct] = C:\Program Files\Mem Reduct\memreduct.exe /minimized
O4 - HKCU\..\Run: [Messenger for Desktop] = C:\Users\Administrator\AppData\Local\messengerfordesktop\Update.exe --processStart "Messenger for Desktop.exe" --process-start-args "--os-startup"
O4 - HKLM\..\StartupApproved\Run: [EvtMgr6] = C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming (2018/05/14)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\WINDOWS\system32\SecurityHealthSystray.exe (2019/01/14)
O4 - HKLM\..\StartupApproved\Run: [cFosSpeed] = C:\cFosSpeed\cFosSpeed.exe (2018/04/30)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Microsoft Excel'e &Ver: (default) = C:\Program Files (x86)\Microsoft Visual Studio\Office12\EXCEL.EXE (file missing)
O10 - Unknown file in Winsock LSP: C:\WINDOWS\system32\PrxerNsp.dll
O17 - DHCP DNS 1: 192.168.0.1
O23 - Service R2: Garena platform service - (GarenaPlatform) - C:\Program Files (x86)\Garena\Garena\2.0.1812.2810\gxxsvc.exe run
O23 - Service R2: OpenVPN Interactive Service - (OpenVPNServiceInteractive) - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R2: cFosSpeed System Service - (cFosSpeedS) - C:\cFosSpeed\spd.exe -service
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\elevation_service.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Kaspersky Anti-Virus Service 19.0.0 - (AVP19.0.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe -r
O23 - Service S3: PnkBstrA - C:\WINDOWS\system32\PnkBstrA.exe  (file missing)
O23 - Service S3: klvssbridge64_19.0.0 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe
O23 - Service S3: nProtect GameGuard Service - (npggsvc) - C:\WINDOWS\SysWOW64\GameMon.des -service


--
End of file - Time spent: 122,8 sec. - 13064 bytes, CRC32: FFFFFFFF. Sign: �̑
Bilgisayarımda bir sorun daha olduğundan şüpheleniyorum.
 
@TéQ10 ,

Verdiğim satırları fixleyin.
Kod: 
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_361C1DD22E1256C6B68316A32E8B1949] = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window /prefetch:5
O4 - HKCU\..\Run: [Mem Reduct] = C:\Program Files\Mem Reduct\memreduct.exe /minimized
O4 - HKCU\..\Run: [Messenger for Desktop] = C:\Users\Administrator\AppData\Local\messengerfordesktop\Update.exe --processStart "Messenger for Desktop.exe" --process-start-args "--os-startup"
O4 - HKLM\..\StartupApproved\Run: [cFosSpeed] = C:\cFosSpeed\cFosSpeed.exe (2018/04/30)
O23 - Service R2: OpenVPN Interactive Service - (OpenVPNServiceInteractive) - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service R2: cFosSpeed System Service - (cFosSpeedS) - C:\cFosSpeed\spd.exe -service

Windows 10'da RAM temizleme uygulamalarına gerek yok. Mem Reduct uygulamasını kaldırmanı öneririm. Aynı şekilde cFosSpeed de tavsiye etmem.

Bunun dışında CryptoTab senin kurduğun ise bir sorun göremedim, düşündüğün sorun nedir?
 
THE_MILLER dedi:
@TéQ10 ,

Verdiğim satırları fixleyin.
Kod: 
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_361C1DD22E1256C6B68316A32E8B1949] = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window /prefetch:5
O4 - HKCU\..\Run: [Mem Reduct] = C:\Program Files\Mem Reduct\memreduct.exe /minimized
O4 - HKCU\..\Run: [Messenger for Desktop] = C:\Users\Administrator\AppData\Local\messengerfordesktop\Update.exe --processStart "Messenger for Desktop.exe" --process-start-args "--os-startup"
O4 - HKLM\..\StartupApproved\Run: [cFosSpeed] = C:\cFosSpeed\cFosSpeed.exe (2018/04/30)
O23 - Service R2: OpenVPN Interactive Service - (OpenVPNServiceInteractive) - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service R2: cFosSpeed System Service - (cFosSpeedS) - C:\cFosSpeed\spd.exe -service

Windows 10'da RAM temizleme uygulamalarına gerek yok. Mem Reduct uygulamasını kaldırmanı öneririm. Aynı şekilde cFosSpeed de tavsiye etmem.

Bunun dışında CryptoTab senin kurduğun ise bir sorun göremedim, düşündüğün sorun nedir?
Genişletmek için tıkla...
Son günlerde bilgisayarda bir internet hızı sorunu var. Bunun burada görünebileceğini düşünmüştüm.
Fakat sanırım sorun donanımsal.
 

Benzer konular

Egeeymen
Kaspersky silinmeyen trojan
Mesaj
2
Görüntüleme
666
acv
A
Niyazi Taşcı
Android Silinmeyen Trojan Virüsü Temizleme
Mesaj
5
Görüntüleme
5B
quarest
quarest
2
  • Makale
Rehber  Kaspersky Virus Removal Tool ile Zararlı Yazılım Temizliği
Mesaj
7
Görüntüleme
10B
Windows 11 Bükücü
Windows 11 Bükücü
B
Kaspersky Security Cloud trojan buldu
2 3
Mesaj
21
Görüntüleme
2B
Murat5038
Murat5038
B
Trojan ve Keylogger Temizleme
Mesaj
3
Görüntüleme
4B
Murat5038
Murat5038

Yeni konular

Yeni mesajlar

Geri
Yukarı