AlijohnX Posted June 12, 2009 Share Posted June 12, 2009 HİJACKTHİS Nedir? [Kendi Açıklamamla öz ve kısa] Bilgisayarınızı hem virüsten kurtarmak amacıyla hemde başlangıçta ve daha sonrasında kasmaya yol açan yazılmları engellemek için yapılmış çok güzel bir fixleme ve temizleme yazılımdır. * Programı masaüstünüze indirin. * Programı çift tıklayarak açın. * Do a system scan and save a log file seçeneğine tıklayın. Bilgisayarınız taranacak ve masaüstünüzde hijackthis.txt adında bir dosya oluşacaktır. O dosyayı mesajınıza ekleyerek gönderin. * Mesajınızda sorununuzu kısa da olsa bir şekilde belirtin. Hiç bir şekilde yorum yapılmayan, sadece log içeren mesajlar yanıtlanmayacaktır. * Logları gönderirken lütfen Code veya Spoiler etiketleri arasına alarak yollayın. Bunları kullanmadığınız takdirde sayfalar çok uzuyor ve hoş olmayan bir görüntünün oluşmasının yanında, logları okumak ve takip etmek de zorlaşıyor. code\Spoiler etiketleri arasına alınmayan mesajlar yanıtlanmayacaktır. Hijackthis 2.04 http://www.gezginler.net/modules/mydownloads/visit.php?lid=756 Fix işlemini yaparken, kesinlikle hiçbir programın açık olmamasına dikkat ediniz. Güvenli modda fix yaptığınız taktirde çok daha olumlu sonuçlar alacaksınız. Link to comment Share on other sites More sharing options...
MostWanted Posted June 12, 2009 Share Posted June 12, 2009 Ooo Fırat'ım işi büyütmüşsün sen maş Link to comment Share on other sites More sharing options...
AlijohnX Posted June 12, 2009 Author Share Posted June 12, 2009 Ooo Fırat'ım işi büyütmüşsün sen maş Büyüdük Dostum Link to comment Share on other sites More sharing options...
wmismail Posted June 12, 2009 Share Posted June 12, 2009 Fırat mükemmelsin Link to comment Share on other sites More sharing options...
greenpeacem Posted June 12, 2009 Share Posted June 12, 2009 Hosts dosyaları bi sorun yaratamaz degil mi...? Link to comment Share on other sites More sharing options...
AlijohnX Posted June 12, 2009 Author Share Posted June 12, 2009 Hayır... Link to comment Share on other sites More sharing options...
*TOYGAR* Posted June 13, 2009 Share Posted June 13, 2009 AlijohnX Abi Sen Aştın İyice İşi Log Analiz Fİlan Helal Olsun Walla... Link to comment Share on other sites More sharing options...
AlijohnX Posted June 15, 2009 Author Share Posted June 15, 2009 Link to comment Share on other sites More sharing options...
*TOYGAR* Posted June 15, 2009 Share Posted June 15, 2009 Kimse uğraşmak istemiyor Galiba .Hazır Logları Analiz Eden Birisi Varken Ben Kendim Analiz Ediyorum.. Bence Sende Bu İşin Tekniğini Öğret Herkes Kendisi Analiz Etsin. Link to comment Share on other sites More sharing options...
graphix Posted June 15, 2009 Share Posted June 15, 2009 ilk ben log veriyim o zaman http://rapidshare.com/files/244765626/hijackthis.log.html[/CODE] Link to comment Share on other sites More sharing options...
wmismail Posted June 15, 2009 Share Posted June 15, 2009 Code tagı içinde buraya eklemeni öneririm Link to comment Share on other sites More sharing options...
graphix Posted June 15, 2009 Share Posted June 15, 2009 Logfile of Trend Micro HijackThis v2.0.2Scan saved at 05:50, on 2003-01-02Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16762)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\Program Files\HyperTechnologies\Deep Freeze\DfServEx.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\Explorer.EXEC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\WINDOWS\SOUNDMAN.EXEC:\Program Files\Java\jre1.5.0_03\bin\jusched.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\Conexant\AccessRunner ADSL\CnxDslTb.exeC:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Internet Download Manager\IDMan.exeC:\Program Files\Delux\PS2 Keyboard English Edition\keyboard.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\HyperTechnologies\Deep Freeze\_$Df\FrzState.exeC:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Program Files\Internet Download Manager\IEMonitor.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\Windows Media Player\wmplayer.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = BağlantılarO1 - Hosts: 208.117.236.71 ru.youtube.comO1 - Hosts: 208.117.236.71 fr.youtube.comO1 - Hosts: 208.117.236.71 youtube.comO1 - Hosts: 208.117.236.71 www.youtube.comO1 - Hosts: 208.117.236.71 au.youtube.comO1 - Hosts: 208.117.236.71 ca.youtube.comO1 - Hosts: 208.117.236.71 m.youtube.comO1 - Hosts: 74.125.65.118 img.youtube.comO1 - Hosts: 209.85.165.102 gdata.youtube.comO1 - Hosts: 208.117.236.71 ru.youtube.comO1 - Hosts: 208.117.236.70 youtube.comO1 - Hosts: 208.117.236.70 www.youtube.comO1 - Hosts: 74.125.65.118 img.youtube.comO1 - Hosts: 64.15.124.143 sjc-v1.sjc.youtube.comO1 - Hosts: 64.15.124.144 sjc-v2.sjc.youtube.comO1 - Hosts: 64.15.124.145 sjc-v3.sjc.youtube.comO1 - Hosts: 64.15.124.146 sjc-v4.sjc.youtube.comO1 - Hosts: 64.15.124.147 sjc-v5.sjc.youtube.comO1 - Hosts: 64.15.124.148 sjc-v6.sjc.youtube.comO1 - Hosts: 64.15.124.149 sjc-v7.sjc.youtube.comO1 - Hosts: 64.15.124.150 sjc-v8.sjc.youtube.comO1 - Hosts: 64.15.124.151 sjc-v9.sjc.youtube.comO1 - Hosts: 72.14.205.104 help.youtube.comO1 - Hosts: 72.14.205.147 help.youtube.comO1 - Hosts: 72.14.205.99 help.youtube.comO1 - Hosts: 58.27.3.132 www.sopcast.comO1 - Hosts: 58.27.3.132 sopcast.comO1 - Hosts: 119.110.96.136 www.sopcast.orgO1 - Hosts: 119.110.96.136 sopcast.orgO1 - Hosts: 64.15.124.152 sjc-v10.sjc.youtube.comO1 - Hosts: 64.15.124.153 sjc-v11.sjc.youtube.comO1 - Hosts: 64.15.124.154 sjc-v12.sjc.youtube.comO1 - Hosts: 64.15.124.155 sjc-v13.sjc.youtube.comO1 - Hosts: 64.15.124.156 sjc-v14.sjc.youtube.comO1 - Hosts: 64.15.124.157 sjc-v15.sjc.youtube.comO1 - Hosts: 64.15.124.158 sjc-v16.sjc.youtube.comO1 - Hosts: 64.15.124.159 sjc-v17.sjc.youtube.comO1 - Hosts: 64.15.124.160 sjc-v18.sjc.youtube.comO1 - Hosts: 64.15.124.161 sjc-v19.sjc.youtube.comO1 - Hosts: 64.15.124.162 sjc-v20.sjc.youtube.comO1 - Hosts: 64.15.124.163 sjc-v21.sjc.youtube.comO1 - Hosts: 64.15.124.164 sjc-v22.sjc.youtube.comO1 - Hosts: 64.15.124.165 sjc-v23.sjc.youtube.comO1 - Hosts: 64.15.124.166 sjc-v24.sjc.youtube.comO1 - Hosts: 64.15.124.167 sjc-v25.sjc.youtube.comO1 - Hosts: 64.15.124.168 sjc-v26.sjc.youtube.comO1 - Hosts: 64.15.124.169 sjc-v27.sjc.youtube.comO1 - Hosts: 64.15.124.170 sjc-v28.sjc.youtube.comO1 - Hosts: 64.15.124.171 sjc-v29.sjc.youtube.comO1 - Hosts: 64.15.124.172 sjc-v30.sjc.youtube.comO1 - Hosts: 64.15.124.173 sjc-v31.sjc.youtube.comO1 - Hosts: 64.15.124.174 sjc-v32.sjc.youtube.comO1 - Hosts: 64.15.124.175 sjc-v33.sjc.youtube.comO1 - Hosts: 64.15.124.176 sjc-v34.sjc.youtube.comO1 - Hosts: 64.15.124.177 sjc-v35.sjc.youtube.comO1 - Hosts: 64.15.124.178 sjc-v36.sjc.youtube.comO1 - Hosts: 64.15.124.179 sjc-v37.sjc.youtube.comO1 - Hosts: 64.15.124.180 sjc-v38.sjc.youtube.comO1 - Hosts: 64.15.124.207 sjc-v39.sjc.youtube.comO1 - Hosts: 64.15.124.208 sjc-v40.sjc.youtube.comO1 - Hosts: 64.15.124.209 sjc-v41.sjc.youtube.comO1 - Hosts: 64.15.124.210 sjc-v42.sjc.youtube.comO1 - Hosts: 64.15.124.211 sjc-v43.sjc.youtube.comO1 - Hosts: 64.15.124.212 sjc-v44.sjc.youtube.comO1 - Hosts: 64.15.124.213 sjc-v45.sjc.youtube.comO1 - Hosts: 64.15.124.214 sjc-v46.sjc.youtube.comO1 - Hosts: 64.15.124.215 sjc-v47.sjc.youtube.comO1 - Hosts: 64.15.124.216 sjc-v48.sjc.youtube.comO1 - Hosts: 64.15.124.217 sjc-v49.sjc.youtube.comO1 - Hosts: 64.15.124.218 sjc-v50.sjc.youtube.comO1 - Hosts: 64.15.124.219 sjc-v51.sjc.youtube.comO1 - Hosts: 64.15.124.220 sjc-v52.sjc.youtube.comO1 - Hosts: 64.15.124.221 sjc-v53.sjc.youtube.comO1 - Hosts: 64.15.124.222 sjc-v54.sjc.youtube.comO1 - Hosts: 64.15.124.223 sjc-v55.sjc.youtube.comO1 - Hosts: 64.15.124.224 sjc-v56.sjc.youtube.comO1 - Hosts: 64.15.124.225 sjc-v57.sjc.youtube.comO1 - Hosts: 64.15.124.226 sjc-v58.sjc.youtube.comO1 - Hosts: 64.15.124.227 sjc-v59.sjc.youtube.comO1 - Hosts: 64.15.124.228 sjc-v60.sjc.youtube.comO1 - Hosts: 64.15.124.229 sjc-v61.sjc.youtube.comO1 - Hosts: 64.15.124.230 sjc-v62.sjc.youtube.comO1 - Hosts: 64.15.124.231 sjc-v63.sjc.youtube.comO1 - Hosts: 64.15.124.232 sjc-v64.sjc.youtube.comO1 - Hosts: 64.15.124.233 sjc-v65.sjc.youtube.comO1 - Hosts: 64.15.124.234 sjc-v66.sjc.youtube.comO1 - Hosts: 64.15.124.235 sjc-v67.sjc.youtube.comO1 - Hosts: 64.15.124.236 sjc-v68.sjc.youtube.comO1 - Hosts: 64.15.124.237 sjc-v69.sjc.youtube.comO1 - Hosts: 64.15.124.238 sjc-v70.sjc.youtube.comO1 - Hosts: 64.15.124.239 sjc-v71.sjc.youtube.comO1 - Hosts: 64.15.124.240 sjc-v72.sjc.youtube.comO1 - Hosts: 64.15.124.241 sjc-v73.sjc.youtube.comO1 - Hosts: 64.15.124.242 sjc-v74.sjc.youtube.comO1 - Hosts: 64.15.124.243 sjc-v75.sjc.youtube.comO1 - Hosts: 64.15.124.244 sjc-v76.sjc.youtube.comO1 - Hosts: 64.15.125.16 sjc-v77.sjc.youtube.comO1 - Hosts: 64.15.125.17 sjc-v78.sjc.youtube.comO1 - Hosts: 64.15.125.18 sjc-v79.sjc.youtube.comO1 - Hosts: 64.15.125.19 sjc-v80.sjc.youtube.comO1 - Hosts: 64.15.125.20 sjc-v81.sjc.youtube.comO2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dllO2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dllO2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dllO2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dllO2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)O2 - BHO: Windows Live Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dllO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dllO2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dllO2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dllO3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dllO4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeO4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exeO4 - HKLM\..\Run: [Flashget] "C:\Program Files\FlashGet\FlashGet.exe" /minO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [CnxDslTaskBar] C:\Program Files\Conexant\AccessRunner ADSL\CnxDslTb.exeO4 - HKLM\..\Run: [sXe Injected] E:\Programlar\OYUNLAR\sXe Injected\sXe Injected.exeO4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onbootO4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exeO4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')O4 - Startup: ADSL.lnk = ?O4 - Global Startup: PS2 Keyboard English Edition.lnk = ?O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htmO8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htmO8 - Extra context menu item: Bütün linkleri IDM ile indir - C:\Program Files\Internet Download Manager\IEGetAll.htmO8 - Extra context menu item: FlashGet'i kullanarak indir - C:\Program Files\FlashGet\jc_link.htmO8 - Extra context menu item: FLV video içeriğini IDM ile indir - C:\Program Files\Internet Download Manager\IEGetVL.htmO8 - Extra context menu item: IDM ile indir - C:\Program Files\Internet Download Manager\IEExt.htmO8 - Extra context menu item: Microsoft Excel'e Gö&nder - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Tümünü FlashGet'i kullanarak indir - C:\Program Files\FlashGet\jc_all.htmO9 - Extra button: HP Kırpma Defteri - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dllO9 - Extra button: HP Akıllı Seçim - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dllO9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exeO9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exeO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO17 - HKLM\System\CCS\Services\Tcpip\..\{95E13866-3DCC-4EBA-8EF6-C8B55D3AF08F}: NameServer = 195.175.39.40 195.175.39.39O20 - Winlogon Notify: DfLogon - LogonDll.dll (file missing)O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exeO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exeO23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: DFServEx - Hyper Technologies Inc. - C:\Program Files\HyperTechnologies\Deep Freeze\DfServEx.exeO23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe--End of file - 13188 bytes[/CODE] Link to comment Share on other sites More sharing options...
AlijohnX Posted June 15, 2009 Author Share Posted June 15, 2009 @TOYGAR, grapix arkadaşımızın verdiği logu hazır yapımda tarat bakalım hangisi daha çok fixleme işlemi yapımını istiyor? Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 05:50, on 2003-01-02 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\Program Files\HyperTechnologies\Deep Freeze\DfServEx.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Conexant\AccessRunner ADSL\CnxDslTb.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Internet Download Manager\IDMan.exe C:\Program Files\Delux\PS2 Keyboard English Edition\keyboard.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\HyperTechnologies\Deep Freeze\_$Df\FrzState.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Internet Download Manager\IEMonitor.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Windows Media Player\wmplayer.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Please register to see this content. R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Bağlantılar O1 - Hosts: 208.117.236.71 ru.youtube.com O1 - Hosts: 208.117.236.71 fr.youtube.com O1 - Hosts: 208.117.236.71 youtube.com O1 - Hosts: 208.117.236.71 www.youtube.com O1 - Hosts: 208.117.236.71 au.youtube.com O1 - Hosts: 208.117.236.71 ca.youtube.com O1 - Hosts: 208.117.236.71 m.youtube.com O1 - Hosts: 74.125.65.118 img.youtube.com O1 - Hosts: 209.85.165.102 gdata.youtube.com O1 - Hosts: 208.117.236.71 ru.youtube.com O1 - Hosts: 208.117.236.70 youtube.com O1 - Hosts: 208.117.236.70 www.youtube.com O1 - Hosts: 74.125.65.118 img.youtube.com O1 - Hosts: 64.15.124.143 sjc-v1.sjc.youtube.com O1 - Hosts: 64.15.124.144 sjc-v2.sjc.youtube.com O1 - Hosts: 64.15.124.145 sjc-v3.sjc.youtube.com O1 - Hosts: 64.15.124.146 sjc-v4.sjc.youtube.com O1 - Hosts: 64.15.124.147 sjc-v5.sjc.youtube.com O1 - Hosts: 64.15.124.148 sjc-v6.sjc.youtube.com O1 - Hosts: 64.15.124.149 sjc-v7.sjc.youtube.com O1 - Hosts: 64.15.124.150 sjc-v8.sjc.youtube.com O1 - Hosts: 64.15.124.151 sjc-v9.sjc.youtube.com O1 - Hosts: 72.14.205.104 help.youtube.com O1 - Hosts: 72.14.205.147 help.youtube.com O1 - Hosts: 72.14.205.99 help.youtube.com O1 - Hosts: 58.27.3.132 www.sopcast.com O1 - Hosts: 58.27.3.132 sopcast.com O1 - Hosts: 119.110.96.136 www.sopcast.org O1 - Hosts: 119.110.96.136 sopcast.org O1 - Hosts: 64.15.124.152 sjc-v10.sjc.youtube.com O1 - Hosts: 64.15.124.153 sjc-v11.sjc.youtube.com O1 - Hosts: 64.15.124.154 sjc-v12.sjc.youtube.com O1 - Hosts: 64.15.124.155 sjc-v13.sjc.youtube.com O1 - Hosts: 64.15.124.156 sjc-v14.sjc.youtube.com O1 - Hosts: 64.15.124.157 sjc-v15.sjc.youtube.com O1 - Hosts: 64.15.124.158 sjc-v16.sjc.youtube.com O1 - Hosts: 64.15.124.159 sjc-v17.sjc.youtube.com O1 - Hosts: 64.15.124.160 sjc-v18.sjc.youtube.com O1 - Hosts: 64.15.124.161 sjc-v19.sjc.youtube.com O1 - Hosts: 64.15.124.162 sjc-v20.sjc.youtube.com O1 - Hosts: 64.15.124.163 sjc-v21.sjc.youtube.com O1 - Hosts: 64.15.124.164 sjc-v22.sjc.youtube.com O1 - Hosts: 64.15.124.165 sjc-v23.sjc.youtube.com O1 - Hosts: 64.15.124.166 sjc-v24.sjc.youtube.com O1 - Hosts: 64.15.124.167 sjc-v25.sjc.youtube.com O1 - Hosts: 64.15.124.168 sjc-v26.sjc.youtube.com O1 - Hosts: 64.15.124.169 sjc-v27.sjc.youtube.com O1 - Hosts: 64.15.124.170 sjc-v28.sjc.youtube.com O1 - Hosts: 64.15.124.171 sjc-v29.sjc.youtube.com O1 - Hosts: 64.15.124.172 sjc-v30.sjc.youtube.com O1 - Hosts: 64.15.124.173 sjc-v31.sjc.youtube.com O1 - Hosts: 64.15.124.174 sjc-v32.sjc.youtube.com O1 - Hosts: 64.15.124.175 sjc-v33.sjc.youtube.com O1 - Hosts: 64.15.124.176 sjc-v34.sjc.youtube.com O1 - Hosts: 64.15.124.177 sjc-v35.sjc.youtube.com O1 - Hosts: 64.15.124.178 sjc-v36.sjc.youtube.com O1 - Hosts: 64.15.124.179 sjc-v37.sjc.youtube.com O1 - Hosts: 64.15.124.180 sjc-v38.sjc.youtube.com O1 - Hosts: 64.15.124.207 sjc-v39.sjc.youtube.com O1 - Hosts: 64.15.124.208 sjc-v40.sjc.youtube.com O1 - Hosts: 64.15.124.209 sjc-v41.sjc.youtube.com O1 - Hosts: 64.15.124.210 sjc-v42.sjc.youtube.com O1 - Hosts: 64.15.124.211 sjc-v43.sjc.youtube.com O1 - Hosts: 64.15.124.212 sjc-v44.sjc.youtube.com O1 - Hosts: 64.15.124.213 sjc-v45.sjc.youtube.com O1 - Hosts: 64.15.124.214 sjc-v46.sjc.youtube.com O1 - Hosts: 64.15.124.215 sjc-v47.sjc.youtube.com O1 - Hosts: 64.15.124.216 sjc-v48.sjc.youtube.com O1 - Hosts: 64.15.124.217 sjc-v49.sjc.youtube.com O1 - Hosts: 64.15.124.218 sjc-v50.sjc.youtube.com O1 - Hosts: 64.15.124.219 sjc-v51.sjc.youtube.com O1 - Hosts: 64.15.124.220 sjc-v52.sjc.youtube.com O1 - Hosts: 64.15.124.221 sjc-v53.sjc.youtube.com O1 - Hosts: 64.15.124.222 sjc-v54.sjc.youtube.com O1 - Hosts: 64.15.124.223 sjc-v55.sjc.youtube.com O1 - Hosts: 64.15.124.224 sjc-v56.sjc.youtube.com O1 - Hosts: 64.15.124.225 sjc-v57.sjc.youtube.com O1 - Hosts: 64.15.124.226 sjc-v58.sjc.youtube.com O1 - Hosts: 64.15.124.227 sjc-v59.sjc.youtube.com O1 - Hosts: 64.15.124.228 sjc-v60.sjc.youtube.com O1 - Hosts: 64.15.124.229 sjc-v61.sjc.youtube.com O1 - Hosts: 64.15.124.230 sjc-v62.sjc.youtube.com O1 - Hosts: 64.15.124.231 sjc-v63.sjc.youtube.com O1 - Hosts: 64.15.124.232 sjc-v64.sjc.youtube.com O1 - Hosts: 64.15.124.233 sjc-v65.sjc.youtube.com O1 - Hosts: 64.15.124.234 sjc-v66.sjc.youtube.com O1 - Hosts: 64.15.124.235 sjc-v67.sjc.youtube.com O1 - Hosts: 64.15.124.236 sjc-v68.sjc.youtube.com O1 - Hosts: 64.15.124.237 sjc-v69.sjc.youtube.com O1 - Hosts: 64.15.124.238 sjc-v70.sjc.youtube.com O1 - Hosts: 64.15.124.239 sjc-v71.sjc.youtube.com O1 - Hosts: 64.15.124.240 sjc-v72.sjc.youtube.com O1 - Hosts: 64.15.124.241 sjc-v73.sjc.youtube.com O1 - Hosts: 64.15.124.242 sjc-v74.sjc.youtube.com O1 - Hosts: 64.15.124.243 sjc-v75.sjc.youtube.com O1 - Hosts: 64.15.124.244 sjc-v76.sjc.youtube.com O1 - Hosts: 64.15.125.16 sjc-v77.sjc.youtube.com O1 - Hosts: 64.15.125.17 sjc-v78.sjc.youtube.com O1 - Hosts: 64.15.125.18 sjc-v79.sjc.youtube.com O1 - Hosts: 64.15.125.19 sjc-v80.sjc.youtube.com O1 - Hosts: 64.15.125.20 sjc-v81.sjc.youtube.com O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe O4 - HKLM\..\Run: [Flashget] "C:\Program Files\FlashGet\FlashGet.exe" /min O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [CnxDslTaskBar] C:\Program Files\Conexant\AccessRunner ADSL\CnxDslTb.exe O4 - HKLM\..\Run: [sXe Injected] E:\Programlar\OYUNLAR\sXe Injected\sXe Injected.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: ADSL.lnk = ? O4 - Global Startup: PS2 Keyboard English Edition.lnk = ? O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: Bütün linkleri IDM ile indir - C:\Program Files\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: FlashGet'i kullanarak indir - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: FLV video içeriğini IDM ile indir - C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: IDM ile indir - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Microsoft Excel'e Gö&nder - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Tümünü FlashGet'i kullanarak indir - C:\Program Files\FlashGet\jc_all.htm O9 - Extra button: HP Kırpma Defteri - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Akıllı Seçim - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{95E13866-3DCC-4EBA-8EF6-C8B55D3AF08F}: NameServer = 195.175.39.40 195.175.39.39 O20 - Winlogon Notify: DfLogon - LogonDll.dll (file missing) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: DFServEx - Hyper Technologies Inc. - C:\Program Files\HyperTechnologies\Deep Freeze\DfServEx.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- End of file - 13188 bytes Sisteminiz size olan başlangıçta sanırım açmasını istediğiniz yazılılmların haricinde kasma durumu söz konusu değil... Mavi ile işaretlediklerimi çalıştırdığı uygulamaya göre inceleyerek fixleyebilirsiniz. Örnek olarak "O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe" bu uygulamayı ele alırsak burada Ati ekran kartınızın sürücü yazılımı ayarlarıyla oynamak istediğiniz zaman açıp kovalarsınız ile ilgili bir durum... zaten kendisi ayarlı değiştirmeye gerek yok diyorsanız fixleyin gitsin . Onun haricinde kırmızıları da fixledikten sonra sisteminizi temiz bir şekilde kullanabilirsiniz... Ayrıca eğer youtube sitesine girmek istiyorsanız gri ile ele aldıklarıma dikkat etmeyin... Fakat tüm o dosyaların virüslü olduğunuda belirtmek isterim... İyi günler... Link to comment Share on other sites More sharing options...
istanbul82 Posted June 15, 2009 Share Posted June 15, 2009 teşşekürler . acemi kullanıcıların dikkatli olmasında fayda var.... Link to comment Share on other sites More sharing options...
*TOYGAR* Posted June 15, 2009 Share Posted June 15, 2009 Yok Ben Onu Demedim Bend Az Çok Bilgisayar Biliyorum.Kendim İnceliyorum Dedim. Link to comment Share on other sites More sharing options...
AlijohnX Posted June 15, 2009 Author Share Posted June 15, 2009 Bunda teknik meknik yok sadece yılların verdiği birikim öğrenimi... Link to comment Share on other sites More sharing options...
baba3232 Posted June 16, 2009 Share Posted June 16, 2009 Link to comment Share on other sites More sharing options...
warez Posted June 16, 2009 Share Posted June 16, 2009 arkadaşım, bişeyler yapmaya çalışıyorsun emek sarfediyorsun güzelde. olayı neden kasıyorsunki. HijackThis'in kendi sayfasında ücretsiz analiz yapılıyor. göresek ve yazılı olarak çok güvenli, güvenli, kullanıcıların belirttiğine göre güvenli, fixlenmeli. şeklinde sana bilgi veriyor. yani bana gönderin ben analiz edeyim olayına girmeye gerek yok. gönder sitesine işi ustaları analiz etsin. bak buda benim log dosyamın analiz sonuçları. bu sayfadanda analiz yaptırabilirsiniz. http://www.hijackthis.de/en[/CODE] Link to comment Share on other sites More sharing options...
AlijohnX Posted June 16, 2009 Author Share Posted June 16, 2009 arkadaşım üstte graphix arkadaşımızın verdiği logu oraya yapıştır bakayım hangisi daha çok fixleme istiyor... Link to comment Share on other sites More sharing options...
mevlut0252 Posted July 3, 2009 Share Posted July 3, 2009 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:27:31, on 03.07.2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe C:\program files\rnamfler\naomf.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\LClock\LClock.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\AirTies\ADSL Hizmet Programı\AirTies_util3.exe C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe C:\WINDOWS\system32\crypserv.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe c:\program files\rnamfler\radprcmp.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\rnamfler\naofsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe C:\WINDOWS\System32\TUProgSt.exe C:\WINDOWS\system32\DllHost.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Opera\opera.exe C:\WINDOWS\system32\wbem\wmiprvse.exe D:\PROGRAM ARŞİVİ\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Ultimate Edition 2008 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Bağlantılar O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [wrna3ls] C:\program files\rnamfler\naomf.exe O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKCU\..\Run: [LClock] C:\Program Files\LClock\LClock.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user') O4 - .DEFAULT User Startup: WinInfo.lnk = C:\Program Files\WinInfo\wininfo.exe (User 'Default user') O4 - Global Startup: AirTies ADSL Hizmet Programı.lnk = ? O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O16 - DPF: {D5D17C21-1719-4640-B0B2-4F3262419920} (JaguarEditControl-ISBANK) - Please register to see this content. O20 - AppInit_DLLs: prio.dll O20 - Winlogon Notify: Antiwpa - C:\WINDOWS\SYSTEM32\antiwpa.dll O23 - Service: Eset Trial Reset (.EsetTrialReset) - Unknown owner - C:\WINDOWS\reset.exe O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe O23 - Service: Crypkey License - Unknown owner - C:\WINDOWS\SYSTEM32\crypserv.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: RdnaoFlSvc - Unknown owner - C:\Program Files\rnamfler\naofsvc.exe O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe -- End of file - 6056 bytes İlgilenirseniz sevinirim.Şimdiden teşekkürler Link to comment Share on other sites More sharing options...
AlijohnX Posted August 5, 2009 Author Share Posted August 5, 2009 Logfile of Trend Micro HijackThis v2.0.2Scan saved at 11:27:31, on 03.07.2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe C:\program files\rnamfler\naomf.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\LClock\LClock.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\AirTies\ADSL Hizmet Programı\AirTies_util3.exe C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe C:\WINDOWS\system32\crypserv.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe c:\program files\rnamfler\radprcmp.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\rnamfler\naofsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe C:\WINDOWS\System32\TUProgSt.exe C:\WINDOWS\system32\DllHost.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Opera\opera.exe C:\WINDOWS\system32\wbem\wmiprvse.exe D:\PROGRAM ARŞİVİ\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Ultimate Edition 2008 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Bağlantılar O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [wrna3ls] C:\program files\rnamfler\naomf.exe O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKCU\..\Run: [LClock] C:\Program Files\LClock\LClock.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user') O4 - .DEFAULT User Startup: WinInfo.lnk = C:\Program Files\WinInfo\wininfo.exe (User 'Default user') O4 - Global Startup: AirTies ADSL Hizmet Programı.lnk = ? O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O16 - DPF: {D5D17C21-1719-4640-B0B2-4F3262419920} (JaguarEditControl-ISBANK) - Please register to see this content. O20 - AppInit_DLLs: prio.dll O20 - Winlogon Notify: Antiwpa - C:\WINDOWS\SYSTEM32\antiwpa.dll O23 - Service: Eset Trial Reset (.EsetTrialReset) - Unknown owner - C:\WINDOWS\reset.exe O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe O23 - Service: Crypkey License - Unknown owner - C:\WINDOWS\SYSTEM32\crypserv.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: RdnaoFlSvc - Unknown owner - C:\Program Files\rnamfler\naofsvc.exe O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe -- End of file - 6056 bytes İlgilenirseniz sevinirim.Şimdiden teşekkürler Kırmızı ile işaretlediklerimi Fix checked diyerek Silin... Mavi ile işaretlediklerimi Notuna bakarak ne olduğunu anlayın. İster fixleyin isterseniz bırakın açılışta çalışsın. Sisteminiz sanırım biraz yorgun. Rahatlatmak için bu masajı yaparsanız kendine gelecektir. Ayrıca açtığım bilgsayar performansını hızlandırma anlatımı ve programlarını indiriseniz çok temiz ve kullanışlı bir bilgisayarınız olur. İyi günler diliyorum. Çok geç cevap vermişim. Lütfen özrümü kabul edin. Link to comment Share on other sites More sharing options...
droy Posted August 11, 2009 Share Posted August 11, 2009 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 02:17:28, on 11.08.2009 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Hotkey_Driver\HotkeyDriver.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\System32\s3trayp.exe C:\Program Files\Synaptics\SynTP\SynTPStart.exe C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe C:\Program Files\RocketDock\RocketDock.exe C:\Program Files\Stardock\ObjectDock\ObjectDock.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Internet Download Manager\IDMan.exe C:\Program Files\Internet Download Manager\IEMonitor.exe C:\Windows\system32\taskhost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Windows\system32\SearchFilterHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Please register to see this content. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll O2 - BHO: Windows Live Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll O4 - HKLM\..\Run: [s3Trayp] S3trayp.exe -chkautorun O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Local Service') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Local Service') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Bütün linkleri IDM ile indir - C:\Program Files\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: FLV video içeriğini IDM ile indir - C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: Formları Doldur - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O8 - Extra context menu item: Formları Kaydet - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O8 - Extra context menu item: IDM ile indir - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Menüyü Özelleştir - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra button: OneNote'a Gönder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: OneNote'a G&önder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Formları Doldur - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O9 - Extra 'Tools' menuitem: Formları Doldur - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O9 - Extra button: Kaydet - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O9 - Extra 'Tools' menuitem: Formları Kaydet - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O13 - Gopher Prefix: O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- End of file - 5842 bytes ********************** sonucu merakla bekliyorum. teşekkürler Link to comment Share on other sites More sharing options...
gencgazi Posted August 11, 2009 Share Posted August 11, 2009 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 03:46:06, on 11.08.2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: I:\WINDOWS\System32\smss.exe I:\WINDOWS\system32\winlogon.exe I:\WINDOWS\system32\services.exe I:\WINDOWS\system32\lsass.exe I:\WINDOWS\system32\winsersec.exe I:\WINDOWS\system32\Ati2evxx.exe I:\WINDOWS\system32\svchost.exe I:\WINDOWS\System32\svchost.exe I:\WINDOWS\system32\Ati2evxx.exe I:\WINDOWS\system32\spoolsv.exe I:\WINDOWS\Explorer.EXE I:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe I:\WINDOWS\system32\inetsrv\inetinfo.exe I:\WINDOWS\system32\svchost.exe I:\WINDOWS\RTHDCPL.EXE I:\WINDOWS\system32\mmm.exe I:\Program Files\Drive Space Indicator\DrvSpace.exe I:\WINDOWS\sdaemon.exe I:\WINDOWS\winwd.exe I:\WINDOWS\FixCamera.exe I:\WINDOWS\tsnp325.exe I:\Program Files\DigitalPeers\CamTrack\dptracker.exe I:\WINDOWS\vsnp325.exe I:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe I:\WINDOWS\system32\ctfmon.exe I:\Program Files\Internet Explorer\IEXPLORE.EXE I:\Program Files\Internet Explorer\IEXPLORE.EXE I:\Program Files\Mozilla Firefox\firefox.exe I:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Please register to see this content. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Bağlantılar O1 - Hosts: 212.175.252.253 www.divxm.com O1 - Hosts: 89.149.239.114 www.divxplanet.net O1 - Hosts: 208.117.236.70 youtube.com O1 - Hosts: 208.117.236.70 www.youtube.com O1 - Hosts: 74.125.65.118 img.youtube.com O1 - Hosts: 74.125.13.80 v1.lscache1.c.youtube.com O1 - Hosts: 74.125.13.83 v2.lscache1.c.youtube.com O1 - Hosts: 74.125.13.86 v3.lscache1.c.youtube.com O1 - Hosts: 74.125.13.89 v4.lscache1.c.youtube.com O1 - Hosts: 74.125.13.92 v5.lscache1.c.youtube.com O1 - Hosts: 74.125.13.95 v6.lscache1.c.youtube.com O1 - Hosts: 74.125.13.98 v7.lscache1.c.youtube.com O1 - Hosts: 74.125.13.101 v8.lscache1.c.youtube.com O1 - Hosts: 74.125.97.17 v9.lscache1.c.youtube.com O1 - Hosts: 74.125.97.84 v10.lscache1.c.youtube.com O1 - Hosts: 74.125.13.87 v11.lscache1.c.youtube.com O1 - Hosts: 74.125.13.90 v12.lscache1.c.youtube.com O1 - Hosts: 74.125.13.93 v13.lscache1.c.youtube.com O1 - Hosts: 74.125.13.96 v14.lscache1.c.youtube.com O1 - Hosts: 74.125.13.99 v15.lscache1.c.youtube.com O1 - Hosts: 74.125.97.38 v16.lscache1.c.youtube.com O1 - Hosts: 74.125.13.82 v17.lscache1.c.youtube.com O1 - Hosts: 74.125.13.85 v18.lscache1.c.youtube.com O1 - Hosts: 74.125.13.88 v19.lscache1.c.youtube.com O1 - Hosts: 74.125.13.91 v20.lscache1.c.youtube.com O1 - Hosts: 74.125.13.94 v21.lscache1.c.youtube.com O1 - Hosts: 74.125.13.97 v22.lscache1.c.youtube.com O1 - Hosts: 74.125.13.100 v23.lscache1.c.youtube.com O1 - Hosts: 74.125.13.103 v24.lscache1.c.youtube.com O1 - Hosts: 74.125.13.80 v1.lscache2.c.youtube.com O1 - Hosts: 74.125.13.83 v2.lscache2.c.youtube.com O1 - Hosts: 74.125.13.86 v3.lscache2.c.youtube.com O1 - Hosts: 74.125.13.89 v4.lscache2.c.youtube.com O1 - Hosts: 74.125.13.92 v5.lscache2.c.youtube.com O1 - Hosts: 74.125.13.95 v6.lscache2.c.youtube.com O1 - Hosts: 74.125.13.98 v7.lscache2.c.youtube.com O1 - Hosts: 74.125.13.101 v8.lscache2.c.youtube.com O1 - Hosts: 74.125.13.81 v9.lscache2.c.youtube.com O1 - Hosts: 74.125.13.84 v10.lscache2.c.youtube.com O1 - Hosts: 74.125.13.87 v11.lscache2.c.youtube.com O1 - Hosts: 74.125.13.90 v12.lscache2.c.youtube.com O1 - Hosts: 74.125.13.93 v13.lscache2.c.youtube.com O1 - Hosts: 74.125.13.96 v14.lscache2.c.youtube.com O1 - Hosts: 74.125.13.99 v15.lscache2.c.youtube.com O1 - Hosts: 74.125.13.102 v16.lscache2.c.youtube.com O1 - Hosts: 74.125.13.82 v17.lscache2.c.youtube.com O1 - Hosts: 74.125.13.85 v18.lscache2.c.youtube.com O1 - Hosts: 74.125.13.88 v19.lscache2.c.youtube.com O1 - Hosts: 74.125.13.91 v20.lscache2.c.youtube.com O1 - Hosts: 74.125.13.94 v21.lscache2.c.youtube.com O1 - Hosts: 74.125.13.97 v22.lscache2.c.youtube.com O1 - Hosts: 74.125.13.100 v23.lscache2.c.youtube.com O1 - Hosts: 74.125.13.103 v24.lscache2.c.youtube.com O1 - Hosts: 74.125.99.80 v1.lscache3.c.youtube.com O1 - Hosts: 74.125.99.83 v2.lscache3.c.youtube.com O1 - Hosts: 74.125.99.86 v3.lscache3.c.youtube.com O1 - Hosts: 74.125.99.89 v4.lscache3.c.youtube.com O1 - Hosts: 74.125.99.92 v5.lscache3.c.youtube.com O1 - Hosts: 74.125.99.95 v6.lscache3.c.youtube.com O1 - Hosts: 74.125.99.98 v7.lscache3.c.youtube.com O1 - Hosts: 74.125.99.101 v8.lscache3.c.youtube.com O1 - Hosts: 74.125.99.81 v9.lscache3.c.youtube.com O1 - Hosts: 74.125.99.84 v10.lscache3.c.youtube.com O1 - Hosts: 74.125.99.87 v11.lscache3.c.youtube.com O1 - Hosts: 74.125.99.90 v12.lscache3.c.youtube.com O1 - Hosts: 74.125.99.93 v13.lscache3.c.youtube.com O1 - Hosts: 74.125.97.32 v14.lscache3.c.youtube.com O1 - Hosts: 74.125.99.99 v15.lscache3.c.youtube.com O1 - Hosts: 74.125.99.102 v16.lscache3.c.youtube.com O1 - Hosts: 74.125.99.82 v17.lscache3.c.youtube.com O1 - Hosts: 74.125.99.85 v18.lscache3.c.youtube.com O1 - Hosts: 74.125.99.88 v19.lscache3.c.youtube.com O1 - Hosts: 74.125.99.91 v20.lscache3.c.youtube.com O1 - Hosts: 74.125.99.94 v21.lscache3.c.youtube.com O1 - Hosts: 74.125.99.97 v22.lscache3.c.youtube.com O1 - Hosts: 74.125.99.100 v23.lscache3.c.youtube.com O1 - Hosts: 74.125.99.103 v24.lscache3.c.youtube.com O1 - Hosts: 74.125.99.80 v1.lscache4.c.youtube.com O1 - Hosts: 74.125.99.83 v2.lscache4.c.youtube.com O1 - Hosts: 74.125.99.86 v3.lscache4.c.youtube.com O1 - Hosts: 74.125.99.89 v4.lscache4.c.youtube.com O1 - Hosts: 74.125.99.92 v5.lscache4.c.youtube.com O1 - Hosts: 74.125.99.95 v6.lscache4.c.youtube.com O1 - Hosts: 74.125.99.98 v7.lscache4.c.youtube.com O1 - Hosts: 74.125.99.101 v8.lscache4.c.youtube.com O1 - Hosts: 74.125.99.81 v9.lscache4.c.youtube.com O1 - Hosts: 74.125.99.84 v10.lscache4.c.youtube.com O1 - Hosts: 74.125.99.87 v11.lscache4.c.youtube.com O1 - Hosts: 74.125.99.90 v12.lscache4.c.youtube.com O1 - Hosts: 74.125.99.93 v13.lscache4.c.youtube.com O1 - Hosts: 74.125.99.96 v14.lscache4.c.youtube.com O1 - Hosts: 74.125.99.99 v15.lscache4.c.youtube.com O1 - Hosts: 74.125.99.102 v16.lscache4.c.youtube.com O1 - Hosts: 74.125.99.82 v17.lscache4.c.youtube.com O1 - Hosts: 74.125.99.85 v18.lscache4.c.youtube.com O1 - Hosts: 74.125.99.88 v19.lscache4.c.youtube.com O1 - Hosts: 74.125.99.91 v20.lscache4.c.youtube.com O1 - Hosts: 74.125.99.94 v21.lscache4.c.youtube.com O1 - Hosts: 74.125.99.97 v22.lscache4.c.youtube.com O1 - Hosts: 74.125.99.100 v23.lscache4.c.youtube.com O1 - Hosts: 74.125.99.103 v24.lscache4.c.youtube.com O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - I:\Program Files\AskBarDis\bar\bin\askBar.dll O2 - BHO: Windows Live Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - I:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - I:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - I:\Program Files\AskBarDis\bar\bin\askBar.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [RightClick Menu] I:\WINDOWS\system32\mmm.exe O4 - HKLM\..\Run: [DriveSpace] "I:\Program Files\Drive Space Indicator\DrvSpace.exe" /STARTUP O4 - HKLM\..\Run: [sDaemon] I:\WINDOWS\sdaemon.exe O4 - HKLM\..\Run: [sWd] I:\WINDOWS\winwd.exe O4 - HKLM\..\Run: [FixCamera] I:\WINDOWS\FixCamera.exe O4 - HKLM\..\Run: [tsnp325] I:\WINDOWS\tsnp325.exe O4 - HKLM\..\Run: [dptracker] I:\Program Files\DigitalPeers\CamTrack\dptracker.exe O4 - HKLM\..\Run: [snp325] I:\WINDOWS\vsnp325.exe O4 - HKLM\..\Run: [style cool 2 city] I:\Documents and Settings\All Users\Application Data\byte loud style cool\Slow Blah.exe O4 - HKLM\..\Run: [egui] "I:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKCU\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Teamsoap] I:\DOCUME~1\gencgazi\APPLIC~1\DEAFVC~1\OwnsJoyMapi.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\Run: [superCopier2.exe] I:\Program Files\SuperCopier2\SuperCopier2.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O8 - Extra context menu item: Microsoft Excel'e Gö&nder - res://I:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - I:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - I:\WINDOWS\Network Diagnostic\xpnetdiag.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - I:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - I:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - I:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Google Güncelleme Hizmeti (gupdate1ca195a316ac5b4) (gupdate1ca195a316ac5b4) - Google Inc. - I:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - I:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: winser - Unknown owner - I:\WINDOWS\system32\winsersec.exe -- End of file - 10745 bytes kolay gelsin bende bekliycem sabırsızlıkla. Link to comment Share on other sites More sharing options...
AlijohnX Posted August 11, 2009 Author Share Posted August 11, 2009 C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Hotkey_Driver\HotkeyDriver.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\System32\s3trayp.exe C:\Program Files\Synaptics\SynTP\SynTPStart.exe C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe C:\Program Files\RocketDock\RocketDock.exe C:\Program Files\Stardock\ObjectDock\ObjectDock.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Internet Download Manager\IDMan.exe C:\Program Files\Internet Download Manager\IEMonitor.exe C:\Windows\system32\taskhost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Windows\system32\SearchFilterHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Please register to see this content. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll O2 - BHO: Windows Live Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll O4 - HKLM\..\Run: [s3Trayp] S3trayp.exe -chkautorun O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Local Service') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Local Service') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Bütün linkleri IDM ile indir - C:\Program Files\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: FLV video içeriğini IDM ile indir - C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: Formları Doldur - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O8 - Extra context menu item: Formları Kaydet - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O8 - Extra context menu item: IDM ile indir - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Menüyü Özelleştir - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra button: OneNote'a Gönder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: OneNote'a G&önder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Formları Doldur - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O9 - Extra 'Tools' menuitem: Formları Doldur - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O9 - Extra button: Kaydet - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O9 - Extra 'Tools' menuitem: Formları Kaydet - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O13 - Gopher Prefix: O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe Systeme sanırım stardock yüzünden bir sürü kasan yazılımlar yüklenmiş. Kırmızı ile işaretlediklerimi Fix checked ile engelleyin. Mavi ile işaretlediklerim ise rocketdock ve objecktplus gibi yazılımları çalışıtırıyor. İsterseniz çalışmasını engeller yani fixlersiniz. Çalışmasını istiyorsanız engellemezsiniz... İyi günler diliyorum... Link to comment Share on other sites More sharing options...
green_eyes21 Posted August 11, 2009 Share Posted August 11, 2009 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 08:25:18, on 11.08.2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.21045) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\VM303_STI.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\VistaDrive\VistaDrive.exe C:\WINDOWS\system32\UnlockerAssistant.exe C:\WINDOWS\system32\mmm.exe C:\Program Files\Winamp\winampa.exe C:\WINDOWS\713xRMTMon.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\ESET\ESET Smart Security\egui.exe C:\WINDOWS\VMSnap3.EXE C:\WINDOWS\Domino.EXE C:\Program Files\Drive Space Indicator\DrvSpace.exe C:\Program Files\DAEMON Tools Lite\daemon.exe C:\Program Files\MSN Messenger\MsnMsgr.Exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Internet Download Manager\IDMan.exe C:\Program Files\honestech\honestech TVR\scheduleTV.exe C:\WINDOWS\713xRMT.exe C:\Program Files\ESET\ESET Smart Security\ekrn.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Internet Download Manager\IEMonitor.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Bağlantılar O1 - Hosts: 208.117.236.71 ru.youtube.com O1 - Hosts: 208.117.236.71 fr.youtube.com O1 - Hosts: 208.117.236.71 youtube.com O1 - Hosts: 208.117.236.71 www.youtube.com O1 - Hosts: 208.117.236.71 au.youtube.com O1 - Hosts: 208.117.236.71 ca.youtube.com O1 - Hosts: 208.117.236.71 m.youtube.com O1 - Hosts: 74.125.65.118 img.youtube.com O1 - Hosts: 209.85.165.102 gdata.youtube.com O1 - Hosts: 208.117.236.71 ru.youtube.com O1 - Hosts: 208.117.236.70 youtube.com O1 - Hosts: 208.117.236.70 www.youtube.com O1 - Hosts: 74.125.65.118 img.youtube.com O1 - Hosts: 64.15.124.143 sjc-v1.sjc.youtube.com O1 - Hosts: 64.15.124.144 sjc-v2.sjc.youtube.com O1 - Hosts: 64.15.124.145 sjc-v3.sjc.youtube.com O1 - Hosts: 64.15.124.146 sjc-v4.sjc.youtube.com O1 - Hosts: 64.15.124.147 sjc-v5.sjc.youtube.com O1 - Hosts: 64.15.124.148 sjc-v6.sjc.youtube.com O1 - Hosts: 64.15.124.149 sjc-v7.sjc.youtube.com O1 - Hosts: 64.15.124.150 sjc-v8.sjc.youtube.com O1 - Hosts: 64.15.124.151 sjc-v9.sjc.youtube.com O1 - Hosts: 72.14.205.104 help.youtube.com O1 - Hosts: 72.14.205.147 help.youtube.com O1 - Hosts: 72.14.205.99 help.youtube.com O1 - Hosts: 58.27.3.132 www.sopcast.com O1 - Hosts: 58.27.3.132 sopcast.com O1 - Hosts: 119.110.96.136 www.sopcast.org O1 - Hosts: 119.110.96.136 sopcast.org O1 - Hosts: 64.15.124.152 sjc-v10.sjc.youtube.com O1 - Hosts: 64.15.124.153 sjc-v11.sjc.youtube.com O1 - Hosts: 64.15.124.154 sjc-v12.sjc.youtube.com O1 - Hosts: 64.15.124.155 sjc-v13.sjc.youtube.com O1 - Hosts: 64.15.124.156 sjc-v14.sjc.youtube.com O1 - Hosts: 64.15.124.157 sjc-v15.sjc.youtube.com O1 - Hosts: 64.15.124.158 sjc-v16.sjc.youtube.com O1 - Hosts: 64.15.124.159 sjc-v17.sjc.youtube.com O1 - Hosts: 64.15.124.160 sjc-v18.sjc.youtube.com O1 - Hosts: 64.15.124.161 sjc-v19.sjc.youtube.com O1 - Hosts: 64.15.124.162 sjc-v20.sjc.youtube.com O1 - Hosts: 64.15.124.163 sjc-v21.sjc.youtube.com O1 - Hosts: 64.15.124.164 sjc-v22.sjc.youtube.com O1 - Hosts: 64.15.124.165 sjc-v23.sjc.youtube.com O1 - Hosts: 64.15.124.166 sjc-v24.sjc.youtube.com O1 - Hosts: 64.15.124.167 sjc-v25.sjc.youtube.com O1 - Hosts: 64.15.124.168 sjc-v26.sjc.youtube.com O1 - Hosts: 64.15.124.169 sjc-v27.sjc.youtube.com O1 - Hosts: 64.15.124.170 sjc-v28.sjc.youtube.com O1 - Hosts: 64.15.124.171 sjc-v29.sjc.youtube.com O1 - Hosts: 64.15.124.172 sjc-v30.sjc.youtube.com O1 - Hosts: 64.15.124.173 sjc-v31.sjc.youtube.com O1 - Hosts: 64.15.124.174 sjc-v32.sjc.youtube.com O1 - Hosts: 64.15.124.175 sjc-v33.sjc.youtube.com O1 - Hosts: 64.15.124.176 sjc-v34.sjc.youtube.com O1 - Hosts: 64.15.124.177 sjc-v35.sjc.youtube.com O1 - Hosts: 64.15.124.178 sjc-v36.sjc.youtube.com O1 - Hosts: 64.15.124.179 sjc-v37.sjc.youtube.com O1 - Hosts: 64.15.124.180 sjc-v38.sjc.youtube.com O1 - Hosts: 64.15.124.207 sjc-v39.sjc.youtube.com O1 - Hosts: 64.15.124.208 sjc-v40.sjc.youtube.com O1 - Hosts: 64.15.124.209 sjc-v41.sjc.youtube.com O1 - Hosts: 64.15.124.210 sjc-v42.sjc.youtube.com O1 - Hosts: 64.15.124.211 sjc-v43.sjc.youtube.com O1 - Hosts: 64.15.124.212 sjc-v44.sjc.youtube.com O1 - Hosts: 64.15.124.213 sjc-v45.sjc.youtube.com O1 - Hosts: 64.15.124.214 sjc-v46.sjc.youtube.com O1 - Hosts: 64.15.124.215 sjc-v47.sjc.youtube.com O1 - Hosts: 64.15.124.216 sjc-v48.sjc.youtube.com O1 - Hosts: 64.15.124.217 sjc-v49.sjc.youtube.com O1 - Hosts: 64.15.124.218 sjc-v50.sjc.youtube.com O1 - Hosts: 64.15.124.219 sjc-v51.sjc.youtube.com O1 - Hosts: 64.15.124.220 sjc-v52.sjc.youtube.com O1 - Hosts: 64.15.124.221 sjc-v53.sjc.youtube.com O1 - Hosts: 64.15.124.222 sjc-v54.sjc.youtube.com O1 - Hosts: 64.15.124.223 sjc-v55.sjc.youtube.com O1 - Hosts: 64.15.124.224 sjc-v56.sjc.youtube.com O1 - Hosts: 64.15.124.225 sjc-v57.sjc.youtube.com O1 - Hosts: 64.15.124.226 sjc-v58.sjc.youtube.com O1 - Hosts: 64.15.124.227 sjc-v59.sjc.youtube.com O1 - Hosts: 64.15.124.228 sjc-v60.sjc.youtube.com O1 - Hosts: 64.15.124.229 sjc-v61.sjc.youtube.com O1 - Hosts: 64.15.124.230 sjc-v62.sjc.youtube.com O1 - Hosts: 64.15.124.231 sjc-v63.sjc.youtube.com O1 - Hosts: 64.15.124.232 sjc-v64.sjc.youtube.com O1 - Hosts: 64.15.124.233 sjc-v65.sjc.youtube.com O1 - Hosts: 64.15.124.234 sjc-v66.sjc.youtube.com O1 - Hosts: 64.15.124.235 sjc-v67.sjc.youtube.com O1 - Hosts: 64.15.124.236 sjc-v68.sjc.youtube.com O1 - Hosts: 64.15.124.237 sjc-v69.sjc.youtube.com O1 - Hosts: 64.15.124.238 sjc-v70.sjc.youtube.com O1 - Hosts: 64.15.124.239 sjc-v71.sjc.youtube.com O1 - Hosts: 64.15.124.240 sjc-v72.sjc.youtube.com O1 - Hosts: 64.15.124.241 sjc-v73.sjc.youtube.com O1 - Hosts: 64.15.124.242 sjc-v74.sjc.youtube.com O1 - Hosts: 64.15.124.243 sjc-v75.sjc.youtube.com O1 - Hosts: 64.15.124.244 sjc-v76.sjc.youtube.com O1 - Hosts: 64.15.125.16 sjc-v77.sjc.youtube.com O1 - Hosts: 64.15.125.17 sjc-v78.sjc.youtube.com O1 - Hosts: 64.15.125.18 sjc-v79.sjc.youtube.com O1 - Hosts: 64.15.125.19 sjc-v80.sjc.youtube.com O1 - Hosts: 64.15.125.20 sjc-v81.sjc.youtube.com O2 - BHO: (no name) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - (no file) O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [bigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH) O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [VistaDrive] C:\WINDOWS\VistaDrive\VistaDrive.exe O4 - HKLM\..\Run: [unlockerAssistant] "C:\WINDOWS\system32\UnlockerAssistant.exe" O4 - HKLM\..\Run: [RightClick Menu] C:\WINDOWS\system32\mmm.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [Flashget] "C:\Program Files\FlashGet\FlashGet.exe" /min O4 - HKLM\..\Run: [TV Card Remote Control Device Monitor] C:\WINDOWS\713xRMTMon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [VMSnap3] C:\WINDOWS\VMSnap3.EXE O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.EXE O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [DriveSpace] "C:\Program Files\Drive Space Indicator\DrvSpace.exe" /STARTUP O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun O4 - HKCU\..\Run: [fxanti] C:\Program Files\Faxx Systems\fxanti\fx.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user') O4 - Startup: OneNote 2007 Ekran Kırpıcı ve Başlatıcı.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Scheduler for OEM.lnk = C:\Program Files\honestech\honestech TVR\scheduleTV.exe O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: &FlashGet ile indir - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: &Tümünü FlashGet ile indir - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html O8 - Extra context menu item: Bütün linkleri IDM ile indir - C:\Program Files\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: FLV video içeriğini IDM ile indir - C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: IDM ile indir - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html O8 - Extra context menu item: Microsoft Excel'e &Ver - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Microsoft Excel'e Gö&nder - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: OneNote'a Gönder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: OneNote'a G&önder - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Araştır - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (file missing) O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - Please register to see this content. O17 - HKLM\System\CCS\Services\Tcpip\..\{07F72CC2-6EE4-4638-8BC3-09D26698DC41}: NameServer = 195.175.39.39,195.175.39.40 O17 - HKLM\System\CCS\Services\Tcpip\..\{D735414A-2169-4B0E-BF3D-2E9B6ED4B4C1}: NameServer = 208.67.220.220,208.67.222.222 O17 - HKLM\System\CS1\Services\Tcpip\..\{07F72CC2-6EE4-4638-8BC3-09D26698DC41}: NameServer = 195.175.39.39,195.175.39.40 O17 - HKLM\System\CS2\Services\Tcpip\..\{07F72CC2-6EE4-4638-8BC3-09D26698DC41}: NameServer = 195.175.39.39,195.175.39.40 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: Google Güncelleme Hizmeti (gupdate1ca019c12eef3ba) (gupdate1ca019c12eef3ba) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe -- End of file - 14481 bytes kardes ellerine saglık basarıların devamını bekleriz Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.