Yeni Kayıt
Konudaki Resimler
|
Hızlı 
Bildirim
Bilgisayarın Tarayıcılarda Kasması
Sıcak Fırsatlarda Tıklananlar
Editörün Seçtiği Fırsatlar
Daha Fazla 
Bu Konudaki Kullanıcılar:
Daha Az 
2 Misafir - 2 Masaüstü
Giriş
Mesaj
-
-
quote:
Orijinalden alıntı: VeF
Sa beyler benim pc bu;
Wİndows 7 professional
Msı 970-A46 Anakart
Amd Fx6100 /3.8Ghz o/c'lu
Gskill Ripjaws 4gb ram
Nvıdıa 630gt 2gb ekran kartı
500gb hdd
Yukarıda belirtilen sistemim var. Ya chrome kullanıyordum zaman geçtik kasmaya başladı, sekme açayım derken bi anda kasıyor. Bide faceme virus bulaştırdı bile.Eklentilere baktım yok boş boş. Yine pek pc mi kastırıyor.Sonra onu kaldırdım derinden komple. Yandex browser yükledim sekme açayım derken gene pc yi kasıyor. Ya şu kadar iyi sistem varken tarayıcılar ve pc biraz neden kasıyor?
as
büyük ihtimal virüs vardır antivirüs programı ile bilgisayarını taramanı tavsiye ederim, combofix öneririm. -
Birşey indiriyim diyorum uzantı tarafıdan engellendi diyor ya combofix indircektim inmiyor. -
quote:
Orijinalden alıntı: VeF
Birşey indiriyim diyorum uzantı tarafıdan engellendi diyor ya combofix indircektim inmiyor.
uzantılarada giremezsin büyük ihtimal. o virüsü gördün link paylaşıyor duvarında. internet explorere dokunamıyordu ama. ordan indir combofixi. düzeltmezse eset kur tara -
Anti malware ile sisteminizi tam taratın bulunanları karantinaya alın silinmiş olacak
indirin:http://downloads.malwarebytes.org/file/mbam/
< Bu ileti mobil sürüm kullanılarak atıldı > -
Yardımlarınız için teşekkürler. Combofix'i indirebildim. Tarattım.Sonuç aşağıda virüs varmı nedir açıklarmısınız?
ComboFix 14-06-19.01 - VeFaGS 19.06.2014 21:54:48.1.6 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1254.90.1055.18.3038.1346 [GMT 3:00]
Running from: c:\users\VeFaGS\Downloads\ComboFix.exe
AV: ESET Smart Security 7.0 *Enabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: ESET Kişisel güvenlik duvarı *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 7.0 *Enabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
* Resident AV is active
.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
B:\install.exe
c:\programdata\DownloAD Keeper
c:\users\VeFaGS\AppData\Roaming\chromium.exe
c:\windows\D7C3E6AA86CEECD7.log
c:\windows\XSxS
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_pcCMService
.
.
((((((((((((((((((((((((( Files Created from 2014-05-19 to 2014-06-19 )))))))))))))))))))))))))))))))
.
.
2014-06-19 18:58 . 2014-06-19 18:58 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F08534A9-1909-48EF-B189-D6031672253E}\offreg.dll
2014-06-19 09:27 . 2014-06-19 09:27 -------- d-----w- c:\users\VeFaGS\AppData\Roaming\Yandex
2014-06-19 09:27 . 2014-06-19 09:27 -------- d-----w- c:\users\VeFaGS\AppData\Local\Yandex
2014-06-18 16:43 . 2014-06-18 16:43 -------- d-----w- c:\users\VeFaGS\AppData\Local\Macromedia
2014-06-17 10:07 . 2014-04-30 23:37 8073384 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F08534A9-1909-48EF-B189-D6031672253E}\mpengine.dll
2014-06-16 17:59 . 2014-06-16 17:59 -------- d-----w- c:\windows\system32\Visual Studio 2013
2014-06-16 17:59 . 2014-06-16 17:59 -------- d-----w- c:\users\Default\AppData\Local\Microsoft
2014-06-16 13:16 . 2014-06-16 13:16 -------- d-----w- c:\program files\Microsoft Visual Studio 11.0
2014-06-16 13:08 . 2014-06-16 13:08 -------- d-----w- c:\program files\Windows Phone Silverlight Kits
2014-06-16 13:08 . 2014-06-16 18:00 3003840 ----a-w- c:\programdata\Microsoft\VisualStudio\12.0\1033\ResourceCache.dll
2014-06-16 13:06 . 2014-06-16 13:06 -------- d-----w- c:\program files\Microsoft XDE
2014-06-16 12:57 . 2014-06-16 12:57 -------- d-----w- c:\program files\Workflow Manager Tools
2014-06-16 12:56 . 2014-06-16 12:56 -------- d-----w- c:\program files\Open XML SDK
2014-06-16 12:56 . 2014-06-16 12:56 -------- d-----w- c:\program files\Microsoft Identity Extensions
2014-06-16 12:56 . 2014-06-16 12:56 -------- d-----w- c:\program files\Windows Identity Foundation
2014-06-16 12:55 . 2014-06-16 22:06 -------- d-----w- c:\program files\SharePoint Client Components
2014-06-16 12:47 . 2014-06-16 12:47 -------- d-----w- c:\program files\Application Verifier
2014-06-16 12:47 . 2014-06-16 13:03 -------- d-----w- c:\programdata\Windows App Certification Kit
2014-06-16 12:43 . 2014-06-16 12:43 -------- d-----w- c:\program files\Common Files\Microsoft
2014-06-16 12:35 . 2014-06-16 12:35 -------- d-----w- c:\programdata\PreEmptive Solutions
2014-06-16 12:30 . 2014-06-16 12:33 -------- d-----w- c:\program files\Microsoft ASP.NET
2014-06-16 12:29 . 2014-06-16 12:29 -------- d-----w- c:\program files\Microsoft Web Tools
2014-06-16 12:27 . 2014-06-16 12:27 -------- d-----w- c:\program files\IIS Express
2014-06-16 12:27 . 2014-06-16 12:27 -------- d-----w- c:\programdata\NuGet
2014-06-16 12:27 . 2014-06-16 12:27 -------- d-----w- c:\program files\NuGet
2014-06-16 12:26 . 2014-06-16 12:26 -------- d-----w- c:\program files\Microsoft WCF Data Services
2014-06-16 12:26 . 2014-06-16 12:26 -------- d-----w- c:\program files\IIS
2014-06-16 12:15 . 2014-06-16 12:23 -------- d-----w- c:\program files\Windows Kits
2014-06-16 12:15 . 2014-06-16 12:15 -------- d-----w- c:\program files\Windows Phone Kits
2014-06-16 12:14 . 2014-06-16 12:14 -------- d-----w- c:\program files\HTML Help Workshop
2014-06-16 12:14 . 2014-06-16 12:14 -------- d-----w- c:\windows\symbols
2014-06-16 12:14 . 2014-06-16 12:14 -------- d-----w- c:\program files\Microsoft Help Viewer
2014-06-16 12:08 . 2014-06-16 12:18 -------- d-----w- c:\windows\system32\1033
2014-06-16 11:57 . 2014-06-16 13:06 -------- d-----w- c:\program files\Microsoft SDKs
2014-06-16 11:57 . 2014-06-16 13:23 -------- d-----w- c:\program files\Common Files\Merge Modules
2014-06-16 11:43 . 2014-06-16 17:58 -------- d-----w- c:\programdata\Package Cache
2014-06-14 14:35 . 2014-06-19 15:40 1478 ----a-w- c:\users\VeFaGS\AppData\Roaming\king.js
2014-06-12 11:16 . 2014-03-26 14:27 1389056 ----a-w- c:\windows\system32\msxml6.dll
2014-06-12 11:16 . 2014-03-26 14:27 1237504 ----a-w- c:\windows\system32\msxml3.dll
2014-06-12 11:16 . 2014-03-26 14:25 2048 ----a-w- c:\windows\system32\msxml6r.dll
2014-06-12 11:16 . 2014-03-26 14:25 2048 ----a-w- c:\windows\system32\msxml3r.dll
2014-06-12 11:16 . 2014-04-05 02:25 1294272 ----a-w- c:\windows\system32\drivers\tcpip.sys
2014-06-12 11:16 . 2014-04-05 02:24 187840 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2014-06-12 11:16 . 2014-06-08 08:48 391680 ----a-w- c:\windows\system32\aepdu.dll
2014-06-12 11:16 . 2014-06-08 08:43 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-06-12 11:15 . 2014-04-25 02:06 626688 ----a-w- c:\windows\system32\usp10.dll
2014-06-12 09:39 . 2014-05-08 09:06 2742784 ----a-w- c:\windows\system32\rdpcorets.dll
2014-06-12 09:39 . 2014-05-08 09:06 13824 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2014-06-09 11:41 . 2008-01-22 15:50 126528 ----a-w- c:\windows\system32\oscdimg.exe
2014-06-09 11:25 . 2014-06-09 11:25 -------- d-----w- c:\programdata\SlySoft
2014-06-09 11:25 . 2014-06-09 11:25 -------- d-----w- c:\program files\SlySoft
2014-06-09 11:14 . 2014-06-09 11:14 119808 ----a-r- c:\users\VeFaGS\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2014-06-09 11:14 . 2014-06-09 11:14 -------- d-----w- c:\users\VeFaGS\AppData\Local\Apps
2014-06-01 15:28 . 2014-06-01 15:28 -------- d-----w- c:\windows\tr
2014-06-01 15:25 . 2014-06-01 15:24 6081224 -c--a-w- c:\program files\Common Files\Windows Live\.cache\a648d3ff1cf7dad01\onedrivesetup.exe
2014-05-30 15:53 . 2014-05-30 15:53 -------- d-----w- c:\users\VeFaGS\AppData\Local\Ekstrem_Bir_Bilgisayar
2014-05-30 15:51 . 2014-05-30 15:51 -------- d-----w- C:\Templates
2014-05-30 15:50 . 2014-05-30 15:50 -------- d-----w- c:\users\VeFaGS\AppData\Local\Xenocode
2014-05-30 15:50 . 2014-05-30 15:50 -------- d-----w- c:\program files\Xenocode
2014-05-27 18:33 . 2014-05-19 23:11 603592 ----a-w- c:\windows\system32\nvStreaming.exe
2014-05-27 18:29 . 2014-05-20 02:39 9697640 ----a-w- c:\windows\system32\nvopencl.dll
2014-05-27 18:29 . 2014-05-20 02:39 305600 ----a-w- c:\windows\system32\nvoglshim32.dll
2014-05-27 18:29 . 2014-05-20 02:39 24024408 ----a-w- c:\windows\system32\nvoglv32.dll
2014-05-27 18:29 . 2014-05-20 02:39 10533152 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2014-05-27 18:29 . 2014-05-20 02:39 9735256 ----a-w- c:\windows\system32\nvcuda.dll
2014-05-27 18:29 . 2014-05-20 02:39 908744 ----a-w- c:\windows\system32\nvdispgenco3233788.dll
2014-05-27 18:29 . 2014-05-20 02:39 866592 ----a-w- c:\windows\system32\NvIFR.dll
2014-05-27 18:29 . 2014-05-20 02:39 861128 ----a-w- c:\windows\system32\NvFBC.dll
2014-05-27 18:29 . 2014-05-20 02:39 2953672 ----a-w- c:\windows\system32\nvcuvid.dll
2014-05-27 18:29 . 2014-05-20 02:39 2413344 ----a-w- c:\windows\system32\nvcuvenc.dll
2014-05-27 18:29 . 2014-05-20 02:39 146480 ----a-w- c:\windows\system32\nvinit.dll
2014-05-27 18:29 . 2014-05-20 02:39 1056200 ----a-w- c:\windows\system32\nvdispco3233788.dll
2014-05-27 18:28 . 2014-05-20 02:39 17559384 ----a-w- c:\windows\system32\nvcompiler.dll
2014-05-24 16:21 . 2014-05-24 16:21 -------- d-----w- c:\programdata\TTNetIlkYardim
2014-05-23 15:41 . 2014-05-23 15:42 -------- d-----w- c:\program files\Windows Phone
2014-05-23 15:41 . 2014-05-23 15:41 -------- d-----w- c:\programdata\Applications
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-20 02:39 . 2013-07-28 17:00 16003912 ----a-w- c:\windows\system32\nvwgf2um.dll
2014-05-20 02:39 . 2013-07-28 16:59 837056 ----a-w- c:\windows\system32\nvumdshim.dll
2014-05-20 02:39 . 2013-07-28 16:59 14434704 ----a-w- c:\windows\system32\nvd3dum.dll
2014-05-20 02:39 . 2013-07-28 16:59 2730208 ----a-w- c:\windows\system32\nvapi.dll
2014-05-20 02:39 . 2012-07-04 19:29 52056 ----a-w- c:\windows\system32\OpenCL.dll
2014-05-20 00:04 . 2013-07-28 17:01 4379592 ----a-w- c:\windows\system32\nvcpl.dll
2014-05-20 00:04 . 2013-07-28 17:01 3055560 ----a-w- c:\windows\system32\nvsvc.dll
2014-05-20 00:04 . 2013-07-28 17:01 668104 ----a-w- c:\windows\system32\nvvsvc.exe
2014-05-20 00:04 . 2013-07-28 17:01 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2014-05-20 00:04 . 2013-07-28 17:02 61784 ----a-w- c:\windows\system32\nvshext.dll
2014-05-20 00:04 . 2013-07-28 17:01 376096 ----a-w- c:\windows\system32\nvmctray.dll
2014-04-30 22:50 . 2014-04-30 22:50 698560 ----a-w- c:\windows\system32\PUGAExperiment.dll
2014-04-30 22:50 . 2014-04-30 22:50 219816 ----a-w- c:\windows\system32\VSPerf120.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\SDKFilesVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\addons\NonSDKAddonVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\3082\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\2052\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1049\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1041\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1040\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1036\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1033\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1031\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 18112 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1028\NonSDKAddonLangVer.dll
2014-04-30 22:50 . 2014-04-30 22:50 1768648 ----a-w- c:\windows\system32\VsGraphicsHelper.dll
2014-04-30 18:29 . 2013-10-28 19:08 1081112 ----a-w- c:\windows\system32\nvspcap.dll
2014-04-24 23:16 . 2014-04-24 23:16 1070232 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2014-04-18 12:25 . 2014-04-18 12:25 2953096 ----a-w- c:\windows\system32\%InstallDir%speclean.exe
2014-04-13 21:50 . 2014-04-13 21:50 2796720 ----a-w- c:\windows\system32\vsgraphicsremoteengine.exe
2014-04-12 02:15 . 2014-05-14 11:18 67520 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-04-12 02:15 . 2014-05-14 11:18 136640 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-04-12 02:12 . 2014-05-14 11:18 15872 ----a-w- c:\windows\system32\sspisrv.dll
2014-04-12 02:12 . 2014-05-14 11:18 100352 ----a-w- c:\windows\system32\sspicli.dll
2014-04-12 02:12 . 2014-05-14 11:18 22016 ----a-w- c:\windows\system32\secur32.dll
2014-04-12 02:11 . 2014-05-14 11:18 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-04-12 02:11 . 2014-05-14 11:18 22528 ----a-w- c:\windows\system32\lsass.exe
2014-03-31 18:34 . 2014-03-31 18:34 322248 ----a-w- c:\windows\WLXPGSS.SCR
2014-03-31 16:42 . 2014-05-13 15:56 34080 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2014-03-31 16:42 . 2013-08-04 19:59 34760 ----a-w- c:\windows\system32\nvaudcap32v.dll
2014-03-31 06:35 . 2013-10-27 19:45 231584 ------w- c:\windows\system32\MpSigStub.exe
2014-03-26 15:28 . 2012-07-17 12:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-05-14 05:15 1730264 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-05-14 05:15 1730264 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-05-14 05:15 1730264 ----a-w- c:\progra~1\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00HumyoPaired]
@="{A203F945-39E9-4286-AFA2-F3ADFCD5FAAA}"
[HKEY_CLASSES_ROOT\CLSID\{A203F945-39E9-4286-AFA2-F3ADFCD5FAAA}]
2012-07-12 10:22 1186616 ----a-w- c:\program files\Trend Micro SafeSync\HrfsShellExtension.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00HumyoPriority]
@="{6F1BB626-1107-4b82-B322-54C5E64461B8}"
[HKEY_CLASSES_ROOT\CLSID\{6F1BB626-1107-4b82-B322-54C5E64461B8}]
2012-07-12 10:22 1186616 ----a-w- c:\program files\Trend Micro SafeSync\HrfsShellExtension.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00HumyoProblem]
@="{7479C9AF-DA81-4944-92E5-23E49390BB2B}"
[HKEY_CLASSES_ROOT\CLSID\{7479C9AF-DA81-4944-92E5-23E49390BB2B}]
2012-07-12 10:22 1186616 ----a-w- c:\program files\Trend Micro SafeSync\HrfsShellExtension.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00HumyoSynced]
@="{7479C9AF-DA81-4944-92E5-23E49390BB2A}"
[HKEY_CLASSES_ROOT\CLSID\{7479C9AF-DA81-4944-92E5-23E49390BB2A}]
2012-07-12 10:22 1186616 ----a-w- c:\program files\Trend Micro SafeSync\HrfsShellExtension.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00HumyoSyncing]
@="{7479C9AF-DA81-4944-92E5-23E49390BB29}"
[HKEY_CLASSES_ROOT\CLSID\{7479C9AF-DA81-4944-92E5-23E49390BB29}]
2012-07-12 10:22 1186616 ----a-w- c:\program files\Trend Micro SafeSync\HrfsShellExtension.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00HumyoUnavailable]
@="{66669544-5639-4922-99C8-CE7A86651364}"
[HKEY_CLASSES_ROOT\CLSID\{66669544-5639-4922-99C8-CE7A86651364}]
2012-07-12 10:22 1186616 ----a-w- c:\program files\Trend Micro SafeSync\HrfsShellExtension.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="b:\daemon tools lite\DTLite.exe" [2013-03-14 3672640]
"NokiaSuite.exe"="c:\program files\Nokia\Nokia Suite\NokiaSuite.exe" [2013-10-02 1090912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI.exe" [2013-06-27 6323928]
"ShadowPlay"="c:\windows\system32\nvspcap.dll" [2014-04-30 1081112]
"NvBackend"="c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-04-30 2199840]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2013-09-12 5110672]
"Super-Charger"="b:\program files\MSI\Super-Charger\Super-Charger.exe" [2013-11-12 1047536]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-07-30 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AirTies Network Assistant.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\AirTies Network Assistant.lnk
backup=c:\windows\pss\AirTies Network Assistant.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
backup=c:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
2012-09-23 18:43 3477640 ----a-w- c:\program files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-11-21 16:57 959904 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
2012-09-20 05:27 444904 ----a-w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
2012-03-09 14:26 1073312 ----a-w- c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
2013-06-04 23:01 4489472 ----a-w- c:\users\VeFaGS\AppData\Local\Akamai\netsession_win.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
2014-05-03 12:47 1240664 ----a-w- c:\users\VeFaGS\AppData\Roaming\BitTorrent\BitTorrent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenterCount]
2012-03-26 16:57 872448 ----a-w- c:\program files\MSI\ControlCenter\ControlCenterCount.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-03-14 08:23 3672640 ----a-w- b:\daemon tools lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Fast Boot]
2012-09-19 13:50 764472 ----a-w- b:\program files\MSI\Fast Boot\StartFastBoot.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadwin PrintScreen (32-bit)]
2014-02-21 04:48 11760800 ----a-w- c:\program files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2011-10-28 10:18 49208 ----a-w- c:\program files\HP\HP Software Update\hpwuschd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
2008-07-22 16:33 150528 ----a-w- c:\program files\HP\Digital Imaging\bin\HpqSRmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
2013-12-11 16:52 1564528 ----a-w- c:\program files\Samsung\Kies\Kies.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
2013-12-11 16:52 311152 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LifeCam]
2010-05-20 13:27 119152 ----a-w- c:\program files\Microsoft LifeCam\LifeExp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate 5]
2014-03-05 08:51 322544 ----a-w- b:\program files\MSI\Live Update 5\BootStartLiveupdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaPCInternetAccess]
2009-09-17 10:55 663552 ----a-w- c:\program files\Nokia\PC Internet Access\NPCIA.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
2013-10-02 18:28 1090912 ----a-w- c:\program files\Nokia\Nokia Suite\NokiaSuite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RazerGameBooster]
2014-02-25 16:38 61152 ----a-w- b:\program files\Razer\Razer Game Booster\RazerGameBooster.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 12:17 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyDrive]
2014-06-01 15:25 257224 ----a-w- c:\users\VeFaGS\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-07-02 07:16 254336 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
2010-02-19 11:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TTNET_McciTrayApp]
2013-11-08 11:39 1943040 ----a-w- c:\program files\TTNET\pcTrayApp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VX1000]
2010-05-20 13:27 762736 ----a-w- c:\windows\vVX1000.exe
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [x]
R3 awUSB;awUSB;c:\windows\system32\DRIVERS\USBDrv.sys [2013-11-26 13824]
R3 c2wts;Windows Belirteç Hizmeti Talepleri;c:\program files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-02-02 15768]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2013-08-21 84248]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [x]
R3 DIRECTIO;DIRECTIO;b:\program files\PerformanceTest\DirectIo32.sys [x]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-05-30 108032]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.0.285\McCHSvc.exe [2012-09-05 234776]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files\MSI\Live Update 5\msibios32_100507.sys [x]
R3 MSICDSetup;MSICDSetup;D:\CDriver.sys [x]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2013-01-23 137600]
R3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2013-01-23 8576]
R3 NTIOLib_1_0_2;NTIOLib_1_0_2;c:\program files\MSI\ControlCenter\NTIOLib.sys [2012-02-16 7680]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;b:\program files\MSI\Live Update 5\NTIOLib.sys [2010-10-20 7680]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;D:\NTIOLib.sys [x]
R3 OnlineStorageService;OnlineStorageService;c:\program files\Trend Micro SafeSync\hrfscore.exe [2012-07-12 3947320]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2010-04-10 43040]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2013-08-21 182680]
R3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudserd.sys [2013-08-21 182680]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 Te.Service;Te.Service;c:\program files\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-21 91136]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 VsEtwService120;Visual Studio ETW Event Collection Service;b:\program files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-04-30 71864]
R3 WatAdminSvc;Windows Etkinleştirme Teknolojileri Hizmeti;c:\windows\system32\Wat\WatAdminSvc.exe [2013-07-29 1343400]
R4 AODService;AODService;c:\program files\AMD\OverDrive\AODAssist.exe [2014-01-08 137584]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 49240]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-07-29 242240]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2013-09-17 188808]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2013-09-17 134248]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 37416]
S1 ndisrd;WinpkFilter LightWeight Filter;c:\windows\system32\DRIVERS\ndisrd.sys [2011-09-14 28776]
S2 AODDriver4.3.0;AODDriver4.3.0;c:\program files\AMD\OverDrive\i386\AODDriver2.sys [2014-01-08 50408]
S2 ASGT;ASGT;c:\windows\System32\ASGT.exe [2012-01-17 55296]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-04-11 1390720]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-04-11 1764992]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2013-09-12 1337752]
S2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc);c:\program files\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-04-17 22768]
S2 MSI_ComCenService;MSI_ComCenService;c:\msi\MSI SUITE\ControlCenter\ComCenService.exe [2012-04-17 75280]
S2 MSI_FastBoot;MSI_FastBoot;b:\program files\MSI\Fast Boot\FastBootService.exe [2012-10-26 103992]
S2 MSI_SuiteCharger;MSI_SuiteCharger;c:\msi\MSI SUITE\Super-Charger\SuiteChargeService.exe [2012-07-31 125368]
S2 MSI_SuperCharger;MSI_SuperCharger;b:\program files\MSI\Super-Charger\ChargeService.exe [2013-09-09 161776]
S2 MSISleep;MSISleep;c:\program files\MSI\ControlCenter\Sleep\MSISleepService.exe [2013-04-29 282624]
S2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-04-30 1618888]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-04-30 19701080]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys [2009-07-20 27648]
S2 RzKLService;RzKLService;b:\program files\Razer\Razer Game Booster\RzKLService.exe [2014-02-25 105448]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-05-19 410968]
S2 SuperRAIDSvc;SuperRAIDSvc;c:\msi\Super RAID\SuperRAIDSvc.exe [2013-06-03 14848]
S2 TeamViewer9;TeamViewer 9;c:\program files\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2012-08-20 110408]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2012-08-20 331080]
S3 NTIOLib_1_0_1;NTIOLib_1_0_1;c:\msi\Super RAID\NTIOLib.sys [2012-06-11 7680]
S3 NTIOLib_1_0_D;NTIOLib_1_0_D;c:\msi\MSI SUITE\ControlCenter\NTIOLib.sys [2011-09-20 7680]
S3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC;c:\program files\MSI\ControlCenter\Sleep\NTIOLib.sys [2012-11-09 7680]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-04-30 19400]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-03-31 34080]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2013-04-10 651848]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2010-04-10 43040]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2010-11-28 35968]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - NTIOLIB_1_0_1
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
HPService REG_MULTI_SZ HPSLPSVC
.
Contents of the 'Scheduled Tasks' folder
.
2014-06-19 c:\windows\Tasks\HP Photo Creations Communicator.job
- c:\programdata\HP Photo Creations\Communicator.exe [2011-09-20 09:11]
.
2014-06-19 c:\windows\Tasks\RtlNetworkGenieVistaStart.job
- c:\program files\MSI\NetworkGenie\NetworkGenie.exe [2013-07-28 05:35]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
mStart Page = about:blank
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\progra~1\MIF5BA~1\Office14\EXCEL.EXE/3000
IE: Microsoft Excel'e &Ver - c:\progra~1\MIF5BA~1\Office15\EXCEL.EXE/3000
IE: OneNote'a G&önder - c:\progra~1\MIF5BA~1\Office15\ONBttnIE.dll/105
IE: Se&nd to OneNote - c:\progra~1\MIF5BA~1\Office14\ONBttnIE.dll/105
IE: Turbo Internet: Bu bağlantıyı indir - c:\program files\Turbo Internet\exts\dl.html
IE: Turbo Internet: Bu sayfayı Yer İmlerine ekle - c:\program files\Turbo Internet\exts\addFav.html
TCP: DhcpNameServer = 192.168.2.1
TCP: Interfaces\{4AF717FB-403D-45EC-81D1-D134453A095F}: NameServer = 195.46.39.39,195.46.39.40
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\VeFaGS\AppData\Roaming\Mozilla\Firefox\Profiles\52g29acv.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: keyword.URL -
FF - ExtSQL: !HIDDEN! 2014-03-12 19:22; smartwebprinting@hp.com; c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{91C6D966-A73B-E837-5340-87B7EE6CEC7B} - c:\program files\Youtube****er\c_j_adp.dll
BHO-{DCB22FDC-0AAB-A8D5-23A0-14E0CB6F951F} - c:\program files\surf aaNd kkeep\SECSGiL7DW.dll
HKCU-Run-AdobeBridge - (no file)
HKCU-Run-Google Chromium - c:\users\VeFaGS\AppData\Roaming\chromium.exe
MSConfigStartUp-BCSSync - c:\program files\Microsoft Office\Office14\BCSSync.exe
MSConfigStartUp-cFosSpeed - c:\program files\cFosSpeed\cFosSpeed.exe
MSConfigStartUp-EADM - b:\program files\Origin\Origin.exe
MSConfigStartUp-IDMan - b:\program files\Internet Download Manager\IDMan.exe
MSConfigStartUp-KiesAirMessage - c:\program files\Samsung\Kies\KiesAirMessage.exe
MSConfigStartUp-Kumanda_v11 - c:\program files\lxport\Kumanda\Kumanda.exe
MSConfigStartUp-Live Update 5 - c:\program files\MSI\Live Update 5\BootStartLiveupdate.exe
MSConfigStartUp-LogMeIn Hamachi Ui - c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
MSConfigStartUp-Nvtmru - c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
MSConfigStartUp-Prime95 - c:\users\VeFaGS\AppData\Local\Temp\Rar$EXa0.410\prime95.exe
MSConfigStartUp-RGSC - v:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
MSConfigStartUp-StartCCC - c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
MSConfigStartUp-Steam - v:\program files\Steam\Steam.exe
MSConfigStartUp-Super-Charger - c:\program files\MSI\Super-Charger\Super-Charger.exe
MSConfigStartUp-SysLib - c:\windows\system32\syslib.exe
MSConfigStartUp-ultracopier - b:\program files\Ultracopier\ultracopier.exe
AddRemove-25_escape - b:\program files\SAMSUNG\USB Drivers\25_escape\Uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3006647766-924972806-3360859295-1000_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):bc,d0,21,91,f8,d0,a4,58,57,a5,29,1a,1d,41,bf,eb,36,8a,09,a0,28,
c7,23,bf,65,86,d9,04,f2,61,ce,7c,fa,00,17,49,d2,50,58,6b,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-3006647766-924972806-3360859295-1000_Classes\CLSID\{87adbb5a-53fa-47d8-a652-d60d38b6334b}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000129
"Therad"=dword:00000006
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(6024)
c:\program files\Trend Micro SafeSync\HrfsShellExtension.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Microsoft LifeCam\MSCamS32.exe
c:\windows\system32\conhost.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Microsoft Office\Office15\MsoSync.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\windows\system32\conhost.exe
c:\windows\system32\conhost.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
c:\windows\system32\DllHost.exe
c:\windows\system32\sppsvc.exe
c:\windows\system32\wbem\WmiApSrv.exe
.
**************************************************************************
.
Completion time: 2014-06-19 22:13:37 - machine was rebooted
ComboFix-quarantined-files.txt 2014-06-19 19:13
.
Pre-Run: 49.153.847.296 bayt boş
Post-Run: 50.087.981.056 bayt boş
.
- - End Of File - - 9F4A3C281025C49CC590871DFA824F8F
A36C5E4F47E84449FF07ED3517B43A31
-
Malwarebytes indir tara sil kurtulursun
< Bu ileti mobil sürüm kullanılarak atıldı > -
quote:
Orijinalden alıntı: VeF
.
(((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
B:\install.exe
c:\programdata\DownloAD Keeper
c:\users\VeFaGS\AppData\Roaming\chromium.exe
c:\windows\D7C3E6AA86CEECD7.log
c:\windows\XSxS
.
burdaki dosyaları zararlı görüp, silmiş
Sayfa:
1
Benzer içerikler
- android teyp yazılım indir
- geçersiz istek: istek parametreleri geçersiz: invalid platform app
- wifi sinyal güçlendirici tavsiye
- sembollerle kalp yapma
- laptopta fare imleci hareket etmiyor
- bin dosyası açma
- mobil veri çekmiyor
- donanım sanallaştırma nasıl açılır
- bios nasıl açılır
- bilgisayardan ses gelmiyor
Ip işlemleri
Bu mesaj IP'si ile atılan mesajları ara Bu kullanıcının son IP'si ile atılan mesajları ara Bu mesaj IP'si ile kullanıcı ara Bu kullanıcının son IP'si ile kullanıcı ara
KAPAT X
Bu mesaj IP'si ile atılan mesajları ara Bu kullanıcının son IP'si ile atılan mesajları ara Bu mesaj IP'si ile kullanıcı ara Bu kullanıcının son IP'si ile kullanıcı ara
KAPAT X
