Yeni Kayıt
Konudaki Resimler
< Bu mesaj bu kişi tarafından değiştirildi Empyrium -- 13 Şubat 2013; 19:29:24 > |
| _____________________________ |
Bildirim
klavye kendi kendine qqqq yazıyor (combofix loguma bakar mısınız)
Sıcak Fırsatlarda Tıklananlar
Editörün Seçtiği Fırsatlar
Daha Fazla 
Bu Konudaki Kullanıcılar:
Daha Az 
2 Misafir - 2 Masaüstü
Giriş
Mesaj
-
-
combofix logum
ComboFix 13-02-13.01 - bezo 13.02.2013 19:11:17.3.8 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1254.90.1033.18.6068.4585 [GMT 2:00]
Running from: c:\users\bezo\Desktop\ComboFix.exe
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((( Files Created from 2013-01-13 to 2013-02-13 )))))))))))))))))))))))))))))))
.
.
2013-02-13 17:15 . 2013-02-13 17:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-09 10:58 . 2013-02-09 10:58 -------- d-----w- c:\program files (x86)\Your Uninstaller! 7
2013-02-09 10:58 . 2013-02-09 10:58 -------- d-----w- c:\programdata\Babylon
2013-02-08 16:22 . 2012-10-04 17:41 424960 ----a-w- c:\windows\system32\KernelBase.dll
2013-02-08 16:21 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
2013-02-08 16:21 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-02-08 16:21 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2013-02-08 16:21 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2013-02-08 16:21 . 2012-11-01 05:43 2002432 ----a-w- c:\windows\system32\msxml6.dll
2013-02-08 16:21 . 2012-11-01 05:43 1882624 ----a-w- c:\windows\system32\msxml3.dll
2013-02-08 16:21 . 2012-11-20 05:48 307200 ----a-w- c:\windows\system32\ncrypt.dll
2013-02-08 16:21 . 2012-11-20 04:51 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2013-02-08 16:21 . 2012-11-01 04:47 1389568 ----a-w- c:\windows\SysWow64\msxml6.dll
2013-02-08 16:21 . 2012-11-01 04:47 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2013-02-08 16:21 . 2012-11-02 05:59 478208 ----a-w- c:\windows\system32\dpnet.dll
2013-02-08 16:21 . 2012-11-02 05:11 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
2013-02-08 16:21 . 2012-11-23 03:26 3149824 ----a-w- c:\windows\system32\win32k.sys
2013-02-08 16:20 . 2012-11-23 03:13 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-02-08 16:16 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2013-02-08 16:16 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2013-02-08 16:16 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2013-02-08 16:16 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2013-02-08 16:16 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2013-02-08 16:16 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2013-02-08 16:16 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2013-02-08 16:15 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2013-02-08 16:15 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2013-02-08 15:43 . 2013-02-08 15:43 -------- d-----w- c:\programdata\RELOADED
2013-02-06 11:33 . 2013-02-06 11:33 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2013-02-05 22:50 . 2010-02-04 08:01 22360 ----a-w- c:\windows\SysWow64\X3DAudio1_7.dll
2013-02-05 22:47 . 2013-02-08 15:39 -------- d-----w- c:\program files (x86)\The Cave
2013-02-05 15:15 . 2013-02-05 15:15 -------- d-----w- c:\program files (x86)\Daedalic Entertainment
2013-02-04 20:26 . 2013-02-04 20:28 -------- d-----w- c:\program files (x86)\Antichamber
2013-02-04 18:14 . 2013-02-04 18:14 -------- d-----w- c:\program files (x86)\Guitar Pro 5
2013-02-02 20:25 . 2013-02-02 20:25 -------- d-----w- c:\program files (x86)\Thomas Was Alone
2013-01-30 20:52 . 2013-01-30 20:52 -------- d-----w- c:\program files (x86)\users
2013-01-30 17:39 . 2013-01-30 20:52 -------- d-----w- c:\program files (x86)\Mark of the Ninja
2013-01-28 10:32 . 2013-01-28 10:32 -------- d-----w- c:\program files (x86)\Google
2013-01-27 11:52 . 2013-01-27 11:52 -------- d-----w- c:\program files (x86)\Lace Mamba Global Ltd
2013-01-26 21:41 . 2013-01-26 21:41 -------- dc----w- c:\windows\system32\DRVSTORE
2013-01-26 21:40 . 2013-01-26 21:40 -------- d-----w- c:\programdata\Apple
2013-01-26 18:38 . 2013-01-26 18:38 -------- d-----w- c:\program files\VideoLAN
2013-01-25 16:41 . 2013-01-25 16:41 -------- d-----w- c:\programdata\Creative Labs
2013-01-25 12:50 . 2013-01-25 12:50 -------- d-----w- c:\programdata\Trymedia
2013-01-25 12:22 . 2013-01-25 12:59 -------- d-----w- C:\Dreamfall
2013-01-25 12:10 . 2013-01-25 12:10 -------- d-----w- c:\program files\Common Files\DESIGNER
2013-01-25 12:10 . 2013-01-25 12:10 -------- d-----w- c:\program files\Microsoft Synchronization Services
2013-01-25 12:09 . 2013-01-25 12:09 -------- d-----w- c:\windows\PCHEALTH
2013-01-25 12:09 . 2013-01-25 12:09 -------- d-----w- c:\program files\Microsoft Sync Framework
2013-01-25 12:09 . 2013-01-25 12:09 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2013-01-25 12:09 . 2013-01-25 12:09 -------- d-----w- c:\program files (x86)\Microsoft.NET
2013-01-25 12:07 . 2013-01-25 12:07 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2013-01-25 12:06 . 2013-01-25 12:06 -------- d-----w- c:\program files\Microsoft Analysis Services
2013-01-25 12:06 . 2013-01-25 12:06 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2013-01-25 12:06 . 2013-01-25 12:09 -------- d-----w- c:\program files\Microsoft Office
2013-01-25 12:06 . 2013-01-25 12:17 -------- d-----w- c:\programdata\Microsoft Help
2013-01-25 12:05 . 2013-01-25 12:05 -------- d-----r- C:\MSOCache
2013-01-24 23:58 . 2013-01-24 14:06 -------- d-----w- c:\windows\Panther
2013-01-24 22:46 . 2013-01-24 22:46 -------- d-----w- c:\program files (x86)\Jump Birdy Jump
2013-01-24 22:36 . 2013-01-24 22:36 -------- d-----w- C:\GOG Games
2013-01-24 20:33 . 2013-01-24 20:33 -------- d-----w- c:\program files (x86)\Lucasarts
2013-01-24 20:24 . 2013-02-13 16:47 45056 ----a-w- c:\windows\system32\acovcnt.exe
2013-01-24 16:53 . 2013-01-24 16:53 -------- d-----w- c:\program files (x86)\Warner Bros. Interactive Entertainment
2013-01-24 16:26 . 2013-02-09 11:09 -------- d-----w- c:\program files (x86)\Ask.com
2013-01-24 16:23 . 2013-01-24 16:23 -------- d-----w- c:\program files (x86)\PANDORA.TV
2013-01-24 16:23 . 2013-02-13 16:04 -------- d-----w- c:\program files (x86)\The KMPlayer
2013-01-24 15:57 . 2013-01-24 15:57 -------- d-----w- c:\program files (x86)\Common Files\PX Storage Engine
2013-01-24 15:57 . 2013-01-24 15:58 -------- d-----w- c:\program files (x86)\Winamp
2013-01-24 15:55 . 2013-01-24 15:55 -------- d-----w- c:\program files (x86)\AP Tuner
2013-01-24 15:50 . 2013-01-24 15:50 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-01-24 15:50 . 2013-01-24 15:50 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2013-01-24 15:49 . 2013-01-24 15:52 -------- d-----w- c:\programdata\DAEMON Tools Lite
2013-01-24 15:49 . 2013-01-24 15:49 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-24 15:49 . 2013-01-24 15:49 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-01-24 15:49 . 2013-01-24 15:49 -------- d-----w- c:\windows\SysWow64\Macromed
2013-01-24 15:49 . 2013-01-24 15:49 -------- d-----w- c:\windows\system32\Macromed
2013-01-24 15:47 . 2012-06-09 18:21 206336 ----a-w- c:\windows\system32\unrar64.dll
2013-01-24 15:47 . 2011-12-07 18:37 148992 ----a-w- c:\windows\system32\lagarith.dll
2013-01-24 15:47 . 2013-01-14 18:00 127488 ----a-w- c:\windows\system32\ff_vfw.dll
2013-01-24 15:47 . 2013-01-24 15:47 -------- d-----w- c:\program files\K-Lite Codec Pack x64
2013-01-24 15:46 . 2013-01-24 15:46 -------- d-----w- c:\program files (x86)\K-Lite Codec Pack
2013-01-24 15:44 . 2012-06-09 18:21 178688 ----a-w- c:\windows\SysWow64\unrar.dll
2013-01-24 15:30 . 2013-01-24 15:30 -------- d-----w- c:\programdata\P4G
2013-01-24 15:30 . 2013-01-24 15:30 -------- d-----w- c:\program files\P4G
2013-01-24 15:28 . 2013-01-24 15:28 -------- d-----w- c:\program files\Creative
2013-01-24 15:28 . 2013-01-24 15:29 -------- d-----w- c:\program files (x86)\Creative
2013-01-24 15:27 . 2010-06-22 09:20 379520 ----a-w- c:\windows\system32\FBAgent.exe
2013-01-24 15:27 . 2013-01-24 15:27 -------- d-----w- c:\program files (x86)\Gaming Mouse
2013-01-24 15:26 . 2013-01-24 15:27 -------- d-----w- c:\program files\ASUS
2013-01-24 15:26 . 2013-01-24 15:53 -------- d-----w- c:\programdata\ASUS
2013-01-24 15:17 . 2013-01-24 15:17 -------- d-----w- c:\program files\Synaptics
2013-01-24 15:17 . 2010-03-05 09:19 316464 ----a-w- c:\windows\system32\drivers\SynTP.sys
2013-01-24 15:17 . 2010-03-05 09:17 107816 ----a-w- c:\windows\SysWow64\SynTPCOM.dll
2013-01-24 15:17 . 2010-03-05 09:17 214312 ----a-w- c:\windows\system32\SynTPAPI.dll
2013-01-24 15:17 . 2010-03-05 09:17 147752 ----a-w- c:\windows\system32\SynTPCo4.dll
2013-01-24 15:17 . 2010-03-05 09:16 210216 ----a-w- c:\windows\SysWow64\SynCtrl.dll
2013-01-24 15:17 . 2010-03-05 09:16 264488 ----a-w- c:\windows\system32\SynCtrl.dll
2013-01-24 15:17 . 2010-03-05 09:16 173352 ----a-w- c:\windows\SysWow64\SynCOM.dll
2013-01-24 15:17 . 2010-03-05 09:16 396584 ----a-w- c:\windows\system32\SynCOM.dll
2013-01-24 15:16 . 2006-10-09 17:07 183296 ----a-w- c:\windows\SysWow64\ACEngSvr.exe
2013-01-24 15:16 . 2013-01-24 15:16 -------- d-----w- c:\program files\Fresco Logic Inc
2013-01-24 15:15 . 2013-01-24 15:15 -------- d-----w- c:\program files (x86)\Common Files\postureAgent
2013-01-24 15:14 . 2009-09-17 10:54 56344 ----a-w- c:\windows\system32\drivers\HECIx64.sys
2013-01-24 15:12 . 2010-04-21 13:47 76912 ----a-w- c:\windows\system32\drivers\L1C62x64.sys
2013-01-24 15:11 . 2009-07-20 15:29 15416 ----a-w- c:\windows\system32\drivers\kbfiltr.sys
2013-01-24 15:08 . 2010-03-03 16:51 540696 ----a-w- c:\windows\system32\drivers\iaStor.sys
2013-01-24 15:00 . 2013-01-24 15:15 -------- d-----w- c:\program files (x86)\Intel
2013-01-24 15:00 . 2010-02-23 13:34 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2013-01-24 14:59 . 2013-01-24 14:59 -------- d-----w- C:\Intel
2013-01-24 14:59 . 2013-01-24 14:59 -------- d-----w- c:\windows\SysWow64\sda
2013-01-24 14:58 . 2010-07-26 09:27 318056 ----a-w- c:\windows\system32\drivers\RtsPStor.sys
2013-01-24 14:58 . 2010-03-04 14:30 9112096 ----a-w- c:\windows\SysWow64\RtsPStorIcon.dll
2013-01-24 14:57 . 2009-08-21 08:55 306176 ----a-w- c:\windows\SysWow64\vsnp2uvc.dll
2013-01-24 14:57 . 2009-08-21 08:55 375808 ----a-w- c:\windows\system32\vsnp2uvc.dll
2013-01-24 14:57 . 2009-08-20 08:41 1800192 ----a-w- c:\windows\system32\drivers\snp2uvc.sys
2013-01-24 14:57 . 2009-02-16 16:33 306176 ----a-w- c:\windows\system32\csnp2uvc.dll
2013-01-24 14:57 . 2008-12-29 15:14 35456 ----a-w- c:\windows\system32\drivers\sncduvc.sys
2013-01-24 14:56 . 2010-05-11 08:56 2401307 ----a-w- c:\windows\snuninst.exe
2013-01-24 14:55 . 2010-01-15 11:23 98344 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2013-01-24 14:55 . 2010-01-15 11:23 132648 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2013-01-24 14:55 . 2010-01-15 11:23 21288 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2013-01-24 14:55 . 2009-04-07 12:33 35104 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2013-01-24 14:54 . 2013-01-24 14:54 -------- d-----w- c:\program files\WIDCOMM
2013-01-24 14:54 . 2013-01-24 14:54 -------- d-----w- c:\program files\DIFX
2013-01-24 14:54 . 2009-12-14 14:03 53800 ----a-w- c:\windows\system32\drivers\btusbflt.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-29 00:54 . 2012-12-29 00:54 550328 ----a-w- c:\windows\SysWow64\nvStreaming.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Gaming Mouse Hid"="c:\program files (x86)\Gaming Mouse\hid.exe" [2010-01-19 428544]
"THX TruStudio NB Settings"="c:\program files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" [2010-03-24 899072]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-10 90112]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-12-07 421736]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-3-11 1083680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2009-12-14 53800]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2013-01-24 79360]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2013-01-24 79360]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys [2011-08-02 22528]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-11-14 19456]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2012-11-14 29696]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-11-14 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-11-14 30208]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2011-08-02 51712]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-11-14 1255736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-24 283200]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2010-06-22 379520]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe [2011-12-07 577752]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-12-29 383416]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-04-16 13832]
S2 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-16 134928]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;c:\windows\system32\DRIVERS\FLxHCIc.sys [2010-09-24 229376]
S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;c:\windows\system32\DRIVERS\FLxHCIh.sys [2010-09-24 69120]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-04-21 76912]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [2010-07-26 318056]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"THXCfg64"="c:\windows\system32\THXCfg64.dll" [2009-10-15 17920]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\guard64.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 188.59.246.12 86.108.132.165
FF - ProfilePath - c:\users\bezo\AppData\Roaming\Mozilla\Firefox\Profiles\aabk919u.default\
FF - ExtSQL: 2013-01-24 16:31; {4BBDD651-70CF-4821-84F8-2B918CF89CA3}; c:\users\bezo\AppData\Roaming\Mozilla\Firefox\Profiles\aabk919u.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
FF - ExtSQL: 2013-01-24 16:38; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; c:\users\bezo\AppData\Roaming\Mozilla\Firefox\Profiles\aabk919u.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=ca45edea00000000000020cf30662f48&q=
FF - user.js: extensions.BabylonToolbar.id - ca45edea00000000000020cf30662f48
FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB}
FF - user.js: extensions.BabylonToolbar.instlDay - 15745
FF - user.js: extensions.BabylonToolbar.vrsn - 1.8.11.10
FF - user.js: extensions.BabylonToolbar.vrsni - 1.8.11.10
FF - user.js: extensions.BabylonToolbar.vrsnTs - 1.8.11.1012:58
FF - user.js: extensions.BabylonToolbar.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar.aflt - babsst
FF - user.js: extensions.BabylonToolbar.smplGrp - none
FF - user.js: extensions.BabylonToolbar.tlbrId - uninst
FF - user.js: extensions.BabylonToolbar.instlRef - sst
FF - user.js: extensions.BabylonToolbar.dfltLng - en
FF - user.js: extensions.BabylonToolbar.excTlbr - false
FF - user.js: extensions.BabylonToolbar.ffxUnstlRst - true
FF - user.js: extensions.BabylonToolbar.admin - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=118526
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar.autoRvrt - false
FF - user.js: extensions.BabylonToolbar.rvrt - false
FF - user.js: extensions.BabylonToolbar.newTab - false
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKCU-Run-Information Schema - c:\users\bezo\AppData\Roaming\Warner Bros. Interactive Entertainment\wmsn.exe
Wow6432Node-HKCU-Run-System Driver - c:\users\bezo\AppData\Roaming\WinRAR\wnms.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-02-13 19:17:11
ComboFix-quarantined-files.txt 2013-02-13 17:17
ComboFix2.txt 2013-02-09 12:23
.
Pre-Run: 37.965.590.528 bytes free
Post-Run: 37.809.176.576 bytes free
.
- - End Of File - - E58221A4F7D50D50140CA9A04E162FC6_____________________________
Sayfa:
1
Ip işlemleri
Bu mesaj IP'si ile atılan mesajları ara Bu kullanıcının son IP'si ile atılan mesajları ara Bu mesaj IP'si ile kullanıcı ara Bu kullanıcının son IP'si ile kullanıcı ara
KAPAT X
Bu mesaj IP'si ile atılan mesajları ara Bu kullanıcının son IP'si ile atılan mesajları ara Bu mesaj IP'si ile kullanıcı ara Bu kullanıcının son IP'si ile kullanıcı ara
KAPAT X
