ComboFix virüs sonucu(pc'de virüs var mı)

[furko64]

Bilgisayarımda virüs oldugunu hissettim ve combofix ile bir arama yaptım bazı dosyaları sildigini ve virüs uyarısı verdigini gördüm altta raporu koydum acaba silinenler virüs mü ?

ComboFix 13-04-06.02 - 07.04.2013  21:23:57.1.1 - x86Microsoft Windows 7 Ultimate   6.1.7601.1.1254.90.1055.18.2975.1887 [GMT 3:00]
Running from: d:\program files\Program Setuplar\ComboFix.exe
AV: ESET Smart Security 5.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET Kişisel güvenlik duvarı *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Resident AV is active
.
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\YHF
c:\windows\system32\YHF\QJTN.001
c:\windows\system32\YHF\QJTN.002
c:\windows\system32\YHF\QJTN.006
c:\windows\system32\YHF\QJTN.007
.
.
(((((((((((((((((((((((((   Files Created from 2013-03-07 to 2013-04-07  )))))))))))))))))))))))))))))))
.
.
2013-04-07 18:37 . 2013-04-07 18:37    --------    d-----w-    c:\users\Gurel\AppData\Local\temp
2013-04-07 18:37 . 2013-04-07 18:37    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-04-07 18:19 . 2013-04-07 18:19    60872    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{BF8A4EB3-2776-4A20-AD16-5EE25F0805E0}\offreg.dll
2013-04-05 15:04 . 2013-04-05 15:04    9728    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-04-05 12:33 . 2013-03-15 07:21    7108640    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{BF8A4EB3-2776-4A20-AD16-5EE25F0805E0}\mpengine.dll
2013-04-03 19:35 . 2013-04-03 19:35    --------    d-----w-    c:\users\Gurel\AppData\Local\Octoshape
2013-04-03 19:35 . 2013-04-03 19:35    --------    d-----w-    c:\users\Gurel\AppData\Roaming\Octoshape
2013-03-31 16:16 . 2013-03-31 16:16    --------    d-----w-    c:\programdata\Babylon
2013-03-31 16:16 . 2013-03-31 16:16    --------    d-----w-    c:\users\Gurel\AppData\Roaming\Babylon
2013-03-31 16:16 . 2013-03-31 16:16    --------    d-----w-    c:\program files\Gophoto.it
2013-03-31 16:15 . 2013-03-31 16:18    --------    d-----w-    c:\program files\LSHunter.TV
2013-03-20 20:36 . 2013-02-12 03:32    15872    ----a-w-    c:\windows\system32\drivers\usb8023.sys
2013-03-20 16:43 . 2013-03-20 16:43    --------    d-----w-    c:\users\Gurel\AppData\Local\Facebook
2013-03-20 15:24 . 2013-03-20 15:24    --------    d-----w-    c:\users\Gurel\AppData\Roaming\Corel
2013-03-20 15:24 . 2013-03-20 15:26    --------    d-----w-    c:\programdata\Protexis
2013-03-20 15:24 . 2013-03-20 17:04    --------    d-----w-    c:\users\Gurel\AppData\Roaming\Ulead Systems
2013-03-20 15:21 . 2013-03-20 15:21    --------    d-----w-    c:\programdata\eSellerate
2013-03-20 15:19 . 2013-03-20 15:21    --------    d-----w-    c:\program files\SmartSound Software
2013-03-20 15:19 . 2013-03-20 15:22    --------    d-----w-    c:\programdata\SmartSound Software Inc
2013-03-20 15:17 . 2013-03-20 15:18    --------    d--h--w-    c:\windows\msdownld.tmp
2013-03-20 15:17 . 2013-03-20 15:17    143360    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
2013-03-20 15:17 . 2013-03-20 15:17    143360    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
2013-03-20 15:17 . 2013-03-20 15:17    143360    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2013-03-20 15:17 . 2013-03-20 15:17    143360    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2013-03-20 15:17 . 2013-03-20 15:17    143360    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2013-03-20 15:17 . 2013-03-20 15:17    143360    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2013-03-20 15:17 . 2013-03-20 15:17    143360    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2013-03-20 15:15 . 2013-03-20 15:15    --------    d-----w-    c:\program files\Common Files\Apple
2013-03-20 15:15 . 2013-03-20 15:17    --------    d-----w-    c:\program files\QuickTime
2013-03-20 15:15 . 2013-03-20 15:15    --------    d-----w-    c:\programdata\Apple Computer
2013-03-20 15:14 . 2013-03-20 15:14    --------    d-----w-    c:\programdata\InterVideo
2013-03-20 15:13 . 2001-09-05 22:18    225280    ----a-w-    c:\program files\Common Files\InstallShield\IScript\IScript.dll
2013-03-20 15:13 . 2001-09-05 22:14    176128    ----a-w-    c:\program files\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2013-03-20 15:13 . 2001-09-05 22:18    77824    ----a-w-    c:\program files\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2013-03-20 15:13 . 2001-09-05 22:13    32768    ----a-w-    c:\program files\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2013-03-20 15:13 . 2005-04-13 15:00    212992    ----a-w-    c:\program files\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
2013-03-20 15:11 . 2013-03-20 15:12    --------    d-----w-    c:\programdata\Corel
2013-03-20 15:04 . 2013-03-20 15:04    --------    d-----w-    c:\programdata\Ulead Systems
2013-03-20 15:01 . 2013-03-20 15:01    --------    d-----w-    c:\program files\Common Files\Protexis
2013-03-20 15:00 . 2013-03-20 15:00    --------    d-----w-    c:\program files\Common Files\Corel
2013-03-20 14:59 . 2013-03-20 14:59    --------    d-----w-    c:\program files\Common Files\Ulead Systems
2013-03-20 14:58 . 2013-03-20 14:58    --------    d-----w-    c:\program files\Windows Media Components
2013-03-20 14:57 . 2013-03-20 14:57    --------    d-----w-    c:\program files\Corel
2013-03-20 14:52 . 2002-07-26 10:07    614532    ----a-w-    c:\program files\Common Files\InstallShield\engine\6\Intel 32\IKernel.exe
2013-03-18 18:32 . 2011-03-11 05:33    1699328    ----a-w-    c:\windows\system32\esent.dll
2013-03-18 18:32 . 2011-03-11 05:31    74240    ----a-w-    c:\windows\system32\fsutil.exe
2013-03-18 18:32 . 2011-03-11 05:39    148864    ----a-w-    c:\windows\system32\drivers\storport.sys
2013-03-18 18:32 . 2011-03-11 05:38    332160    ----a-w-    c:\windows\system32\drivers\iaStorV.sys
2013-03-18 18:32 . 2011-03-11 05:38    80256    ----a-w-    c:\windows\system32\drivers\amdsata.sys
2013-03-18 18:32 . 2011-03-11 05:39    143744    ----a-w-    c:\windows\system32\drivers\nvstor.sys
2013-03-18 18:32 . 2011-03-11 05:39    117120    ----a-w-    c:\windows\system32\drivers\nvraid.sys
2013-03-18 18:32 . 2011-03-11 05:38    22400    ----a-w-    c:\windows\system32\drivers\amdxata.sys
2013-03-18 18:29 . 2011-03-25 02:57    43008    ----a-w-    c:\windows\system32\drivers\usbehci.sys
2013-03-18 18:29 . 2011-03-25 02:58    258560    ----a-w-    c:\windows\system32\drivers\usbhub.sys
2013-03-18 18:29 . 2011-03-25 02:58    284672    ----a-w-    c:\windows\system32\drivers\usbport.sys
2013-03-18 18:29 . 2011-03-25 02:58    75776    ----a-w-    c:\windows\system32\drivers\usbccgp.sys
2013-03-18 18:29 . 2011-03-25 02:57    20480    ----a-w-    c:\windows\system32\drivers\usbohci.sys
2013-03-18 18:29 . 2011-03-25 02:57    24064    ----a-w-    c:\windows\system32\drivers\usbuhci.sys
2013-03-18 18:29 . 2011-03-25 02:57    5888    ----a-w-    c:\windows\system32\drivers\usbd.sys
2013-03-18 18:28 . 2012-07-06 19:23    393728    ----a-w-    c:\windows\system32\drivers\bthport.sys
2013-03-18 18:28 . 2011-04-28 03:15    60416    ----a-w-    c:\windows\system32\drivers\BTHUSB.SYS
2013-03-18 16:36 . 2013-04-05 15:36    --------    d-----w-    c:\windows\PolicyDefinitions
2013-03-18 16:34 . 2012-12-16 14:13    295424    ----a-w-    c:\windows\system32\atmfd.dll
2013-03-18 16:34 . 2012-12-16 14:13    34304    ----a-w-    c:\windows\system32\atmlib.dll
2013-03-18 16:34 . 2010-09-30 06:47    70656    ----a-w-    c:\windows\system32\fontsub.dll
2013-03-18 15:45 . 2012-07-26 03:39    526952    ----a-w-    c:\windows\system32\drivers\Wdf01000.sys
2013-03-18 15:45 . 2012-07-26 03:39    47720    ----a-w-    c:\windows\system32\drivers\WdfLdr.sys
2013-03-18 15:45 . 2012-07-26 02:46    9728    ----a-w-    c:\windows\system32\Wdfres.dll
2013-03-18 15:44 . 2012-07-26 02:33    66560    ----a-w-    c:\windows\system32\drivers\WUDFPf.sys
2013-03-18 15:44 . 2012-07-26 02:32    155136    ----a-w-    c:\windows\system32\drivers\WUDFRd.sys
2013-03-18 15:44 . 2012-07-26 03:20    73216    ----a-w-    c:\windows\system32\WUDFSvc.dll
2013-03-18 15:44 . 2012-07-26 03:20    172032    ----a-w-    c:\windows\system32\WUDFPlatform.dll
2013-03-18 15:44 . 2012-07-26 03:21    196608    ----a-w-    c:\windows\system32\WUDFHost.exe
2013-03-18 15:44 . 2012-07-26 03:20    613888    ----a-w-    c:\windows\system32\WUDFx.dll
2013-03-18 15:44 . 2012-07-26 03:20    38912    ----a-w-    c:\windows\system32\WUDFCoinstaller.dll
2013-03-18 15:43 . 2012-03-01 05:46    19824    ----a-w-    c:\windows\system32\drivers\fs_rec.sys
2013-03-18 15:43 . 2012-03-01 05:33    159232    ----a-w-    c:\windows\system32\imagehlp.dll
2013-03-18 15:43 . 2012-03-01 05:29    5120    ----a-w-    c:\windows\system32\wmi.dll
2013-03-17 11:13 . 2013-03-17 11:13    --------    d-----w-    c:\users\Default\AppData\Local\Microsoft Help
2013-03-16 10:20 . 2011-11-17 05:38    1288472    ----a-w-    c:\windows\system32\ntdll.dll
2013-03-16 10:20 . 2012-11-01 04:47    1389568    ----a-w-    c:\windows\system32\msxml6.dll
2013-03-15 17:13 . 2013-01-04 03:00    2347008    ----a-w-    c:\windows\system32\win32k.sys
2013-03-15 17:13 . 2012-08-22 17:16    712048    ----a-w-    c:\windows\system32\drivers\ndis.sys
2013-03-15 17:13 . 2012-07-04 19:45    33280    ----a-w-    c:\windows\system32\drivers\RNDISMP.sys
2013-03-15 17:09 . 2012-11-02 05:11    376832    ----a-w-    c:\windows\system32\dpnet.dll
2013-03-15 17:09 . 2011-04-29 02:46    311808    ----a-w-    c:\windows\system32\drivers\srv.sys
2013-03-15 17:09 . 2011-04-29 02:46    310272    ----a-w-    c:\windows\system32\drivers\srv2.sys
2013-03-15 17:09 . 2011-04-29 02:46    114688    ----a-w-    c:\windows\system32\drivers\srvnet.sys
2013-03-15 17:09 . 2011-04-25 02:18    338944    ----a-w-    c:\windows\system32\drivers\afd.sys
2013-03-15 17:07 . 2013-01-05 05:00    3967848    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-03-15 17:07 . 2013-01-05 05:00    3913064    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-03-15 17:00 . 2011-02-18 05:39    31232    ----a-w-    c:\windows\system32\prevhost.exe
2013-03-15 17:00 . 2011-10-01 04:37    708608    ----a-w-    c:\program files\Common Files\System\wab32.dll
2013-03-15 16:56 . 2013-01-03 05:05    1293672    ----a-w-    c:\windows\system32\drivers\tcpip.sys
2013-03-15 16:56 . 2013-01-03 05:04    187752    ----a-w-    c:\windows\system32\drivers\FWPKCLNT.SYS
2013-03-15 10:51 . 2011-08-17 04:24    465408    ----a-w-    c:\windows\system32\psisdecd.dll
2013-03-15 10:51 . 2011-08-17 04:19    75776    ----a-w-    c:\windows\system32\psisrndr.ax
2013-03-15 10:51 . 2011-12-30 05:27    478720    ----a-w-    c:\windows\system32\timedate.cpl
2013-03-15 10:51 . 2012-08-31 17:18    1211760    ----a-w-    c:\windows\system32\drivers\ntfs.sys
2013-03-15 10:51 . 2012-06-02 04:45    67440    ----a-w-    c:\windows\system32\drivers\ksecdd.sys
2013-03-15 10:51 . 2012-06-02 04:45    134000    ----a-w-    c:\windows\system32\drivers\ksecpkg.sys
2013-03-15 10:51 . 2012-06-02 04:40    369336    ----a-w-    c:\windows\system32\drivers\cng.sys
2013-03-15 10:51 . 2012-06-02 04:40    225280    ----a-w-    c:\windows\system32\schannel.dll
2013-03-15 10:51 . 2011-11-19 14:01    67072    ----a-w-    c:\windows\system32\packager.dll
2013-03-15 10:50 . 2011-10-15 05:38    534528    ----a-w-    c:\windows\system32\EncDec.dll
2013-03-15 10:50 . 2012-07-04 21:14    41984    ----a-w-    c:\windows\system32\browcli.dll
2013-03-15 10:50 . 2012-07-04 21:14    102912    ----a-w-    c:\windows\system32\browser.dll
2013-03-15 10:50 . 2011-10-26 04:28    38912    ----a-w-    c:\windows\system32\csrsrv.dll
2013-03-15 10:50 . 2010-12-23 05:54    850944    ----a-w-    c:\windows\system32\sbe.dll
2013-03-15 10:50 . 2010-12-23 05:54    642048    ----a-w-    c:\windows\system32\CPFilters.dll
2013-03-15 10:50 . 2010-12-23 05:50    199680    ----a-w-    c:\windows\system32\mpg2splt.ax
2013-03-15 10:50 . 2011-10-26 04:32    514560    ----a-w-    c:\windows\system32\qdvd.dll
2013-03-15 10:50 . 2011-10-26 04:32    1328128    ----a-w-    c:\windows\system32\quartz.dll
2013-03-15 10:50 . 2012-08-10 23:56    542208    ----a-w-    c:\windows\system32\kerberos.dll
2013-03-15 10:49 . 2012-04-07 11:26    2342400    ----a-w-    c:\windows\system32\msi.dll
2013-03-15 10:44 . 2013-01-04 04:50    169984    ----a-w-    c:\windows\system32\winsrv.dll
2013-03-14 19:14 . 2013-03-14 19:51    --------    d-----w-    c:\users\Gurel\AppData\Local\WMTools Downloaded Files
2013-03-14 19:05 . 2013-03-14 19:05    --------    d-----w-    c:\program files\pazera-software
2013-03-14 19:02 . 2013-03-14 19:03    --------    d-----w-    c:\program files\Movie Maker 2.6
2013-03-14 18:56 . 2013-03-14 18:56    --------    d-----w-    C:\8ccad77f91bb551b7caad5341e
2013-03-14 18:56 . 2013-03-14 18:56    --------    d-----w-    c:\program files\Windows Live
2013-03-14 18:55 . 2010-06-02 02:55    74072    ----a-w-    c:\windows\system32\XAPOFX1_5.dll
2013-03-14 18:55 . 2010-06-02 02:55    527192    ----a-w-    c:\windows\system32\XAudio2_7.dll
2013-03-14 18:55 . 2010-05-26 09:41    2106216    ----a-w-    c:\windows\system32\D3DCompiler_43.dll
2013-03-14 18:55 . 2010-05-26 09:41    248672    ----a-w-    c:\windows\system32\d3dx11_43.dll
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-13 18:15 . 2013-01-08 17:39    73432    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-13 18:15 . 2013-01-08 17:39    693976    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-03-11 22:10 . 2013-01-08 17:33    237088    ------w-    c:\windows\system32\MpSigStub.exe
2013-02-12 04:48 . 2013-03-15 10:51    474112    ----a-w-    c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-15 10:51    2176512    ----a-w-    c:\windows\apppatch\AcGenral.dll
2013-01-31 12:52 . 2013-01-31 12:52    1998168    ----a-w-    c:\windows\system32\D3DX9_43.dll
2013-01-30 13:39 . 2013-01-30 13:40    91136    ----a-w-    c:\windows\system32\helper.dll
2013-01-26 10:36 . 2013-01-26 10:36    4379984    ----a-w-    c:\windows\system32\D3DX9_40.dll
2013-01-23 13:01 . 2010-03-18 07:15    773968    ----a-w-    c:\windows\system32\msvcr100.dll
2013-01-23 13:01 . 2010-03-18 07:15    421200    ----a-w-    c:\windows\system32\msvcp100.dll
2013-01-11 20:51 . 2013-01-11 20:51    720896    ----a-w-    c:\windows\iun6002.exe
2013-01-08 17:22 . 2010-11-20 21:29    409088    ----a-w-    c:\windows\system32\systemcpl.dll
2013-01-08 17:22 . 2010-11-20 21:29    13824    ----a-w-    c:\windows\system32\slwga.dll
2013-01-08 17:22 . 2010-11-20 21:29    811520    ----a-w-    c:\windows\system32\user32.dll
2013-03-19 20:10 . 2013-03-19 20:10    263064    ----a-w-    c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2013-01-08 . 7BD7F45FF37FA0669CD32CA0EF46E22C . 811520 . . [6.1.7601.17514] . . c:\windows\System32\user32.dll
[7] 2010-11-20 . F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 . 811520 . . [6.1.7601.17514] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_cf3fd62ccb9e983d\user32.dll
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}]
2012-01-04 23:02    233288    ----a-w-    c:\program files\Expat Shield\HssIE\ExpatIE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-11-15 23:07    21904    ----a-w-    c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2011-05-25 2301752]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2012-12-12 3541008]
"Facebook Update"="c:\users\Gurel\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2013-03-20 138096]
"Octoshape Streaming Services"="c:\users\Gurel\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" [2011-03-24 107800]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-11-16 3117384]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-04 641704]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
R3 ExpatTrayService;Expat Shield Tray Service;c:\program files\Expat Shield\bin\ExpatTrayService.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Etkinleştirme Teknolojileri Hizmeti;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 ExpatShieldService;Expat Shield Service;c:\program files\Expat Shield\bin\openvpnas.exe [x]
S2 ExpatSrv;Expat Shield Routing Service;c:\program files\Expat Shield\HssWPR\hsssrv.exe [x]
S2 ExpatWd;Expat Shield Monitoring Service;c:\program files\Expat Shield\bin\hsswd.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [x]
S2 svcgdp;software services;c:\program files\Software Plate\svcgdp.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x86.sys [x]
S3 netw5v32;Windows Vista 32 Bit için Intel(R) Wireless WiFi Link 5000 Serisi Bağdaştırıcı Sürücüsü;c:\windows\system32\DRIVERS\netw5v32.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation    REG_MULTI_SZ       SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-04-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-08 18:15]
.
2013-04-05 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1581277937-3736494332-486676657-1001Core.job
- c:\users\Gurel\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-20 16:42]
.
2013-04-06 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1581277937-3736494332-486676657-1001UA.job
- c:\users\Gurel\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-20 16:42]
.
2013-03-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1581277937-3736494332-486676657-1001Core.job
- c:\users\Gurel\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-08 17:38]
.
2013-04-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1581277937-3736494332-486676657-1001UA.job
- c:\users\Gurel\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-08 17:38]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.delta-search.com/?affID=119776&tt=190313_wctrl&babsrc=HP_ss&mntrId=209B00FF2613C581
IE: Bütün linkleri IDM ile indir - c:\program files\Internet Download Manager\IEGetAll.htm
IE: IDM ile indir - c:\program files\Internet Download Manager\IEExt.htm
IE: Microsoft Excel'e &Ver - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{BFDDD680-A91E-4DB5-A0AE-C198B1D72226}: NameServer = 198.153.192.1,198.153.194.1
TCP: Interfaces\{BFDDD680-A91E-4DB5-A0AE-C198B1D72226}\4505D2C494E4B4F5243323939344: NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{BFDDD680-A91E-4DB5-A0AE-C198B1D72226}\74572756C6: NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{BFDDD680-A91E-4DB5-A0AE-C198B1D72226}\76572756C6: NameServer = 8.8.8.8,8.8.4.4
FF - ProfilePath - c:\users\Gurel\AppData\Roaming\Mozilla\Firefox\Profiles\1pa1khvg.default\
FF - prefs.js: browser.search.selectedEngine - Delta Search
FF - prefs.js: browser.startup.homepage - hxxp://www.delta-search.com/?affID=119776&tt=190313_wctrl&babsrc=HP_ss&mntrId=209B00FF2613C581
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-02-14 19:53; r2d2b2g@mozilla.org; c:\users\Gurel\AppData\Roaming\Mozilla\Firefox\Profiles\1pa1khvg.default\extensions\r2d2b2g@mozilla.org
FF - user.js: extensions.delta.tlbrSrchUrl - 
FF - user.js: extensions.delta.id - 209bb5a600000000000000ff2613c581
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15795
FF - user.js: extensions.delta.vrsn - 1.8.10.0
FF - user.js: extensions.delta.vrsni - 1.8.10.0
FF - user.js: extensions.delta.vrsnTs - 1.8.10.019:16
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - en
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1581277937-3736494332-486676657-1001_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}] [MENTION=83344]Deni[/MENTION]ed: (Full) (Everyone)
"scansk"=hex(0):74,f3,f6,8f,2e,90,d0,c3,98,99,e4,de,f2,19,f4,fd,7d,d3,c9,95,17,
   ae,fd,5e,40,54,27,88,fb,cd,06,75,ee,3d,8f,c6,c0,eb,9a,b8,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1581277937-3736494332-486676657-1001_Classes\CLSID\{7c9d296a-4d70-4fff-a8bd-ad008b342934}] [MENTION=83344]Deni[/MENTION]ed: (Full) (Everyone) [MENTION=53985]allo[/MENTION]wed: (Read) (RestrictedCode)
"Model"=dword:00000046
"Therad"=dword:00000008
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
   1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] [MENTION=83344]Deni[/MENTION]ed: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] [MENTION=83344]Deni[/MENTION]ed: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] [MENTION=83344]Deni[/MENTION]ed: (Full) (Everyone)
.
Completion time: 2013-04-07  21:40:24
ComboFix-quarantined-files.txt  2013-04-07 18:40
.
Pre-Run: 139.377.557.504 bayt boş
Post-Run: 153.138.626.560 bayt boş
.
- - End Of File - - 4353FA1DB3CC09B9021A71597DF151FF

Şimdiden teşekkürler

 

[furko64]

Herhangi bir bilgisi olan yok mu ?

 

[Korpe]

telaşlancak bir durum yok

 

[furko64]

telaşlancak bir durum yok

Silinen dosyalar acaba ne o konuda bir bilginiz var mı ?

 

[MasterFather]

Silinen dosyalar acaba ne o konuda bir bilginiz var mı ?

keylogger galiba.

- - - Mesaj Güncellendi - - -

ardamax keylogger.

 

[furko64]

Acaba kullandıgım şifreleri vs değiştirmeme gerek varmı?
Veya suan ne yapmalıyım hangi virüs programını kullanmalıyım Eset Smart Security var fakat onu bile geçtigine göre

 

[MasterFather]

Acaba kullandıgım şifreleri vs değiştirmeme gerek varmı?
Veya suan ne yapmalıyım hangi virüs programını kullanmalıyım Eset Smart Security var fakat onu bile geçtigine göre

değiştirmende fayda var. şu programı indir deep tarama yap.eset iyide maalesef keylogger bulmada çok zayıf.
http://www.gezginler.net/indir/emsisoft-anti-malware.html

 

[furko64]

Suan tekrar tarama yapiyorum combofix ile sonuclari koyacagim
Dedigin programi kursam esetle cakisir mi ?

 

[MasterFather]

Suan tekrar tarama yapiyorum combofix ile sonuclari koyacagim
Dedigin programi kursam esetle cakisir mi ?

çakışmaz ama.30 gün deneme süreli.sistemi tarat bir şey bulmazsa kaldırırsın.

 

[IThelp]

Suan tekrar tarama yapiyorum combofix ile sonuclari koyacagim
Dedigin programi kursam esetle cakisir mi ?

Furkan combofix kulandığım bir program hiç bir zararı yok bulunanlar virus güvenli mod yaparsan daha cok verim alırsın

 

[furko64]

Furkan combofix kulandığım bir program hiç bir zararı yok bulunanlar virus güvenli mod yaparsan daha cok verim alırsın

Güvenli mod derken ne kastettin orayo cok fazla anlamadim ?

 

[furko64]

ComboFix 13-04-06.02 -  13.04.2013  20:05:05.3.1 - x86Microsoft Windows 7 Ultimate   6.1.7601.1.1254.90.1055.18.2975.2114 [GMT 3:00]
Running from: d:\program files\Program Setuplar\ComboFix.exe
AV: ESET Smart Security 5.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET Kişisel güvenlik duvarı *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Resident AV is active
.
.
.
(((((((((((((((((((((((((   Files Created from 2013-03-13 to 2013-04-13  )))))))))))))))))))))))))))))))
.
.
2013-04-13 17:14 . 2013-04-13 17:14	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-04-13 17:08 . 2013-04-13 17:08	--------	d-----w-	c:\users\Gurel\AppData\Local\Microsoft Games
2013-04-12 11:34 . 2013-03-15 07:21	7108640	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{352FB4F0-E88D-4460-BF44-EDEF1802E042}\mpengine.dll
2013-04-12 11:30 . 2013-02-19 12:01	2706432	----a-w-	c:\windows\system32\mshtml.tlb
2013-04-12 11:30 . 2013-02-21 10:30	217600	----a-w-	c:\program files\Internet Explorer\sqmapi.dll
2013-04-12 11:30 . 2013-02-21 10:29	2877440	----a-w-	c:\windows\system32\jscript9.dll
2013-04-12 11:30 . 2013-02-21 10:29	61440	----a-w-	c:\windows\system32\iesetup.dll
2013-04-12 11:30 . 2013-02-21 10:29	257536	----a-w-	c:\program files\Internet Explorer\ieproxy.dll
2013-04-12 11:30 . 2013-02-21 10:29	235520	----a-w-	c:\program files\Internet Explorer\IEShims.dll
2013-04-12 11:29 . 2013-02-19 11:10	71680	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2013-04-12 11:29 . 2013-02-21 10:29	109056	----a-w-	c:\windows\system32\iesysprep.dll
2013-04-12 11:29 . 2013-02-21 10:30	817664	----a-w-	c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-04-12 11:29 . 2013-02-21 10:30	1766912	----a-w-	c:\windows\system32\wininet.dll
2013-04-12 11:29 . 2013-02-21 11:28	770608	----a-w-	c:\program files\Internet Explorer\iexplore.exe
2013-04-10 13:50 . 2013-03-01 03:09	2347008	----a-w-	c:\windows\system32\win32k.sys
2013-04-10 13:50 . 2013-01-24 04:47	196328	----a-w-	c:\windows\system32\drivers\fvevol.sys
2013-04-10 13:50 . 2013-03-19 05:04	3913560	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-04-10 13:50 . 2013-03-19 05:04	3968856	----a-w-	c:\windows\system32\ntkrnlpa.exe
2013-04-10 13:50 . 2013-03-19 04:48	38912	----a-w-	c:\windows\system32\csrsrv.dll
2013-04-10 13:50 . 2013-03-19 02:49	69632	----a-w-	c:\windows\system32\smss.exe
2013-04-10 13:50 . 2013-02-15 04:37	3217408	----a-w-	c:\windows\system32\mstscax.dll
2013-04-10 13:50 . 2013-02-15 04:34	131584	----a-w-	c:\windows\system32\aaclient.dll
2013-04-10 13:50 . 2013-02-15 03:25	36864	----a-w-	c:\windows\system32\tsgqec.dll
2013-04-10 13:50 . 2013-03-02 05:07	1212264	----a-w-	c:\windows\system32\drivers\ntfs.sys
2013-04-07 18:40 . 2013-04-13 17:14	--------	d-----w-	c:\users\Gurel\AppData\Local\temp
2013-04-05 15:04 . 2013-04-05 15:04	9728	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-04-03 19:35 . 2013-04-03 19:35	--------	d-----w-	c:\users\Gurel\AppData\Local\Octoshape
2013-04-03 19:35 . 2013-04-03 19:35	--------	d-----w-	c:\users\Gurel\AppData\Roaming\Octoshape
2013-03-31 16:16 . 2013-03-31 16:16	--------	d-----w-	c:\programdata\Babylon
2013-03-31 16:16 . 2013-03-31 16:16	--------	d-----w-	c:\users\Gurel\AppData\Roaming\Babylon
2013-03-31 16:16 . 2013-03-31 16:16	--------	d-----w-	c:\program files\Gophoto.it
2013-03-31 16:15 . 2013-03-31 16:18	--------	d-----w-	c:\program files\LSHunter.TV
2013-03-20 20:36 . 2013-02-12 03:32	15872	----a-w-	c:\windows\system32\drivers\usb8023.sys
2013-03-20 16:43 . 2013-04-13 09:48	--------	d-----w-	c:\users\Gurel\AppData\Local\Facebook
2013-03-20 15:24 . 2013-03-20 15:24	--------	d-----w-	c:\users\Gurel\AppData\Roaming\Corel
2013-03-20 15:24 . 2013-03-20 15:26	--------	d-----w-	c:\programdata\Protexis
2013-03-20 15:24 . 2013-03-20 17:04	--------	d-----w-	c:\users\Gurel\AppData\Roaming\Ulead Systems
2013-03-20 15:21 . 2013-03-20 15:21	--------	d-----w-	c:\programdata\eSellerate
2013-03-20 15:19 . 2013-03-20 15:21	--------	d-----w-	c:\program files\SmartSound Software
2013-03-20 15:19 . 2013-03-20 15:22	--------	d-----w-	c:\programdata\SmartSound Software Inc
2013-03-20 15:17 . 2013-03-20 15:18	--------	d--h--w-	c:\windows\msdownld.tmp
2013-03-20 15:17 . 2013-03-20 15:17	143360	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
2013-03-20 15:17 . 2013-03-20 15:17	143360	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
2013-03-20 15:17 . 2013-03-20 15:17	143360	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2013-03-20 15:17 . 2013-03-20 15:17	143360	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2013-03-20 15:17 . 2013-03-20 15:17	143360	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2013-03-20 15:17 . 2013-03-20 15:17	143360	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2013-03-20 15:17 . 2013-03-20 15:17	143360	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2013-03-20 15:15 . 2013-03-20 15:15	--------	d-----w-	c:\program files\Common Files\Apple
2013-03-20 15:15 . 2013-03-20 15:17	--------	d-----w-	c:\program files\QuickTime
2013-03-20 15:15 . 2013-03-20 15:15	--------	d-----w-	c:\programdata\Apple Computer
2013-03-20 15:14 . 2013-03-20 15:14	--------	d-----w-	c:\programdata\InterVideo
2013-03-20 15:13 . 2001-09-05 22:18	225280	----a-w-	c:\program files\Common Files\InstallShield\IScript\IScript.dll
2013-03-20 15:13 . 2001-09-05 22:14	176128	----a-w-	c:\program files\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2013-03-20 15:13 . 2001-09-05 22:18	77824	----a-w-	c:\program files\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2013-03-20 15:13 . 2001-09-05 22:13	32768	----a-w-	c:\program files\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2013-03-20 15:13 . 2005-04-13 15:00	212992	----a-w-	c:\program files\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
2013-03-20 15:11 . 2013-03-20 15:12	--------	d-----w-	c:\programdata\Corel
2013-03-20 15:04 . 2013-03-20 15:04	--------	d-----w-	c:\programdata\Ulead Systems
2013-03-20 15:01 . 2013-03-20 15:01	--------	d-----w-	c:\program files\Common Files\Protexis
2013-03-20 15:00 . 2013-03-20 15:00	--------	d-----w-	c:\program files\Common Files\Corel
2013-03-20 14:59 . 2013-03-20 14:59	--------	d-----w-	c:\program files\Common Files\Ulead Systems
2013-03-20 14:58 . 2013-03-20 14:58	--------	d-----w-	c:\program files\Windows Media Components
2013-03-20 14:57 . 2013-03-20 14:57	--------	d-----w-	c:\program files\Corel
2013-03-20 14:52 . 2002-07-26 10:07	614532	----a-w-	c:\program files\Common Files\InstallShield\engine\6\Intel 32\IKernel.exe
2013-03-18 18:32 . 2011-03-11 05:33	1699328	----a-w-	c:\windows\system32\esent.dll
2013-03-18 18:32 . 2011-03-11 05:31	74240	----a-w-	c:\windows\system32\fsutil.exe
2013-03-18 18:32 . 2011-03-11 05:39	148864	----a-w-	c:\windows\system32\drivers\storport.sys
2013-03-18 18:32 . 2011-03-11 05:38	332160	----a-w-	c:\windows\system32\drivers\iaStorV.sys
2013-03-18 18:32 . 2011-03-11 05:38	80256	----a-w-	c:\windows\system32\drivers\amdsata.sys
2013-03-18 18:32 . 2011-03-11 05:39	143744	----a-w-	c:\windows\system32\drivers\nvstor.sys
2013-03-18 18:32 . 2011-03-11 05:39	117120	----a-w-	c:\windows\system32\drivers\nvraid.sys
2013-03-18 18:32 . 2011-03-11 05:38	22400	----a-w-	c:\windows\system32\drivers\amdxata.sys
2013-03-18 18:29 . 2011-03-25 02:57	43008	----a-w-	c:\windows\system32\drivers\usbehci.sys
2013-03-18 18:29 . 2011-03-25 02:58	258560	----a-w-	c:\windows\system32\drivers\usbhub.sys
2013-03-18 18:29 . 2011-03-25 02:58	284672	----a-w-	c:\windows\system32\drivers\usbport.sys
2013-03-18 18:29 . 2011-03-25 02:58	75776	----a-w-	c:\windows\system32\drivers\usbccgp.sys
2013-03-18 18:29 . 2011-03-25 02:57	20480	----a-w-	c:\windows\system32\drivers\usbohci.sys
2013-03-18 18:29 . 2011-03-25 02:57	24064	----a-w-	c:\windows\system32\drivers\usbuhci.sys
2013-03-18 18:29 . 2011-03-25 02:57	5888	----a-w-	c:\windows\system32\drivers\usbd.sys
2013-03-18 18:28 . 2012-07-06 19:23	393728	----a-w-	c:\windows\system32\drivers\bthport.sys
2013-03-18 18:28 . 2011-04-28 03:15	60416	----a-w-	c:\windows\system32\drivers\BTHUSB.SYS
2013-03-18 16:36 . 2013-04-05 15:36	--------	d-----w-	c:\windows\PolicyDefinitions
2013-03-18 16:34 . 2012-12-16 14:13	295424	----a-w-	c:\windows\system32\atmfd.dll
2013-03-18 16:34 . 2012-12-16 14:13	34304	----a-w-	c:\windows\system32\atmlib.dll
2013-03-18 16:34 . 2010-09-30 06:47	70656	----a-w-	c:\windows\system32\fontsub.dll
2013-03-18 15:45 . 2012-07-26 03:39	526952	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2013-03-18 15:45 . 2012-07-26 03:39	47720	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2013-03-18 15:45 . 2012-07-26 02:46	9728	----a-w-	c:\windows\system32\Wdfres.dll
2013-03-18 15:44 . 2012-07-26 02:33	66560	----a-w-	c:\windows\system32\drivers\WUDFPf.sys
2013-03-18 15:44 . 2012-07-26 02:32	155136	----a-w-	c:\windows\system32\drivers\WUDFRd.sys
2013-03-18 15:44 . 2012-07-26 03:20	73216	----a-w-	c:\windows\system32\WUDFSvc.dll
2013-03-18 15:44 . 2012-07-26 03:20	172032	----a-w-	c:\windows\system32\WUDFPlatform.dll
2013-03-18 15:44 . 2012-07-26 03:21	196608	----a-w-	c:\windows\system32\WUDFHost.exe
2013-03-18 15:44 . 2012-07-26 03:20	613888	----a-w-	c:\windows\system32\WUDFx.dll
2013-03-18 15:44 . 2012-07-26 03:20	38912	----a-w-	c:\windows\system32\WUDFCoinstaller.dll
2013-03-18 15:43 . 2012-03-01 05:46	19824	----a-w-	c:\windows\system32\drivers\fs_rec.sys
2013-03-18 15:43 . 2012-03-01 05:33	159232	----a-w-	c:\windows\system32\imagehlp.dll
2013-03-18 15:43 . 2012-03-01 05:29	5120	----a-w-	c:\windows\system32\wmi.dll
2013-03-17 11:13 . 2013-03-17 11:13	--------	d-----w-	c:\users\Default\AppData\Local\Microsoft Help
2013-03-16 10:20 . 2011-11-17 05:38	1288472	----a-w-	c:\windows\system32\ntdll.dll
2013-03-16 10:20 . 2012-11-01 04:47	1389568	----a-w-	c:\windows\system32\msxml6.dll
2013-03-15 17:13 . 2012-08-22 17:16	712048	----a-w-	c:\windows\system32\drivers\ndis.sys
2013-03-15 17:13 . 2012-07-04 19:45	33280	----a-w-	c:\windows\system32\drivers\RNDISMP.sys
2013-03-15 17:09 . 2012-11-02 05:11	376832	----a-w-	c:\windows\system32\dpnet.dll
2013-03-15 17:09 . 2011-04-29 02:46	311808	----a-w-	c:\windows\system32\drivers\srv.sys
2013-03-15 17:09 . 2011-04-29 02:46	310272	----a-w-	c:\windows\system32\drivers\srv2.sys
2013-03-15 17:09 . 2011-04-29 02:46	114688	----a-w-	c:\windows\system32\drivers\srvnet.sys
2013-03-15 17:09 . 2011-04-25 02:18	338944	----a-w-	c:\windows\system32\drivers\afd.sys
2013-03-15 17:00 . 2011-02-18 05:39	31232	----a-w-	c:\windows\system32\prevhost.exe
2013-03-15 17:00 . 2011-10-01 04:37	708608	----a-w-	c:\program files\Common Files\System\wab32.dll
2013-03-15 16:56 . 2013-01-03 05:05	1293672	----a-w-	c:\windows\system32\drivers\tcpip.sys
2013-03-15 16:56 . 2013-01-03 05:04	187752	----a-w-	c:\windows\system32\drivers\FWPKCLNT.SYS
2013-03-15 10:51 . 2011-08-17 04:24	465408	----a-w-	c:\windows\system32\psisdecd.dll
2013-03-15 10:51 . 2011-08-17 04:19	75776	----a-w-	c:\windows\system32\psisrndr.ax
2013-03-15 10:51 . 2011-12-30 05:27	478720	----a-w-	c:\windows\system32\timedate.cpl
2013-03-15 10:51 . 2012-06-02 04:45	67440	----a-w-	c:\windows\system32\drivers\ksecdd.sys
2013-03-15 10:51 . 2012-06-02 04:45	134000	----a-w-	c:\windows\system32\drivers\ksecpkg.sys
2013-03-15 10:51 . 2012-06-02 04:40	369336	----a-w-	c:\windows\system32\drivers\cng.sys
2013-03-15 10:51 . 2012-06-02 04:40	225280	----a-w-	c:\windows\system32\schannel.dll
2013-03-15 10:51 . 2011-11-19 14:01	67072	----a-w-	c:\windows\system32\packager.dll
2013-03-15 10:50 . 2011-10-15 05:38	534528	----a-w-	c:\windows\system32\EncDec.dll
2013-03-15 10:50 . 2012-07-04 21:14	41984	----a-w-	c:\windows\system32\browcli.dll
2013-03-15 10:50 . 2012-07-04 21:14	102912	----a-w-	c:\windows\system32\browser.dll
2013-03-15 10:50 . 2010-12-23 05:54	850944	----a-w-	c:\windows\system32\sbe.dll
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-13 18:15 . 2013-01-08 17:39	73432	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-13 18:15 . 2013-01-08 17:39	693976	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2013-03-11 22:10 . 2013-01-08 17:33	237088	------w-	c:\windows\system32\MpSigStub.exe
2013-02-12 04:48 . 2013-03-15 10:51	474112	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-15 10:51	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
2013-01-31 12:52 . 2013-01-31 12:52	1998168	----a-w-	c:\windows\system32\D3DX9_43.dll
2013-01-30 13:39 . 2013-01-30 13:40	91136	----a-w-	c:\windows\system32\helper.dll
2013-01-26 10:36 . 2013-01-26 10:36	4379984	----a-w-	c:\windows\system32\D3DX9_40.dll
2013-01-23 13:01 . 2010-03-18 07:15	773968	----a-w-	c:\windows\system32\msvcr100.dll
2013-01-23 13:01 . 2010-03-18 07:15	421200	----a-w-	c:\windows\system32\msvcp100.dll
2013-03-19 20:10 . 2013-03-19 20:10	263064	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2013-01-08 . 7BD7F45FF37FA0669CD32CA0EF46E22C . 811520 . . [6.1.7601.17514] . . c:\windows\System32\user32.dll
[7] 2010-11-20 . F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 . 811520 . . [6.1.7601.17514] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_cf3fd62ccb9e983d\user32.dll
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}]
2012-01-04 23:02	233288	----a-w-	c:\program files\Expat Shield\HssIE\ExpatIE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-11-15 23:07	21904	----a-w-	c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2011-05-25 2301752]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2012-12-12 3541008]
"Octoshape Streaming Services"="c:\users\Gurel\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" [2011-03-24 107800]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-11-16 3117384]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-07-04 641704]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
R3 ExpatTrayService;Expat Shield Tray Service;c:\program files\Expat Shield\bin\ExpatTrayService.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Etkinleştirme Teknolojileri Hizmeti;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 ExpatShieldService;Expat Shield Service;c:\program files\Expat Shield\bin\openvpnas.exe [x]
S2 ExpatSrv;Expat Shield Routing Service;c:\program files\Expat Shield\HssWPR\hsssrv.exe [x]
S2 ExpatWd;Expat Shield Monitoring Service;c:\program files\Expat Shield\bin\hsswd.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [x]
S2 svcgdp;software services;c:\program files\Software Plate\svcgdp.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x86.sys [x]
S3 netw5v32;Windows Vista 32 Bit için Intel(R) Wireless WiFi Link 5000 Serisi Bağdaştırıcı Sürücüsü;c:\windows\system32\DRIVERS\netw5v32.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-04-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-08 18:15]
.
2013-04-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1581277937-3736494332-486676657-1001Core.job
- c:\users\Gurel\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-08 17:38]
.
2013-04-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1581277937-3736494332-486676657-1001UA.job
- c:\users\Gurel\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-08 17:38]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.delta-search.com/?affID=119776&tt=190313_wctrl&babsrc=HP_ss&mntrId=209B00FF2613C581
IE: Bütün linkleri IDM ile indir - c:\program files\Internet Download Manager\IEGetAll.htm
IE: IDM ile indir - c:\program files\Internet Download Manager\IEExt.htm
IE: Microsoft Excel'e &Ver - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{BFDDD680-A91E-4DB5-A0AE-C198B1D72226}: NameServer = 198.153.192.1,198.153.194.1
TCP: Interfaces\{BFDDD680-A91E-4DB5-A0AE-C198B1D72226}\4505D2C494E4B4F5243323939344: NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{BFDDD680-A91E-4DB5-A0AE-C198B1D72226}\74572756C6: NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{BFDDD680-A91E-4DB5-A0AE-C198B1D72226}\76572756C6: NameServer = 8.8.8.8,8.8.4.4
FF - ProfilePath - c:\users\Gurel\AppData\Roaming\Mozilla\Firefox\Profiles\1pa1khvg.default\
FF - prefs.js: browser.search.selectedEngine - Delta Search
FF - prefs.js: browser.startup.homepage - hxxp://www.delta-search.com/?affID=119776&tt=190313_wctrl&babsrc=HP_ss&mntrId=209B00FF2613C581
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-02-14 19:53; r2d2b2g@mozilla.org; c:\users\Gurel\AppData\Roaming\Mozilla\Firefox\Profiles\1pa1khvg.default\extensions\r2d2b2g@mozilla.org
FF - ExtSQL: 2013-03-31 19:16; freehdsport@freehdsport.tv; c:\users\Gurel\AppData\Roaming\Mozilla\Firefox\Profiles\1pa1khvg.default\extensions\freehdsport@freehdsport.tv.xpi
FF - user.js: extensions.delta.tlbrSrchUrl - 
FF - user.js: extensions.delta.id - 209bb5a600000000000000ff2613c581
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15795
FF - user.js: extensions.delta.vrsn - 1.8.10.0
FF - user.js: extensions.delta.vrsni - 1.8.10.0
FF - user.js: extensions.delta.vrsnTs - 1.8.10.019:16
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - en
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1581277937-3736494332-486676657-1001_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}] [MENTION=83344]Deni[/MENTION]ed: (Full) (Everyone)
"scansk"=hex(0):74,f3,f6,8f,2e,90,d0,c3,98,99,e4,de,f2,19,f4,fd,7d,d3,c9,95,17,
   ae,fd,5e,40,54,27,88,fb,cd,06,75,ee,3d,8f,c6,c0,eb,9a,b8,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1581277937-3736494332-486676657-1001_Classes\CLSID\{7c9d296a-4d70-4fff-a8bd-ad008b342934}] [MENTION=83344]Deni[/MENTION]ed: (Full) (Everyone) [MENTION=53985]allo[/MENTION]wed: (Read) (RestrictedCode)
"Model"=dword:00000046
"Therad"=dword:00000008
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
   1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] [MENTION=83344]Deni[/MENTION]ed: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] [MENTION=83344]Deni[/MENTION]ed: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] [MENTION=83344]Deni[/MENTION]ed: (Full) (Everyone)
.
Completion time: 2013-04-13  20:18:19
ComboFix-quarantined-files.txt  2013-04-13 17:18
ComboFix2.txt  2013-04-07 18:40
.
Pre-Run: 156.714.164.224 bayt boş
Post-Run: 156.440.719.360 bayt boş
.
- - End Of File - - AB346A0647830C4535E8F50E95D14DE0

Bugünkü virüs tarama raporum herhangi bir sorun var mı suan ?

 

[RedDevil]

Combofix son sürümünü kullan. Önceki sürümünde virüs bulaşmış. Sistemdeki win. dosyalarını siliyormuş. Sen Son sürümü kullan. Program temizlenmiş. Birde "Malwarebytes Anti-Malware" ile derim tarama yap. Tamamdır.

 

[IThelp]

Burdan indir

http://www.bleepingcomputer.com/download/combofix/
windows 7 ise işletim sistemin bilgisayarını yeniden başlat siyah ekran gelmeden F8 bas bırak art artda gelen ekranda güvenlik mod yazılı oraya gel Enter bas güvenlik mod acılsın bilgisayarın combofix ordan calıştır daha iyi sonuc alırsın

 

[furko64]

Combofix son sürümünü kullan. Önceki sürümünde virüs bulaşmış. Sistemdeki win. dosyalarını siliyormuş. Sen Son sürümü kullan. Program temizlenmiş. Birde "Malwarebytes Anti-Malware" ile derim tarama yap. Tamamdır.

Eset ile herhangi bir cakisma olur mu ?

- - - Mesaj Güncellendi - - -

Guvenli modu biliyorum guvenlide calistir deyince anlamadim tesekkurler ilgin icin

 

[IThelp]

Güvenli mod calıştırdığın zaman combofix zaten antivirüs devre dışı kalıyor o yüzden cakışmaz virüs temizlemede haric combofix sisteminde ki hataları da düzeltiyor

 

[furko64]

Suan Malwarebytes Anti-Malware ile temizlik yapacagım raporu foruma koyarım ilgilenenlerin hepsine teşekkür ederim

- - - Mesaj Güncellendi - - -

Son olarak sormak istedigim konu su eset smart security 5 yerine baska bi güvenlik programı yüklemelimiyim ek olarak veya değiştireyim mi programı ?

 

[WhiteHawk]

Eset in son sürümü 6.0.316.1 nü niye kullanmıyorsun?

 

[furko64]

Eset in son sürümü 6.0.316.1 nü niye kullanmıyorsun?

Eset Smart Security 6 diyorsun dimi ?

 

[WhiteHawk]

Eset Smart Security 6 diyorsun dimi ?

Evet

 

[furko64]

Evet

Hiç aklıma gelmedi bi ara ingilizceydi ona indirmemiştim sonrada unuttum sanırım Ama Malwarebytes Anti-Malware de derin tarama yapıyorum bitince ess6 ya yükseltecegim.

Fakat eset keylogerlarda sanırım çözüm bulamıyor gibi geldi.Ek bir program lazım mı güvenlik için ?

 

[furko64]

Bilgisayar basında sıkıntıdan ölebilirim derin taramada daha hala D sürücüsüne geçmedi

 

[furko64]

C:\Program Files\Software Plate\etcTask.exe (Adware.ChinAd) -> Eylemde bulunulmadı.C:\Qoobox\Quarantine\C\Windows\System32\YHF\QJTN.006.vir (PUP.KeyLogger.Ardamax) -> Eylemde bulunulmadı.
C:\Qoobox\Quarantine\C\Windows\System32\YHF\QJTN.007.vir (PUP.ArdamaxKeyLogger) -> Eylemde bulunulmadı.
C:\Windows\System32\helper.dll (Trojan.Agent) -> Eylemde bulunulmadı.

C:\Program Files\Software Plate\etcTask.exe (Adware.ChinAd) -> Başarıyla karantinaya alınıp silindi.
C:\Qoobox\Quarantine\C\Windows\System32\YHF\QJTN.006.vir (PUP.KeyLogger.Ardamax) -> Başarıyla karantinaya alınıp silindi.
C:\Qoobox\Quarantine\C\Windows\System32\YHF\QJTN.007.vir (PUP.ArdamaxKeyLogger) -> Başarıyla karantinaya alınıp silindi.
C:\Windows\System32\helper.dll (Trojan.Agent) -> Başarıyla karantinaya alınıp silindi.

Programın tespit ettikleri ve sildikleri programı kaldırıyorum suan bi sorun olmaz umarım Eset Smart Security 6 yüklüyorum

 

[WhiteHawk]

Hiç aklıma gelmedi bi ara ingilizceydi ona indirmemiştim sonrada unuttum sanırım Ama Malwarebytes Anti-Malware de derin tarama yapıyorum bitince ess6 ya yükseltecegim.

Fakat eset keylogerlarda sanırım çözüm bulamıyor gibi geldi.Ek bir program lazım mı güvenlik için ?

Eset 6 yı yükle ama crackly olmasın.Yanınada Malwarebytes anti malware kur.Arada bir tarat sonra kapat.Kolay gelsin.:flowers:

 

[RedDevil]

"EmsisoftEmergencyKit" kullanabilirsin portable uygulamalar. Hem savunmayı daha iyi duruma getirebilirsin.

 

[furko64]

"EmsisoftEmergencyKit" kullanabilirsin portable uygulamalar. Hem savunmayı daha iyi duruma getirebilirsin.

Eset'in yerine mi ek olarak mı ?

 

[RedDevil]

Eset'in yerine mi ek olarak mı ?

Evet sorun olmaz. Önceden kullanmış olduğun "Malwarebytes Anti-Malware" ilede kullanabilirsin. Çakışmazlar.

 

[furko64]

Anlıyorum bi bakacagım.
Olmadı Ad-Aware Anti-Malware vardı onu kurayım mı lisansıda vardı sanırım ?

 

[RedDevil]

Anlıyorum bi bakacagım.
Olmadı Ad-Aware Anti-Malware vardı onu kurayım mı lisansıda vardı sanırım ?

Onu kurma Kuzende vardı almış verdiği paraya yazık hem sağlam değil Bunlar da korur seni

 

[furko64]

Onu kurma Kuzende vardı almış verdiği paraya yazık hem sağlam değil Bunlar da korur seni

Verdiğin bilgi için teşşekürler
Emsisoft Emergency Kit 3.0.0.1 herhangi bir kısıtlama var mı mesela Malwarebytes Anti-Malware 'de 15 gün kısıtlaması vardı

- - - Mesaj Güncellendi - - -

Birde sence IObit Malware Fighter nasıl ?