silmeme rağmen worm:win32/ainslot:a buluyor

19-09-2019, 11:57:51

#1
Diaz

Açık Profil bilgileri

Özel Mesaj Gönder

Diaz tarafından gönderilen tüm mesajları bul

Diaz'ı arkadaş olarak ekle

Platinum
s.a arkadaşlar windows deffender surekli bu wirusu buluyor genelde oynadığım pwp girerken karşıma cıkıyor dun akşam yac indirdim olmadı combofix le tarattım pekte anlamam virus işlerinden yardımcı olursanız sevinirim

kod:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:39:27, on 17.8.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17054)
Boot mode: Normal

Running processes:
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type...1S332827228272
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type...1S332827228272
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1405801889&from=amt&uid=WDCXWD10EZEX-00RKKA0_WD-WMC1S332827228272&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1405801889&from=amt&uid=WDCXWD10EZEX-00RKKA0_WD-WMC1S332827228272&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type...1S332827228272
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 93.155.105.95 onlinehile.com www.onlinehile.com download.onlinehile.com login.onlinehile.com
O1 - Hosts: 93.155.105.95 onlinehile.org www.onlinehile.org download.onlinehile.org login.onlinehile.org
O1 - Hosts: 93.155.105.95 onlinehile.net www.onlinehile.net download.onlinehile.net login.onlinehile.net
O1 - Hosts: 93.155.105.95 ankagames.com www.ankagames.com download.ankagames.com login.ankagames.com
O1 - Hosts: 93.155.105.95 ankagames.net www.ankagames.net download.ankagames.net login.ankagames.net
O1 - Hosts: 93.155.105.95 ankagames.org www.ankagames.org download.ankagames.org login.ankagames.org
O1 - Hosts: 93.155.105.95 oskoxp.net www.oskoxp.net download.oskoxp.net login.oskoxp.net
O1 - Hosts: 93.155.105.95 kolebot.com www.kolebot.com download.kolebot.com login.kolebot.com
O1 - Hosts: 93.155.105.95 koxd.net www.koxd.net download.koxd.net login.koxd.net
O1 - Hosts: 93.155.105.95 kousbot.com www.kousbot.com download.kousbot.com login.kousbot.com
O1 - Hosts: 93.155.105.95 kousbot.net www.kousbot.net download.kousbot.net login.kousbot.net
O1 - Hosts: 93.155.105.95 quality-forum.com www.quality-forum.com download.quality-forum.com login.quality-forum.com
O1 - Hosts: 93.155.105.95 asiturk.com www.asiturk.com download.asiturk.com login.asiturk.com
O1 - Hosts: 93.155.105.95 onlinehile.pro www.onlinehile.pro download.onlinehile.pro login.onlinehile.pro
O1 - Hosts: 93.155.105.95 botkings.com www.botkings.com download.botkings.com login.botkings.com
O1 - Hosts: 93.155.105.95 forumfokurtu.com www.forumfokurtu.com download.forumfokurtu.com login.forumfokurtu.com
O1 - Hosts: 93.155.105.95 pvp-sehri.blogspot.com www.pvp-sehri.blogspot.com download.pvp-sehri.blogspot.com login.pvp-sehri.blogspot.com
O1 - Hosts: 93.155.105.95 *******umum.com www.*******umum.com download.*******umum.com login.*******umum.com
O1 - Hosts: 93.155.105.95 superelaborateness11.katinia.com www.superelaborateness11.katinia.com download.superelaborateness11.katinia.com login.superelaborateness11.katinia.com
O1 - Hosts: 93.155.105.95 haydipaylas.com www.haydipaylas.com download.haydipaylas.com login.haydipaylas.com
O1 - Hosts: 93.155.105.95 gamessfor.org www.gamessfor.org download.gamessfor.org login.gamessfor.org
O1 - Hosts: 93.155.105.95 pvpserverler.forumt.biz www.pvpserverler.forumt.biz download.pvpserverler.forumt.biz login.pvpserverler.forumt.biz
O1 - Hosts: 93.155.105.95 hileaktif.tr.gg www.hileaktif.tr.gg download.hileaktif.tr.gg login.hileaktif.tr.gg
O1 - Hosts: 93.155.105.95 forumup.com www.forumup.com download.forumup.com login.forumup.com
O1 - Hosts: 93.155.105.95 exbilgi.com www.exbilgi.com download.exbilgi.com login.exbilgi.com
O1 - Hosts: 93.155.105.95 besthile.com www.besthile.com download.besthile.com login.besthile.com
O1 - Hosts: 93.155.105.95 kaoskoxp.net www.kaoskoxp.net download.kaoskoxp.net login.kaoskoxp.net
O1 - Hosts: 93.155.105.95 senoyna.com www.senoyna.com download.senoyna.com login.senoyna.com
O1 - Hosts: 93.155.105.95 hileonline.com www.hileonline.com download.hileonline.com login.hileonline.com
O1 - Hosts: 93.155.105.95 oyunborsa.com www.oyunborsa.com download.oyunborsa.com login.oyunborsa.com
O1 - Hosts: 93.155.105.95 ko4hack.com www.ko4hack.com download.ko4hack.com login.ko4hack.com
O1 - Hosts: 93.155.105.95 sevimlinet.com www.sevimlinet.com download.sevimlinet.com login.sevimlinet.com
O2 - BHO: IETabPage Class - - C:\Program Files (x86)\SupTab\SupTab.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [HKUC] C:\Users\savaş\AppData\Roaming\sycvhots.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O18 - Protocol: wlpg - - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: %
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Guncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Guncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IePlugin Services (IePluginServices) - Unknown owner - C:\ProgramData\IePluginServices\PluginService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10222 bytes
__________________