Trojan-Downloader.Win32.Agent.elds [YARDIM]

19-09-2019, 12:05:27

#1
Diaz

Açık Profil bilgileri

Özel Mesaj Gönder

Diaz tarafından gönderilen tüm mesajları bul

Diaz'ı arkadaş olarak ekle

Platinum
Merhaba arkadaşlar oncelikle iyi forumlar benim bir sorunum var kameramın hafıza kartına bulaşmış olan başlıkta ve alttaki resimde belittiğim lanet olası solucan bulaştı ne kartı taktığımda kamera goruyor nede bicimlendirebiliyorum 2 gundur yapmadığım kalmadı indirmediğim program yapmadığım yontem kalmadı bana yardımcı olun bileğine bilgisine guvenen yardım etsın artık cıldırmak uzereyim bunca yıldır bilgisayar kullanıcısı ve tamir bakım işim yaptım boyle bir lanetle karşılaşmadım artık kendimi sadece bu virus'u silmeye adadım inat yaptım bana yardımcı olun lutfen aklınıza gelebilecek herşeyi denedim tum antivirus programları kaspersky'ından eset'ide combofixden daha bir cok programı dedim tum antivurisler siliyor ilk etapta ama takıp cıkardığımda veya bicimlendir dediğimde tamamlanmadı diyor ve tekrar eski haline geliyor. Bana yardımcı olun cok cağresizim iş hafıza kartında fotoğrafta felan değilim sadece bu virusten kurtulmak istiyorum

http://biraktik.com/forum/images/trojan-downloader-win32-agent-elds-yardim-5d8344d81eae3.jpg

BUNLARDA LOGLARIM ;

Kod:
Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 02:49:03, on 20.12.2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16720) Boot mode: Normal Running processes: C:UsersYESIMAppDataRoamingOctoshapeOctoshape Streaming ServicesOctoshapeClient.exe C:Program Files (x86)NokiaNokia SuiteNokiaSuite.exe C:UsersYESIMAppDataLocalSkillbrainslightshot.4.2. 10LightShot.exe C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0vp.exe C:Program Files (x86)iSafeiSafeTray.exe C:Program Files (x86)PC Connectivity SolutionTransportsNclMSBTSrvEx.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)HDDGURU LLF ToolLLFTOOL.EXE C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:Program Files (x86)GoogleChromeApplicationchrome.exe C:UsersYESIMDownloadsHijackThis.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch = R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WindowsSysWOW64lank.htm R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = O2 - BHO: Kaspersky Passsword Manager Toolbar - - C:Program Files (x86)KASPER~1KASPER~1.0KASPER~2spIEBho.dll O2 - BHO: ContentBlockerBrowserHelperObject - - C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0IEExtContentBlockerie_content_blocker_plugin.dl l O2 - BHO: VirtualKeyboardBrowserHelperObject - - C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0IEExtVirtualKeyboardie_virtual_keyboard_plugin. dll O2 - BHO: Java(tm) Plug-In SSV Helper - - C:Program Files (x86)Javajre7inssv.dll O2 - BHO: Safe Money Plugin - - C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0IEExtOnlineBankingonline_banking_bho.dll O2 - BHO: (no name) - - (no file) O2 - BHO: Java(tm) Plug-In 2 SSV Helper - - C:Program Files (x86)Javajre7injp2ssv.dll O2 - BHO: link filter bho - - C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0IEExtUrlAdvisorklwtbbho.dll O3 - Toolbar: Kaspersky Passsword Manager Toolbar - - C:Program Files (x86)KASPER~1KASPER~1.0KASPER~2spIEBho.dll O4 - HKLM..Run: [AVP] "C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0vp.exe" O4 - HKCU..Run: [Facebook Update] "C:UsersYESIMAppDataLocalFacebookUpdateFacebookUpd ate.exe" /c /nocrashserver O4 - HKCU..Run: [Octoshape Streaming Services] "C:UsersYESIMAppDataRoamingOctoshapeOctoshape Streaming ServicesOctoshapeClient.exe" -inv:bootrun O4 - HKCU..Run: [NokiaSuite.exe] C:Program Files (x86)NokiaNokia SuiteNokiaSuite.exe -tray O4 - HKCU..Run: [LightShot] C:UsersYESIMAppDataLocalSkillbrainslightshotLightS hot.exe Flags: uninsdeletevalue O4 - HKUSS-1-5-21-1487169445-2014220215-371878614-1001..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUSS-1-5-21-1487169445-2014220215-371878614-1001..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User 'UpdatusUser') O8 - Extra context menu item: Reklam Başlığı Engelleyicisine ekle - C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0ie_banner_deny.htm O9 - Extra button: Sanal Klavye - - C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0IEExtVirtualKeyboardie_virtual_keyboard_plugin. dll O9 - Extra button: Adres kontrolu - - C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0IEExtUrlAdvisorklwtbbho.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O17 - HKLMSystemCCSServicesTcpip..: NameServer = 8.8.8.8,8.8.4.4 O18 - Protocol: skype4com - - C:Program Files (x86)Common FilesSkypeSKYPE4~1.DLL O20 - AppInit_DLLs: C:WindowsSysWOW64vinit.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:Program Files (x86)Common FilesAdobeARM.0rmsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateSer vice.exe O23 - Service: @%SystemRoot%system32Alg.exe,-112 (ALG) - Unknown owner - C:WindowsSystem32lg.exe (file missing) O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:Program Files (x86)PHotkeyASLDRSrv.exe O23 - Service: Kaspersky Anti-Virus Hizmeti (AVP) - Kaspersky Lab ZAO - C:Program Files (x86)Kaspersky LabKaspersky PURE 3.0vp.exe O23 - Service: CryptoStorage control service (CSObjectsSrv) - Infowatch - C:Program Files (x86)Common FilesInfoWatchCryptoStorageProtectedObjectsSrv.exe O23 - Service: @C:Windowssystem32CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:Windowssystem32CxAudMsg64.exe (file missing) O23 - Service: @%SystemRoot%system32efssvc.dll,-100 (EFS) - Unknown owner - C:WindowsSystem32lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:Program FilesIntelWiFiinEvtEng.exe O23 - Service: @%systemroot%system32xsresm.dll,-118 (Fax) - Unknown owner - C:Windowssystem32xssvc.exe (file missing) O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:Program Files (x86)PHotkeyGFNEXSrv.exe O23 - Service: Google Guncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:Program Files (x86)GoogleUpdateGoogleUpdate.exe O23 - Service: Google Guncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:Program Files (x86)GoogleUpdateGoogleUpdate.exe O23 - Service: iSafeService - Elex do Brasil Participacões Ltda - C:Program Files (x86)iSafeiSafeSvc.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:Windowssystem32lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:WindowsSystem32msdtc.exe (file missing) O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:Program FilesIntelWiFiinPanDhcpDns.exe O23 - Service: @%SystemRoot%System32etlogon.dll,-102 (Netlogon) - Unknown owner - C:Windowssystem32lsass.exe (file missing) O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:Windowssystem32vvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:Program Files (x86)NVIDIA CorporationNVIDIA Updatusdaemonu.exe O23 - Service: @%systemroot%system32psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:Windowssystem32lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:Program FilesCommon FilesIntelWirelessCommonRegSrvc.exe O23 - Service: @%systemroot%system32Locator.exe,-2 (RpcLocator) - Unknown owner - C:Windowssystem32locator.exe (file missing) O23 - Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) - Unknown owner - C:Windowssystem32lsass.exe (file missing) O23 - Service: ServiceLayer - Nokia - C:Program Files (x86)PC Connectivity SolutionServiceLayer.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:Program Files (x86)SkypeUpdaterUpdater.exe O23 - Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:WindowsSystem32snmptrap.exe (file missing) O23 - Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) - Unknown owner - C:WindowsSystem32spoolsv.exe (file missing) O23 - Service: @%SystemRoot%system32sppsvc.exe,-101 (sppsvc) - Unknown owner - C:Windowssystem32sppsvc.exe (file missing) O23 - Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:Windowssystem32UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe O23 - Service: @%SystemRoot%system32aultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:Windowssystem32lsass.exe (file missing) O23 - Service: @%SystemRoot%system32ds.exe,-100 (vds) - Unknown owner - C:WindowsSystem32ds.exe (file missing) O23 - Service: @%systemroot%system32ssvc.exe,-102 (VSS) - Unknown owner - C:Windowssystem32ssvc.exe (file missing) O23 - Service: @%SystemRoot%system32WatWatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:Windowssystem32WatWatAdminSvc.exe (file missing) O23 - Service: @%systemroot%system32wbengine.exe,-104 (wbengine) - Unknown owner - C:Windowssystem32wbengine.exe (file missing) O23 - Service: @%Systemroot%system32wbemwmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:Windowssystem32wbemWmiApSrv.exe (file missing) -- End of file - 10725 bytes

__________________