Tahribat.com Forumları
Bilgisayar Güvenliği - Backdoorlar
Hijackthis Raporundan Anlayanlar İçeri

Yazar jawsap67 (1) SeRDaR (1) SerYolcu (1) torpedo_XL (1) Gösterim 10 50 75 100
Ağ ve Veri Güvenliği     Hertürlü Web tabanlı Saldırı Taktik ve Stratejileri     Web sitesi Güvenliği, DOS - DDOS Saldırıları...     Bilgisayar Güvenliği - Backdoorlar     Virüs - Trojan - Keylogger - BotNet     Skype - Mirc - Irc - Icq - Mail Güvenliği     Bilişim Güvenliği     Hesaplar / Üyelikler     Domain - Hosting - Reseller - Dedicated Server - Virtual Server - IRC Shell - Seedbox     İnternet Güvenliğine Giriş Programlama     C#, Asp.Net, .Net Core     C - C++     Delphi - Pascal     Visual Basic - Basic - PicBasic ve Türevleri     Java     Android - IOS Programlama     Mobil Programlama     Asp - Php - Cgi - Perl     Assembly - Reverse Engineering     Html - CSS - XML - JavaScript - Ajax     Database - Veritabanı     Python     Grafik - Animasyon - Flash - 3D Modelleme     Webmaster ve Yazılım Geliştiriciler     Google / Yandex / Bing ve Servisleri     Programlama Genel     Programlamaya Giriş Bilgisayar ve Teknoloji     Microsoft Windows Ailesi İşletim Sistemleri     Linux ve Diğer İşletim Sistemleri     Donanım & Driver     Network - İnternet     Elektronik / Embedded / Mobil Cihazlar     Kriptoparalar & Blockchain     Fotografçılık ve Digital Fotograf Makineleri - Video Kameralar     Cep Telefonları, Gsm Operatörleri ve Mobil İnternet     Oyunlar     Yazılımlar / Diğer Programlar     Bilgisayarla İlgili Diğer Konular İnternet     Download / Dosya Paylaşım     Bilgisayar ve Internet Teknolojileri İle İlgili Video / Resim / Flash Paylaşım     İnternet Siteleri     Sosyal Ağlar Genel     Genel     Gündem - Güncel Konular     Derin Konular     Bilim Teknik Teknoloji     Müzik & Sinema & Tiyatro & Kitap & Televizyon & Seminerler & Edebiyat     Eğitim & Ödev & Bilimsel Döküman     E-Book     İş - Güç, E-Ticaret, Alışveriş     Hukuk & Muhasebe & Sigorta Soru - Cevap     Ulaşım Araçları ve Seyahat     Vukuatlar     Geyik & Teknoloji İle İlgili Olmayan Video / Resim / Flash Paylaşım Tahribat.com Konuları     Tahribat.com Programları®     Tahribat.Com - Açık Kapılar Önünde     Tahribat.Com - Sosyal Etkinlikler     TahriDepo

Hijackthis Raporundan Anlayanlar İçeri

1. 06/Oca/14 21:14 Kısayol Şikayet Özel Mesaj
   noname
   
   

   Kayıt Tarihi: 23/Ağustos/2005
   

   http://tny.cz/c03b3cea

    

   Nasıl, gözünüze çarpan zararlı bir şeyler var mı?

    

    

   Logfile of Trend Micro HijackThis v2.0.4
   Scan saved at 21:09:32, on 6.1.2014
   Platform: Unknown Windows (WinNT 6.02.1008)
   MSIE: Internet Explorer v11.0 (11.00.9431.0000)
   Boot mode: Normal
   
   Running processes:
   C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Windows\SysWOW64\rundll32.exe
   C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
   C:\Program Files (x86)\AntiLogger\AntiLogger.exe
   C:\Program Files (x86)\iTunes\iTunesHelper.exe
   C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
   C:\Users\Mxmax\AppData\Local\Temp\ZALC08D.exe
   C:\Users\Mxmax\AppData\Local\Temp\miaEC2.tmp\Setup.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Users\Mxmax\Desktop\HiJackThis204.exe
   
   R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.localstrike.net/
   R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mysearchresults.com/?c=3523&t=01
   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.localstrike.net/
   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.localstrike.net/
   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.localstrike.net/
   R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.localstrike.net/
   R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
   R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
   R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
   R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
   R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
   F2 - REG:system.ini: UserInit=userinit.exe
   O2 - BHO: LinkSwift - {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files (x86)\LinkSwift\LinkSwiftbho.dll
   O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll
   O2 - BHO: DefaultTabToolbarBHO - {96A25A24-2E87-4374-8A50-CC6F943FCE4D} - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll
   O2 - BHO: Freecorder extension - {B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} - C:\Program Files (x86)\Freecorder extension\ScriptHost.dll
   O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
   O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
   O2 - BHO: Microsoft SPFS Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
   O2 - BHO: Görsel favoriler - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - C:\Program Files (x86)\Yandex\FastDial\fastdial.dll
   O3 - Toolbar: Yandex Elements - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files (x86)\Yandex\Elements\bartab.dll
   O3 - Toolbar: Related Searches - {96A25A24-2E87-4374-8A50-CC6F943FCE4D} - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll
   O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
   O4 - HKLM\..\Run: [AntiLogger] "C:\Program Files (x86)\AntiLogger\AntiLogger.exe" /minimized
   O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
   O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe
   O4 - HKLM\..\Run: [tsnp2uvc] C:\Windows\tsnp2uvc.exe
   O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
   O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
   O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
   O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Mxmax\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
   O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
   O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Mxmax\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
   O4 - Startup: Cs Serverları.lnk = ?
   O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
   O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlall.htm
   O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm
   O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm
   O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dllink.htm
   O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
   O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
   O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
   O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
   O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
   O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
   O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
   O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
   O20 - AppInit_DLLs: C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL,C:\Windows\Jaksta\AC\x86\jaudcap.dll
   O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
   O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
   O23 - Service: Avira Zamanlayıcı (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
   O23 - Service: Avira Gerçek Zamanlı Koruma (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
   O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
   O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
   O23 - Service: DefaultTabSearch - Unknown owner - C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe
   O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe
   O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
   O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
   O23 - Service: Google Güncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
   O23 - Service: Google Güncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
   O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
   O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
   O23 - Service: iPod Servisi (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
   O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
   O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
   O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
   O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
   O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
   O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
   O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
   O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
   O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
   O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
   O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
   O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
   O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
   O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
   O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
   O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
   O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
   O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
   O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
   
   --
   End of file - 10778 bytes

   ---

   ...said addicted.
   Alıntı yap
2. 06/Oca/14 21:18 Kısayol Şikayet Özel Mesaj
   Muhalif Yorumcu
   SeRDaR
   
   Banlanmış Üye
   

   Kayıt Tarihi: 09/Kasım/2003
   

   http://www.hijackthis.de/
   
   buraya ekle analiz et raporu  burada zaten tehlikeli dururmlar kırmızı çarpı ile bilinmeyen çözümleneyenler  sarı soru işareti ile işaretliyor orada sıkıntı dururmları googledan aratabilirsin yada kendi direk bakapı müdehale edebilirsin hatta kururlu yazılımlar dlller ile ilgili yorumlar bile mevcut hocam burada anlaşılmayacak bir şey yok ki 

   SeRDaR tarafından 06/Oca/14 21:19 tarihinde düzenlenmiştir

   ---

   Emekçiler ekmeklerini, emeklerinin karşılığı olarak ve önlenemez tarihi sürecin sonucu olarak mutlaka kazanacaklardır. Şüphesiz bu, zorlu bir dönemdir kısa vadeli ve göreceli yenilgilerden geçer.
   Alıntı yap
3. 07/Oca/14 00:11 Kısayol Şikayet Özel Mesaj
   jawsap67
   
   

   Kayıt Tarihi: 27/Eylül/2007
   

   www.bilisimplatformu.com/‎

   bu siteye yaz dostum ustaları var bunun bayağa profosyoneller

   ---

   Düzen hayatından memnun, düzülen ne zaman değişecek
   Alıntı yap
4. 07/Oca/14 02:22 Kısayol Şikayet Özel Mesaj
   Zork.
   torpedo_XL
   
   

   Kayıt Tarihi: 21/Ağustos/2005
   

   Hocam gördüklerimi yazıyorum:

   KLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.localstrike.net/

   bu eğer sen ayarlmadıysan program kurarken tarayıcıya gelen şaçma arama motoru dalgalarından. Sil gitsin.

   O23 - Service: DefaultTabSearch - Unknown owner - C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe

   O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe

   bunun ne olduğu belli değil sil eğer biliyorsan kalsın bilmiyorsan sil.

   bunlar dışında öyle ahım şahım zararlı birşey yok gibi.

   ---

   Bilge insanlar konuşurlar çünkü söyleyecek bir şeyleri vardır. Aptal insanlar konuşurlar çünkü bir şey söylemek zorundadırlar. Demokrasi, bir eğitim işidir. Eğitimsiz kitlelerle demokrasiye geçilirse oligarşi olur. Devam edilirse demagoglar türer. Demagoglardan da diktatörler çıkar. --Platon, Devlet                                                                                                                                                                                                                                                                                                                                                                                         
   Alıntı yap
5. 07/Oca/14 10:50 Kısayol Şikayet Özel Mesaj
   SerYolcu
   
   

   Kayıt Tarihi: 14/Ocak/2010
   

   Şüpheli gördüklerimi kırmızı ile belirttim..
   

   noname bunu yazdı

   http://tny.cz/c03b3cea

    

   Nasıl, gözünüze çarpan zararlı bir şeyler var mı?

    

    

   Logfile of Trend Micro HijackThis v2.0.4
   Scan saved at 21:09:32, on 6.1.2014
   Platform: Unknown Windows (WinNT 6.02.1008)
   MSIE: Internet Explorer v11.0 (11.00.9431.0000)
   Boot mode: Normal
   
   Running processes:
   C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Windows\SysWOW64\rundll32.exe
   C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
   C:\Program Files (x86)\AntiLogger\AntiLogger.exe
   C:\Program Files (x86)\iTunes\iTunesHelper.exe
   C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
   C:\Users\Mxmax\AppData\Local\Temp\ZALC08D.exe
   C:\Users\Mxmax\AppData\Local\Temp\miaEC2.tmp\Setup.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   C:\Users\Mxmax\Desktop\HiJackThis204.exe
   
   R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.localstrike.net/
   R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mysearchresults.com/?c=3523&t=01
   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.localstrike.net/
   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.localstrike.net/
   R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.localstrike.net/
   R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.localstrike.net/
   R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
   R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
   R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
   R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
   R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
   F2 - REG:system.ini: UserInit=userinit.exe
   O2 - BHO: LinkSwift - {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files (x86)\LinkSwift\LinkSwiftbho.dll
   O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll
   O2 - BHO: DefaultTabToolbarBHO - {96A25A24-2E87-4374-8A50-CC6F943FCE4D} - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll
   O2 - BHO: Freecorder extension - {B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} - C:\Program Files (x86)\Freecorder extension\ScriptHost.dll
   O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
   O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
   O2 - BHO: Microsoft SPFS Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
   O2 - BHO: Görsel favoriler - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - C:\Program Files (x86)\Yandex\FastDial\fastdial.dll
   O3 - Toolbar: Yandex Elements - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files (x86)\Yandex\Elements\bartab.dll
   O3 - Toolbar: Related Searches - {96A25A24-2E87-4374-8A50-CC6F943FCE4D} - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll
   O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
   O4 - HKLM\..\Run: [AntiLogger] "C:\Program Files (x86)\AntiLogger\AntiLogger.exe" /minimized
   O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
   O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe
   O4 - HKLM\..\Run: [tsnp2uvc] C:\Windows\tsnp2uvc.exe
   O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
   O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
   O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
   O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Mxmax\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
   O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
   O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Mxmax\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
   O4 - Startup: Cs Serverları.lnk = ?
   O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
   O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlall.htm
   O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm
   O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm
   O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dllink.htm
   O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
   O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
   O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
   O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
   O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
   O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
   O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
   O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
   O20 - AppInit_DLLs: C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL,C:\Windows\Jaksta\AC\x86\jaudcap.dll
   O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
   O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
   O23 - Service: Avira Zamanlayıcı (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
   O23 - Service: Avira Gerçek Zamanlı Koruma (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
   O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
   O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
   O23 - Service: DefaultTabSearch - Unknown owner - C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe
   O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\Mxmax\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe
   O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
   O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
   O23 - Service: Google Güncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
   O23 - Service: Google Güncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
   O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
   O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
   O23 - Service: iPod Servisi (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
   O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
   O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
   O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
   O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
   O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
   O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
   O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
   O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
   O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
   O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
   O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
   O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
   O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
   O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
   O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
   O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
   O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
   O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
   O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
   
   --
   End of file - 10778 bytes

     Kırmızı ile işaretlediğim nesneler bence şüpheli.. onları detaylıca bir incele..

   ---

   Ondan çocuk olmamıştır (Kimsenin babası değildir). Kendisi de doğmamıştır (kimsenin çocuğu değildir). İhlas Suresi 3 üncü ayette bunlar yazar.
   Alıntı yap

Cevapla