Combofix Taraması Log

A

AhmetTabak

Hectopat
Katılım
22 Şubat 2014
Mesajlar
37
Yer
İstanbul, Turkey
Benim bilgisayar aşırı cpu kullandığı için tarattım combo fixle log bu bi bakarsanız sevinirim.

ComboFix 14-06-16.01 - AhmetPC 16.06.2014 7:12:58.2.4 - x64
Microsoft Windows 8 Pro 6.2.9200.0.1254.90.1055.18.6005.4901 [GMT 3:00]
Running from: C:\Users\AhmetPC\Downloads\ComboFix.exe
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}


((((((((((((((((((((((((( Files Created from 2014-05-16 to 2014-06-16 )))))))))))))))))))))))))))))))


2014-06-16 04:16:53 . 2014-06-16 04:16:53 -------- d-----w- C:\Users\Default\AppData\Local\temp
2014-06-16 03:47:56 . 2014-06-16 03:47:56 839896 ----a-w- C:\Windows\system32\drivers\Rt630x64.sys
2014-06-16 03:47:56 . 2014-06-16 03:47:56 73800 ----a-w- C:\Windows\system32\RtNicProp64.dll
2014-06-16 03:47:48 . 2014-06-16 03:47:48 9889352 ----a-w- C:\Windows\SysWow64\RsCRIcon.dll
2014-06-16 03:47:48 . 2014-06-16 03:47:48 271064 ----a-w- C:\Windows\system32\drivers\RtsUStor.sys
2014-06-16 03:47:41 . 2014-04-30 13:20:04 10702536 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{92202770-8F78-48F1-A905-10A20CC9ED4F}\mpengine.dll
2014-06-15 17:01:11 . 2012-10-18 14:57:08 106496 ----a-w- C:\Windows\system32\SLCHook.dll
2014-06-15 17:01:11 . 2012-10-12 22:22:30 1361408 ----a-w- C:\Windows\system32\Windows.UI.Immersive.dll
2014-06-15 17:01:11 . 2012-10-02 10:06:38 15872 ----a-w- C:\Windows\system32\slwga.dll
2014-06-15 17:01:11 . 2012-09-19 11:37:39 133287 ----a-w- C:\Windows\system32\slmgr.vbs
2014-06-15 17:01:11 . 2012-07-26 03:07:20 415232 ----a-w- C:\Windows\system32\GenuineCenter.dll
2014-06-15 17:01:11 . 2012-07-26 03:05:00 544256 ----a-w- C:\Windows\system32\ActionCenterCPL.dll
2014-06-15 16:56:44 . 2014-06-15 16:56:49 -------- d-----w- C:\Program Files\WinRAR
2014-06-15 11:34:58 . 2014-04-19 09:39:36 628024 ----a-w- C:\Windows\system32\NotificationUI.exe
2014-06-15 11:34:58 . 2014-04-19 08:45:39 693760 ----a-w- C:\Windows\system32\WSShared.dll
2014-06-15 11:34:58 . 2014-04-19 08:45:39 163840 ----a-w- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-15 11:34:58 . 2014-04-19 06:57:49 566784 ----a-w- C:\Windows\SysWow64\WSShared.dll
2014-06-15 11:34:58 . 2014-04-19 06:57:49 124928 ----a-w- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-15 11:34:58 . 2014-01-31 00:48:33 143872 ----a-w- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
2014-06-15 11:30:10 . 2014-05-31 05:16:07 703992 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-06-15 11:30:10 . 2014-05-31 05:16:07 105464 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-06-15 10:46:54 . 2014-01-19 07:33:29 270496 ------w- C:\Windows\system32\MpSigStub.exe
2014-06-15 10:25:54 . 2010-04-13 06:44:22 540696 ----a-w- C:\Windows\system32\drivers\iaStor.sys
2014-06-15 10:25:50 . 2014-06-15 10:25:50 -------- d--h--w- C:\Program Files (x86)\InstallShield Installation Information
2014-06-15 10:24:15 . 2014-06-15 10:23:36 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2014-06-15 10:24:14 . 2014-06-15 10:26:29 -------- d-----w- C:\Program Files (x86)\Intel
2014-06-15 10:23:49 . 2014-06-15 10:23:49 -------- d-----w- C:\Intel
2014-06-15 09:47:01 . 2014-06-15 09:47:01 -------- d-----w- C:\Program Files\CPUID
2014-06-15 08:03:34 . 2013-03-02 02:43:59 1933312 ----a-w- C:\Windows\system32\wbem\cimwin32.dll
2014-06-15 08:02:34 . 2013-05-04 06:59:08 13644288 ----a-w- C:\Windows\system32\Windows.UI.Xaml.dll
2014-06-15 08:01:52 . 2013-05-15 02:25:59 888320 ----a-w- C:\Windows\system32\autochk.exe
2014-06-15 08:01:51 . 2013-05-15 02:25:44 542208 ----a-w- C:\Windows\system32\untfs.dll
2014-06-15 08:01:51 . 2013-05-15 02:24:10 793088 ----a-w- C:\Windows\SysWow64\autochk.exe
2014-06-15 08:01:51 . 2013-05-15 02:24:01 482816 ----a-w- C:\Windows\SysWow64\untfs.dll
2014-06-15 07:43:56 . 2014-03-28 08:23:06 19759104 ----a-w- C:\Windows\system32\shell32.dll
2014-06-15 07:42:59 . 2014-05-24 02:46:07 2650112 ----a-w- C:\Windows\system32\iertutil.dll
2014-06-15 07:42:58 . 2014-05-24 02:46:15 3958784 ----a-w- C:\Windows\system32\jscript9.dll
2014-06-15 07:42:51 . 2014-05-24 01:25:52 2862080 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-06-15 07:42:51 . 2014-05-24 01:25:52 108032 ----a-w- C:\Program Files (x86)\Internet Explorer\jsdebuggeride.dll
2014-06-15 07:40:59 . 2013-02-02 08:40:58 375808 ----a-w- C:\Windows\SysWow64\wbem\WmiPrvSE.exe
2014-06-15 07:39:58 . 2013-04-27 05:20:12 733184 ----a-w- C:\Windows\system32\win32spl.dll
2014-06-15 07:38:28 . 2013-11-23 06:43:58 420864 ----a-w- C:\Windows\system32\WMPhoto.dll
2014-06-15 07:38:28 . 2013-11-23 05:05:01 368640 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2014-06-15 07:36:31 . 2013-08-07 05:15:02 144896 ----a-w- C:\Windows\system32\tssdisai.dll
2014-06-15 07:36:30 . 2012-11-10 04:22:40 122880 ----a-w- C:\Windows\system32\VmHostAI.dll
2014-06-15 07:36:30 . 2012-11-10 04:22:14 126976 ----a-w- C:\Windows\system32\RDWebAI.dll
2014-06-15 07:36:30 . 2012-11-10 04:20:20 135680 ----a-w- C:\Windows\system32\appserverai.dll
2014-06-15 07:36:28 . 2012-11-10 04:23:25 132608 ----a-w- C:\Windows\SysWow64\poqexec.exe
2014-06-15 07:36:28 . 2012-11-10 04:23:18 148480 ----a-w- C:\Windows\system32\poqexec.exe
2014-06-15 07:36:18 . 2012-11-01 04:40:20 2361344 ----a-w- C:\Windows\system32\msxml6.dll
2014-06-15 07:36:17 . 2012-11-01 04:41:15 1802240 ----a-w- C:\Windows\SysWow64\msxml6.dll
2014-06-15 07:36:17 . 2012-11-01 04:21:51 2048 ----a-w- C:\Windows\system32\msxml6r.dll
2014-06-15 07:36:17 . 2012-11-01 04:20:44 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2014-06-15 07:35:51 . 2013-11-01 05:38:21 312320 ----a-w- C:\Windows\system32\msieftp.dll
2014-06-15 07:35:51 . 2013-11-01 03:49:24 273408 ----a-w- C:\Windows\SysWow64\msieftp.dll
2014-06-15 07:35:50 . 2012-12-13 04:00:57 2048 ----a-w- C:\Windows\system32\tzres.dll
2014-06-15 07:35:50 . 2012-12-13 03:59:53 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-06-15 07:35:46 . 2013-08-02 06:28:29 10116608 ----a-w- C:\Windows\system32\twinui.dll
2014-06-15 07:35:45 . 2013-08-02 05:08:18 8858112 ----a-w- C:\Windows\SysWow64\twinui.dll
2014-06-15 07:35:44 . 2013-10-01 23:26:45 2304512 ----a-w- C:\Windows\system32\authui.dll
2014-06-15 07:35:44 . 2013-03-02 02:43:51 2146304 ----a-w- C:\Windows\system32\actxprxy.dll
2014-06-15 07:35:44 . 2013-02-07 01:33:01 754176 ----a-w- C:\Windows\SysWow64\actxprxy.dll
2014-06-15 07:35:43 . 2013-10-01 23:37:53 2035712 ----a-w- C:\Windows\SysWow64\authui.dll
2014-06-15 07:35:43 . 2013-03-02 10:39:38 69864 ----a-w- C:\Windows\system32\drivers\pdc.sys
2014-06-15 07:28:13 . 2014-06-15 07:29:59 -------- d-----w- C:\Windows\system32\MRT
2014-06-14 15:31:04 . 2014-06-14 15:31:04 283312 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10242.bin
2014-06-14 11:04:38 . 2014-06-14 11:04:38 -------- d-----w- C:\Windows\tr
2014-06-14 11:04:20 . 2014-06-14 11:04:20 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-06-14 11:02:58 . 2014-06-14 11:02:58 -------- d-----w- C:\Program Files (x86)\Microsoft OneDrive
2014-06-14 11:02:36 . 2014-06-14 11:02:36 -------- d-----w- C:\ProgramData\Microsoft OneDrive
2014-06-14 10:59:18 . 2014-06-14 10:59:18 -------- d-----w- C:\Program Files (x86)\Reference Assemblies
2014-06-14 10:59:18 . 2014-06-14 10:59:18 -------- d-----w- C:\Program Files (x86)\MSBuild
2014-06-14 10:59:15 . 2014-06-14 10:59:15 -------- d-----w- C:\Windows\SysWow64\XPSViewer
2014-06-14 10:59:15 . 2014-06-14 10:59:15 -------- d-----w- C:\Program Files\Reference Assemblies
2014-06-14 10:59:15 . 2014-06-14 10:59:15 -------- d-----w- C:\Program Files\MSBuild
2014-06-14 10:56:36 . 2012-07-06 02:02:35 778856 ----a-w- C:\Windows\SysWow64\PresentationNative_v0300.dll
2014-06-14 10:56:36 . 2012-07-06 02:02:35 35400 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
2014-06-14 10:56:36 . 2012-07-06 02:02:34 35400 ----a-w- C:\Windows\system32\TsWpfWrp.exe
2014-06-14 10:56:36 . 2012-07-06 02:02:34 1166440 ----a-w- C:\Windows\system32\PresentationNative_v0300.dll
2014-06-14 10:53:10 . 2014-06-14 10:53:10 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
2014-06-14 10:27:47 . 2008-07-31 07:41:52 68616 ----a-w- C:\Windows\SysWow64\XAPOFX1_1.dll
2014-06-14 10:27:47 . 2008-07-31 07:40:32 509448 ----a-w- C:\Windows\SysWow64\XAudio2_2.dll
2014-06-14 10:27:47 . 2008-07-12 05:18:52 467984 ----a-w- C:\Windows\SysWow64\d3dx10_39.dll
2014-06-14 10:27:47 . 2008-07-12 05:18:52 3851784 ----a-w- C:\Windows\SysWow64\D3DX9_39.dll
2014-06-14 10:27:47 . 2008-07-12 05:18:52 1493528 ----a-w- C:\Windows\SysWow64\D3DCompiler_39.dll
2014-06-14 10:27:43 . 2014-06-14 10:27:43 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin
2014-06-14 10:27:42 . 2014-06-14 10:27:42 -------- d-----w- C:\Riot Games
2014-06-14 10:27:01 . 2014-06-14 10:27:01 -------- d-----w- C:\ProgramData\PMB Files
2014-06-14 10:26:58 . 2014-06-14 10:26:58 -------- d-----w- C:\Program Files (x86)\Pando Networks
2014-06-14 06:26:06 . 2014-06-14 05:45:18 -------- d-----w- C:\Windows\Panther
2014-06-14 06:25:53 . 2014-06-14 05:54:30 -------- d-----w- C:\Boot
2014-06-14 06:19:42 . 2014-06-14 06:19:42 405504 ----a-w- C:\Windows\system32\pcasvc.dll
2014-06-14 06:19:42 . 2014-06-14 06:19:42 31232 ----a-w- C:\Windows\system32\pcadm.dll
2014-06-14 06:19:42 . 2014-06-14 06:19:42 13312 ----a-w- C:\Windows\system32\pcalua.exe
2014-06-14 06:19:42 . 2014-06-14 06:19:42 11776 ----a-w- C:\Windows\system32\pcaevts.dll
2014-06-14 06:19:27 . 2014-06-14 06:19:27 94208 ----a-w- C:\Windows\system32\synceng.dll
2014-06-14 06:19:27 . 2014-06-14 06:19:27 72192 ----a-w- C:\Windows\SysWow64\synceng.dll
2014-06-14 06:18:17 . 2014-06-14 06:18:17 26624 ----a-w- C:\Windows\system32\ReAgentc.exe
2014-06-14 06:18:17 . 2014-06-14 06:18:17 24064 ----a-w- C:\Windows\SysWow64\ReAgentc.exe
2014-06-14 06:17:58 . 2014-06-14 06:19:06 -------- d-----w- C:\Program Files (x86)\Google
2014-06-14 06:16:22 . 2014-06-14 06:16:22 17888 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll
2014-06-14 06:16:21 . 2014-06-14 06:16:22 17888 ----a-w- C:\Windows\system32\msvcr100_clr0400.dll
2014-06-14 06:13:56 . 2014-06-14 06:13:56 215040 ----a-w- C:\Windows\system32\drivers\AtihdW86.sys
2014-06-14 06:13:56 . 2014-06-14 06:13:56 142336 ----a-w- C:\Windows\system32\drivers\amdacpksl.sys
2014-06-14 06:13:56 . 2014-06-14 06:13:56 110080 ----a-w- C:\Windows\system32\DelayAPO.dll
2014-06-14 06:13:48 . 2014-06-14 06:13:48 21160 ----a-w- C:\Windows\system32\drivers\amdkmafd.sys
2014-06-14 06:13:40 . 2014-06-14 06:13:40 -------- d-----w- C:\Program Files\Synaptics
2014-06-14 06:13:38 . 2014-06-14 06:13:38 1721576 ----a-w- C:\Windows\system32\WdfCoInstaller01009.dll
2014-06-14 06:13:31 . 2014-06-14 06:13:32 31984 ----a-w- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2014-06-14 06:12:10 . 2014-06-14 06:12:10 -------- d-----w- C:\Program Files\Realtek
2014-06-14 06:12:09 . 2014-06-16 03:43:24 -------- d-----w- C:\Windows\SysWow64\RTCOM
2014-06-14 06:09:17 . 2014-06-14 06:09:17 2157704 ----a-w- C:\Windows\system32\YamahaAE.dll
2014-06-14 06:07:59 . 2014-06-14 06:07:59 1932888 ----a-w- C:\Windows\system32\MaxxAudioRealtek264.dll
2014-06-14 05:51:00 . 2014-06-14 05:51:00 -------- d-----w- C:\Windows\system32\log
2014-06-14 05:51:00 . 2014-05-30 10:49:33 44544 ----a-w- C:\Windows\system32\drivers\iSafeKrnlBoot.sys
2014-06-14 05:50:58 . 2014-06-16 04:13:00 -------- d-----w- C:\Program Files (x86)\iSafe
2014-06-14 05:45:45 . 2014-06-14 05:45:45 2893824 ----a-w- C:\Windows\system32\msmpeg2vdec.dll
2014-06-14 05:45:45 . 2014-06-14 05:45:45 2400256 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2014-06-14 05:45:25 . 2014-02-17 10:41:24 27456 ----a-w- C:\Windows\system32\RegistryDefragBootTime.exe
2014-06-14 05:43:07 . 2014-06-14 05:43:07 -------- d-----w- C:\ProgramData\ProductData
2014-06-14 05:43:06 . 2014-06-14 05:43:06 -------- d-----w- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-06-14 05:41:33 . 2014-06-14 06:00:15 -------- d-----w- C:\ProgramData\IObit
2014-06-14 05:41:33 . 2014-06-14 06:00:06 -------- d-----w- C:\Program Files (x86)\IObit
2014-06-14 05:32:14 . 2014-06-16 03:50:45 -------- d-----w- C:\Program Files (x86)\SpeedFan
2014-06-14 05:32:12 . 2014-06-14 05:32:12 50784 ----a-w- C:\ProgramData\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2014-06-14 11:04:53 . 2012-07-26 08:13:01 23264 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-03-31 18:41:40 . 2014-03-31 18:41:40 58568 ----a-w- C:\Windows\SysWow64\sirenacm.dll
2014-03-31 18:34:22 . 2014-03-31 18:34:22 322248 ----a-w- C:\Windows\WLXPGSS.SCR


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-06-14 11:02:41 223432 ----a-w- C:\Users\AhmetPC\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-06-14 11:02:41 223432 ----a-w- C:\Users\AhmetPC\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-06-14 11:02:41 223432 ----a-w- C:\Users\AhmetPC\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-04-13 06:57:56 284696]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)

R1 iSafeNetFilter;iSafeNetFilter;C:\Program Files (x86)\iSafe\iSafeNetFilter.sys;C:\Program Files (x86)\iSafe\iSafeNetFilter.sys [x]
R3 amdkmafd;AMD Audio Bus Lower Filter;C:\Windows\System32\drivers\amdkmafd.sys;C:\Windows\SYSNATIVE\drivers\amdkmafd.sys [x]
R3 athur;Atheros AR9271 Wireless Network Adapter Service;C:\Windows\system32\DRIVERS\athurx.sys;C:\Windows\SYSNATIVE\DRIVERS\athurx.sys [x]
R3 iSafeKrnlBoot;iSafeKrnl Boot Driver;C:\Windows\system32\DRIVERS\iSafeKrnlBoot.sys;C:\Windows\SYSNATIVE\DRIVERS\iSafeKrnlBoot.sys [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\k57nd60a.sys;C:\Windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
R4 AdvancedSystemCareService7;Advanced SystemCare Service 7;C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe;C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [x]
R4 LiveUpdateSvc;LiveUpdate;C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe;C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
S1 iSafeKrnl;iSafeKrnl;C:\Program Files (x86)\iSafe\iSafeKrnl.sys;C:\Program Files (x86)\iSafe\iSafeKrnl.sys [x]
S1 iSafeKrnlKit;iSafeKrnl Kit Driver;C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys;C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys [x]
S1 iSafeKrnlR3;iSafeKrnl Ring3 Driver;C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys;C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 iSafeService;iSafeService;C:\Program Files (x86)\iSafe\iSafeSvc.exe;C:\Program Files (x86)\iSafe\iSafeSvc.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW86.sys;C:\Windows\SYSNATIVE\drivers\AtihdW86.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys;C:\Windows\SYSNATIVE\drivers\HECIx64.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\Drivers\RtsUStor.sys;C:\Windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;C:\Windows\system32\DRIVERS\Rt630x64.sys;C:\Windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 SmbDrvI;SmbDrvI;C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys;C:\Windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]


[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-14 06:19:05 1091912 ----a-w- C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe

Contents of the 'Scheduled Tasks' folder

2014-06-14 C:\Windows\Tasks\ASC7_SkipUac_AhmetPC.job
- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2014-06-14 05:42:40 . 2014-06-12 15:01:48]

2014-06-16 C:\Windows\Tasks\Driver Booster SkipUAC (AhmetPC).job
- C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-06-14 06:00:06 . 2014-03-14 15:06:12]

2014-06-16 C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-14 06:18:00 . 2014-06-14 06:17:55]

2014-06-15 C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-14 06:18:00 . 2014-06-14 06:17:55]

2014-06-14 C:\Windows\Tasks\Uninstaller_SkipUac_Administrator.job
- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-06-14 05:43:10 . 2014-05-06 14:52:48]


--------- X64 Entries -----------


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-06-14 05:43:09 2471744 ----a-w- C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-06-14 11:02:48 262344 ----a-w- C:\Users\AhmetPC\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-06-14 11:02:48 262344 ----a-w- C:\Users\AhmetPC\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-06-14 11:02:48 262344 ----a-w- C:\Users\AhmetPC\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll

------- Supplementary Scan -------

uLocal Page = C:\Windows\system32\blank.htm
uStart Page = about:blank
uDefault_Page_URL = about:blank
mDefault_Page_URL = about:blank
mStart Page = about:blank
mLocal Page = C:\Windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
 
C:\Program Files (x86)\iSafe\
C:\Windows\system32\DRIVERS\iSafeKrnlBoot.sys
Bunların dışında bir zararlı gözükmüyor. Daha geniş arama için imzamdaki sistem tarama ve anlatımını uygulayıp, çıkan linki paylaşman lazım. Ek olarak tarama istersen sistem tarama 2 ile tarayıp, save result yapıp, txt dosyasını burada paylaşman lazım.
 
Uyarı! Bu konu 12 yıl önce açıldı.
Muhtemelen daha fazla tartışma gerekli değildir ki bu durumda yeni bir konu başlatmayı öneririz. Eğer yine de cevabınızın gerekli olduğunu düşünüyorsanız buna rağmen cevap verebilirsiniz.

Benzer konular

tekin 18
Combofix Tarama Log Dosyası
2
Mesaj
11
Görüntüleme
2.417
Murat5038
Murat5038
S
ComboFix Taraması Sonrası Oluşan Dosyalar Nedir?
Mesaj
6
Görüntüleme
1.957
Murat5038
Murat5038
TunayQwerty
Combofix kullanılmalı mı?
Mesaj
8
Görüntüleme
3.160
Eren AK
Eren AK
U
ComboFix nedir?
Mesaj
6
Görüntüleme
3.824
Murat5038
Murat5038
Recep Baltaş
  • Kilitli
Combofix 2011-03-07
Mesaj
3
Görüntüleme
2.035
AJFA
AJFA

Technopat Haberler

Yeni konular

Yeni mesajlar

Geri
Yukarı