Öncelikle geç cevap verdiğim için özür dilerim.Buyrun istediğiniz bilgiler;
HijackThis Log;
Kod:Panoya kopyala
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 21:56:56, on 18.02.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
FIREFOX: 35.0.1 (x86 tr)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\Bahadır Sami\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Portrait Displays\Pivot Pro Plugin\wpctrl.exe
C:\Users\Bahadır Sami\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Portrait Displays\Pivot Pro Plugin\floater.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Steam\Steam.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Steam\bin\steamwebhelper.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Bahadır Sami\Desktop\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files\Norton Identity Safe\Engine\2013.3.3.19\coIEPlg.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll
O3 - Toolbar: Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2013.3.3.19\coIEPlg.dll
O3 - Toolbar: (no name) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [PivotSoftware] "C:\Program Files\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe" -delay=10
O4 - HKLM\..\Run: [DT PLP] C:\Program Files\Common Files\Portrait Displays\Shared\DT_startup.exe -PLP
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Bahadır Sami\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.aeriagames.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{41FDA5BD-F0EE-4150-BA17-8DE9E8BFCDDF}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{41FDA5BD-F0EE-4150-BA17-8DE9E8BFCDDF}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{41FDA5BD-F0EE-4150-BA17-8DE9E8BFCDDF}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Portrait Displays, Inc. - C:\Program Files\Common Files\Portrait Displays\Shared\dtsrvc.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Güncelleme Hizmeti (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Güncelleme Hizmeti (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - C:\Program Files\Norton Identity Safe\Engine\2013.3.3.19\ccSvcHst.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files\Origin\OriginClientService.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
--
End of file - 8339 bytes
AdwCleaner Log;
Kod:Panoya kopyala
# AdwCleaner v4.110 - Log-dosyasy olu?turuldu 18/02/2015 at 22:00:30
# Güncellendi 05/02/2015 by Xplode
# Veritabany : 2015-02-18.3 [Server]
# Y?letim Sistemi : Windows 7 Ultimate Service Pack 1 (x86)
# Kullanycy ady : Bahadır Sami - BAHADıRSAMI
# Running from : C:\Users\Bahadır Sami\Desktop\AdwCleaner.exe
# Seçenek : Tara
***** [ Servis ] *****
***** [ Dosyalar / Klasörler ] *****
Dosya Bulundu : C:\Users\Bahadır Sami\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage
Dosya Bulundu : C:\Users\Bahadır Sami\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal
Klasör Bulundu : C:\Users\Bahadır Sami\AppData\Local\CrashRpt
***** [ Zamanlanmy? görevler ] *****
***** [ Kysayollar ] *****
***** [ Kayyt Defteri ] *****
Bilgi Bulundu : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
***** [ Ynternet Tarayycylary ] *****
-\\ Internet Explorer v11.0.9600.17631
-\\ Mozilla Firefox v35.0.1 (x86 tr)
-\\ Google Chrome v40.0.2214.111
-\\ Chromium v
*************************
AdwCleaner[R0].txt - [15648 bayt] - [14/12/2014 11:12:14]
AdwCleaner[R1].txt - [1237 bayt] - [18/02/2015 22:00:30]
AdwCleaner[S0].txt - [14722 bayt] - [14/12/2014 11:19:57]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1354 bayt] ##########
Malwarebytes Anti Malware Log;
Malwarebytes Anti-Malware
Malwarebytes | Free Anti-Malware & Internet Security Software
Tarama Tarihi: 18.02.2015
Tarama Zamanı: 22:12:58
Kütük dosyası: Malwarebytes Anti-Malware.txt
Yönetici: Hayır
Sürüm: 2.00.4.1028
Zararlı Veritabanı: v2015.02.18.08
Rootkit Veritabanı: v2015.02.03.01
Lisans: Ücretsiz
Zararlı koruması: Devre dışı
Zararlı internet sitesi koruması: Devre dışı
Kendini koruma: Devre dışı
İşletim Sistemi: Windows 7 Service Pack 1
İşlemci: x86
Dosya Sistemi: NTFS
Kullanıcı: Bahadır Sami
Tarama Türü: Özel Tarama
Sonuç: Tamamlandı
Taranmış Öğeler: 751038
Geçen Süre: 4 sa, 32 dk, 0 sn
Hafıza: Etkin
Başlangıç: Etkin
Dosya sistemi: Etkin
Arşivler: Etkin
Rootkit: Etkin
Buluşsal yöntemler: Etkin
PUP: Etkin
PUM: Etkin
İşlemler: 0
(Zararlı maddeleri tespit)
Modüller: 0
(Zararlı maddeleri tespit)
Kayıt Anahtarları: 1
PUP.Optional.iWebar.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\iWebar-nv, , [da385ac0ddad9b9b74bd5c39709347b9],
Kayıt Girdileri: 0
(Zararlı maddeleri tespit)
Kayıt Verileri: 0
(Zararlı maddeleri tespit)
Klasörler: 0
(Zararlı maddeleri tespit)
Dosyalar: 16
PUP.Optional.Nova.A, C:\AdwCleaner\Quarantine\C\Program Files\iWebar\b1162112-d94e-4d8a-9373-b7c6cb6f0ab0.dll.vir, , [d63c0119fe8c2214063758b0d9295ca4],
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files\iWebar\beb85481-f9a6-45b3-8195-17fc782c5a4f-6.exe.vir, , [d43ec7538a008fa70346a2a8ef12e51b],
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files\iWebar\beb85481-f9a6-45b3-8195-17fc782c5a4f-7.exe.vir, , [40d2d545fb8fe6507fca5eec14ed2fd1],
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files\iWebar\iWebar-bg.exe.vir, , [a270ae6cf793c37385c44ffbf809d32d],
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files\iWebar\iWebar-bho.dll.vir, , [d0421dfd167486b00c3da6a47d8447b9],
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files\iWebar\iWebar-buttonutil.exe.vir, , [ad6539e126640a2cb0993f0ba35e9868],
PUP.Optional.iWebar.A, C:\AdwCleaner\Quarantine\C\Program Files\iWebar\iWebar-codedownloader.exe.vir, , [ca4802183a5048ee93b6ca801de4ac54],
PUP.Optional.Nova.A, C:\AdwCleaner\Quarantine\C\Program Files\SensePlus\020a5be6-7df2-4adf-bcbc-0cbcf9d1dab6.dll.vir, , [050d2af0cbbf1026112c897f1de5728e],
PUP.Optional.SensePlus.A, C:\AdwCleaner\Quarantine\C\Program Files\SensePlus\278cd1b2-d548-4fa0-94b3-6b2012d69885-6.exe.vir, , [7e94f02a88029b9b10805b9f2ad76898],
PUP.Optional.SensePlus.A, C:\AdwCleaner\Quarantine\C\Program Files\SensePlus\278cd1b2-d548-4fa0-94b3-6b2012d69885-7.exe.vir, , [080a59c18ffbf93dbed2cc2ef60be020],
PUP.Optional.SensePlus.A, C:\AdwCleaner\Quarantine\C\Program Files\SensePlus\SensePlus-bg.exe.vir, , [42d0f822c3c73303ade3ac4ee021669a],
PUP.Optional.SensePlus.A, C:\AdwCleaner\Quarantine\C\Program Files\SensePlus\SensePlus-bho.dll.vir, , [1df5100a8406a78f7f11619950b13cc4],
PUP.Optional.SensePlus.A, C:\AdwCleaner\Quarantine\C\Program Files\SensePlus\SensePlus-buttonutil.exe.vir, , [a36f1bffa5e52d09256bfcfef30e3bc5],
PUP.Optional.SensePlus.A, C:\AdwCleaner\Quarantine\C\Program Files\SensePlus\SensePlus-codedownloader.exe.vir, , [1002b8620585280e5d33c337f40d08f8],
PUP.Optional.ClientConnect, C:\Windows.old\Users\Bahadır Sami\AppData\Local\Temp\CT2451227\ffLogic.exe, , [4bc7e3376426c274ae1fc8ff7e83b24e],
PUP.Optional.Conduit, C:\Windows.old\Users\Bahadır Sami\AppData\Local\Temp\CT2451227\ieLogic.exe, , [23ef35e512781e18649572bdef117888],
Fiziksel Sektörler: 0
(Zararlı maddeleri tespit)
(end)
Complete Internet Repair programını da yönergeler doğrultusunda kullandım.