Rehber Herdprotect TXT Raporu Oluşturma

Kod: 
Saved date:          1.6.2015 15:30:25
Files detected:     59
Files scanned:         9.291
Processes scanned:     37
Modules scanned:     402
ASEPs scanned:         472
Downloads scanned:     4
Deep analysis:         12/5
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path:         c:\users\kaan\downloads\herdprotectscan_setup.exe
Publisher:         Reason Company Software Inc.
Signer:         Reason Software Company Inc.
MD5:             172ed33198484df87fa015b695eaad80
SHA-1:             1df2124a741afc2ee0b2e90e904a3201e5cb3c3d
Created:         1.6.2015 15:13:52
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Malware.ArcadeWeb!6.727 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\downloads\jrt.exe
Publisher:        
MD5:             126cdbb446082f79b9bf362bd78f1573
SHA-1:             a78bbf20369e76d6824d1eeac42da2018367546c
Created:         1.6.2015 14:58:27
Detections:         1
Determination:         Ignore detections (false positive)
            - Jiangmin as Trojan/Generic.buxhs (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\downloads\adwcleaner-4.203-tamindir.exe
Publisher:        
MD5:             2e1d22ac30f4b392ceaf3d7d59be3626
SHA-1:             de6d03ad17736f57d3c351ff11c4d93775cfac1f
Created:         1.6.2015 13:03:33
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Trojan.Win32.Injector.fw!1075357566 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\windows\temp\2.0.1.9022\worker.dll
Publisher:        
Signer:         Wang Nan
MD5:             7d115bb3d8043ac5919ba823c419ac64
SHA-1:             a99e04e62a080c2de293be65a731954bbde8d312
Created:         19.3.2015 09:28:52
Detections:         3
Determination:         Adware
            - Zillya! Antivirus as Virus.Sality.Win32.20 (Undefined)
            - Jiangmin as TrojanDownloader.Agent.fpcg (Undefined)
            - Reason Heuristics as Threat.WangNan (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\temp\quarantine.exe
Publisher:        
MD5:             276e831d5532c56a5a0b5512df87ee5a
SHA-1:             21c6c1353709607f91445dc5a6e00fef6dd26319
Created:         8.11.2014 10:33:34
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Trojan.Win32.Injector.fw!1075357566 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\desktop\araçlar\hijackthis.exe
Publisher:         Trend Micro Inc.
MD5:             47811d50390a86a17102d7496e6eabb9
SHA-1:             2623749cdb27887f6746acdee7e8065475f8b541
Created:         12.3.2015 05:17:29
Detections:         2
Determination:         Ignore detections (false positive)
            - Kingsoft AntiVirus as Win32.HeurC.KVM099.a.(kcloud) (Undefined)
            - Rising Antivirus as PE:Trojan.VBInject!1.6546 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\windows\syswow64\ext-ms-win-cluster-clusapi-l1-1-1.dll
Publisher:         Microsoft Corporation
MD5:             6f5557e3f97cb2a957da5dcdaf1e22c1
SHA-1:             c2a27e776fbfc3666642425dcc5f2b34bb41cb10
Created:         22.8.2013 07:14:14
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Backdoor/Bifrose.fxu (Undefined)

---------------------------------------------------------------------------------

File path:         c:\windows\syswow64\kbdcherp.dll
Publisher:         Microsoft Corporation
MD5:             f992fe1d923f59f806442449f3ea557b
SHA-1:             d216f5bc5d466c1c9d94aa57a28c5226b214bdbc
Created:         22.8.2013 07:15:06
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Trojan/Kryptik.ahcy (Undefined)

---------------------------------------------------------------------------------

File path:         c:\windows\syswow64\mantle32.dll
Publisher:         Advanced Micro Devices, Inc.
MD5:             078c5af62d8bfd343c17d834ca668b81
SHA-1:             a5e900152f16934ca7fde71cf1a3c58590746019
Created:         31.3.2015 23:20:06
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Malware.CrossRider!6.236B (Adware)

---------------------------------------------------------------------------------

File path:         c:\windows\syswow64\pnkbstrb.xtr
Publisher:        
Signer:         Even Balance, Inc.
MD5:             d2dd0f8415816203f0e4fb3eede67291
SHA-1:             e473691506fdd4f958806e311fb754d8d35e97ce
Created:         7.3.2014 00:02:17
Detections:         1
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as TROJ_GEN.F47V1024 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\arma 2\beservice_x64.exe
Publisher:        
Signer:         Bastian Suter
MD5:             56a50cc35d9640d35767fd555e388d02
SHA-1:             de51f709e193ac9db0054c6ac990bd67e4f4a6d3
Created:         1.12.2014 22:02:19
Detections:         2
Determination:         Ignore detections (false positive)
            - McAfee as Generic Obfuscated.c
            - McAfee Web Gateway as BehavesLike.Win64.Backdoor.hc (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\arma 2 oa\battleye\beservice_x64.exe
Publisher:        
Signer:         Bastian Suter
MD5:             56a50cc35d9640d35767fd555e388d02
SHA-1:             de51f709e193ac9db0054c6ac990bd67e4f4a6d3
Created:         1.12.2014 22:02:41
Detections:         2
Determination:         Ignore detections (false positive)
            - McAfee as Generic Obfuscated.c
            - McAfee Web Gateway as BehavesLike.Win64.Backdoor.hc (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\dayz\battleye\beclient.dll
Publisher:        
Signer:         Bastian Suter
MD5:             f651f69088ebfa7fb94d5aaa53938d9d
SHA-1:             33ec59dba565443deb62d8dafbad0bdb4652ffef
Created:         6.3.2014 20:02:12
Detections:         2
Determination:         Ignore detections (false positive)
            - F-Secure as Gen:Variant.Adware.Kazy (Adware)
            - ByteHero BDV as Trojan.Malware.Obscu.Gen.009 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\punkbuster\bf3\pb\dll\wc002331.dll
Publisher:        
Signer:         Even Balance, Inc.
MD5:             3597eb30b6de4eddd7de6ae5a3674b07
SHA-1:             fcd803f876d62cad988e1dd2650ed28c615faa27
Created:         1.6.2014 19:43:02
Detections:         2
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as TROJ_GEN.F47V0712 (Undefined)
            - Sophos as Punkbuster

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\punkbuster\twz\pb\pnkbstrb.exe
Publisher:        
Signer:         Even Balance, Inc.
MD5:             cab7847b047f435607859dee19e1a119
SHA-1:             5212b18defa121ff44fcff758db56c92b9672caa
Created:         7.3.2014 00:02:14
Detections:         1
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as TROJ_GEN.F47V0609 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\punkbuster\twz\pb\pnkbstrk.sys
Publisher:        
Signer:         Even Balance, Inc.
MD5:             ddcb85937fb248dd59ecf43fc3799b56
SHA-1:             1a79fb89f1ae9cdd2d2dc07f18b5d7c29ce593d2
Created:         7.3.2014 00:02:28
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as HW32.CDB (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\punkbuster\wf\pb\pbcl.dll
Publisher:        
MD5:             07d8e555bda223fda97db86b807240a9
SHA-1:             cc533e976faed683970863fdf7fec46e4241bd4e
Created:         23.11.2014 23:27:37
Detections:         2
Determination:         Inconclusive
            - Bkav FE as HW32.CDB (Undefined)
            - Sophos as Punkbuster

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\local\punkbuster\wf\pb\pnkbstrb.exe
Publisher:        
Signer:         Even Balance, Inc.
MD5:             d2dd0f8415816203f0e4fb3eede67291
SHA-1:             e473691506fdd4f958806e311fb754d8d35e97ce
Created:         23.11.2014 23:27:38
Detections:         1
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as TROJ_GEN.F47V1024 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\roaming\mactowebise\explorerex64.dll
Publisher:        
Signer:         Wang Nan
MD5:             555f772eba1ae3f8e17308a1888acd42
SHA-1:             1872367b8ae05f5945968baacd09e50e84657a60
Created:         15.4.2015 14:49:34
Detections:         2
Determination:         Adware
            - AhnLab V3 Security as Trojan/Win32.HDC (Undefined)
            - Reason Heuristics as Threat.WangNan (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\roaming\utorrent\updates\3.3.2_30303.exe
Publisher:         BitTorrent Inc.
Signer:         BitTorrent Inc
MD5:             a1a4e96dd68e9233904b107cc2e9251f
SHA-1:             f4d83b6449630154dba0e6f5810ed1dc27b5adc4
Created:         9.3.2014 01:50:06
Detections:         7
Determination:         Inconclusive
            - Bkav FE as W32.Cloddfe.Trojan (Undefined)
            - VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
            - Fortinet FortiGate as W32/AdkDLLWrapper.A (Undefined)
            - Antiy Labs AVL as Virus/Win32.Slugin (Undefined)
            - Filseclab Twister as W32.Bunndle.swah.arc.dll.mg (Undefined)
            - K7 AntiVirus as Riskware  (Undefined)
            - XVirus List as Win.Detected (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\kaan\appdata\roaming\yandex\yandexdisk\yandexdiskscreenshoteditor.exe
Publisher:         Yandex
Signer:         YANDEX LLC
MD5:             2b35a9aa4dcf36c16efdeaabe82e99c8
SHA-1:             1b31d5b00210e403d5b33b7af8f0087b9613c400
Created:         21.9.2014 02:12:20
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAdware (Adware)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\anvsoft\any video converter\avcodec-55.dll
Publisher:        
MD5:             046221c2d488c8e86015bf2d3ed9dc89
SHA-1:             df5398279b104472e6efa68b0f36ee2c7a7e449a
Created:         5.3.2014 16:12:41
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoA (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\anvsoft\any video converter\libpthread-2.dll
Publisher:         Open Source Software community project
MD5:             829f76e4d7a4cbb874a08be18671b4f8
SHA-1:             3e4d453b6892b002b176b085cc62d00a5f0a8500
Created:         5.3.2014 16:12:42
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\anvsoft\any video converter\libx264-140.dll
Publisher:         x264 project
MD5:             2b8027d10a379b78f1c67ae5c44e95d5
SHA-1:             bb0de7b5305032e62f65ca6f26721bca6bc3c331
Created:         5.3.2014 16:12:41
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\anvsoft\any video converter\gnu\cygwin1.dll
Publisher:         Red Hat
MD5:             e8cd5a2ba5d93acce6c28c26bf5717fb
SHA-1:             f65e58d61777e459f5b6c783c3a940469216815c
Created:         5.3.2014 16:12:37
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\anvsoft\any video converter\gnu\ffmpeg.exe
Publisher:        
MD5:             5fd9b90318f2765e31796c086088ab8d
SHA-1:             bbe4d71432a92595cd96f8224d4e175904e5d72a
Created:         5.3.2014 16:12:37
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoA (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\anvsoft\any video converter\plugins\effectsmany.dll
Publisher:        
MD5:             6717d63e93173c32932700151b1c3635
SHA-1:             27a7a40eb4a51c98ceadb12ee23adf799170e541
Created:         5.3.2014 16:12:44
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as W32/VBNA.ajxv (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\daemon tools lite\dthelper.exe
Publisher:         Disc Soft Ltd
Signer:         Disc Soft Ltd
MD5:             7bd824285ba0c820ef0eadb19528afd8
SHA-1:             0c14a9296bf1d497c6510055945680a757173e9d
Created:         4.3.2014 11:19:20
Detections:         1
Determination:         Ignore detections (false positive)
            - McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious-BAY.K

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\ea games\need for speed most wanted\core\codecs\qcncodecs4.dll
Publisher:         Nokia Corporation and/or its subsidiary(-ies)
MD5:             18750594dc280cd00af4aa323224d202
SHA-1:             b0d7a02e1c3e9aa78d006f0b2f85f0f217ca9235
Created:         28.3.2015 04:37:05
Detections:         1
Determination:         Ignore detections (false positive)
            - Kingsoft AntiVirus as Win32.Troj.Generic.a.(kcloud) (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\activation.exe
Publisher:         Tages SAS
Signer:         Electronic Arts
MD5:             f9ae42ef6daa580efd9825dca14465d4
SHA-1:             45e961ce830ff62e6f6c96a8d1dab98fa5bc074d
Created:         28.10.2010 18:08:55
Detections:         3
Determination:         Ignore detections (false positive)
            - CMC Antivirus as Trojan.Win32.Krap.2!O (Undefined)
            - AhnLab V3 Security as Win-Trojan/Hupe.Gen (Undefined)
            - Rising Antivirus as PE:Malware.XPACK/RDM!5.1

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\activation.x86.dll
Publisher:         Tages SAS
MD5:             ddbcd29602448901ec6ca972ec7437b3
SHA-1:             52b1d90717e8eee83690eea49c0950a58345052c
Created:         28.10.2010 18:08:55
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\need for speed hot pursuit.exe
Publisher:         Electronic Arts
MD5:             25a5223be3f4f21e0436516b74b36397
SHA-1:             dfe57ac94fc6c8290941af569350648c4c86fa6a
Created:         19.10.2010 18:54:22
Detections:         3
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoB (Undefined)
            - The Hacker as Trojan/AntiAV.nfm (Undefined)
            - McAfee Web Gateway as Heuristic.LooksLike.Win32.Suspicious.N (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\support\eadm\eadm-installer.exe
Publisher:         Electronic Arts, Inc.
Signer:         Electronic Arts
MD5:             bef8c5dc44a59d466145554beed5cc39
SHA-1:             566f25e56d9023617715db7df56b75b0d17454f6
Created:         28.10.2010 18:08:55
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Malware.XPACK/RDM!5.1

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\hitman absolution\buddha.dll
Publisher:        
MD5:             786170ea74d15c64957454ec2ac4fec9
SHA-1:             455f49136ffdd73f39a47edcf029ff2b856c558c
Created:         5.4.2015 03:41:38
Detections:         10
Determination:         UndefinedMalware
            - McAfee as Artemis!786170EA74D1 (Undefined)
            - K7 Gateway Antivirus as Riskware  (Undefined)
            - K7 AntiVirus as Riskware  (Undefined)
            - Norman as Suspicious_Gen2.VKNXY
            - Agnitum Outpost as Suspicious
            - Sophos as Mal/VMProtBad-A (Undefined)
            - VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
            - McAfee Web Gateway as Artemis!786170EA74D1 (Undefined)
            - ViRobot as Trojan.Win32.A.Zbot.59392.V (Undefined)
            - Fortinet FortiGate as W32/SPNR.08LA12!tr (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\hitman absolution\steamclient.dll
Publisher:         SKIDROW
MD5:             7137e74c4fd2c9d194ff6c122e271939
SHA-1:             be0d17bbcd166f35b79809b8de86eed25d791082
Created:         2.7.2014 06:49:30
Detections:         1
Determination:         Ignore detections (false positive)
            - ViRobot as JS.A.Pakes.361472 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\hitman absolution\steam_api.dll
Publisher:         Valve Corporation
MD5:             68e8942e95d85f710f52257ecee1155f
SHA-1:             03958cf9322962da777390b0662cca608f8e6327
Created:         5.4.2015 03:42:23
Detections:         1
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as HV_ZYX_CA25031C.TOMC (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\metro last light redux\metro last light redux.exe
Publisher:         4A Games
MD5:             ce2c1fbda0f32e96af4a3d507b688d96
SHA-1:             2236377c5f448c980c57f4dea0de66c9f8c6cbe1
Created:         6.10.2014 00:33:22
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.FanVT.ZbotK (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\pro evolution soccer 2015\steam_api.dll
Publisher:         *!ReLOADeD!*
MD5:             2c0146764633b43ef58520a54fe3771a
SHA-1:             924a4b2ad759ffe3ef93992ab14f47b14362a38f
Created:         18.5.2015 18:16:14
Detections:         17
Determination:         Adware
            - McAfee as Trojan-FDCD!2C0146764633 (Undefined)
            - K7 Gateway Antivirus as Trojan  (Undefined)
            - K7 AntiVirus as Hacktool
            - Norman as Suspicious_Gen4.HGZMI
            - Trend Micro House Call as Suspicious_GEN.F47V1114 (Undefined)
            - Agnitum Outpost as PUP.Crack (Adware)
            - Comodo Security as UnclassifiedMalware (Undefined)
            - VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
            - McAfee Web Gateway as BehavesLike.Win32.Trojan.cc (Undefined)
            - Sophos as Steam (Undefined)
            - Antiy Labs AVL as Trojan/Win32.TSGeneric (Undefined)
            - Baidu Antivirus as Hacktool.Win32.Crack
            - ESET NOD32 as Win32/HackTool.Crack.CS (Undefined)
            - IKARUS anti.virus as PUA.HackTool (Adware)
            - Fortinet FortiGate as Riskware/Crack (Undefined)
            - AVG as HackTool
            - Panda Antivirus as Trj/Genetic.gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\csiw_support\bin\chgstr.exe
Publisher:        
MD5:             12fb1a487e4cdc2c260a3c86e21f4a62
SHA-1:             31459a3964c662690ff5a5680de111110990d689
Created:         16.4.2001 02:33:00
Detections:         1
Determination:         Ignore detections (false positive)
            - AegisLab AV Signature as Troj.W32.Agent (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\call of duty modern warfare 2 türkçe yama kaldır.exe
Publisher:         OyunCeviri.com
MD5:             bdad3ac096c3ab2f946f822346afbbbd
SHA-1:             a39714f3e65c3b0121f90935849f0a88b085251c
Created:         9.5.2014 19:23:23
Detections:         1
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as Suspicious_GEN.F47V0721 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\oku.exe
Publisher:         OyunCeviri.com
MD5:             954f59e9b713bc1c4be09aec3430d349
SHA-1:             b05f0f895910ccd5856e709436240ba60f290901
Created:         2.4.2013 08:34:14
Detections:         1
Determination:         Ignore detections (false positive)
            - Jiangmin as Win32/Virut.bn

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\dayz\battleye\beclient.dll
Publisher:        
Signer:         Bastian Suter
MD5:             f651f69088ebfa7fb94d5aaa53938d9d
SHA-1:             33ec59dba565443deb62d8dafbad0bdb4652ffef
Created:         18.5.2015 15:46:38
Detections:         2
Determination:         Ignore detections (false positive)
            - F-Secure as Gen:Variant.Adware.Kazy (Adware)
            - ByteHero BDV as Trojan.Malware.Obscu.Gen.009 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\euro truck simulator 2\core.dll
Publisher:        
MD5:             a5c8d3ca55aceb7e0306a81779794f2e
SHA-1:             4b272f5232874571ccfd579301680db50c053342
Created:         1.5.2014 23:48:42
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\euro truck simulator 2\launcher.exe
Publisher:        
MD5:             7a60c89feffbd75189fd4166ceedbfce
SHA-1:             2764065fafa71aa97ab27f14ca5649814b61ab6f
Created:         1.5.2014 23:48:42
Detections:         3
Determination:         Inconclusive
            - F-Prot as W32/Heuristic-KPP (Undefined)
            - Trend Micro House Call as TROJ_GEN.F47V0502 (Undefined)
            - Panda Antivirus as Trj/Genetic.gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\euro truck simulator 2\bin\win_x86\eurotrucks2.exe
Publisher:         SCS Software
Signer:         SCS Software s.r.o.
MD5:             ca253559122cf7f220b26b584f2a57f6
SHA-1:             31a94e73eab30dcd70509b65b0eac0f864d4191e
Created:         20.5.2014 00:07:53
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Malware.XPACK-LNR/Heur!1.5594 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\l.a.noire\ypatcher.exe
Publisher:        
Signer:         Yummy Interactive Inc.
MD5:             5b8b970d0a640e9bad64f5b304546319
SHA-1:             00da87810de2eccefb2cf2cb272e236e9a3a2b42
Created:         22.12.2014 16:33:55
Detections:         3
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as TROJ_GEN.F47V0826 (Undefined)
            - ByteHero BDV as Trojan.Win32.Heur.087
            - Vba32 AntiVirus as Malware-Cryptor.Inject.gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\railworks\openal32.dll
Publisher:        
MD5:             fcba8d7fb2eb23d6ffa7f8bac9b698c4
SHA-1:             4371e0f2882675707181c2021d9be899a4579a78
Created:         22.12.2012 13:54:46
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\skyrim\binkw32.dll
Publisher:         RAD Game Tools, Inc.
MD5:             6c16d545b0717830773fb1ba4a195778
SHA-1:             4d205ef5ab7664f2e2b1de7b951824afa769ed61
Created:         1.2.2015 03:46:26
Detections:         1
Determination:         Ignore detections (false positive)
            - Antiy Labs AVL as Trojan/Win32.Patched.gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe
Publisher:         Bethesda Softworks
MD5:             077ae2877da4c7a530086bf451365ef0
SHA-1:             7c1b53a1d7d222ce5ce939b796bb65351b2fe4f8
Created:         1.2.2015 03:46:15
Detections:         3
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.HfsAutoB (Undefined)
            - Trend Micro House Call as Suspicious_GEN.F47V0313 (Undefined)
            - Rising Antivirus as PE:Malware.XPACK-LNR/Heur!1.5594 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\skyrim\tesv.exe
Publisher:         Bethesda Softworks
Signer:         Bethesda Softworks
MD5:             034b175599a2396343900850d4ef21a9
SHA-1:             f39aecebf6e332616c4c518617073f6e8250e0f8
Created:         1.2.2015 03:43:43
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Malware.XPACK-LNR/Heur!1.5594 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\skyrim\the elder scrolls v skyrim türkçe yama uyum programı kaldır.exe
Publisher:         OyunCeviri.com
MD5:             7f775203d9c933d48ca7260ecc3212d5
SHA-1:             e82c1b80dde17141bae8f2f55fbbcb0db68fc46e
Created:         31.1.2015 20:15:07
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\the war z\pb\pbag.dll
Publisher:        
Signer:         Even Balance, Inc.
MD5:             b65e45bb72630cbc9a859ca39e9dc87b
SHA-1:             579e143ce1ea190d9a2b533cfe79112e83253f27
Created:         7.3.2014 00:01:24
Detections:         1
Determination:         Ignore detections (false positive)
            - Antiy Labs AVL as Virus/Win32.Xpaj (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\steam\steamapps\common\the war z\pb\dll\wa001374.dll
Publisher:        
Signer:         Even Balance, Inc.
MD5:             b65e45bb72630cbc9a859ca39e9dc87b
SHA-1:             579e143ce1ea190d9a2b533cfe79112e83253f27
Created:         7.3.2014 00:01:24
Detections:         1
Determination:         Ignore detections (false positive)
            - Antiy Labs AVL as Virus/Win32.Xpaj (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\ubisoft\ubisoft game launcher\data\2\osis\416\osi.exe
Publisher:        
MD5:             f2b4856565eddfe349796702a806a149
SHA-1:             272056402cca064dc0a5e102f32046de8b68f3fd
Created:         12.1.2015 05:45:22
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\xvid\checkupdate.exe
Publisher:        
MD5:             6d9e1356a9c1b5f36698faff9205e34a
SHA-1:             37433a3bf4ef209b1b159e5f379d26c46ebd6008
Created:         22.4.2014 21:42:10
Detections:         1
Determination:         Ignore detections (false positive)
            - Boost by Reason as Optional.Startup.L

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\xvid\minicalc.exe
Publisher:        
MD5:             7ce40a557359849ea374e0e4dde52e26
SHA-1:             d865e7ef9c41d8c622ec87577685f3e1868f420e
Created:         22.4.2014 21:42:09
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\xvid\ogmcalc.exe
Publisher:        
MD5:             95caef9da6e9aee1ecd627527cfa0f38
SHA-1:             f0ce07a0c7da2f0239ebfe3ca37cd03332d80f0b
Created:         22.4.2014 21:42:09
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\xvid\statsreader.exe
Publisher:        
MD5:             487af46145b81c5bc54873e764f93636
SHA-1:             f948b0544c59127e8845eef915f2ec3b6b1c3508
Created:         22.4.2014 21:42:09
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\xvid\vidccleaner.exe
Publisher:        
MD5:             6b5e418a9c02ab0c3f3dd50b0e3cd3a6
SHA-1:             d7e976b79de0e822f41845f45c6311d11d2179d0
Created:         22.4.2014 21:42:09
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Posible_Worm32 (Undefined)



Portal sepeti virüsüne yakalandım, klasör dosya silmek işe yaramadı...
 
Bunları rehbere göre kaldırın:
Kod: 
c:\users\kaan\downloads\adwcleaner-4.203-tamindir.exe
c:\windows\temp\2.0.1.9022\worker.dll
c:\users\kaan\appdata\local\temp\quarantine.exe
c:\windows\syswow64\pnkbstrb.xtr
c:\users\kaan\appdata\local\punkbuster\bf3\pb\dll\wc002331.dll
c:\users\kaan\appdata\local\punkbuster\twz\pb\pnkbstrb.exe
c:\users\kaan\appdata\local\punkbuster\twz\pb\pnkbstrk.sys
c:\users\kaan\appdata\local\punkbuster\wf\pb\pnkbstrb.exe
c:\users\kaan\appdata\roaming\mactowebise\explorerex64.dll
c:\users\kaan\appdata\roaming\utorrent\updates\3.3.2_30303.exe
c:\program files (x86)\hitman absolution\buddha.dll
c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\oku.exe
c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\call of duty modern warfare 2 türkçe yama kaldır.exe
c:\program files (x86)\steam\steamapps\common\skyrim\the elder scrolls v skyrim türkçe yama uyum programı kaldır.exe

Bu klasör içlerini sil:
c:\windows\temp
c:\users\kaan\appdata\local\punkbuster\
c:\users\kaan\appdata\roaming\mactowebise

Sistem tarama 1 sonucunu da paylaşın.
 
@Murat5038 Bu aralar keylogger programları ile haşır neşir olduğum için unutkanlık ile virüslü dosyayı kendi sistemimde çalıştırdım.
Çabalarım sonucu şuan log'lar kesildi, veri akışı yok sistemimden dışarı.

Ancak program sistemimdeki bazı özellikleri kısıtladı. Örneğin Aygıt yöneticisi veya DOS ekranına erişim yetkim yok.
Tarama1 ve tarama2 adı altındaki testleri yaptım ve sonuçları aşağıda paylaştım.

Virüslü olduğu belirtilen kaynaklarda silme işlemi yapmama da yetki verilmiyor. Siz bu konuda hepimizden daha uzmansınız, yardımınızı rica ediyorum.

Yandex.Disk

Kod: 
Saved date:          6/16/2015 7:30:04 PM
Files detected:     41
Files scanned:         10,525
Processes scanned:     68
Modules scanned:     905
ASEPs scanned:         546
Downloads scanned:     1
Deep analysis:         2/2
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\asus\axsp\1.00.19\pebiosinterface32.dll
Publisher:       
MD5:             78a7565a59a366e0fa6fd585fbe0ac77
SHA-1:             f6720e8329c69fcc4fc77f63a70df90f016a7922
Created:         12/11/2014 10:06:51 PM
Detections:         2
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as PAK_Generic.005
            - Trend Micro as PAK_Generic.005

---------------------------------------------------------------------------------

File path:         c:\Program Files (x86)\Raptr\python26.dll
Publisher:         ActiveState Software Inc
MD5:             be987d3547dd0b9cfae7e6995770951b
SHA-1:             9831177596350ac5c04cf7215f0408eb5be4af08
Created:         11/23/2010 12:57:54 AM
Detections:         1
Determination:         Ignore detections (false positive)
            - Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\Program Files (x86)\Raptr\QtCore4.dll
Publisher:         Nokia Corporation and/or its subsidiary(-ies)
MD5:             fa0d8bc72f70b045a2de36121e34484d
SHA-1:             b76f422aadba9766664e63fe916fe8a3c614f391
Created:         9/13/2012 2:57:52 AM
Detections:         1
Determination:         Ignore detections (false positive)
            - Vba32 AntiVirus as Downloader.MediaGet.a (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files\ati technologies\ati.ace\fuel\fuel.container.performancetuning.dll
Publisher:       
MD5:             99bfea8b2b45aa7241a2d7ae2f46d05f
SHA-1:             1a5000094a7e831a4292e8970540939449380126
Created:         5/22/2015 12:42:50 PM
Detections:         1
Determination:         Inconclusive
            - Avira AntiVirus as TR/Crypt.XPACK.Gen

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\asus\ai suite ii\network icontrol\netsvchelp\ndisapi.dll
Publisher:         NT Kernel Resources
MD5:             3738205d2d9abb228bcdf7cafdf12946
SHA-1:             6d364653ad5846084fad2a5cda298bd96bc7e403
Created:         12/11/2014 10:08:50 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - ByteHero BDV as Trojan.Malware.Win32.xPack.i (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\k-lite codec pack\mpc-hc\mpc-hc.exe
Publisher:         MPC-HC Team
MD5:             b9e291ac827b0a56c0eb044dca9adc87
SHA-1:             8dfab4cd5f546c550fc15655b4b451eb45cdf09a
Created:         2/28/2015 8:39:35 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - McAfee Web Gateway as BehavesLike.Win32.LiveSoftAction.vh (Undefined)

---------------------------------------------------------------------------------

File path:         c:\windows\system32\drivers\lvuvc64.sys
Publisher:         Logitech Inc.
Signer:         Logitech, Inc.
MD5:             415e344294d1c0d04627b29146f68481
SHA-1:             0a6cc2c66fc30dc9c53358874048d72b0da6fe4b
Created:         10/23/2012 5:13:10 AM
Detections:         1
Determination:         Ignore detections (false positive)
            - Clam AntiVirus as PUA.Win32.Packer.PrivateExeProte-7

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\herdprotectscan_setup.exe
Publisher:         Reason Company Software Inc.
Signer:         Reason Software Company Inc.
MD5:             172ed33198484df87fa015b695eaad80
SHA-1:             1df2124a741afc2ee0b2e90e904a3201e5cb3c3d
Created:         6/16/2015 7:03:36 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Malware.ArcadeWeb!6.727 (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\adobe fireworks cs6\dll file\32bit\amtlib.dll
Publisher:         Adobe Systems, Incorporated
Signer:         Adobe Systems Incorporated
MD5:             381078a5ea3c9c0be046d382c92233c1
SHA-1:             c1aeece29be4ccbabfb3e39eacfa4983c0f8358c
Created:         12/19/2014 11:07:57 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - XVirus List as Win.Detected (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\adobe fireworks cs6\software\payloads\adobehelp\installadobehelp.exe
Publisher:       
Signer:         Adobe Systems Incorporated.
MD5:             262fd671d34e41e6cdf4b8ffae4c1011
SHA-1:             6f244ef47b797dc21443e6671abe8a8931636edb
Created:         12/19/2014 11:07:55 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.Clod402.Trojan (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\adobe flash pro cs6\dll file\32bit\amtlib.dll
Publisher:         Adobe Systems, Incorporated
Signer:         Adobe Systems Incorporated
MD5:             381078a5ea3c9c0be046d382c92233c1
SHA-1:             c1aeece29be4ccbabfb3e39eacfa4983c0f8358c
Created:         12/20/2014 8:45:53 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - XVirus List as Win.Detected (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\adobe flash pro cs6\dll file\64bit\amtlib.dll
Publisher:         Adobe Systems, Incorporated
Signer:         Adobe Systems Incorporated
MD5:             ef859539b893f5b19773312642318d21
SHA-1:             a02778b3bdaf59afdf98e95a87934b86028b6658
Created:         12/20/2014 8:45:53 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - XVirus List as Win.Detected (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\adobe flash pro cs6\dll file\original - 32bit\flash pro\amtlib.dll
Publisher:         Adobe Systems, Incorporated
Signer:         Adobe Systems Incorporated
MD5:             381078a5ea3c9c0be046d382c92233c1
SHA-1:             c1aeece29be4ccbabfb3e39eacfa4983c0f8358c
Created:         12/20/2014 8:45:53 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - XVirus List as Win.Detected (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\adobe flash pro cs6\software\payloads\adobehelp\installadobehelp.exe
Publisher:       
Signer:         Adobe Systems Incorporated.
MD5:             262fd671d34e41e6cdf4b8ffae4c1011
SHA-1:             6f244ef47b797dc21443e6671abe8a8931636edb
Created:         12/20/2014 8:45:51 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - Bkav FE as W32.Clod402.Trojan (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\aisuite_ii_v20001_p8z77-m_xpwin7_8\drvresource\acpi\winvista\asacpi.sys
Publisher:       
MD5:             dcdaab8697a47894a554050ce18d0b56
SHA-1:             27689d845d0afe300c8006c9721118638455a519
Created:         12/11/2014 10:06:16 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Trojan/AutoRun.VB.bae (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\aisuite_ii_v20001_p8z77-m_xpwin7_8\gpu boost_v1.01.05\drvresource\acpi\winvista\asacpi.sys
Publisher:       
MD5:             dcdaab8697a47894a554050ce18d0b56
SHA-1:             27689d845d0afe300c8006c9721118638455a519
Created:         12/11/2014 10:06:20 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Trojan/AutoRun.VB.bae (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\aisuite_ii_v20001_p8z77-m_xpwin7_8\matrix_1.03.00\assysctrlservice\asacpi.dll
Publisher:         ASUS
MD5:             a7a060977abc1d51246580efc3106293
SHA-1:             80171e4ad14d959a3ac61d484e6423cb5230e5e8
Created:         12/11/2014 10:06:24 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\aisuite_ii_v20001_p8z77-m_xpwin7_8\turbov evo\appsetup\checkwin8.exe
Publisher:       
MD5:             fc59bec3102ce882ec567c9597c85373
SHA-1:             854767c1575662880ccfdab4697e4c167dae51d8
Created:         12/11/2014 10:06:30 PM
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\new folder\revalation keylogger v3.0\revalation keylogger 3.0.exe
Publisher:       
MD5:             e904f82ae647216313133ff4347328e9
SHA-1:             af88523e54a9075910e5894eef7fd644ae90a38c
Created:         6/16/2015 2:09:08 PM
Detections:         34
Determination:         Adware
            - MicroWorld eScan as Trojan.GenericKD.1826996 (Undefined)
            - nProtect as Trojan.GenericKD.1826996 (Undefined)
            - Quick Heal as TrojanSpy.MSIL.g4 (Undefined)
            - Zillya! Antivirus as Trojan.Keylogger.Win32.35852 (Undefined)
            - K7 Gateway Antivirus as Trojan  (Undefined)
            - K7 AntiVirus as Unwanted-Program  (Adware)
            - Agnitum Outpost as Trojan.DR.Agent (Undefined)
            - Norman as Troj_Generic.VMNFW (Undefined)
            - Trend Micro House Call as TROJ_SPNR.3AJQ14 (Undefined)
            - avast! as Win32:Malware-gen (Undefined)
            - Clam AntiVirus as Win.Trojan.Agent-32183 (Undefined)
            - Kaspersky as Trojan-Spy.MSIL.KeyLogger (Undefined)
            - Bitdefender as Trojan.GenericKD.1826996 (Undefined)
            - NANO AntiVirus as Trojan.Win32.KeyLogger.deicmf (Undefined)
            - Lavasoft Ad-Aware as Trojan.GenericKD.1826996 (Undefined)
            - Sophos as Mal/Generic-S (Undefined)
            - Comodo Security as UnclassifiedMalware (Undefined)
            - F-Secure as Trojan.GenericKD.1826996 (Undefined)
            - Dr.Web as Trojan.MulDrop4.749 (Undefined)
            - VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
            - Trend Micro as TROJ_SPNR.3AJQ14 (Undefined)
            - McAfee Web Gateway as Artemis (Undefined)
            - Emsisoft Anti-Malware as Trojan.GenericKD.1826996 (Undefined)
            - Avira AntiVirus as TR/Dropper.Gen (Undefined)
            - G Data as Trojan.GenericKD.1826996 (Undefined)
            - McAfee as Artemis!E904F82AE647 (Undefined)
            - Vba32 AntiVirus as TrojanSpy.MSIL.KeyLogger (Undefined)
            - Baidu Antivirus as Trojan.MSIL.KeyLogger (Undefined)
            - ESET NOD32 as MSIL/TrojanDropper.Agent.AHC (variant) (Undefined)
            - Rising Antivirus as PE:Trojan.Win32.Generic.17387BDA!389577690 (Undefined)
            - IKARUS anti.virus as Trojan-Dropper.MSIL.Agent (Undefined)
            - Fortinet FortiGate as W32/KeyLogger.ULS!tr (Undefined)
            - AVG as Luhe.MalMSIL.A (Undefined)
            - Panda Antivirus as Trj/CI.A (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\downloads\revalation keylogger v3.0\revalation keylogger 3.0.exe
Publisher:       
MD5:             e904f82ae647216313133ff4347328e9
SHA-1:             af88523e54a9075910e5894eef7fd644ae90a38c
Created:         6/16/2015 2:08:42 PM
Detections:         34
Determination:         Adware
            - MicroWorld eScan as Trojan.GenericKD.1826996 (Undefined)
            - nProtect as Trojan.GenericKD.1826996 (Undefined)
            - Quick Heal as TrojanSpy.MSIL.g4 (Undefined)
            - Zillya! Antivirus as Trojan.Keylogger.Win32.35852 (Undefined)
            - K7 Gateway Antivirus as Trojan  (Undefined)
            - K7 AntiVirus as Unwanted-Program  (Adware)
            - Agnitum Outpost as Trojan.DR.Agent (Undefined)
            - Norman as Troj_Generic.VMNFW (Undefined)
            - Trend Micro House Call as TROJ_SPNR.3AJQ14 (Undefined)
            - avast! as Win32:Malware-gen (Undefined)
            - Clam AntiVirus as Win.Trojan.Agent-32183 (Undefined)
            - Kaspersky as Trojan-Spy.MSIL.KeyLogger (Undefined)
            - Bitdefender as Trojan.GenericKD.1826996 (Undefined)
            - NANO AntiVirus as Trojan.Win32.KeyLogger.deicmf (Undefined)
            - Lavasoft Ad-Aware as Trojan.GenericKD.1826996 (Undefined)
            - Sophos as Mal/Generic-S (Undefined)
            - Comodo Security as UnclassifiedMalware (Undefined)
            - F-Secure as Trojan.GenericKD.1826996 (Undefined)
            - Dr.Web as Trojan.MulDrop4.749 (Undefined)
            - VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
            - Trend Micro as TROJ_SPNR.3AJQ14 (Undefined)
            - McAfee Web Gateway as Artemis (Undefined)
            - Emsisoft Anti-Malware as Trojan.GenericKD.1826996 (Undefined)
            - Avira AntiVirus as TR/Dropper.Gen (Undefined)
            - G Data as Trojan.GenericKD.1826996 (Undefined)
            - McAfee as Artemis!E904F82AE647 (Undefined)
            - Vba32 AntiVirus as TrojanSpy.MSIL.KeyLogger (Undefined)
            - Baidu Antivirus as Trojan.MSIL.KeyLogger (Undefined)
            - ESET NOD32 as MSIL/TrojanDropper.Agent.AHC (variant) (Undefined)
            - Rising Antivirus as PE:Trojan.Win32.Generic.17387BDA!389577690 (Undefined)
            - IKARUS anti.virus as Trojan-Dropper.MSIL.Agent (Undefined)
            - Fortinet FortiGate as W32/KeyLogger.ULS!tr (Undefined)
            - AVG as Luhe.MalMSIL.A (Undefined)
            - Panda Antivirus as Trj/CI.A (Undefined)

---------------------------------------------------------------------------------

File path:         c:\windows\syswow64\mantleaxl32.dll
Publisher:         Advanced Micro Devices, Inc.
MD5:             4539b2a77b6722d128e43662ab18fb52
SHA-1:             d55cb94464111622b58b893751c885fd419037e5
Created:         6/5/2015 10:31:02 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - Rising Antivirus as PE:Malware.Adload!6.1D9D (Undefined)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\appdata\local\google\chrome\user data\default\file system\001\t\00\00000000
Publisher:       
Signer:         DOZ-DEKORUM LLC
MD5:             40b6940e9d2b497a4fc14265d242cdf5
SHA-1:             19e4a01627ecb20344f2260c8ad6337d24cf693b
Created:         10/19/2014 9:02:53 PM
Detections:         7
Determination:         Adware
            - Sophos as Generic PUA BJ (Undefined)
            - McAfee Web Gateway as BehavesLike.Win32.Downloader.hc (Undefined)
            - Avira AntiVirus as ADWARE/Adware.Gen4 (Adware)
            - ESET NOD32 as Win32/Amonetize.BT (variant) (Undefined)
            - AVG as Generic (Undefined)
            - Baidu Antivirus as Adware.Win32.Amonetize (Adware)
            - Reason Heuristics as PUP.Installer.DOZDEKORUM.Q (Adware)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\appdata\local\google\chrome\user data\default\file system\002\t\00\00000000
Publisher:         SwapSystem
Signer:         Maxiget Limited
MD5:             02901f0647369cc28063ae7d45bcf1f6
SHA-1:             78675471dd6528dfae783a17eaf87cc628bedadf
Created:         11/5/2014 8:52:56 PM
Detections:         38
Determination:         Adware
            - Reason Heuristics as PUP.New IT Limited.Maxiget (Adware)
            - K7 AntiVirus as Unwanted-Program  (Adware)
            - K7 Gateway Antivirus as Unwanted-Program  (Adware)
            - Comodo Security as Application.Win32.4Shared.FG (Adware)
            - McAfee Web Gateway as BehavesLike.Win32.AdwareAmonetize.qh (Adware)
            - Avira AntiVirus as APPL/Downloader.Gen4 (Adware)
            - AhnLab V3 Security as Win-Trojan/Malpacked3.Gen (Undefined)
            - Vba32 AntiVirus as suspected of Trojan.Downloader.gen.h (Undefined)
            - ESET NOD32 as Win32/4Shared.Z potentially unwanted application (Adware)
            - Dr.Web as Adware.Downware.10732,  Adware.Downware.11239 (Adware)
            - NANO AntiVirus as Riskware.Win32.ArchSMS.dipmvj (Adware)
            - Kaspersky as Trojan-Dropper.Win32.Agent (Undefined)
            - Panda Antivirus as Trj/Genetic.gen (Undefined)
            - VIPRE Antivirus as Threat.4150696 (Undefined)
            - Agnitum Outpost as PUA.4Shared (Adware)
            - McAfee as Program.4shared (Adware)
            - G Data as Win32.Application.4Shared (Undefined)
            - F-Prot as W32/A-63d5a2cf (Undefined)
            - Clam AntiVirus as Win.Trojan.Agent-811813 (Undefined)
            - Baidu Antivirus as Adware.Win32.4Shared (Adware)
            - MicroWorld eScan as Gen:Variant.Graftor.163677 (Undefined)
            - Bitdefender as Gen:Variant.Graftor.163677 (Undefined)
            - ByteHero BDV as Trojan-Downloader.win32.Small.gen.105 (Undefined)
            - Lavasoft Ad-Aware as Trojan.Generic.12376012 (Undefined)
            - Emsisoft Anti-Malware as Trojan.Generic.12376012 (Undefined)
            - F-Secure as Trojan.Generic.12376012 (Undefined)
            - AVG as Generic (Undefined)
            - Sophos as 4Share Downloader (Undefined)
            - Malwarebytes as Adware.Agent (Adware)
            - Zillya! Antivirus as Adware.Agent.Win32.22206 (Adware)
            - Antiy Labs AVL as GrayWare[AdWare:not-a-virus]/Win32.Agent.grna (Adware)
            - IKARUS anti.virus as PUA.4Shared (Adware)
            - ViRobot as Worm.Win32.P2P-Palevo.B.Gen (Undefined)
            - Norman as Trojan.Generic.12376012 (Undefined)
            - Rising Antivirus as PE:Trojan.Win32.badur.a!1075355892 (Undefined)
            - nProtect as Trojan.Generic.12366158 (Undefined)
            - Jiangmin as TrojanDropper.Agent.cipu (Undefined)
            - Bkav FE as W32.HfsAdware (Adware)

---------------------------------------------------------------------------------

File path:         c:\users\gökhan\appdata\local\unity\webplayer\uninstall.exe
Publisher:         Unity Technologies ApS
MD5:             07f8fcc4522cb1af96f918db55894283
SHA-1:             60268d636b88c22900d49278b62bf4aa5592f62d
Created:         11/2/2014 7:37:35 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - AegisLab AV Signature as W32.Sality (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files\common files\logishrd\driverstore\pro564\lvuvc64.sys
Publisher:         Logitech Inc.
Signer:         Logitech, Inc.
MD5:             415e344294d1c0d04627b29146f68481
SHA-1:             0a6cc2c66fc30dc9c53358874048d72b0da6fe4b
Created:         10/23/2012 5:13:10 AM
Detections:         1
Determination:         Ignore detections (false positive)
            - Clam AntiVirus as PUA.Win32.Packer.PrivateExeProte-7

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingfinance_4.3.63.0_x86__8wekyb3d8bbwe\microsoft.aria.clienttelemetry.dll
Publisher:       
MD5:             5469b32cb9ed00c6ab0bae622eb55078
SHA-1:             0a26f63e6c6b70bc227ca0acf728c2e0df593041
Created:         5/28/2015 6:55:56 AM
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingfinance_4.3.63.0_x86__8wekyb3d8bbwe\sqlitewrapper.dll
Publisher:       
MD5:             95351a6d4a318f5faef49a9068357498
SHA-1:             a0b359d6c3ac2636442e45056c7a262d9cc3fdd0
Created:         5/28/2015 6:55:56 AM
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingnews_4.3.84.0_x86__8wekyb3d8bbwe\microsoft.aria.clienttelemetry.dll
Publisher:       
MD5:             5469b32cb9ed00c6ab0bae622eb55078
SHA-1:             0a26f63e6c6b70bc227ca0acf728c2e0df593041
Created:         5/28/2015 6:55:56 AM
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingnews_4.3.84.0_x86__8wekyb3d8bbwe\microsoft.msn.news.exe
Publisher:       
MD5:             95fc9a5594d71d40ab88681d8a8c5563
SHA-1:             0fc971ed16ac2a43cb48b13d9f0d99c18fdb6f0e
Created:         6/2/2015 9:44:04 PM
Detections:         1
Determination:         Inconclusive
            - Avira AntiVirus as TR/Crypt.XPACK.Gen

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingnews_4.3.84.0_x86__8wekyb3d8bbwe\sqlitewrapper.dll
Publisher:       
MD5:             d933df60d2c86689e4743cbd3a2d8b3a
SHA-1:             970fd152bc0c474d9893060293caffd6cd8e438e
Created:         6/2/2015 9:44:05 PM
Detections:         2
Determination:         Inconclusive
            - Avira AntiVirus as TR/Dropper.Gen (Undefined)
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingsports_4.3.63.0_x86__8wekyb3d8bbwe\microsoft.aria.clienttelemetry.dll
Publisher:       
MD5:             5469b32cb9ed00c6ab0bae622eb55078
SHA-1:             0a26f63e6c6b70bc227ca0acf728c2e0df593041
Created:         5/28/2015 6:55:56 AM
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingsports_4.3.63.0_x86__8wekyb3d8bbwe\sqlitewrapper.dll
Publisher:       
MD5:             95351a6d4a318f5faef49a9068357498
SHA-1:             a0b359d6c3ac2636442e45056c7a262d9cc3fdd0
Created:         5/28/2015 6:55:56 AM
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingweather_4.3.63.0_x86__8wekyb3d8bbwe\microsoft.aria.clienttelemetry.dll
Publisher:       
MD5:             5469b32cb9ed00c6ab0bae622eb55078
SHA-1:             0a26f63e6c6b70bc227ca0acf728c2e0df593041
Created:         5/28/2015 6:55:56 AM
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.bingweather_4.3.63.0_x86__8wekyb3d8bbwe\sqlitewrapper.dll
Publisher:       
MD5:             95351a6d4a318f5faef49a9068357498
SHA-1:             a0b359d6c3ac2636442e45056c7a262d9cc3fdd0
Created:         5/28/2015 6:55:56 AM
Detections:         1
Determination:         Inconclusive
            - Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.cortana_1.4.4.120_x64__8wekyb3d8bbwe\cortana.intentextraction.dll
Publisher:       
MD5:             8e3d23a0b432500713c8eaa5788d0205
SHA-1:             a9de94f3b2cfddd592e04c1912c7f78e6ef8ff6d
Created:         4/25/2015 7:46:06 AM
Detections:         1
Determination:         Inconclusive
            - F-Secure as Gen:Variant.Adware.GameVance (Adware)

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.people_1.0.10117.0_x64__8wekyb3d8bbwe\microsoft.apps.people.backgroundtasks.dll
Publisher:       
MD5:             94899cb6e262f78f51cab55d28cd0859
SHA-1:             2540f374a828ef226cf5acdd06008d1b2c7f3e1d
Created:         5/20/2015 2:59:51 PM
Detections:         1
Determination:         Inconclusive
            - Avira AntiVirus as TR/Patched.Gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files\windowsapps\microsoft.windowsdefaultlockscreen_1.0.0.0_x64_northamerica_8wekyb3d8bbwe\lockapp.windows.exe
Publisher:       
MD5:             e1d1d584bca597a2bad36e12bf61c545
SHA-1:             211a148eb1098aa848c415b703bb5b6935e30f40
Created:         4/25/2015 7:46:23 AM
Detections:         1
Determination:         Inconclusive
            - Avira AntiVirus as TR/Trash.Gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\amd\ati.ace\core-static\atiamkor.dll
Publisher:         Advanced Micro Devices, Inc.
MD5:             9ddb229b475f4eb09f403b48ddc08fa9
SHA-1:             4d12c8fe6672938984ddc931ad5d8fcde2095ced
Created:         11/20/2014 9:20:12 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - The Hacker as Trojan/Birele.abwo (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\asus\ai suite ii\sensor graph\aahmlib_graph.dll
Publisher:       
MD5:             b3e8652841e38ec2559347dd77666329
SHA-1:             f017ef3cfda93854a51451375b7494faec826686
Created:         12/11/2014 10:07:49 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious.H

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\asus\assysctrlservice\1.00.13\asacpi.dll
Publisher:         ASUS
MD5:             a7a060977abc1d51246580efc3106293
SHA-1:             80171e4ad14d959a3ac61d484e6423cb5230e5e8
Created:         12/11/2014 10:07:16 PM
Detections:         1
Determination:         Ignore detections (false positive)
            - Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)

---------------------------------------------------------------------------------

File path:         c:\program files (x86)\asus\axsp\1.01.02\pebiosinterface32.dll
Publisher:       
MD5:             78a7565a59a366e0fa6fd585fbe0ac77
SHA-1:             f6720e8329c69fcc4fc77f63a70df90f016a7922
Created:         12/11/2014 9:55:03 PM
Detections:         2
Determination:         Ignore detections (false positive)
            - Trend Micro House Call as PAK_Generic.005
            - Trend Micro as PAK_Generic.005
 
Dün elektrikler gittiğinden cevap yazamadım kusura bakmayın.
Herdprotect rehberine göre bunları silin:
c:\users\gökhan\downloads\new folder\revalation keylogger v3.0\revalation keylogger 3.0.exe
c:\users\gökhan\downloads\revalation keylogger v3.0\revalation keylogger 3.0.exe
c:\users\gökhan\appdata\local\google\chrome\user data\default\file system\001\t\00\00000000
c:\users\gökhan\appdata\local\google\chrome\user data\default\file system\002\t\00\00000000

Bu klasör içlerini sil;
c:\users\gökhan\downloads\new folder\
c:\users\gökhan\downloads\revalation keylogger v3.0
c:\users\gökhan\appdata\local\google\chrome\user data\default\file system\001\
c:\users\gökhan\appdata\local\google\chrome\user data\default\file system\002
C:\Program Files\UPV\UPV.exe
C:\Program Files\UPV
C:\Windows\PE_Rom.dll

Hosts dosyan değiştirilmiş onu orj. ile değiştir.
Bunların ardından imzamdaki KIS2015 ile birde tarama yapın.
 
Ana hatları önceden silmiştim ancak bazı ince işleri de silmiş oldum sayenizde.
Host dosyasını da zararlı sitelere erişimimi açmak için değiştirmiş olsalar gerek, onu da yenilerim.

Tarama sonuçlarını tekrar iletirim.

Ali abi bu konuda detaylı bilgiyi vermiş zaten HOST dosyası hakkında.
Bu konumda bulunuyor : C:\Windows\System32\drivers\etc
Hosts dosyası nedir, nerede bulunur? | Technopat Sosyal

Hocam nasıl bir bela ise artık kurtulamıyorum yahu Masaüstü simgeleri kaybolup File Explorer donmalara başladı.
Task Manager zaten en başından beri yetkisiz, açamıyorum.
MS DOS ekranı desek admin yetkileriniz yoktur tarzı şeyler yazıyor. Mavi ekran bile aldım MS DOS'a kod yazmaya çalışırken.
 
Evet konum olarak vermiş ancak orj. dosyayı burada sistemine göre değiştirmen gerekli onu da belirte iyi olurdu Ben o konuyu bir editleyeyim daha iyi olur.
Hosts dosyasını varsayılanına nasıl sıfırlayabilirim?
 
BilgisayarKurdu dedi:
Host dosyasını da zararlı sitelere erişimimi açmak için değiştirmiş olsalar gerek, onu da yenilerim.
Genişletmek için tıkla...
Hayır zararlıya açmak için değil, antivirüs ve güvenlik şirketlerine erişimi engellemek için blocklamışlar(engellemiş).
 
Mesaj yazmak için giriş yapmalı ya da kaydolmalısınız.

Benzer konular

  • Kilitli
HerdProtect tarama sonuçları
2
Mesaj
13
Görüntüleme
3.730
Murat5038
S
Herdprotect Anti-Malware Nasıldır ?
Mesaj
3
Görüntüleme
1.919
elshankaraev
  • Soru
HerdProtect hakkında bilgisi olan var mı?
Mesaj
2
Görüntüleme
1.131
Murat5038
68 antivirüs ile sisteminizi tarayın
Mesaj
0
Görüntüleme
1.609
Murat5038
5
Txt dosyasından virüs bulaşır mı?
2 3
Mesaj
25
Görüntüleme
2.388
OnurOfc
Menü
Giriş yap
Kaydol
Bu siteyi kullanmak için çerezler gereklidir. Siteyi kullanmaya devam etmek için çerezleri kabul etmelisiniz. Daha Fazlasını Öğren.…