TechSpot

My dds and attach files...

By PsYcHoO
Sep 17, 2013
  1. What can I do for it ? Please help me.... thank you very much....


    DDS.TXT


    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.25.2
    Run by Utku at 18:41:24 on 2013-09-17
    Microsoft Windows 7 Home Premium 6.1.7601.1.1254.90.1055.18.4020.2164 [GMT 3:00]
    .
    AV: AntiVir Desktop *Enabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: AntiVir Desktop *Enabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\nvvsvc.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
    C:\Windows\system32\svchost.exe -k bthsvcs
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\DRIVERS\o2flash.exe
    C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    C:\Windows\System32\rpcnetp.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
    C:\Program Files\TOSHIBA\TECO\TecoService.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\TOSHIBA\TECO\Teco.exe
    C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\TOSHIBA\FlashCards\Hotkey\TcrdKBB.exe
    C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
    C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
    C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
    C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
    C:\Program Files (x86)\foobar2000\foobar2000.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe
    C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
    C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
    C:\Windows\notepad.exe
    C:\Windows\System32\svchost.exe -k swprv
    C:\Windows\SysWOW64\NOTEPAD.EXE
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\vssvc.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Windows\SysWOW64\NOTEPAD.EXE
    C:\Windows\SysWOW64\NOTEPAD.EXE
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com/
    mStart Page = hxxp://www.aramasayfam.com/?aff=1
    mWinlogon: Userinit = userinit.exe
    BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
    BHO: Avira SearchFree Toolbar plus Web Protection: {41564952-412D-5637-00A7-7A786E7484D7} -
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO: Windows Live ID Oturum Açma Yardım Aracı: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB: Avira SearchFree Toolbar plus Web Protection: {41564952-412D-5637-00A7-7A786E7484D7} -
    uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
    uRun: [DriverScanner] "C:\Program Files (x86)\Uniblue\DriverScanner\launcher.exe" delay 20000
    uRun: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
    uRun: [EADM] "C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe"
    uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
    uRun: [VoipRaider] "C:\Program Files (x86)\VoipRaider.com\VoipRaider\voipraider.exe" -nosplash -minimized
    uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
    uRun: [Octoshape Streaming Services] "C:\Users\Utku\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun
    uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
    uRun: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
    mRun: [NeroFilterCheck] C:\Windows\SysWOW64\NeroCheck.exe
    mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
    mRun: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    dRunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
    mPolicies-Explorer: NoActiveDesktop = dword:1
    mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableLUA = dword:0
    mPolicies-System: EnableUIADesktopToggle = dword:0
    mPolicies-System: PromptOnSecureDesktop = dword:0
    IE: Turbo Internet: Bu bağlantıyı indir - C:\Program Files (x86)\Turbo Internet\exts\dl.html
    IE: Turbo Internet: Bu sayfayı Yer İmlerine ekle - C:\Program Files (x86)\Turbo Internet\exts\addFav.html
    LSP: C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    TCP: NameServer = 192.168.1.1
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF} : NameServer = 8.8.8.8,8.8.4.4
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF} : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\0596B6164756C6149627D41485 : NameServer = 8.8.8.8,8.8.4.4
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\0596B6164756C6149627D41485 : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\3557075627F6E6C696E656 : NameServer = 8.8.8.8,8.8.4.4
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\3557075627F6E6C696E656 : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\4505D2C494E4B4F5348383732413 : DHCPNameServer = 192.168.2.1
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\5747B657 : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\A5978554C40323 : NameServer = 8.8.8.8,8.8.4.4
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\A5978554C40323 : DHCPNameServer = 195.175.39.40 195.175.39.39
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\A5978554C40333 : NameServer = 8.8.8.8,8.8.4.4
    TCP: Interfaces\{085AEEDF-C787-43DB-B413-596E5757EBEF}\A5978554C40333 : DHCPNameServer = 195.175.39.40 195.175.39.39
    TCP: Interfaces\{5C5E7265-34B1-47D3-B577-7E28A1BEA649} : NameServer = 8.8.8.8,8.8.4.4
    TCP: Interfaces\{5C5E7265-34B1-47D3-B577-7E28A1BEA649} : DHCPNameServer = 192.168.1.1
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
    SSODL: WebCheck - <orphaned>
    mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-BHO: Hotspot Shield Class: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -
    x64-Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
    x64-Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
    x64-Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\System32\NvCpl.dll,NvStartup
    x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
    x64-Run: [TosWaitSrv] C:\Program Files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
    x64-Run: [Teco] "C:\Program Files (x86)\TOSHIBA\TECO\Teco.exe" /r
    x64-Run: [TPwrMain] C:\Program Files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
    x64-Run: [HSON] C:\Program Files (x86)\TOSHIBA\TBS\HSON.exe
    x64-Run: [00TCrdMain] C:\Program Files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
    x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
    x64-SSODL: WebCheck - <orphaned>
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Utku\AppData\Roaming\Mozilla\Firefox\Profiles\8c2oqjaa.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&CUI=UN16425408527665888&UM=1&SearchSource=3&q={searchTerms}
    FF - prefs.js: browser.startup.homepage - www.google.com
    FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
    FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
    FF - plugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMSS.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
    FF - plugin: C:\Users\Utku\AppData\Roaming\Mozilla\plugins\npoctoshape.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll
    FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll
    FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;C:\Windows\System32\drivers\Thpevm.sys [2009-6-29 14784]
    R1 avkmgr;avkmgr;C:\Windows\System32\drivers\avkmgr.sys [2013-8-4 28600]
    R2 AntiVirSchedulerService;Avira Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-8-4 84024]
    R2 AntiVirService;Avira Real-Time Protection;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-8-4 108088]
    R2 AntiVirWebService;Avira Web Protection;C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe [2013-8-4 815160]
    R2 APNMCP;Ask Update Service;C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2013-7-26 168400]
    R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2013-8-4 105344]
    R2 PanService;PandoraService;C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2013-5-3 625304]
    R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\TECO\TecoService.exe [2009-9-29 251760]
    R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\Windows\System32\drivers\TVALZFL.sys [2009-6-20 14472]
    R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2009-10-26 151936]
    R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\System32\drivers\L1C62x64.sys [2009-6-10 57344]
    R3 O2MDGRDR;O2MDGRDR;C:\Windows\System32\drivers\o2mdgx64.sys [2009-11-3 74016]
    R3 O2SDGRDR;O2SDGRDR;C:\Windows\System32\drivers\o2sdgx64.sys [2009-8-19 49568]
    R3 QIOMem;Generic IO & Memory Access;C:\Windows\System32\drivers\QIOMem.sys [2009-6-16 12800]
    R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;C:\Windows\System32\drivers\rtl8192se.sys [2010-4-27 1103904]
    R3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2009-11-11 824688]
    RUnknown rpcnetp;rpcnetp; [x]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-19 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-19 138576]
    S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-9-17 418376]
    S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-9-17 701512]
    S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
    S3 BthAvrcp;Bluetooth AVRCP Profile;C:\Windows\System32\drivers\BthAvrcp.sys [2009-8-13 29184]
    S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-9-17 25928]
    S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-2-5 235216]
    S3 taphss6;Anchorfree HSS VPN Adapter;C:\Windows\System32\drivers\taphss6.sys [2013-2-22 42184]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-6-23 59392]
    S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);C:\Windows\System32\drivers\vcsvad.sys [2012-6-30 21504]
    S3 WatAdminSvc;Windows Etkinleştirme Teknolojileri Hizmeti;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-2-19 1255736]
    .
    =============== Created Last 30 ================
    .
    2013-09-17 14:28:22 -------- d-----w- C:\Users\Utku\AppData\Roaming\Malwarebytes
    2013-09-17 14:28:12 -------- d-----w- C:\ProgramData\Malwarebytes
    2013-09-17 14:28:11 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2013-09-17 14:28:11 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2013-09-17 09:24:04 -------- d-----w- C:\Users\Utku\AppData\Local\{F45702CD-1DAE-48D6-8327-4889A3E20A10}
    2013-09-16 21:23:39 -------- d-----w- C:\Users\Utku\AppData\Local\{669F16E4-1536-41CC-94F2-986EDA829574}
    2013-09-16 09:23:06 -------- d-----w- C:\Users\Utku\AppData\Local\{A6E54294-5717-41B8-AED0-F16061BFFF5C}
    2013-09-15 21:12:07 -------- d-----w- C:\Users\Utku\AppData\Local\{C0A77EDF-C028-4112-9335-B9349811706E}
    2013-09-15 00:50:31 -------- d-----w- C:\Users\Utku\AppData\Local\{732F7A6A-68A1-44B3-98F9-2B5618DFB32B}
    2013-09-14 12:37:28 -------- d-----w- C:\Users\Utku\AppData\Local\{849B42E4-9BAB-4E86-9100-1C1F913D791E}
    2013-09-14 00:37:03 -------- d-----w- C:\Users\Utku\AppData\Local\{71F8E408-D79A-42A3-99D2-14A5F49DC735}
    2013-09-13 11:31:41 -------- d-----w- C:\Users\Utku\AppData\Local\{A348E16C-9202-453E-8DE8-AF801F345FD7}
    2013-09-12 21:56:44 -------- d-----w- C:\Users\Utku\AppData\Local\{69BD331F-5D5B-4F59-A99C-37E60F4895C4}
    2013-09-12 09:56:19 -------- d-----w- C:\Users\Utku\AppData\Local\{87693A0C-67E6-48FA-8EA0-DFB700719067}
    2013-09-11 12:11:31 -------- d-----w- C:\Users\Utku\AppData\Local\{3C8F33C6-79BB-4528-915F-60E5326593F5}
    2013-09-11 00:11:05 -------- d-----w- C:\Users\Utku\AppData\Local\{698395B2-83C4-4196-A8D2-CD343CDD6027}
    2013-09-10 12:10:38 -------- d-----w- C:\Users\Utku\AppData\Local\{3FD3EEFA-D6B7-463A-B1E3-0ACE895A122F}
    2013-09-10 00:10:14 -------- d-----w- C:\Users\Utku\AppData\Local\{AAC756BF-E898-40A3-9CE1-B0F1343D6F2E}
    2013-09-09 12:09:48 -------- d-----w- C:\Users\Utku\AppData\Local\{0D832AFC-FF3C-4EFD-B3BA-AE90404392C4}
    2013-09-09 00:09:23 -------- d-----w- C:\Users\Utku\AppData\Local\{D2FE37DB-0025-4C98-862D-7B4CF4BE60AB}
    2013-09-06 17:12:07 -------- d-----w- C:\Users\Utku\AppData\Local\{26CA5131-6955-4619-A953-07EC8A69CC02}
    2013-09-06 04:12:51 -------- d-----w- C:\Users\Utku\AppData\Local\{B2C7E8B8-E747-43CF-A736-02C53E147C82}
    2013-09-05 16:12:24 -------- d-----w- C:\Users\Utku\AppData\Local\{7EF69161-7161-416C-AAFC-97D7954F070D}
    2013-09-04 22:44:27 -------- d-----w- C:\Users\Utku\AppData\Local\{187E8452-66CE-46BD-997D-DC77BD57C5C4}
    2013-09-04 08:11:26 -------- d-----w- C:\Users\Utku\AppData\Local\{2A2E0638-5185-494B-B5FB-206892132293}
    2013-09-04 00:11:08 -------- d-----w- C:\Users\Utku\AppData\Local\{FD58A89E-A417-496A-9FB9-08CDBB6226C7}
    2013-09-03 13:53:52 187248 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
    2013-09-03 08:28:35 -------- d-----w- C:\Users\Utku\AppData\Local\{C6A39529-70EC-4F70-B345-B530F6D3DDA6}
    2013-09-02 11:44:13 -------- d-----w- C:\Users\Utku\AppData\Local\{5F4BD7D7-EC27-4C11-A5C0-3029C7F80473}
    2013-09-01 20:47:13 -------- d-----w- C:\Users\Utku\AppData\Local\{FEBB1A2A-1E6A-420B-8DDB-920349279E5E}
    2013-09-01 08:46:48 -------- d-----w- C:\Users\Utku\AppData\Local\{C4BB312F-435B-4A1B-9B0E-8D24594342CB}
    2013-08-31 19:34:05 -------- d-----w- C:\Users\Utku\AppData\Local\{2E930BBA-30CF-4E14-A4DC-9CCAB88667E6}
    2013-08-31 07:33:32 -------- d-----w- C:\Users\Utku\AppData\Local\{B6E63CBD-53EF-4B31-96DD-34E7E0071CBC}
    2013-08-30 11:20:21 -------- d-----w- C:\Users\Utku\AppData\Local\{4D628E32-C56F-430E-96A4-47AF0E9A35F9}
    2013-08-29 19:13:58 -------- d-----w- C:\Users\Utku\AppData\Local\{13F57CF6-5A83-4833-B90F-997120694A1A}
    2013-08-29 07:05:48 -------- d-----w- C:\Users\Utku\AppData\Local\{2AB4DD2E-7A43-434E-AA7B-0861C9DB5802}
    2013-08-28 07:25:11 -------- d-----w- C:\Users\Utku\AppData\Local\{DD818312-726D-4073-B479-95030F9810E1}
    2013-08-27 07:35:48 -------- d-----w- C:\Users\Utku\AppData\Local\{8F7AAE33-F0F4-46AE-9C29-9850A59509FE}
    2013-08-26 09:32:25 -------- d-----w- C:\Users\Utku\AppData\Local\{FB8AE662-A804-4A40-A623-0BA2BB09B68F}
    2013-08-25 21:32:00 -------- d-----w- C:\Users\Utku\AppData\Local\{6ADE5B09-18DC-4E1E-965C-E6875B7EE9F5}
    2013-08-25 07:12:55 -------- d-----w- C:\Users\Utku\AppData\Local\{35B35F72-5C13-44D2-9C1B-4EEBF36FEFD4}
    2013-08-24 06:04:56 -------- d-----w- C:\Users\Utku\AppData\Local\{8CD83FDF-0ADF-47EA-8691-7DF5EE13CD30}
    2013-08-23 06:44:04 -------- d-----w- C:\Users\Utku\AppData\Local\{571C96B5-2BB7-4911-AB93-AD47D38D1CFE}
    2013-08-22 18:43:39 -------- d-----w- C:\Users\Utku\AppData\Local\{12CBF143-C787-4372-B875-128DFD68C4BB}
    2013-08-22 06:43:16 -------- d-----w- C:\Users\Utku\AppData\Local\{6129252F-9A5F-4C0A-A78A-70C213E3921A}
    2013-08-21 06:04:33 -------- d-----w- C:\Users\Utku\AppData\Local\{6B5B5E61-39DD-45B0-BD42-4130A85C912B}
    2013-08-20 06:34:32 -------- d-----w- C:\Users\Utku\AppData\Local\{F93BB804-9D18-4092-95CC-8CA6E581FEBA}
    2013-08-19 13:56:14 -------- d-----w- C:\Users\Utku\AppData\Local\{B293D249-D6B4-4938-B163-CCBB257C0E0C}
    2013-08-18 22:35:10 -------- d-----w- C:\Users\Utku\AppData\Local\{0BC32B04-5ABE-4606-A0E7-05864DCD9D33}
    .
    ==================== Find3M ====================
    .
    2013-09-17 14:51:48 17920 ----a-w- C:\Windows\SysWow64\rpcnetp.dll
    2013-09-17 14:51:18 17920 ----a-w- C:\Windows\SysWow64\rpcnetp.exe
    2013-09-17 14:51:18 17920 ----a-w- C:\Windows\System32\rpcnetp.exe
    2013-09-14 00:39:08 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2013-09-14 00:39:08 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2013-09-03 08:28:47 105344 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
    2013-08-29 13:30:25 81112 ----a-w- C:\Windows\System32\drivers\avnetflt.sys
    2013-08-05 18:41:40 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
    2013-08-05 18:41:40 867240 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll
    2013-08-05 18:41:40 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
    2013-08-03 19:26:56 28600 ----a-w- C:\Windows\System32\drivers\avkmgr.sys
    .
    ============= FINISH: 18:41:33,77 ===============





    ATTACH.TXT



    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows 7 Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 18.02.2011 20:22:03
    System Uptime: 17.09.2013 17:51:13 (1 hours ago)
    .
    Motherboard: TOSHIBA | | Qosmio X505
    Processor: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz | CPU 1 | 2267/133mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 232 GiB total, 43,99 GiB free.
    D: is FIXED (NTFS) - 223 GiB total, 63,754 GiB free.
    E: is FIXED (NTFS) - 10 GiB total, 10,247 GiB free.
    F: is CDROM (UDF)
    G: is CDROM (CDFS)
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4d36e96c-e325-11ce-bfc1-08002be10318}
    Description: Avnex Virtual Audio Device
    Device ID: ROOT\MEDIA\0000
    Manufacturer: AVNEX Ltd.
    Name: Avnex Virtual Audio Device
    PNP Device ID: ROOT\MEDIA\0000
    Service: VCSVADHWSer
    .
    ==== System Restore Points ===================
    .
    RP453: 11.09.2013 22:41:41 - Zamanlanan Denetim Noktası
    .
    ==== Installed Programs ======================
    .
    1Freeware MP3 to FLAC Converter 1.0.2
    4Musics FLAC to MP3 Converter 5.2
    7-Zip 4.65
    Adobe AIR
    Adobe Flash Player 11 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Reader X (10.1.8)
    Amnesia - The Dark Descent
    ASIO4ALL
    µTorrent
    Avira Free Antivirus
    Avira SearchFree Toolbar plus Web Protection
    Conexant HD Audio
    D3DX10
    DAEMON Tools Lite
    Dolby Control Center
    FLAC To MP3 V4.0.4
    foobar2000 v1.1.13
    Free M4a to MP3 Converter 6.0
    Garmin POI Loader
    Garmin USB Drivers
    Garmin WebUpdater
    Google Chrome
    Google Update Helper
    Homepage 1.0
    Intel(R) Turbo Boost Technology Driver
    Java 7 Update 25
    Java Auto Updater
    Java(TM) 6 Update 18
    Java(TM) 6 Update 35
    Junk Mail filter update
    K-Lite Codec Pack 6.9.0 (Full)
    Malwarebytes Anti-Malware 1.75.0.1300 sürümü
    McAfee Security Scan Plus
    Microsoft .NET Framework 4 İstemci Profili TRK Dil Paketi
    Microsoft .NET Framework 4 Client Profile
    Microsoft .NET Framework 4 Client Profile TRK Language Pack
    Microsoft .NET Framework 4 Extended
    Microsoft .NET Framework 4 Extended TRK Language Pack
    Microsoft .NET Framework 4 Genişletilmiş TRK Dil Paketi
    Microsoft Application Error Reporting
    Microsoft Games for Windows - LIVE Redistributable
    Microsoft Silverlight
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2005 Redistributable (x64)
    Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
    Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    Microsoft_VC100_CRT_SP1_x64
    Microsoft_VC100_CRT_SP1_x86
    Mozilla Firefox 23.0.1 (x86 tr)
    Mozilla Maintenance Service
    MPC-HC 1.6.7.7114 (9eb64ec) (64-bit)
    MSVC80_x64_v2
    MSVC80_x86_v2
    MSVC90_x64
    MSVC90_x86
    MSVCRT
    MSVCRT_amd64
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    NavCity 2012.04 TR by Basarsoft
    Nero 7 Ultra Edition
    Nokia Connectivity Cable Driver
    Nokia Suite
    NVIDIA Drivers
    NVIDIA PhysX
    O2Micro Flash Memory Card Windows Driver
    Octoshape Streaming Services
    OpenOffice.org 3.2
    Opera 12.12
    Pandora Service
    PC Connectivity Solution
    Pro Evolution Soccer 2013
    Security Update for Microsoft .NET Framework 4 İstemci Profili TRK Dil Paketi (KB2478663)
    Security Update for Microsoft .NET Framework 4 İstemci Profili TRK Dil Paketi (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
    Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
    Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
    Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
    Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
    Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
    Skype™ 5.10
    Songbird 2.2.0 (Build 2453)
    StarCraft II
    StarCraft II Beta
    Synaptics Pointing Device Driver
    The KMPlayer (remove only)
    Tom Clancy's H.A.W.X. 2
    TOSHIBA Assist
    TOSHIBA eco Utility
    TOSHIBA Hardware Setup
    TOSHIBA PC Health Monitor
    TOSHIBA Value Added Package
    Ubisoft Game Launcher
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
    Update for Microsoft .NET Framework 4 Extended (KB2468871)
    Update for Microsoft .NET Framework 4 Extended (KB2533523)
    Update for Microsoft .NET Framework 4 Extended (KB2600217)
    Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live ID Sign-in Assistant
    Windows Live Installer
    Windows Live Language Selector
    Windows Live Mail
    Windows Live Messenger
    Windows Live MIME IFilter
    Windows Live Photo Common
    Windows Live PIMT Platform
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live Temel Parçalar
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    Windows Media Player Firefox Plugin
    Windows Sürücü Paketi - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)
    WinRAR archiver
    Worms Reloaded
    .
    ==== End Of File ===========================



    thank you again....
     
  2. Broni

    Broni Malware Annihilator Posts: 52,895   +344

    Welcome aboard [​IMG]

    Please, complete all steps listed here: http://www.techspot.com/vb/topic58138.html
    Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
    Attached logs won't be reviewed.

    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

    ====================================

    You're not saying what's wrong with your computer.
     
  3. PsYcHoO

    PsYcHoO TS Rookie Topic Starter

    My avira was scanned 1 hidden object...than I clean the pc and took the dds and attach files with malwarebytes...avira still scanning the hidden object...how can I clean the hidden object or what should I do after that ?..thank you very much..

    p.s : sorry for the first massage...I am a dumb..
     
  4. Broni

    Broni Malware Annihilator Posts: 52,895   +344

    I still need Malwarebytes log.
     
  5. PsYcHoO

    PsYcHoO TS Rookie Topic Starter

    Sorry for late answer but my pc is dead... so no more Malwarebytes log..thanks for your help.
     
  6. Broni

    Broni Malware Annihilator Posts: 52,895   +344

    Sorry for your loss :(
     

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...