msnde virus var

[custamc]

omg you naked ? http://www.artesaniasdechile.cl/emoticon.php?email=pixel_computerForumda msn, mail, adres, gerçek isim vs. bilgilerinizi paylaşmayınız.com

sürekli bu mesajı gonderiyor msn ne yapmam gerekiyor nod32 yi denedim olmadı

acilllllllll

[sk8er_boi]

http://www.merijn.org/files/HiJackThis_v2.exe[/CODE]

Buradan hijackThis programını indirip tarama yapın. Programın verdiği log dosyasını da buraya verin , inceleyelim.

[custamc]

Logfile of Trend Micro HijackThis v2.0.0 (BETA)

Scan saved at 11:41:36, on 05.11.2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\ATK0100\Hcontrol.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\sistray.EXE

C:\WINDOWS\system32\khooker.exe

C:\Program Files\Eset\nod32kui.exe

C:\WINDOWS\AGRSMMSG.exe

C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Messenger\msmsgs.exe

C:\WINDOWS\ATK0100\ATKOSD.exe

C:\Program Files\Borland\InterBase\bin\ibguard.exe

C:\Program Files\Eset\nod32krn.exe

C:\Program Files\Borland\InterBase\bin\ibserver.exe

C:\Program Files\MSN Messenger\usnsvc.exe

C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msnmsgs.exe

C:\Program Files\MSN Messenger\msnmsgr.exe

C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe

\pixel\F\HiJackThis_v2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Bağlantılar

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [siS Tray] C:\WINDOWS\system32\sistray.EXE

O4 - HKLM\..\Run: [siS KHooker] C:\WINDOWS\system32\khooker.exe

O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe

O4 - HKLM\..\Run: [Graphic Update] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msnmsgs.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O8 - Extra context menu item: Microsoft Excel'e Gö&nder - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Araştır - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {D5D17C21-1719-4640-B0B2-4F3262419920} (JaguarEditControl-ISBANK) -

Please register to see this content.

O22 - SharedTaskScheduler: Browseui önceden yükleyicisi - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Bileşen Katergorileri önbellek daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InterBase Guardian (InterBaseGuardian) - Inprise Corporation - C:\Program Files\Borland\InterBase\bin\ibguard.exe

O23 - Service: InterBase Server (InterBaseServer) - Inprise Corporation - C:\Program Files\Borland\InterBase\bin\ibserver.exe

O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

--

End of file - 4804 bytes

kardeş içerigi bu

[sk8er_boi]

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [Graphic Update] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msnmsgs.exe[/CODE]

Şu ikisi şüpheli gözüküyor. tekrar tarattırıp bunları seç ,fix de ve restart at. Sonra bu dosyaları bulup sil.

[BrightBlade]

AGRSMMSG.exe apoint programınına aittir..

msnmsgs.exe ise tamamen bir trojandır.

[custamc]

tamam hocam halloldu çok tşk ederim

[alimuyan]

Ya Konu benim sorunumla ilgili olduğu için yeni konu açmadan buraya eklemek istedim.

Benim sorunum şu:

Bir arkadaşın mailinden sürekli Picture0003.rar gibi bir dosya gönderiliyor. arkadaşım bunun bir virüs olduğunu ve temizleyemediğini söylüyor. gerçekten can sıkıcı olmaya başladı ve arkadaşımın msn sini engellemek istemiyorum. Nasıl bir çözüm üretebiliriz acaba????

[volkan23]

Ya Konu benim sorunumla ilgili olduğu için yeni konu açmadan buraya eklemek istedim.

Benim sorunum şu:

Bir arkadaşın mailinden sürekli Picture0003.rar gibi bir dosya gönderiliyor. arkadaşım bunun bir virüs olduğunu ve temizleyemediğini söylüyor. gerçekten can sıkıcı olmaya başladı ve arkadaşımın msn sini engellemek istemiyorum. Nasıl bir çözüm üretebiliriz acaba????

Benim başıma da geldi karşı taraf xp benimkide vista olunca benim pc de bişey olmadı ama tek çıkar yol arkadaşın format atmasıyla çözüldü başka bir metod işe yaramadı çünkü...

[mcbg66]

kardeş aynı problem bendede oldu yakın zaman da bir arkadaşımda yaşadı ben bu olayı sistem geri yükleme ile hallettim umarım format atmaya kalkışan arkadaşlara zamanında yardımcı olmuşumdur

[hose_antonio]

bende şüphelendım bundan anlıyan varmı aranızda

Logfile of Trend Micro HijackThis v2.0.0 (BETA)

Scan saved at 15:31:18, on 11.11.2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\system32\carpserv.exe

C:\WINDOWS\system32\taskswitch.exe

C:\Program Files\DAEMON Tools\daemon.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Winamp\winamp.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Windows Live\Messenger\usnsvc.exe

C:\Documents and Settings\Administrator\Desktop\HiJackThis_v2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Sık Kullanılanlar

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [CARPService] carpserv.exe

O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe

O4 - HKLM\..\Run: [AirTiesWUS-300] C:\Program Files\AirTies\AirTiesWUS-300\WUS300.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [nltide2] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,L,,4,N (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [set Visual Effects] SetVisualEffects.exe /silent (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O22 - SharedTaskScheduler: Browseui önceden yükleyicisi - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Bileşen Katergorileri önbellek daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Eset HTTP Server (EhttpSrv) - Unknown owner - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--

End of file - 5052 bytes

[kubuc]

http://www.merijn.org/files/HiJackThis_v2.exe[/CODE]

Buradan hijackThis programını indirip tarama yapın. Programın verdiği log dosyasını da buraya verin , inceleyelim.

İlginiz için şimdiden teşekkür ederim:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:49:02, on 06.09.2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe

C:\Program Files\cFosSpeed\spd.exe

C:\Program Files\ESET\ESET Smart Security\ekrn.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Microsoft LifeCam\MSCamS32.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\vVX3000.exe

C:\Program Files\cFosSpeed\cFosSpeed.exe

C:\Program Files\Babylon\Babylon-Pro\Babylon.exe

C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\Java\jre6\bin\jusched.exe

C:\Program Files\ESET\ESET Smart Security\egui.exe

C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files\Internet Download Manager\IDMan.exe

C:\Program Files\Internet Download Manager\IEMonitor.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Bağlantılar

R3 - URLSearchHook: (no name) - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - (no file)

O1 - Hosts: Youtube Dünya Capinda IP leri toplam 2859 adet ....

O1 - Hosts: 208.65.153.251 uk.youtube.com

O1 - Hosts: 208.65.153.253 de.youtube.com

O1 - Hosts: 208.117.236.70 youtube.com

O1 - Hosts: 208.117.236.70 www.youtube.com

O1 - Hosts: 74.125.65.118 img.youtube.com

O1 - Hosts: 64.15.124.143 sjc-v1.sjc.youtube.com

O1 - Hosts: 64.15.124.144 sjc-v2.sjc.youtube.com

O1 - Hosts: 64.15.124.145 sjc-v3.sjc.youtube.com

O1 - Hosts: 64.15.124.146 sjc-v4.sjc.youtube.com

O1 - Hosts: 64.15.124.147 sjc-v5.sjc.youtube.com

O1 - Hosts: 64.15.124.148 sjc-v6.sjc.youtube.com

O1 - Hosts: 64.15.124.149 sjc-v7.sjc.youtube.com

O1 - Hosts: 64.15.124.150 sjc-v8.sjc.youtube.com

O1 - Hosts: 64.15.124.151 sjc-v9.sjc.youtube.com

O1 - Hosts: 64.15.124.152 sjc-v10.sjc.youtube.com

O1 - Hosts: 64.15.124.153 sjc-v11.sjc.youtube.com

O1 - Hosts: 64.15.124.154 sjc-v12.sjc.youtube.com

O1 - Hosts: 64.15.124.155 sjc-v13.sjc.youtube.com

O1 - Hosts: 64.15.124.156 sjc-v14.sjc.youtube.com

O1 - Hosts: 64.15.124.157 sjc-v15.sjc.youtube.com

O1 - Hosts: 64.15.124.158 sjc-v16.sjc.youtube.com

O1 - Hosts: 64.15.124.159 sjc-v17.sjc.youtube.com

O1 - Hosts: 64.15.124.160 sjc-v18.sjc.youtube.com

O1 - Hosts: 64.15.124.161 sjc-v19.sjc.youtube.com

O1 - Hosts: 64.15.124.162 sjc-v20.sjc.youtube.com

O1 - Hosts: 64.15.124.163 sjc-v21.sjc.youtube.com

O1 - Hosts: 64.15.124.164 sjc-v22.sjc.youtube.com

O1 - Hosts: 64.15.124.165 sjc-v23.sjc.youtube.com

O1 - Hosts: 64.15.124.166 sjc-v24.sjc.youtube.com

O1 - Hosts: 64.15.124.167 sjc-v25.sjc.youtube.com

O1 - Hosts: 64.15.124.168 sjc-v26.sjc.youtube.com

O1 - Hosts: 64.15.124.169 sjc-v27.sjc.youtube.com

O1 - Hosts: 64.15.124.170 sjc-v28.sjc.youtube.com

O1 - Hosts: 64.15.124.171 sjc-v29.sjc.youtube.com

O1 - Hosts: 64.15.124.172 sjc-v30.sjc.youtube.com

O1 - Hosts: 64.15.124.173 sjc-v31.sjc.youtube.com

O1 - Hosts: 64.15.124.174 sjc-v32.sjc.youtube.com

O1 - Hosts: 64.15.124.175 sjc-v33.sjc.youtube.com

O1 - Hosts: 64.15.124.176 sjc-v34.sjc.youtube.com

O1 - Hosts: 64.15.124.177 sjc-v35.sjc.youtube.com

O1 - Hosts: 64.15.124.178 sjc-v36.sjc.youtube.com

O1 - Hosts: 64.15.124.179 sjc-v37.sjc.youtube.com

O1 - Hosts: 64.15.124.180 sjc-v38.sjc.youtube.com

O1 - Hosts: 64.15.124.207 sjc-v39.sjc.youtube.com

O1 - Hosts: 64.15.124.208 sjc-v40.sjc.youtube.com

O1 - Hosts: 64.15.124.209 sjc-v41.sjc.youtube.com

O1 - Hosts: 64.15.124.210 sjc-v42.sjc.youtube.com

O1 - Hosts: 64.15.124.211 sjc-v43.sjc.youtube.com

O1 - Hosts: 64.15.124.212 sjc-v44.sjc.youtube.com

O1 - Hosts: 64.15.124.213 sjc-v45.sjc.youtube.com

O1 - Hosts: 64.15.124.214 sjc-v46.sjc.youtube.com

O1 - Hosts: 64.15.124.215 sjc-v47.sjc.youtube.com

O1 - Hosts: 64.15.124.216 sjc-v48.sjc.youtube.com

O1 - Hosts: 64.15.124.217 sjc-v49.sjc.youtube.com

O1 - Hosts: 64.15.124.218 sjc-v50.sjc.youtube.com

O1 - Hosts: 64.15.124.219 sjc-v51.sjc.youtube.com

O1 - Hosts: 64.15.124.220 sjc-v52.sjc.youtube.com

O1 - Hosts: 64.15.124.221 sjc-v53.sjc.youtube.com

O1 - Hosts: 64.15.124.222 sjc-v54.sjc.youtube.com

O1 - Hosts: 64.15.124.223 sjc-v55.sjc.youtube.com

O1 - Hosts: 64.15.124.224 sjc-v56.sjc.youtube.com

O1 - Hosts: 64.15.124.225 sjc-v57.sjc.youtube.com

O1 - Hosts: 64.15.124.226 sjc-v58.sjc.youtube.com

O1 - Hosts: 64.15.124.227 sjc-v59.sjc.youtube.com

O1 - Hosts: 64.15.124.228 sjc-v60.sjc.youtube.com

O1 - Hosts: 64.15.124.229 sjc-v61.sjc.youtube.com

O1 - Hosts: 64.15.124.230 sjc-v62.sjc.youtube.com

O1 - Hosts: 64.15.124.231 sjc-v63.sjc.youtube.com

O1 - Hosts: 64.15.124.232 sjc-v64.sjc.youtube.com

O1 - Hosts: 64.15.124.233 sjc-v65.sjc.youtube.com

O1 - Hosts: 64.15.124.234 sjc-v66.sjc.youtube.com

O1 - Hosts: 64.15.124.235 sjc-v67.sjc.youtube.com

O1 - Hosts: 64.15.124.236 sjc-v68.sjc.youtube.com

O1 - Hosts: 64.15.124.237 sjc-v69.sjc.youtube.com

O1 - Hosts: 64.15.124.238 sjc-v70.sjc.youtube.com

O1 - Hosts: 64.15.124.239 sjc-v71.sjc.youtube.com

O1 - Hosts: 64.15.124.240 sjc-v72.sjc.youtube.com

O1 - Hosts: 64.15.124.241 sjc-v73.sjc.youtube.com

O1 - Hosts: 64.15.124.242 sjc-v74.sjc.youtube.com

O1 - Hosts: 64.15.124.243 sjc-v75.sjc.youtube.com

O1 - Hosts: 64.15.124.244 sjc-v76.sjc.youtube.com

O1 - Hosts: 64.15.125.16 sjc-v77.sjc.youtube.com

O1 - Hosts: 64.15.125.17 sjc-v78.sjc.youtube.com

O1 - Hosts: 64.15.125.18 sjc-v79.sjc.youtube.com

O1 - Hosts: 64.15.125.19 sjc-v80.sjc.youtube.com

O1 - Hosts: 64.15.125.20 sjc-v81.sjc.youtube.com

O1 - Hosts: 64.15.125.21 sjc-v82.sjc.youtube.com

O1 - Hosts: 64.15.125.22 sjc-v83.sjc.youtube.com

O1 - Hosts: 64.15.125.23 sjc-v84.sjc.youtube.com

O1 - Hosts: 64.15.125.24 sjc-v85.sjc.youtube.com

O1 - Hosts: 64.15.125.25 sjc-v86.sjc.youtube.com

O1 - Hosts: 64.15.125.26 sjc-v87.sjc.youtube.com

O1 - Hosts: 64.15.125.27 sjc-v88.sjc.youtube.com

O1 - Hosts: 64.15.125.28 sjc-v89.sjc.youtube.com

O1 - Hosts: 64.15.125.29 sjc-v90.sjc.youtube.com

O1 - Hosts: 64.15.125.30 sjc-v91.sjc.youtube.com

O1 - Hosts: 64.15.125.31 sjc-v92.sjc.youtube.com

O1 - Hosts: 64.15.125.32 sjc-v93.sjc.youtube.com

O1 - Hosts: 64.15.125.33 sjc-v94.sjc.youtube.com

O1 - Hosts: 64.15.125.34 sjc-v95.sjc.youtube.com

O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll

O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll

O2 - BHO: (no name) - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - (no file)

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Yahoo.Toolbar - {9133C0FE-F3E9-407A-B8A7-DC276A9A0EDA} - (no file)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: (no name) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - (no file)

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll

O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe

O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"

O4 - HKLM\..\Run: [cFosSpeed] C:\Program Files\cFosSpeed\cFosSpeed.exe

O4 - HKLM\..\Run: [babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart

O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [sRS Audio Sandbox] "C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe" /hideme

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount

O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\K.Yavuz\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [nltide2] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,L,,4,N (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')

O8 - Extra context menu item: Bütün linkleri IDM ile indir - C:\Program Files\Internet Download Manager\IEGetAll.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O8 - Extra context menu item: FLV video içeriğini IDM ile indir - C:\Program Files\Internet Download Manager\IEGetVL.htm

O8 - Extra context menu item: IDM ile indir - C:\Program Files\Internet Download Manager\IEExt.htm

O8 - Extra context menu item: Translate with &Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Translate.htm

O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll

O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll

O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll

O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll

O9 - Extra button: Araştır - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: HP Akıllı Seçim - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)

O16 - DPF: {0FC8B38E-9293-424C-9D0E-CE60775679CF} (SubClassEditCtrlContainer Class) -

O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} (Java Plug-in 1.6.0_13) -

O16 - DPF: {D5D17C21-1719-4640-B0B2-4F3262419920} (JaguarEditControl-ISBANK) -

Please register to see this content.

O23 - Service: Eset Trial Reset (.EsetTrialReset) - Unknown owner - C:\WINDOWS\reset.exe

O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe

O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\cFosSpeed\spd.exe

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: SolidPDFConverterReadSpool (ScReadSpool) - VoyagerSoft, LLC - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe

O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--

End of file - 15960 bytes

[atakan692]

host dosyandaki bütün youtube ile ilgili şeyleri fixle