مشكلة في الهاردسك وبطاء شديد أثناء التشغيل

زعيم القراصنة

زعيم القراصنة

زيزوومى مميز
إنضم
26 مايو 2010
المشاركات
519
مستوى التفاعل
8
النقاط
520
غير متصل
بسم الله الرحمن الرحيم

السلام عليكم ورحمة الله وبركاته

عندي مشكله في الجهاز

هي بطاء الجهاز أثناء تشغيل الجهاز ضهور كتابه

اثنا التشغيل

الصور

f99c9e7e8af4db3c757bd916a06c6655.jpg



---------------


d0f551ee7fdfc76abee32d34dfbb33c3.jpg









هذإ الصورة اثنا التشغيل



HijackThisتقرير

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 09:23:30 م, on 15/02/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\HDD Regenerator\HDD Regenerator.exe
C:\Program Files\HDD Regenerator\HDD Regenerator.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
C:\Program Files\Oman Mobile Broadband\Oman Mobile Broadband.exe
C:\Program Files\HDD Regenerator\hddreg.exe
C:\Windows\system32\conhost.exe
C:\Program Files\HDD Regenerator\hddreg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Zyzoom_Forum_Tools\zyzoom.exe
C:\Zyzoom_Forum_Tools\zHijak.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 74.208.10.249 gs.apple.com
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [BTMTrayAgent] rundll32.exe "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
O4 - HKLM\..\Run: [HDD Regenerator] C:\Program Files\HDD Regenerator\HDD Regenerator.exe
O4 - HKLM\..\Run: [SeePassword] C:\Program Files\SeePassword\SeePassword.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Monitor Apache Servers.lnk = C:\Program Files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe
O8 - Extra context menu item: إر&سال إلى OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: إضافة إلى مكافحة الشعارات - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &لوحة المفاتيح الظاهرية - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll
O9 - Extra button: ملاحظات OneNote الم&رتبطة - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: ملاحظات OneNote الم&رتبطة - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O9 - Extra button: فحص &عناوين مواقع الويب - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{030918E7-F62E-4F6C-9728-168B192D3927}: NameServer = 192.168.7.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{24B479BA-FDC9-41B9-A398-EACAFA32B77D}: NameServer = 212.72.1.186 212.72.23.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{5B673DB1-5F99-4B03-A5C3-D78C6D6BFB1D}: NameServer = 212.72.1.186 212.72.23.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{030918E7-F62E-4F6C-9728-168B192D3927}: NameServer = 192.168.7.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{030918E7-F62E-4F6C-9728-168B192D3927}: NameServer = 192.168.7.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe
O23 - Service: Apache2.2 - Apache Software Foundation - C:\Program Files\Apache Software Foundation\Apache2.2\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: خدمة Kaspersky لمكافحة الفيروسات (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
O23 - Service: Bluetooth Device Manager - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
O23 - Service: Bluetooth Media Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\audiosrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Connectify - Unknown owner - C:\Program Files\Connectify\ConnectifyService.exe
O23 - Service: DCService.exe - Unknown owner - C:\ProgramData\DatacardService\DCService.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NoIPDUCService - Vitalwerks LLC - C:\Program Files\No-IP\DUC20.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE

--
End of file - 11701 bytes



قائمة البرامج المثبته



====== معلومات نظام التشغيل ======

X86 WIN_7 7601 Service Pack 1


====== قائمة البرامج المثبتة ======

91 PC Suite for iPhone
Adobe AIR
Adobe AIR
Adobe Community Help
Adobe Community Help
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Media Player
Adobe Media Player
Adobe Photoshop CS5
Adobe Reader X - Arabic
Apache HTTP Server 2.2.22
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Ask Toolbar
Bonjour
Broadcom 802.11 Wireless LAN Adapter
Broadcom Wireless Utility
Camtasia Studio 7
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Connectify
DisplayLink Core Software
eMule
Facebook Video Calling 1.1.1.1
FormatFactory 2.60
GoldWave v5.65
Google Talk Plugin
Havij 1.15 Free
HDD Regenerator
HP Software Framework
HP USB Docking Video
HP Wireless Assistant
IDT Audio
Intel(R) Graphics Media *********** Driver
Intel® Matrix Storage Manager
Internet Download Manager
iTunes
Java Auto Updater
Java(TM) 6 Update 23
LightScribe System Software
McAfee Security Scan Plus
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile ARA Language Pack
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (Arabic) 2010
Microsoft Office Excel MUI (Arabic) 2010
Microsoft Office Groove MUI (Arabic) 2010
Microsoft Office InfoPath MUI (Arabic) 2010
Microsoft Office OneNote MUI (Arabic) 2010
Microsoft Office Outlook MUI (Arabic) 2010
Microsoft Office PowerPoint MUI (Arabic) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (Arabic) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proofing (Arabic) 2010
Microsoft Office Publisher MUI (Arabic) 2010
Microsoft Office Shared MUI (Arabic) 2010
Microsoft Office Word MUI (Arabic) 2010
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Mozilla Firefox 10.0.1 (x86 ar)
Nero Burning ROM 10
Nero Burning ROM 10
Nero BurningROM 10 Help (CHM)
Nero BurnRights 10
Nero BurnRights 10 Help (CHM)
Nero Control Center 10
Nero ControlCenter 10 Help (CHM)
Nero Core Components 10
Nero Update)
Oman Mobile Broadband
Opera Next 12.00 alpha build 1213
PDF Settings CS5
Peer2Me
PowerISO
Quick Screen Recorder 1.5
QuickTime
Ralink Motorola BC4 Bluetooth 3.0+HS Adapter
Rapid PHP 2011 v11.21
RAR Password Cracker 4.12
SeePassword
Skype™ 4.0
Synaptics Pointing Device Driver
UltraISO Premium V9.36
VLC media player 1.1.7
VPNReactor
Win7codecs
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405)
Windows Driver Package - Broadcom Bluetooth (12/16/2009 6.2.0.9414)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800)
WinRAR archiver
Your Uninstaller! 2010
برنامج Kaspersky لأمان الإنترنت 2012
برنامج Kaspersky لأمان الإنترنت 2012
حزمة اللغة العربية لـ Microsoft .NET Framework 4








 

توقيع : زعيم القراصنة
ترتيب حسب التاريخ ترتيب حسب الأصوات
وينكم يالخبرا
 
توقيع : زعيم القراصنة
تأييد 0
وينكم حرام عليكم
 
توقيع : زعيم القراصنة
تأييد 0
أحذ البرامج التالية

Apple Software Update
Ask Toolbar
Bonjour
Google Talk Plugin


واحذف قيم الهاجيك التالية


O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dl

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
 
تأييد 0
انا اصلا قمت بفرمات الجهاز ولا زالت المشكله كما هي
 
توقيع : زعيم القراصنة
تأييد 0
وينكم يا شباب
 
توقيع : زعيم القراصنة
تأييد 0
وينكم
 
توقيع : زعيم القراصنة
تأييد 0
وينكم مافي والا حل
 
توقيع : زعيم القراصنة
تأييد 0
4 جيجا
 
توقيع : زعيم القراصنة
تأييد 0
توقيع : علي همر
تأييد 0
جاري العمل ....
 
توقيع : زعيم القراصنة
تأييد 0
السلام عليكم ورحمة الله وبركاته

اتوقع مشكلة الهارديسك من الكيبل نفسه

انت ارسلت جهازك للصيانه شيء وفتحو لك الجهاز؟؟
 
توقيع : jor
تأييد 0
jor قال:
السلام عليكم ورحمة الله وبركاته

اتوقع مشكلة الهارديسك من الكيبل نفسه

انت ارسلت جهازك للصيانه شيء وفتحو لك الجهاز؟؟
أنقر للتوسيع...



لا ...
 
توقيع : زعيم القراصنة
تأييد 0
jor قال:
السلام عليكم ورحمة الله وبركاته

اتوقع مشكلة الهارديسك من الكيبل نفسه

انت ارسلت جهازك للصيانه شيء وفتحو لك الجهاز؟؟
أنقر للتوسيع...
وعليكم السلام ورحمة الله وبركاتة

13- لا تقدم حل يناقض الحل المقدم من عضو اخر حتى يثبت عدم نجاح الاول ،، حتى لا تسبب ارباك لصاحب المشكلة
 
توقيع : علي همر
تأييد 0
تم أكتمال الفحص

التقرير

==============

Malwarebytes' Anti-Malware 1.51.2.1300
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


Database version: 7622

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

17/02/2012 10:44:40 م
mbam-log-2012-02-17 (22-44-40).txt

Scan type: Full scan (C:\|D:\|E:\|I:\|)
Objects scanned: 328641
Time elapsed: 1 hour(s), 17 minute(s), 26 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 5
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 24

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Bifrost (Bifrose.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\BIFROST1.2 (Bifrose.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MicroNoft (Backdoor.Bifrose) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\((Mutex)) (Backdoor.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Bifrost (Bifrose.Trace) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Users\user\AppData\Local\Xenocode\Sandbox\pluginplus\1.00\2010.10.18t18.57\Native\STUBEXE\@WINDIR@\101.exe (Backdoor.PoisonIvy) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\master bifrost v1.2d.exe (Backdoor.Bifrose.PS) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\bifrost baligh rezgui 1.2d\Bifrost.exe (Backdoor.Bifrose.PS) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\اختراق الاجهزة\برامج\برامج الأختراق\مشفر.exe (Malware.Generic) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\اختراق الاجهزة\برامج\برامج الأختراق\spt-net v2.6\server.exe (Worm.Rebhip) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\اختراق الاجهزة\برامج\برامج الأختراق\spt-net v2.6\SpyNet.exe (Rootkit.Agent) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\اختراق الاجهزة\برامج\برامج الأختراق\spt-net v2.6\sqlite3.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\اختراق الاجهزة\برامج\برامج الأختراق\بيفروست + سيرفر\master bifrost v1.2d.exe (Backdoor.Bifrose.PS) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\اختراق الاجهزة\برامج\تشفير السيرفر\Builder.exe (Trojan.MSIL.Gen) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\اختراق الاجهزة\برامج\تشفير السيرفر\مجلد جديد ??\connectsrv.ocx (Malware.Generic) -> Delete on reboot.
c:\Users\user\Desktop\البرامج المرفقة\bifrost stub generator v3.3\bifrost stub generator v3.3\bifrost stub generator v3.3.exe (Backdoor.Bifrose) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\سطح المكتب\windows loader.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\user\Desktop\سطح المكتب\D-M\downloads\Programs\http__1starnet__image_gallery_page_1.exe (PUP.BundleInstaller.MG) -> Quarantined and deleted successfully.
c:\Windows\101.exe (RiskWare.Tool.HCK) -> Quarantined and deleted successfully.
d:\bifrost coffin of evil 1.2.1d\bifrost coffin of evil 1.2.1d.exe (Backdoor.Bifrose.PS) -> Quarantined and deleted successfully.
d:\bifrost coffin of evil 1.2.1d\bifrost baligh rezgui 1.2d\Bifrost.exe (Backdoor.Bifrose.PS) -> Quarantined and deleted successfully.
d:\bifrost coffin of evil 1.2.1d\spy-net v2.6 ara\server.exe (Worm.Rebhip) -> Quarantined and deleted successfully.
c:\Users\user\AppData\Roaming\logs.dat (Bifrose.Trace) -> Quarantined and deleted successfully.
c:\Users\user\AppData\Local\Temp\IELOGIN.abc (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\user\AppData\Local\Temp\UuU.uUu (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\user\AppData\Local\Temp\XxX.xXx (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\user\AppData\Local\Temp\.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\user\AppData\Roaming\microsoft\Windows\((mutex)).cfg (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\user\AppData\Roaming\microsoft\Windows\((mutex)).dat (Malware.Trace) -> Quarantined and deleted successfully.


================
 
توقيع : زعيم القراصنة
تأييد 0
علي همر قال:
وعليكم السلام ورحمة الله وبركاتة

13- لا تقدم حل يناقض الحل المقدم من عضو اخر حتى يثبت عدم نجاح الاول ،، حتى لا تسبب ارباك لصاحب المشكلة
أنقر للتوسيع...

ما قدمت اي حل ، وذلك احتراماً لك

واعرف كل قوانين القسم

وانا طرحت عليه سؤال ، ما قدمت حل يسبب ارباك لصاحب المشكله

اعتذر لك على الازعاج

:smile:
 
توقيع : jor
تأييد 0
توقيع : علي همر
تأييد 0
تم اكتمال التقرير

=-======================

SUPERAntiSpyware Scan Log
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


Generated 02/18/2012 at 04:16 PM

Application Version : 5.0.1144

Core Rules Database Version : 8260
Trace Rules Database Version: 6072

Scan type : Complete Scan
Total Scan Time : 01:56:47

Operating System Information
Windows 7 Ultimate 32-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 825
Memory threats detected : 0
Registry items scanned : 35334
Registry threats detected : 25
File items scanned : 53168
File threats detected : 109

Adware.HBHelper
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\InprocServer32
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\InprocServer32#ThreadingModel
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\ProgID
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\TypeLib
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\VersionIndependentProgID
HKLM\Software\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
HKCR\URLSearchHook.ToolbarURLSearchHook.1
HKCR\URLSearchHook.ToolbarURLSearchHook.1\CLSID
HKCR\URLSearchHook.ToolbarURLSearchHook
HKCR\URLSearchHook.ToolbarURLSearchHook\CLSID
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\0
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\0\win32
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\FLAGS
HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\HELPDIR
C:\PROGRAM FILES\CHATSEND TOOLBAR\TBUNSV6E44.TMP\TBHELPER.DLL
HKU\S-1-5-21-1942164856-427559163-789185510-1000\Software\Microsoft\Internet Explorer\URLSearchHooks#{CA3EB689-8F09-4026-AA10-B9534C691CE0}
HKU\S-1-5-21-1942164856-427559163-789185510-1000_Classes\Software\Microsoft\Internet Explorer\URLSearchHooks#{CA3EB689-8F09-4026-AA10-B9534C691CE0}

Browser Hijacker.Deskbar
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\ProxyStubClsid
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\ProxyStubClsid32
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\TypeLib
HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\TypeLib#Version

Adware.Tracking Cookie
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\KQFLI5TU.txt [ /track.effiliation.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\HDLL4UKP.txt [ /imrworldwide.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\WJQZYLMU.txt [ /serving-sys.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\SCBS7HGW.txt [ /invitemedia.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\MOV7GYVG.txt [ /adbrite.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\DD8W3F03.txt [ /track.effiliation.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\O6WXCSPJ.txt [ /ad.zanox.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\6XAPUIMN.txt [ /cetelem.solution.weborama.fr ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\1991SXV9.txt [ /traffictrack.de ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\00E0KUH6.txt [ /apmebf.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\FA4NWWQ8.txt [ /weborama.fr ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\JLLK1XJV.txt [ /adxpose.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\5ASP3QEG.txt [ /ad.yieldmanager.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\SBJEB6CG.txt [ /tribalfusion.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\UFVCWCHV.txt [ /revsci.net ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\JC5ZPWWK.txt [ /smartadserver.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\DTIRNK03.txt [ /adserver.adtechus.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\R0ZY529P.txt [ /casalemedia.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\K8ON7503.txt [ /atdmt.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\WHC8MU2U.txt [ /zanox-affiliate.de ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\2VV03AEQ.txt [ /pmu3.solution.weborama.fr ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\H2MYBEW0.txt [ /tradedoubler.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\AH8WYZ53.txt [ /ad3.adfarm1.adition.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\WVLKGF51.txt [ /banner.connectify.me ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\MT2KWJYB.txt [ /ad.360yield.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\YD7HPOCP.txt [ /doubleclick.net ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\W0DWO6FV.txt [ /ads.brandwire.tv ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\DF88M83X.txt [ /mediaplex.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\34RGWFX2.txt [ /adfarm1.adition.com ]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Cookies\NNTOCDOH.txt [ /zanox.com ]
C:\USERS\USER\AppData\Roaming\Microsoft\Windows\Cookies\Low\OVW09M8R.txt [ Cookie:user@serving-sys.com/ ]
C:\USERS\USER\AppData\Roaming\Microsoft\Windows\Cookies\Low\5440JRFZ.txt [ Cookie:user@xiti.com/ ]
C:\USERS\USER\AppData\Roaming\Microsoft\Windows\Cookies\Low\R7Q2FOP1.txt [ Cookie:user@adtech.de/ ]
C:\USERS\USER\AppData\Roaming\Microsoft\Windows\Cookies\Low\YQBWH3FK.txt [ Cookie:user@fl01.ct2.comclick.com/ ]
C:\USERS\USER\AppData\Roaming\Microsoft\Windows\Cookies\Low\6SCTZ1NQ.txt [ Cookie:user@apmebf.com/ ]
C:\USERS\USER\AppData\Roaming\Microsoft\Windows\Cookies\Low\8JUC1YSH.txt [ Cookie:user@tribalfusion.com/ ]
C:\USERS\USER\AppData\Roaming\Microsoft\Windows\Cookies\Low\B909C678.txt [ Cookie:user@atdmt.com/ ]
C:\USERS\USER\AppData\Roaming\Microsoft\Windows\Cookies\Low\EVJBAXAJ.txt [ Cookie:user@h.atdmt.com/ ]
C:\USERS\USER\Cookies\KQFLI5TU.txt [ Cookie:user@track.effiliation.com/servlet/ ]
C:\USERS\USER\Cookies\WJQZYLMU.txt [ Cookie:user@serving-sys.com/ ]
C:\USERS\USER\Cookies\MOV7GYVG.txt [ Cookie:user@adbrite.com/ ]
C:\USERS\USER\Cookies\O6WXCSPJ.txt [ Cookie:user@ad.zanox.com/ ]
C:\USERS\USER\Cookies\1991SXV9.txt [ Cookie:user@traffictrack.de/ ]
C:\USERS\USER\Cookies\00E0KUH6.txt [ Cookie:user@apmebf.com/ ]
C:\USERS\USER\Cookies\JLLK1XJV.txt [ Cookie:user@adxpose.com/ ]
C:\USERS\USER\Cookies\SBJEB6CG.txt [ Cookie:user@tribalfusion.com/ ]
C:\USERS\USER\Cookies\UFVCWCHV.txt [ Cookie:user@revsci.net/ ]
C:\USERS\USER\Cookies\JC5ZPWWK.txt [ Cookie:user@smartadserver.com/ ]
C:\USERS\USER\Cookies\DTIRNK03.txt [ Cookie:user@adserver.adtechus.com/ ]
C:\USERS\USER\Cookies\R0ZY529P.txt [ Cookie:user@casalemedia.com/ ]
C:\USERS\USER\Cookies\K8ON7503.txt [ Cookie:user@atdmt.com/ ]
C:\USERS\USER\Cookies\2VV03AEQ.txt [ Cookie:user@pmu3.solution.weborama.fr/ ]
C:\USERS\USER\Cookies\H2MYBEW0.txt [ Cookie:user@tradedoubler.com/ ]
C:\USERS\USER\Cookies\AH8WYZ53.txt [ Cookie:user@ad3.adfarm1.adition.com/ ]
C:\USERS\USER\Cookies\34RGWFX2.txt [ Cookie:user@adfarm1.adition.com/ ]
.atdmt.com [ C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
cdn5.tribalfusion.com [ C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\29LLG3JA ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@247REALMEDIA[1].TXT [ /247REALMEDIA ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@ADTECH[1].TXT [ /ADTECH ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@ADXPOSE[1].TXT [ /ADXPOSE ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@ATDMT[2].TXT [ /ATDMT ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@BANNER.CONNECTIFY[2].TXT [ /BANNER.CONNECTIFY ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@C.ATDMT[2].TXT [ /C.ATDMT ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@CASALEMEDIA[2].TXT [ /CASALEMEDIA ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@COLLECTIVE-MEDIA[2].TXT [ /COLLECTIVE-MEDIA ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@DOUBLECLICK[1].TXT [ /DOUBLECLICK ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@H.ATDMT[2].TXT [ /H.ATDMT ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@IMRWORLDWIDE[2].TXT [ /IMRWORLDWIDE ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@INVITEMEDIA[2].TXT [ /INVITEMEDIA ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@MEDIA6DEGREES[1].TXT [ /MEDIA6DEGREES ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@MEDIAFIRE[1].TXT [ /MEDIAFIRE ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@SERVER.CPMSTAR[2].TXT [ /SERVER.CPMSTAR ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@POINTROLL[1].TXT [ /POINTROLL ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@R1-ADS.ACE.ADVERTISING[1].TXT [ /R1-ADS.ACE.ADVERTISING ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@REALMEDIA[2].TXT [ /REALMEDIA ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@RU4[2].TXT [ /RU4 ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@SERVING-SYS[1].TXT [ /SERVING-SYS ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@TRIBALFUSION[1].TXT [ /TRIBALFUSION ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@YIELDMANAGER[1].TXT [ /YIELDMANAGER ]
C:\USERS\USER\DESKTOP\سطح المكتب\D-M\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\D-M@ZEDO[1].TXT [ /ZEDO ]

Trojan.Agent/Gen-Faker[prod]
ZIP ARCHIVE( D:\BIFROST COFFIN OF EVIL 1.2.1D.ZIP )/BIFROST COFFIN OF EVIL 1.2.1D.EXE
D:\BIFROST COFFIN OF EVIL 1.2.1D.ZIP
C:\USERS\USER\DESKTOP\BIFROST COFFIN OF EVIL 1.2.1D.EXE
ZIP ARCHIVE( C:\USERS\USER\DOWNLOADS\COMPRESSED\BIFROST COFFIN OF EVIL 1.2.1D.ZIP )/BIFROST COFFIN OF EVIL 1.2.1D.EXE
C:\USERS\USER\DOWNLOADS\COMPRESSED\BIFROST COFFIN OF EVIL 1.2.1D.ZIP

Trojan.Agent/Gen-Bifrose
ZIP ARCHIVE( D:\BIFROST COFFIN OF EVIL 1.2.1D.ZIP )/SERVER.EXE
ZIP ARCHIVE( C:\USERS\USER\DOWNLOADS\COMPRESSED\BIFROST COFFIN OF EVIL 1.2.1D.ZIP )/SERVER.EXE

Heur.Agent/Gen-HackRelated
C:\PROGRAM FILES\PSSWORD\PASS.EXE

Trojan.Agent/Gen-Falcomp[RE]
C:\USERS\USER\DESKTOP\البرامج المرفقة\SOURCE UNDETECTOR[LOYALIST].EXE

Trojan.Agent/Gen-Malintent
C:\USERS\USER\DESKTOP\اختراق الاجهزة\برامج\برامج الأختراق\كراك.SFX.EXE

Trojan.Agent/Gen-OnlineGames
C:\USERS\USER\DESKTOP\اختراق الاجهزة\برامج\برامج الأختراق\بيفروست + سيرفر\كراك تنشيط النورتن.SFX.EXE

Trojan.Agent/Gen-Frauder[Startup]
C:\USERS\USER\DESKTOP\سطح المكتب\KASPERSKY KEY CHANGER.EXE
C:\USERS\USER\DESKTOP\KASPERSKY KEY CHANGER.EXE
ZIP ARCHIVE( C:\USERS\USER\DOWNLOADS\COMPRESSED\KASPERSKY KEY CHANGER.ZIP )/KASPERSKY KEY CHANGER.EXE
C:\USERS\USER\DOWNLOADS\COMPRESSED\KASPERSKY KEY CHANGER.ZIP
ZIP ARCHIVE( C:\USERS\USER\DOWNLOADS\COMPRESSED\KIS.ZIP )/KIS/KASPERSKY KEY CHANGER.EXE
C:\USERS\USER\DOWNLOADS\COMPRESSED\KIS.ZIP
ZIP ARCHIVE( C:\USERS\USER\DOWNLOADS\COMPRESSED\KIS_2.ZIP )/KIS/KASPERSKY KEY CHANGER.EXE
C:\USERS\USER\DOWNLOADS\COMPRESSED\KIS_2.ZIP

Trojan.Agent/Gen-Falprod
C:\USERS\USER\DESKTOP\التشفير\CRYPTER SCR CODES BY MR.SHADOW.EXE

PUP.CNETInstaller
C:\USERS\USER\DOWNLOADS\PROGRAMS\CNET2_CGVPN47-CNET_EXE.EXE

Rogue.Agent/Gen-Nullo[BIN]
C:\WINDOWS\SYSTEM32\SMARTASSEMBLY.BIN


=-=========================
 
توقيع : زعيم القراصنة
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى