[مشكله] تعطيل الانتي فيرس + تقرير هايجاك به شئ خاطي

[! مج ـرد إنسآن !]

لدي مشكله وهي اختفاء الانتي فيرس والآن غير مفعل

وانا استخدم برنامج افيرا

وعملت تقرير هايجاك وهو كالآتي ..

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:26:51 AM, on 5/16/2012
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\DOCUME~1\yarab\LOCALS~1\Temp\reoogy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Zyzoom_Forum_Tools\zyzoom.exe
C:\Zyzoom_Forum_Tools\zHijak.com
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\WINDOWS\system32\dvmurl.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [ScanRegistry] C:\W
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: E?E - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 5805 bytes

وهنا قائمه البرامج

====== معلومات نظام التشغيل ======

X86 WIN_XP 2600 Service Pack 2


====== قائمة البرامج المثبتة ======

Adobe AIR
Adobe AIR
Adobe Community Help
Adobe Community Help
Adobe Dreamweaver CS5
Adobe Flash Player 11 Plugin
Adobe Media Player
Adobe Media Player
Adobe Photoshop CS5
AMD Processor Driver
ATI - Software Uninstall Utility
ATI Catalyst Control Center
ATI Display Driver
Avira AntiVir Personal - Free Antivirus
Browser Configuration Utility
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center HydraVision Full
CCC Help English
ccc-core-preinstall
ccc-core-static
ccc-utility
GOM Player
High Definition Audio Driver Package - KB888111
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB935448)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB981793)
Internet Download Manager
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
Microsoft Office FrontPage 2003
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Mozilla Firefox 12.0 (x86 en-US)
Mozilla Maintenance Service
Opera 11.64
PDF Settings CS5
Real Alternative 1.8.0
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Realtek High Definition Audio Driver
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB944338-v2)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958470)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971032)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981350)
Security Update for Windows XP (KB982381)
Skins
Skype Toolbars
Skype™ 5.0
SuperCopier2
Unlocker 1.8.9
Update for Windows XP (KB898461)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
WebFldrs XP
Winamp
Windows Installer 3.1 (KB893803)
WinRAR 4.00 beta 5 (32-bit)
Yahoo! Messenger

بليزز ما المشكله ولما تعطل الانتي فيرس ..

 

[۰۪۫B۪۫A۪۫B۪۫A۪۫۰۪۫S۪۫N۪۫F۪۫O۪۫R۪۫۰]

من الهايجاك

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1


--------------------------------------------------------------------------------------------------------------------
واعمل اصلاح للوندوز

اصلاح الوندوز

عند الاقلاع من قرص الوندوز اكسبي

عند ظهور هذه الشاشة أضغط انتر

من هذه الشاشة لاحظ أنه يظهر أمر الاصلاح وهو الامر الثاني ولكن ليس هو غايتنا


اضغط على أنتر لتكمل ولتصل لخيار الأصلاح

​

من هذه الشاشة أضغط على F8

من هنا الآن نضغط على الحرف R

الآن لانضغط على شيئ لأننا لانريد الأقلاع من السيدي مرة ثانية

ثم نتابع التنصيب حتى النهاية وهكذا نكون قد أتممنا عملية الاصلاح

​

​

 

[! مج ـرد إنسآن !]

انا بحدد الخيار ده

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1

وبعمل fix checked

وبعدين بعمل سكان تاني بلاقيه لسه موجود !

 

[الوفاء طبعي]

اعمل هالفحص اخوي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

 

[! مج ـرد إنسآن !]

عملته ياغالي وطلع حوالي 48 فيرس وتم الحذف

وهذا هو التقرير !

SUPERAntiSpyware Scan Log

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Generated 05/17/2012 at 02:54 AM

Application Version : 5.0.1148

Core Rules Database Version : 8608
Trace Rules Database Version: 6420

Scan type : Complete Scan
Total Scan Time : 02:37:24

Operating System Information
Windows XP Professional 32-bit, Service Pack 2 (Build 5.01.2600)
Administrator

Memory items scanned : 575
Memory threats detected : 1
Registry items scanned : 31799
Registry threats detected : 6
File items scanned : 76669
File threats detected : 39

Trojan.Agent/Gen-FraudPack[Local]
C:\DOCUME~1\YARAB\LOCALS~1\TEMP\WINFUTL.EXE
C:\DOCUME~1\YARAB\LOCALS~1\TEMP\WINFUTL.EXE
C:\DOCUMENTS AND SETTINGS\YARAB\LOCAL SETTINGS\TEMP\WINFUTL.EXE

Disabled.SecurityCenterOption
HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#ANTIVIRUSDISABLENOTIFY
HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#FIREWALLDISABLENOTIFY
HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#UPDATESDISABLENOTIFY

Disabled.TaskManager
HKU\S-1-5-21-117609710-796845957-682003330-1003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM#DISABLETASKMGR
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System#DisableTaskMgr

Heur.Agent/Gen-WhiteBox
E:\SYSTEM VOLUME INFORMATION\_RESTORE{93DFEF37-118E-4AEB-8FC2-60ACB41EC8B0}\RP37\A0101636.EXE
E:\SYSTEM VOLUME INFORMATION\_RESTORE{93DFEF37-118E-4AEB-8FC2-60ACB41EC8B0}\RP41\A0102660.EXE
E:\SYSTEM VOLUME INFORMATION\_RESTORE{93DFEF37-118E-4AEB-8FC2-60ACB41EC8B0}\RP41\A0103088.EXE
E:\SYSTEM VOLUME INFORMATION\_RESTORE{140C5916-BB3C-4C60-A661-80E995A4859F}\RP33\A0036741.EXE
E:\SYSTEM VOLUME INFORMATION\_RESTORE{140C5916-BB3C-4C60-A661-80E995A4859F}\RP33\A0037104.EXE

Trojan.Dropper/Game
G:\C??CE\GTA 7\GTA VICE CITY USER FILES\GTA 5\CAR\433-TXD_WORKSHOP_V2.0\DXT.DLL

Trojan.Agent/Gen-Downloader
H:\SYSTEM VOLUME INFORMATION\_RESTORE{892E95EA-179E-4C89-A931-1B445BD4BE13}\RP73\A0264186.EXE
H:\SYSTEM VOLUME INFORMATION\_RESTORE{892E95EA-179E-4C89-A931-1B445BD4BE13}\RP73\A0264187.EXE

Adware.Tracking Cookie
C:\DOCUMENTS AND SETTINGS\YARAB\LOCAL SETTINGS\TEMP\COOKIES\YARAB@AD.YIELDMANAGER[1].TXT [ /AD.YIELDMANAGER ]
C:\DOCUMENTS AND SETTINGS\YARAB\LOCAL SETTINGS\TEMP\COOKIES\YARAB@AD.YIELDMANAGER[2].TXT [ /AD.YIELDMANAGER ]
C:\DOCUMENTS AND SETTINGS\YARAB\LOCAL SETTINGS\TEMP\COOKIES\YARAB@ADINTERAX[2].TXT [ /ADINTERAX ]
accounts.youtube.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.ru4.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.histats.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\YARAB\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\PFPSHVX9.DEFAULT\COOKIES.SQLITE ]

Trojan.Agent/Gen-Bot
C:\SYSTEM VOLUME INFORMATION\_RESTORE{19369476-9DEB-468B-9D57-1CB181A5C71E}\RP28\A0019459.EXE

Disabled.RegistryEditor
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System#DisableRegistryTools

وشكرا لك ،

ما العمل التالي !

 

[الخفـوق]

تمام عليك يا غالي k:

الحين اعمل تعطيل لاستعادة النظام .. تمام

عطل استعادة النظام حسب الشرح التالي

--------------------------------------
​

:::::::::::::::::::::


بعدها

رابط مباشر ،، محمول وبدون تثبيت
محدث
8 \ 4 \ 2012 ​

ينصح بإغلاق برنامج الحماية قبل تحميل البرنامج
مستخدمي وندوز فيستا وسفن >>> كلك يمين وتشغيل كمسؤل​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شغله واعمل كما الشرح التالي لفحص الجهاز وعمل تقرير​

​

انسخ ما بداخل التقرير والصقه بمشاركتك القادمة​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

:::::::::::::::::::::::


بعدها نستعيد الفرضيات اللي تعبثت بها الفيروسات

بالطريقه التاليه :

>> بعد الانتهاء من ازالة الفيروسات <<

اولاا / لإعادة مدخلات مسجل النظام للوضع الا فتراضي

ادخل على هذه الصفحه

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند الدخول على الصفحه حمل هذه الاداة

System Repair Engineer

بالضغط على Local Download


او حمل من هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

واتبع التالي كما موجود بالصور

ثانيا / ولتنظيف الجهاز بالكامل من مخلفات الملفات المؤقته وتصفح الانترنت
حمل الملف هذا واتبع الارشادات

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

....

بانتظار تطبيقك يا غالي k:

+ نظامك غير محدث [ يلزمه ترقيه للحزمه الثالثه ] عشان يصير k:
بس هالخطوه بالاخير ان شاء الله :d:
​

 

[! مج ـرد إنسآن !]

إن شاء الله اطبق وارد عليك !

جزاك الله خير ..