مشكلة في قراءة Cd Rw ؟ ، With Hijackthis Report

jin kazama · 12 سبتمبر 2008

بسم الله الرحمن الرحيم

السلام عليكم و رحمة الله و بركاتة

مبارك عليكم الشهر الكريم

لما ادخل Cd Rw و افتحه يقولي لا يوجد Cd مع ان الـ Cd اشتغل على الجهاز ثاني

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:16:37 AM, on 22/06/2006
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\Registration\ToshibaRegistration.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
C:\Program Files\VMware\VMware Workstation\hqtray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Hotspot Shield\AnchorFree\ctrl\AFController.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Mail\WinMail.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\igfxsrvc.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Snagit\Snagit.exe
C:\Program Files\Snagit\App\Snagit\SnagIt32.exe
C:\Program Files\Snagit\App\Snagit\TSCHelp.exe
C:\Program Files\Snagit\App\Snagit\snagiteditor.exe
C:\Users\azooz\Documents\Downloads\Programs\Zyzoom_HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: CEventSink Class - {B7154C4D-87C0-4A2C-AB64-DA132BAC2EE6} - C:\Program Files\Hotspot Shield\AnchorFree\ie\AFBho.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [Desktop SMS] C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe /auto
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [vmware-tray] "C:\Program Files\VMware\VMware Workstation\vmware-tray.exe"
O4 - HKLM\..\Run: [VMware hqtray] "C:\Program Files\VMware\VMware Workstation\hqtray.exe"
O4 - HKLM\..\Run: [Registry Crawler] C:\PROGRA~1\RCrawler\RCrawler.exe -TRAYONLY
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [AFProg] C:\Program Files\Hotspot Shield\AnchorFree\ctrl\AFController.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

(file missing)
O10 - Unknown file in Winsock LSP: c:\program files\vmware\vmware workstation\\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\program files\vmware\vmware workstation\\vsocklib.dll
O13 - Gopher Prefix:
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe

--
End of file - 10863 bytes

السلام عليكم و رحمة الله و بركاتة

MAAX · 12 سبتمبر 2008

عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes

انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

jin kazama · 14 سبتمبر 2008

اخوي تجيني هاذي الرسالة

و بعدين اضغط Ok و بعدين

و لا يتحرك بعدها ، خليته فوق الـ 6 ساعات و هو على هالحالة

jin kazama · 14 سبتمبر 2008

Up Up Up Up Up

فارس الملاك · 14 سبتمبر 2008

عذرا من المدير العام

اولا حمل الاداة من جديد ولا تنسى تعطيل برنامج الحماية قبل اي شي وشغلها في الوضع الامن >>> الشرح بالاسفل

عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

عند تشغيل الجهاز تبدأ بالضغط على F8

بشكل متكرر حتى تظهر هذه الشاشة

وعند تشغيل الاداة اضغط بالزر الايمن على الاداة واختار Run by Admin

ولما تسويها رد لنا خبر

jin kazama · 15 سبتمبر 2008

يعطيني خطأ ، و بعدها ما يصير شيئ

MAAX · 15 سبتمبر 2008

اعد تسمية اداة الكمبو فيكس

وشغلها حسب الشرح التالي

jin kazama · 15 سبتمبر 2008

MAAX قال:
اعد تسمية اداة الكمبو فيكس

وشغلها حسب الشرح التالي

طيب ايش اخلي اسمها ؟

MAAX · 15 سبتمبر 2008

jin kazama قال:
طيب ايش اخلي اسمها ؟

على كيفك :q:

jin kazama · 15 سبتمبر 2008

ComboFix 08-09-14.01 - azooz 2008-09-15 0:06:54.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1256.966.1033.18.483 [GMT 1:00]
Running from: C:\Users\azooz\Desktop\loool.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Users\azooz\AppData\Roaming\BITS
C:\Users\azooz\AppData\Roaming\BITS\BITS.ini
C:\Users\azooz\AppData\Roaming\BITS\DHTTable.dat
C:\Users\azooz\AppData\Roaming\BITS\ProxyList.ini
C:\Users\azooz\AppData\Roaming\BITS\UPnP.ini
C:\Users\azooz\AUTORUN.INF
C:\Windows\system32\kakle.dll
C:\Windows\system32\winitn.dll
H:\Autorun.inf
I:\Autorun.inf
J:\Autorun.inf

.
((((((((((((((((((((((((( Files Created from 2008-08-14 to 2008-09-14 )))))))))))))))))))))))))))))))
.

2008-09-14 23:44 . 2008-09-14 23:45 310,315,688 --a------ C:\Windows\MEMORY.DMP
2008-09-14 07:33 . 2008-09-14 07:33 <DIR> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-09-14 07:10 . 2008-09-14 07:10 <DIR> d-------- C:\Program Files\Microsoft SQL Server Compact Edition
2008-09-14 07:10 . 2006-11-29 13:06 3,426,072 --a------ C:\Windows\System32\d3dx9_32.dll
2008-09-14 06:35 . 2008-09-14 06:39 <DIR> d--hsc--- C:\Program Files\Common Files\WindowsLiveInstaller
2008-09-14 06:33 . 2008-09-14 06:33 <DIR> d-------- C:\Users\All Users\WLInstaller
2008-09-14 06:33 . 2008-09-14 06:33 <DIR> d-------- C:\ProgramData\WLInstaller
2008-09-10 09:02 . 2006-09-14 18:50 <DIR> d-------- C:\Users\azooz\AppData\Roaming\VMware
2008-09-10 07:38 . 2007-02-17 05:38 1,024 --a------ C:\.rnd
2008-09-10 07:36 . 2008-09-14 23:44 <DIR> d-------- C:\Users\All Users\VMware
2008-09-10 07:36 . 2008-09-14 23:44 <DIR> d-------- C:\ProgramData\VMware
2008-09-10 02:58 . 2008-07-31 02:13 4,240,384 --a------ C:\Windows\System32\GameUXLegacyGDFs.dll
2008-09-10 02:58 . 2008-08-02 02:01 625,152 --a------ C:\Windows\System32\drivers\dxgkrnl.sys
2008-09-10 02:58 . 2008-06-26 04:29 565,248 --a------ C:\Windows\System32\emdmgmt.dll
2008-09-10 02:58 . 2008-06-26 04:29 303,616 --a------ C:\Windows\System32\wmpeffects.dll
2008-09-10 02:58 . 2008-05-08 20:21 211,968 --a------ C:\Windows\System32\drivers\mrxsmb10.sys
2008-09-10 02:58 . 2008-05-20 03:07 148,480 --a------ C:\Windows\System32\drivers\nwifi.sys
2008-09-10 02:58 . 2008-06-26 04:29 45,056 --a------ C:\Windows\System32\dataclen.dll
2008-09-10 02:58 . 2008-08-02 04:26 36,864 --a------ C:\Windows\System32\cdd.dll
2008-09-10 02:58 . 2008-07-31 04:32 28,160 --a------ C:\Windows\System32\Apphlpdm.dll
2008-09-09 07:24 . 2008-09-09 07:34 <DIR> d-------- C:\Program Files\Yacc Yet Another CSO Compressor
2008-09-07 04:42 . 2008-09-07 04:42 <DIR> d-------- C:\Users\azooz\AppData\Roaming\URSoft
2008-09-07 04:42 . 2008-09-07 04:49 <DIR> d-------- C:\Program Files\Your Uninstaller 2008
2008-09-06 17:45 . 2008-09-06 17:45 <DIR> d-------- C:\Users\azooz\AppData\Roaming\FlashGet
2008-09-06 04:49 . 2008-09-07 14:29 <DIR> d-------- C:\Downloads
2008-09-06 04:19 . 2008-09-06 04:19 <DIR> d-------- C:\profiles
2008-09-06 03:38 . 2008-09-07 15:59 <DIR> d-------- C:\Users\All Users\Apple Computer
2008-09-06 03:38 . 2008-09-07 15:59 <DIR> d-------- C:\ProgramData\Apple Computer
2008-09-06 03:38 . 2007-01-20 21:26 1,565,480 --a------ C:\Windows\System32\wmv9vcm.dll
2008-09-06 03:38 . 1999-04-15 13:10 424,960 --a------ C:\Windows\System32\msms001.vwp
2008-09-06 03:38 . 2004-01-25 18:18 217,088 --a------ C:\Windows\System32\i420vfw.dll
2008-09-06 03:38 . 1997-04-01 10:27 98,304 --a------ C:\Windows\System32\IMC32.acm
2008-09-06 03:38 . 2006-09-01 16:14 65,536 --a------ C:\Windows\System32\QuickTimeVR.qtx
2008-09-06 03:38 . 2006-09-01 16:14 49,152 --a------ C:\Windows\System32\QuickTime.qts
2008-09-06 03:37 . 2006-07-12 01:40 1,044,480 --a------ C:\Windows\System32\libdivx.dll
2008-09-06 03:37 . 2006-07-12 01:40 200,704 --a------ C:\Windows\System32\ssldivx.dll
2008-09-06 03:37 . 2006-08-11 01:03 196,608 --a------ C:\Windows\System32\dtu100.dll
2008-09-05 15:11 . 2002-07-08 00:14 1,294,336 --a------ C:\Windows\System32\vorbis.acm
2008-09-05 15:11 . 2006-04-02 13:47 630,784 --a------ C:\Windows\System32\vp7vfw.dll
2008-09-05 15:11 . 2004-12-10 09:03 438,272 --a------ C:\Windows\System32\vp6vfw.dll
2008-09-05 15:11 . 1997-04-07 18:19 391,680 --a------ C:\Windows\System32\I263_32.drv
2008-09-05 15:11 . 2001-02-25 03:19 287,744 --a------ C:\Windows\System32\divxa32.acm
2008-09-05 15:11 . 2006-10-18 19:05 232,448 --a------ C:\Windows\System32\mp3fhg.acm
2008-09-05 15:11 . 2004-05-18 20:16 39,936 --a------ C:\Windows\System32\huffyuv.dll
2008-09-05 14:48 . 2006-11-07 08:08 558,592 --a------ C:\Windows\System32\x264vfw.dll
2008-09-05 05:19 . 2008-09-05 05:24 <DIR> d-------- C:\Program Files\Winamp
2008-09-05 05:19 . 2007-03-08 00:51 129,784 --------- C:\Windows\System32\pxafs.dll
2008-09-05 00:31 . 2008-09-05 00:31 <DIR> d-------- C:\Program Files\The KMPlayer
2008-09-04 21:02 . 2007-08-08 12:07 101,504 --a------ C:\Windows\System32\drivers\ewusbmdm.sys
2008-09-04 20:57 . 2007-08-08 12:06 23,424 --a------ C:\Windows\System32\drivers\ewdcsc.sys
2008-09-04 20:54 . 2008-09-05 00:11 <DIR> d-------- C:\Program Files\ALJAWAL 3.5G HSDPA DATA CARD
2008-09-01 15:22 . 2008-09-01 15:22 <DIR> d-------- C:\Program Files\Snagit
2008-08-29 15:15 . 2008-08-29 15:15 <DIR> d-------- C:\Windows\System32\RMBin
2008-08-29 15:15 . 2008-08-29 15:15 <DIR> d-------- C:\Program Files\Ozone
2008-08-26 18:24 . 2008-08-26 18:24 <DIR> d-------- C:\Users\All Users\Real
2008-08-26 18:24 . 2008-09-07 15:55 <DIR> d-------- C:\Program Files\K-Lite Codec Pack
2008-08-26 18:24 . 2006-07-27 19:28 3,596,288 --a------ C:\Windows\System32\qt-dx331.dll
2008-08-26 12:38 . 2006-09-14 19:51 <DIR> d-a------ C:\Users\All Users\TEMP
2008-08-26 12:38 . 2006-09-14 19:51 <DIR> d-a------ C:\ProgramData\TEMP
2008-08-26 06:53 . 2008-08-26 06:53 2,560 --a------ C:\Windows\_MSRSTRT.EXE
2008-08-26 06:48 . 2008-08-26 06:48 <DIR> d-------- C:\Users\azooz\AppData\Roaming\GrabPro
2008-08-25 17:52 . 2008-05-27 06:21 1,582,592 --a------ C:\Windows\System32\tquery.dll
2008-08-25 17:52 . 2008-05-27 06:21 1,418,240 --a------ C:\Windows\System32\mssrch.dll
2008-08-25 17:52 . 2008-05-27 06:18 670,208 --a------ C:\Windows\System32\mssvp.dll
2008-08-25 17:52 . 2008-05-27 06:18 350,208 --a------ C:\Windows\System32\mssph.dll
2008-08-25 17:52 . 2008-05-27 06:18 203,776 --a------ C:\Windows\System32\mssphtb.dll
2008-08-24 19:09 . 2008-08-24 19:09 0 --ah----- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2008-08-24 17:12 . 2008-01-19 08:33 8,139,264 --a------ C:\Windows\System32\ssBranded.scr
2008-08-24 17:11 . 2008-01-19 08:35 3,072,000 --a------ C:\Windows\System32\networkmap.dll
2008-08-24 17:10 . 2008-01-19 07:06 8,147,456 --a------ C:\Windows\System32\wmploc.DLL
2008-08-24 17:09 . 2008-01-19 08:36 704,512 --a------ C:\Windows\System32\SmiEngine.dll
2008-08-24 17:09 . 2008-01-19 08:36 357,888 --a------ C:\Windows\System32\wbemcomn.dll
2008-08-24 17:09 . 2008-01-19 08:34 305,152 --a------ C:\Windows\System32\msdelta.dll
2008-08-24 17:09 . 2008-01-19 08:34 258,560 --a------ C:\Windows\System32\dpx.dll
2008-08-24 17:09 . 2008-01-19 08:34 246,784 --a------ C:\Windows\System32\drvstore.dll
2008-08-24 17:09 . 2008-01-19 08:36 218,624 --a------ C:\Windows\System32\wdscore.dll
2008-08-24 17:09 . 2008-01-19 08:36 139,264 --a------ C:\Windows\System32\SmiInstaller.dll
2008-08-24 17:09 . 2008-01-19 08:33 130,560 --a------ C:\Windows\System32\PkgMgr.exe
2008-08-24 17:09 . 2008-01-19 08:35 35,328 --a------ C:\Windows\System32\mspatcha.dll
2008-08-24 15:12 . 2008-05-13 07:46 <DIR> d-------- C:\v610072T_20080512
2008-08-23 06:16 . 2008-08-23 06:16 <DIR> d-------- C:\Program Files\URUSoft
2008-08-22 12:36 . 2008-08-22 12:36 355,584 --a------ C:\Windows\System32\TuneUpDefragService.exe
2008-08-22 12:36 . 2008-05-29 09:28 28,416 --a------ C:\Windows\System32\uxtuneup.dll
2008-08-22 12:36 . 2008-05-29 09:28 16,640 --a------ C:\Windows\System32\authuitu.dll
2008-08-22 09:11 . 2008-07-19 06:09 1,811,656 --a------ C:\Windows\System32\wuaueng.dll
2008-08-22 09:11 . 2008-07-19 04:44 1,524,736 --a------ C:\Windows\System32\wucltux.dll
2008-08-22 09:11 . 2008-07-19 06:09 563,912 --a------ C:\Windows\System32\wuapi.dll
2008-08-22 09:11 . 2008-07-19 04:44 83,456 --a------ C:\Windows\System32\wudriver.dll
2008-08-22 09:11 . 2008-07-19 06:10 53,448 --a------ C:\Windows\System32\wuauclt.exe
2008-08-22 09:11 . 2008-07-19 06:10 45,768 --a------ C:\Windows\System32\wups2.dll
2008-08-22 09:11 . 2008-07-19 06:10 36,552 --a------ C:\Windows\System32\wups.dll
2008-08-22 09:10 . 2008-07-18 22:08 163,904 --a------ C:\Windows\System32\wuwebv.dll
2008-08-22 09:10 . 2008-07-18 20:44 31,232 --a------ C:\Windows\System32\wuapp.exe
2008-08-21 15:00 . 2008-08-21 15:00 <DIR> d-------- C:\Users\azooz\wanted
2008-08-21 13:25 . 2008-08-21 13:25 885,248 --a------ C:\Windows\System32\RacEngn.dll
2008-08-21 13:25 . 2008-08-21 13:25 9,127 --a------ C:\Windows\System32\RacUR.xml
2008-08-21 13:25 . 2008-08-21 13:25 153 --a------ C:\Windows\System32\RacUREx.xml
2008-08-21 13:24 . 2008-08-23 06:08 <DIR> d-------- C:\Users\azooz\__MACOSX
2008-08-21 13:24 . 2008-08-21 13:24 269,312 --a------ C:\Windows\System32\es.dll
2008-08-21 13:18 . 2008-08-21 13:18 <DIR> d-------- C:\Users\azooz\AppData\Roaming\vlc
2008-08-20 18:36 . 2008-08-20 18:36 361,984 --a------ C:\Windows\System32\IPSECSVC.DLL
2008-08-20 18:36 . 2008-08-20 18:36 272,896 --a------ C:\Windows\System32\polstore.dll
2008-08-20 18:36 . 2008-08-20 18:36 61,440 --a------ C:\Windows\System32\winipsec.dll
2008-08-20 18:36 . 2008-08-20 18:36 28,672 --a------ C:\Windows\System32\FwRemoteSvr.dll
2008-08-20 18:35 . 2008-08-20 18:35 1,820 --a------ C:\Windows\System32\rasctrnm.h
2008-08-20 18:26 . 2008-08-20 18:26 2,048 --a------ C:\Windows\System32\tzres.dll
2008-08-20 18:17 . 2008-08-20 18:17 12,240,896 --a------ C:\Windows\System32\NlsLexicons0007.dll
2008-08-20 18:15 . 2008-08-20 18:15 1,383,424 --a------ C:\Windows\System32\mshtml.tlb
2008-08-20 18:15 . 2008-08-20 18:15 827,392 --a------ C:\Windows\System32\wininet.dll
2008-08-20 18:11 . 2008-08-20 18:11 988,216 --a------ C:\Windows\System32\winload.exe
2008-08-20 18:11 . 2008-08-20 18:11 927,288 --a------ C:\Windows\System32\winresume.exe
2008-08-20 18:11 . 2008-08-20 18:11 615,992 --a------ C:\Windows\System32\ci.dll
2008-08-20 18:11 . 2008-08-20 18:11 378,368 --a------ C:\Windows\System32\srcore.dll
2008-08-20 18:11 . 2008-08-20 18:11 318,464 --a------ C:\Windows\System32\rstrui.exe
2008-08-20 18:11 . 2008-08-20 18:11 46,592 --a------ C:\Windows\System32\setbcdlocale.dll
2008-08-20 18:11 . 2008-08-20 18:11 40,960 --a------ C:\Windows\System32\srclient.dll
2008-08-20 18:11 . 2008-08-20 18:11 19,000 --a------ C:\Windows\System32\kd1394.dll
2008-08-20 18:11 . 2008-08-20 18:11 14,848 --a------ C:\Windows\System32\srdelayed.exe
2008-08-20 18:11 . 2008-08-20 18:11 6,656 --a------ C:\Windows\System32\kbd106n.dll
2008-08-20 18:08 . 2008-08-20 18:08 2,032,128 --a------ C:\Windows\System32\win32k.sys
2008-08-20 18:07 . 2008-08-20 18:07 295,936 --a------ C:\Windows\System32\gdi32.dll
2008-08-20 18:03 . 2008-08-20 18:03 113,664 --a------ C:\Windows\System32\drivers\rmcast.sys
2008-08-20 18:03 . 2008-08-20 18:03 14,848 --a------ C:\Windows\System32\wshrm.dll
2008-08-20 18:01 . 2008-08-20 18:01 1,695,744 --a------ C:\Windows\System32\gameux.dll
2008-08-20 17:59 . 2008-08-20 17:59 738,304 --a------ C:\Windows\System32\inetcomm.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-29 14:15 90,112 ----a-w C:\Windows\System32\ALOAudioFormatSettings3.dll
2008-08-26 18:36 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-08-26 18:36 --------- d-----w C:\Program Files\TOSHIBA
2008-08-24 18:01 174 --sha-w C:\Program Files\desktop.ini
2008-08-24 17:50 --------- d-----w C:\Program Files\Windows Sidebar
2008-08-24 17:50 --------- d-----w C:\Program Files\Windows Photo Gallery
2008-08-24 17:50 --------- d-----w C:\Program Files\Windows Mail
2008-08-24 17:50 --------- d-----w C:\Program Files\Windows Journal
2008-08-24 17:50 --------- d-----w C:\Program Files\Windows Defender
2008-08-24 17:50 --------- d-----w C:\Program Files\Windows Collaboration
2008-08-24 17:50 --------- d-----w C:\Program Files\Windows Calendar
2008-08-24 17:12 82,432 ----a-w C:\Windows\System32\axaltocm.dll
2008-08-24 17:12 101,888 ----a-w C:\Windows\System32\ifxcardm.dll
2008-08-20 17:17 9,892,864 ----a-w C:\Windows\System32\NlsLexicons000a.dll
2008-08-20 17:05 541,696 ----a-w C:\Windows\AppPatch\AcLayers.dll
2008-08-20 17:05 2,560 ----a-w C:\Windows\AppPatch\AcRes.dll
2008-08-19 21:27 --------- d-----w C:\Program Files\Common Files\Adobe
2008-08-19 21:17 --------- d-----w C:\ProgramData\Symantec
2008-08-19 21:15 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-08-17 06:22 --------- d-----w C:\ProgramData\Toshiba
2008-08-17 06:21 --------- d-----w C:\Program Files\Intel
2008-07-31 03:32 460,288 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
2008-07-31 03:32 2,154,496 ----a-w C:\Windows\AppPatch\AcGenral.dll
2008-07-31 03:32 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.dll
2008-07-09 14:34 206,256 ----a-w C:\Windows\System32\idmmbc.dll
2008-07-07 22:25 513,447,184 ----a-w C:\Users\azooz\VMware Workstation-e.x.p-99530.exe
2008-06-18 20:51 55,856 ----a-w C:\Windows\System32\vnetinst.dll
2008-06-18 20:51 50,736 ----a-w C:\Windows\System32\vmnetbridge.dll
2008-06-18 20:51 395,824 ----a-w C:\Windows\System32\vmnat.exe
2008-06-18 20:50 739,888 ----a-w C:\Windows\System32\vnetlib.dll
2008-06-18 20:50 322,096 ----a-w C:\Windows\System32\vmnetdhcp.exe
2008-06-18 18:31 252,464 ----a-w C:\Windows\System32\vmnc.dll
2007-07-26 14:50 260,096 ----a-w C:\Users\azooz\VMware Workstation keygen.exe
2006-09-14 23:20 5,225,504 --sha-w C:\Windows\System32\drivers\fidbox.dat
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
"TOSCDSPD"="C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2006-11-13 413696]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-11-07 3739672]
"uTorrent"="C:\Program Files\uTorrent\uTorrent.exe" [2008-08-19 219952]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-19 125952]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [2006-09-13 2606512]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
"WindowsWelcomeCenter"="oobefldr.dll" [2008-01-19 C:\Windows\System32\oobefldr.dll]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TPwrMain"="C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE" [2006-12-19 411768]
"HSON"="C:\Program Files\TOSHIBA\TBS\HSON.exe" [2006-12-07 55416]
"SmoothView"="C:\Program Files\Toshiba\SmoothView\SmoothView.exe" [2007-04-03 509496]
"00TCrdMain"="C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe" [2007-03-23 538744]
"KeNotify"="C:\Program Files\TOSHIBA\Utilities\KeNotify.exe" [2006-11-06 34352]
"HWSetup"="C:\Program Files\TOSHIBA\Utilities\HWSetup.exe" [2006-11-01 413696]
"SVPWUTIL"="C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe" [2006-03-22 438272]
"topi"="C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-04-02 577536]
"Desktop SMS"="C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe" [2007-01-19 1507328]
"IgfxTray"="C:\Windows\system32\igfxtray.exe" [2007-04-03 138008]
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [2007-04-03 154392]
"Persistence"="C:\Windows\system32\igfxpers.exe" [2007-04-03 133912]
"Apoint"="C:\Program Files\Apoint2K\Apoint.exe" [2006-09-11 180224]
"Toshiba Registration"="C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe" [2007-02-19 571024]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-02-12 174872]
"IaNvSrv"="C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe" [2007-03-13 33048]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2008-04-25 201992]
"ITSecMng"="C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-09-28 75136]
"vmware-tray"="C:\Program Files\VMware\VMware Workstation\vmware-tray.exe" [2008-06-18 76336]
"VMware hqtray"="C:\Program Files\VMware\VMware Workstation\hqtray.exe" [2008-06-18 46640]
"RtHDVCpl"="RtHDVCpl.exe" [2007-03-24 C:\Windows\RtHDVCpl.exe]
"NDSTray.exe"="NDSTray.exe" [BU]
"Skytel"="Skytel.exe" [2007-03-17 C:\Windows\SkyTel.exe]

C:\Users\azooz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 113664]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2008-04-14 2979144]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.i420"= i420vfw.dll
"msacm.dvacm"= C:\PROGRA~1\COMMON~1\ULEADS~1\vio\dvacm.acm
"VIDC.YV12"= yv12vfw.dll
"VIDC.X264"= x264vfw.dll
"msacm.l3fhg"= mp3fhg.acm
"msacm.divxa32"= divxa32.acm
"VIDC.HFYU"= huffyuv.dll
"vidc.i263"= i263_32.drv
"msacm.imc"= imc32.acm

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Registry Crawler"=C:\PROGRA~1\RCrawler\RCrawler.exe -TRAYONLY

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"TCP Query User{CFBC4EE6-897A-4EF2-B9F5-826DC967FE89}C:\\program files\\aljawal 3.5g hsdpa data card\\aljawal 3.5g hsdpa data card.exe"= UDP:C:\program files\aljawal 3.5g hsdpa data card\aljawal 3.5g hsdpa data card.exe:ALJAWAL 3.5G HSDPA DATACARD
"UDP Query User{F14E3CC6-EA91-46C7-B13D-769655D4A570}C:\\program files\\aljawal 3.5g hsdpa data card\\aljawal 3.5g hsdpa data card.exe"= TCP:C:\program files\aljawal 3.5g hsdpa data card\aljawal 3.5g hsdpa data card.exe:ALJAWAL 3.5G HSDPA DATACARD
"TCP Query User{3DB8DCBA-863D-4BF1-9520-065FE415B0A8}C:\\program files\\utorrent\\utorrent.exe"= UDP:C:\program files\utorrent\utorrent.exe:uTorrent
"UDP Query User{B3272567-8E5B-4452-BD65-7C5E43103925}C:\\program files\\utorrent\\utorrent.exe"= TCP:C:\program files\utorrent\utorrent.exe:uTorrent
"TCP Query User{E6B244B2-A982-4CCA-A0F8-6ADF8DE458A6}C:\\program files\\utorrent\\utorrent.exe"= UDP:C:\program files\utorrent\utorrent.exe:uTorrent
"UDP Query User{E16CEFDA-02C9-40D1-AEA7-AA30F9E8179C}C:\\program files\\utorrent\\utorrent.exe"= TCP:C:\program files\utorrent\utorrent.exe:uTorrent
"TCP Query User{7BC841AC-3233-4CCD-BA35-08ED52BA834C}C:\\program files\\opera\\opera.exe"= UDP:C:\program files\opera\opera.exe:Opera Internet Browser
"UDP Query User{A8317F24-71E6-4A28-878C-A32055BFB2C2}C:\\program files\\opera\\opera.exe"= TCP:C:\program files\opera\opera.exe:Opera Internet Browser
"TCP Query User{51B089BA-5776-46B9-8866-B269CC5863C6}C:\\program files\\flashget network\\flashget universal\\flashget.exe"= UDP:C:\program files\flashget network\flashget universal\flashget.exe:flashget
"UDP Query User{A4FF61F6-FF3B-4ADC-968B-D15A480C0F8F}C:\\program files\\flashget network\\flashget universal\\flashget.exe"= TCP:C:\program files\flashget network\flashget universal\flashget.exe:flashget
"TCP Query User{0D737FCD-ACEE-4061-973B-13BF036D2511}C:\\program files\\flashget network\\flashget universal\\flashget.exe"= UDP:C:\program files\flashget network\flashget universal\flashget.exe:flashget
"UDP Query User{779DA89F-2AD3-4133-AFB3-A7A806708915}C:\\program files\\flashget network\\flashget universal\\flashget.exe"= TCP:C:\program files\flashget network\flashget universal\flashget.exe:flashget
"TCP Query User{CA0DA158-90EB-4022-A2D9-61D7626D2E17}C:\\program files\\flashget\\flashget.exe"= UDP:C:\program files\flashget\flashget.exe:FlashGet
"UDP Query User{111759D8-BA4E-4D59-B5E5-78AED147C9D9}C:\\program files\\flashget\\flashget.exe"= TCP:C:\program files\flashget\flashget.exe:FlashGet
"TCP Query User{B3F4FE79-A4C4-45D9-93DC-6C0B0BC2720A}C:\\program files\\opera\\opera.exe"= UDP:C:\program files\opera\opera.exe:Opera Internet Browser
"UDP Query User{9424EC69-1A29-4270-B6D1-A9BF38AB0FCC}C:\\program files\\opera\\opera.exe"= TCP:C:\program files\opera\opera.exe:Opera Internet Browser
"{6AE3ABFE-0728-41F1-9CC1-B71D198B2E74}"= C:\Program Files\Windows Live\Messenger\wlcsdk.exe:Windows Live Messenger (Phone)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"C:\\Program Files\\FlashGet Network\\FlashGet universal\\FlashGet.exe"= C:\Program Files\FlashGet Network\FlashGet universal\FlashGet.exe:*:Enabled:Flashget2
"C:\\Program Files\\FlashGet Network\\FlashGet universal\\LiveUpdate.exe"= C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdate.exe:*:Enabled:FGLiveUpdate
"C:\\Program Files\\FlashGet Network\\FlashGet universal\\LiveUpdateEx.exe"= C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdateEx.exe:*:Enabled:FGLiveUpdateEx

R0 CplIR;Embedded IR Driver;C:\Windows\system32\DRIVERS\CplIR.SYS [2007-03-06 14848]
R0 iaNvStor;Intel(R) Turbo Memory Technology NAND Controller;C:\Windows\system32\DRIVERS\iaNvStor.sys [2007-03-11 210432]
R0 klbg;Kaspersky Lab Boot Guard Driver;C:\Windows\system32\drivers\klbg.sys [2008-01-29 32784]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys [2008-03-26 20496]
R2 UxTuneUp;TuneUp Theme Extension;C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 vmci;VMware vmci;C:\Windows\system32\Drivers\vmci.sys [2008-06-18 48816]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;C:\Windows\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
R3 tapvpn;TAP VPN Adapter;C:\Windows\system32\DRIVERS\tapvpn.sys [2008-01-23 27136]
R3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\Windows\System32\TuneUpDefragService.exe [2008-08-22 355584]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
\shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
\shell\AutoRun\command - G:\RuthayOnePiece19.ico

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
\shell\AutoRun\command - H:\RuthayOnePiece19.ico

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\I]
\shell\AutoRun\command - I:\lain19.ico

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\J]
\shell\AutoRun\command - J:\joojjojo.ico

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{16df55ea-6e62-11dd-a993-0013e843f10d}]
\shell\AutoRun\command - J:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{18d8c5d6-6ec8-11dd-ab07-001b381572dd}]
\shell\AutoRun\command - kn6jhgc.cmd
\shell\explore\Command - kn6jhgc.cmd
\shell\open\Command - kn6jhgc.cmd

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8d61b72b-0137-11db-89dc-00037ade19a3}]
\shell\AutoRun\command - kn6jhgc.cmd
\shell\explore\Command - kn6jhgc.cmd
\shell\open\Command - kn6jhgc.cmd

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8f3804aa-7a2e-11dd-8d40-0013e843f10d}]
\shell\AutoRun\command - J:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{babe7774-6ee1-11dd-913a-001b381572dd}]
\shell\AutoRun\command - J:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e9785226-6e31-11dd-87c7-0013e843f10d}]
\shell\AutoRun\command - H:\RuthayOnePiece19.ico

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e9785229-6e31-11dd-87c7-0013e843f10d}]
\shell\AutoRun\command - I:\lain19.ico

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e978522c-6e31-11dd-87c7-0013e843f10d}]
\shell\AutoRun\command - J:\joojjojo.ico

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f26b183f-7ab6-11dd-9252-001b381572dd}]
\shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f26b1863-7ab6-11dd-9252-00037ade19a3}]
\shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f26b18b9-7ab6-11dd-9252-00037ade19a3}]
\shell\AutoRun\command - r813.bat
\shell\explore\Command - r813.bat
\shell\open\Command - r813.bat

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ffe645d0-6eed-11dd-b9de-001b381572dd}]
\shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ffe645d4-6eed-11dd-b9de-001b381572dd}]
\shell\AutoRun\command - J:\AutoRun.exe

*Newly Created Service* - CATCHME
.
s of the 'Scheduled Tasks' folder
.
.
------- Supplementary Scan -------
.
O8 -: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 -: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 -: Download FLV video with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 -: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 -: {C08CAF1D-C0A3-40D5-9970-06D067EAC017} -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2008-09-15 00:10:38
Windows 6.0.6001 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
TOSCDSPD = C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe?/i??????[W ????8?9?`?9???9???9??

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-09-15 0:12:51
ComboFix-quarantined-files.txt 2008-09-14 23:12:47

Pre-Run: 31,904,587,776 bytes free
Post-Run: 31,664,676,864 bytes free

357 --- E O F --- 2008-09-14 23:05:03

jin kazama · 15 سبتمبر 2008

Up Up Up Up Up

فارس الملاك · 15 سبتمبر 2008

عزيزي ياليت تقرير هايجاك

حمل هذا البرنامج

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات .. ويظهر لك تقرير ==> انسخه والصقه بردك القادم

وياليت تتأكد من تنظيف العدسة لكن كن حذرا معها

jin kazama · 16 سبتمبر 2008

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 06:38:32 AM, on 16/09/2006
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\Registration\ToshibaRegistration.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
C:\Program Files\VMware\VMware Workstation\hqtray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Windows Mail\WinMail.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Opera\opera.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe
C:\Program Files\Snagit\Snagit.exe
C:\Program Files\Snagit\App\Snagit\SnagIt32.exe
C:\Program Files\Snagit\App\Snagit\TSCHelp.exe
C:\Program Files\Snagit\App\Snagit\snagiteditor.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Users\azooz\Documents\Downloads\Programs\Zyzoom_HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: CEventSink Class - {B7154C4D-87C0-4A2C-AB64-DA132BAC2EE6} - C:\Program Files\Hotspot Shield\AnchorFree\ie\AFBho.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [Desktop SMS] C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe /auto
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [vmware-tray] "C:\Program Files\VMware\VMware Workstation\vmware-tray.exe"
O4 - HKLM\..\Run: [VMware hqtray] "C:\Program Files\VMware\VMware Workstation\hqtray.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

(file missing)
O10 - Unknown file in Winsock LSP: c:\program files\vmware\vmware workstation\\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\program files\vmware\vmware workstation\\vsocklib.dll
O13 - Gopher Prefix:
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe

--
End of file - 10672 bytes

jin kazama · 16 سبتمبر 2008

Up Up Up Up Up

jin kazama · 17 سبتمبر 2008

Up Up Up Up Up

boob77 · 17 سبتمبر 2008

ان شاء الله اشوف التقرير وارجع

boob77 · 17 سبتمبر 2008

حدد هالقيم واحذفهاا

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)

O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

(file missing)

O10 - Unknown file in Winsock LSP: c

rogram filesvmwarevmware workstation\vsocklib.dll

O10 - Unknown file in Winsock LSP: c

rogram filesvmwarevmware workstation\vsocklib.dll

طريقة الحذف

ثم نظف الجهاز

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ثم اعد التشغيل ,, وياريت تصور لي السيدي رايتر الي معاك

jin kazama · 17 سبتمبر 2008

مشكور اخوي ، حُلت المشكلة

boob77 · 17 سبتمبر 2008

العفو والحمدلله على حل المشكلة ,.,

زيزوومى مميز

توقيع : jin kazama

عضوشرف

زيزوومى مميز

توقيع : jin kazama

زيزوومى مميز

توقيع : jin kazama

زيزوومى محترف

توقيع : فارس الملاك

زيزوومى مميز

توقيع : jin kazama

عضوشرف

زيزوومى مميز

توقيع : jin kazama

عضوشرف

زيزوومى مميز

توقيع : jin kazama

زيزوومى مميز

توقيع : jin kazama

زيزوومى محترف

توقيع : فارس الملاك

زيزوومى مميز

توقيع : jin kazama

زيزوومى مميز

توقيع : jin kazama

زيزوومى مميز

توقيع : jin kazama

زيزوومى فضى

زيزوومى فضى

زيزوومى مميز

توقيع : jin kazama

زيزوومى فضى