فايروس غريب ويضرب الملفات وشكله ضرب الهارد

احمد 251 · 29 سبتمبر 2008

دخلت على أحدى المواقع
ودخل فيروس وملفات تجسس وتول بار بينزل لوحده واشياء غريبة ورسالة من الكاسبر
proactive defense
ومكتوب وعلى ما اتذكر
RUN Processor id123
وقمت بالتطهير وظهرت انذارت الكاسبر
شال التولبار اللى كان نازل وشال شوية بلاوى لما طفيت الكمبيوتر وشغلته بعد فترة الكاسبر لم يشتغل وعطانى هذه الرسالة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عملت اصلاح مفيش فائدة
لجأت الى الفورمات ومازالت الفيروسات موجودة
صورة لفيرس

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

كل ما افتح الهارد سى , دى اف يحصل هذه المشكلة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ما معنى هذه الرسالة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

وعندما فتحت الافاست قال ان هناك فيروس فى الذاكرة ونصحنى ب اعادة التشغيل وشال بلاوى قبل اقلاع الويندوس

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

هذه الرسالة كانت دائما تظهر

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

فهل جهازى مخترق عملت قطع الاتصال
شوف هنا اخفاء الملفات واظهارها

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

وكل ما اظهار الملفات لا تظهر
الحل الحل بارك الله فيكم ووسع رزقككم

:q::q::b::b:

احمد 251 · 29 سبتمبر 2008

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:50:07 ص, on 29/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\usama\Desktop\احمد 251\Zyzoom_HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O2 - BHO: Info cache - {285AB8C6-FB22-4D17-8834-064E2BA0A6F0} - C:\WINDOWS\Aseo\pbhealth.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKLM\..\Policies\Explorer\Run: [internetnet] C:\WINDOWS\system32\wuauclt.exe
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
--
End of file - 4036 bytes

البارون · 29 سبتمبر 2008

نظف جهازك اول
kaspersky tools

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اداة الكاسبر

بعد التحميل ،، دبل كلك وسيتم استخراج ملف الاداة الى مجلد بسطح المكتب لحظات وتبدأ الاداة بالعمل

تابع الشرح لفحص الجهاز وتنظيفه وارفاق التقرير

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

احمد 251 · 29 سبتمبر 2008

فحصت التقرير عن طريق الموقع طلع واحد احمر

احمد 251 · 29 سبتمبر 2008

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ولماذا تضهر هذه الرسالة عند فتح الهارد

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

احمد 251 · 29 سبتمبر 2008

هل اداة الكاسبر سريعة لان الرمات بتاعى 256
وأنا جربت الاداة قبل كدة بتاريخ قديم وكان بطيئ فى الفحص

البارون · 29 سبتمبر 2008

والله اخي هذي من خصائص فايروس الاوتو رن يسوي كذا

بس انت الان نظف الجهاز وهات التقرير ولا رح يكون خاطرك الاطيب

احمد 251 · 30 سبتمبر 2008

Scan
----
Scanned: 590
Detected: 1
Untreated: 0
Start time: 29/09/2004 05:10:52 م
Duration: 00:02:30
Finish time: 29/09/2004 05:13:22 م

Detected
--------
Status
------ ------
will be deleted when the computer is restarted: virus Worm.Win32.AutoRun.pgp File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact//PecBundle//PECompact//PE-Crypt.Morf

Events
------
Time Name Status Reason
---- ---- ------ ------
29/09/2004 05:11:02 م Running module: C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe ok scanned
29/09/2004 05:11:02 م File: C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe ok scanned
29/09/2004 05:11:03 م Running module: C:\WINDOWS\system32\ntdll.dll ok scanned
29/09/2004 05:11:03 م File: C:\WINDOWS\system32\ntdll.dll ok scanned
29/09/2004 05:11:03 م Running module: C:\WINDOWS\system32\kernel32.dll ok scanned
29/09/2004 05:11:03 م File: C:\WINDOWS\system32\kernel32.dll ok scanned
29/09/2004 05:11:03 م Running module: C:\WINDOWS\system32\ADVAPI32.dll ok scanned
29/09/2004 05:11:03 م File: C:\WINDOWS\system32\ADVAPI32.dll ok scanned
29/09/2004 05:11:03 م Running module: C:\WINDOWS\system32\RPCRT4.dll ok scanned
29/09/2004 05:11:03 م File: C:\WINDOWS\system32\RPCRT4.dll ok scanned
29/09/2004 05:11:03 م Running module: C:\WINDOWS\system32\USER32.dll ok scanned
29/09/2004 05:11:03 م File: C:\WINDOWS\system32\USER32.dll ok scanned
29/09/2004 05:11:03 م Running module: C:\WINDOWS\system32\GDI32.dll ok scanned
29/09/2004 05:11:03 م File: C:\WINDOWS\system32\GDI32.dll ok scanned
29/09/2004 05:11:04 م Running module: C:\WINDOWS\system32\OLEAUT32.dll ok scanned
29/09/2004 05:11:04 م File: C:\WINDOWS\system32\OLEAUT32.dll ok scanned
29/09/2004 05:11:04 م Running module: C:\WINDOWS\system32\msvcrt.dll ok scanned
29/09/2004 05:11:04 م File: C:\WINDOWS\system32\msvcrt.dll ok scanned
29/09/2004 05:11:04 م Running module: C:\WINDOWS\system32\ole32.dll ok scanned
29/09/2004 05:11:04 م File: C:\WINDOWS\system32\ole32.dll ok scanned
29/09/2004 05:11:04 م Running module: C:\WINDOWS\system32\IMM32.DLL ok scanned
29/09/2004 05:11:04 م File: C:\WINDOWS\system32\IMM32.DLL ok scanned
29/09/2004 05:11:04 م Running module: C:\WINDOWS\system32\LPK.DLL ok scanned
29/09/2004 05:11:04 م File: C:\WINDOWS\system32\LPK.DLL ok scanned
29/09/2004 05:11:04 م Running module: C:\WINDOWS\system32\USP10.dll ok scanned
29/09/2004 05:11:04 م File: C:\WINDOWS\system32\USP10.dll ok scanned
29/09/2004 05:11:04 م Running module: C:\WINDOWS\system32\uxtheme.dll ok scanned
29/09/2004 05:11:04 م File: C:\WINDOWS\system32\uxtheme.dll ok scanned
29/09/2004 05:11:04 م Running module: C:\WINDOWS\system32\MSCTF.dll ok scanned
29/09/2004 05:11:04 م File: C:\WINDOWS\system32\MSCTF.dll ok scanned
29/09/2004 05:11:04 م Running module: C:\Program Files\Common Files\Microsoft Shared\Windows Live\msidcrl40.dll ok scanned
29/09/2004 05:11:05 م File: C:\Program Files\Common Files\Microsoft Shared\Windows Live\msidcrl40.dll ok scanned
29/09/2004 05:11:05 م Running module: C:\WINDOWS\system32\SHELL32.dll ok scanned
29/09/2004 05:11:05 م File: C:\WINDOWS\system32\SHELL32.dll ok scanned
29/09/2004 05:11:05 م Running module: C:\WINDOWS\system32\SHLWAPI.dll ok scanned
29/09/2004 05:11:05 م File: C:\WINDOWS\system32\SHLWAPI.dll ok scanned
29/09/2004 05:11:05 م Running module: C:\WINDOWS\system32\CRYPT32.dll ok scanned
29/09/2004 05:11:05 م File: C:\WINDOWS\system32\CRYPT32.dll ok scanned
29/09/2004 05:11:05 م Running module: C:\WINDOWS\system32\MSASN1.dll ok scanned
29/09/2004 05:11:05 م File: C:\WINDOWS\system32\MSASN1.dll ok scanned
29/09/2004 05:11:05 م Running module: C:\WINDOWS\system32\WININET.dll ok scanned
29/09/2004 05:11:05 م File: C:\WINDOWS\system32\WININET.dll ok scanned
29/09/2004 05:11:05 م Running module: C:\WINDOWS\system32\SensApi.dll ok scanned
29/09/2004 05:11:05 م File: C:\WINDOWS\system32\SensApi.dll ok scanned
29/09/2004 05:11:05 م Running module: C:\WINDOWS\system32\PSAPI.DLL ok scanned
29/09/2004 05:11:06 م File: C:\WINDOWS\system32\PSAPI.DLL ok scanned
29/09/2004 05:11:06 م Running module: C:\WINDOWS\system32\WINTRUST.dll ok scanned
29/09/2004 05:11:06 م File: C:\WINDOWS\system32\WINTRUST.dll ok scanned
29/09/2004 05:11:06 م Running module: C:\WINDOWS\system32\IMAGEHLP.dll ok scanned
29/09/2004 05:11:06 م File: C:\WINDOWS\system32\IMAGEHLP.dll ok scanned
29/09/2004 05:11:06 م Running module: C:\WINDOWS\system32\VERSION.dll ok scanned
29/09/2004 05:11:06 م File: C:\WINDOWS\system32\VERSION.dll ok scanned
29/09/2004 05:11:06 م Running module: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll ok scanned
29/09/2004 05:11:06 م File: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll ok scanned
29/09/2004 05:11:06 م Running module: C:\WINDOWS\system32\comctl32.dll ok scanned
29/09/2004 05:11:06 م File: C:\WINDOWS\system32\comctl32.dll ok scanned
29/09/2004 05:11:06 م Running module: C:\WINDOWS\system32\rsaenh.dll ok scanned
29/09/2004 05:11:06 م File: C:\WINDOWS\system32\rsaenh.dll ok scanned
29/09/2004 05:11:06 م Running module: C:\WINDOWS\system32\xpsp2res.dll ok scanned
29/09/2004 05:11:06 م File: C:\WINDOWS\system32\xpsp2res.dll ok scanned
29/09/2004 05:11:06 م Running module: C:\WINDOWS\system32\userenv.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\userenv.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\secur32.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\secur32.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\netapi32.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\netapi32.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\cryptnet.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\cryptnet.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\WLDAP32.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\WLDAP32.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\WINHTTP.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\WINHTTP.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\CLBCATQ.DLL ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\CLBCATQ.DLL ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\COMRes.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\COMRes.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\msxml3.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\msxml3.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\urlmon.dll ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\urlmon.dll ok scanned
29/09/2004 05:11:07 م Running module: C:\WINDOWS\system32\SXS.DLL ok scanned
29/09/2004 05:11:07 م File: C:\WINDOWS\system32\SXS.DLL ok scanned
29/09/2004 05:11:08 م File: c:\windows\system32\mmdrv.dll ok scanned
29/09/2004 05:11:08 م File: c:\windows\system\timer.drv ok scanned
29/09/2004 05:11:08 م File: c:\windows\system32\mshta.exe ok scanned
29/09/2004 05:11:08 م File: c:\windows\system32\notepad.exe ok scanned
29/09/2004 05:11:08 م File: c:\windows\regedit.exe ok scanned
29/09/2004 05:11:10 م File: c:\program files\microsoft office\office11\msaccess.exe ok scanned
29/09/2004 05:11:10 م File: c:\windows\system32\accwiz.exe ok scanned
29/09/2004 05:11:10 م File: c:\program files\windows media player\wmplayer.exe ok scanned
29/09/2004 05:11:11 م File: c:\program files\alwil software\avast4\ashsimpl.exe ok scanned
29/09/2004 05:11:11 م File: c:\windows\system32\rundll32.exe ok scanned
29/09/2004 05:11:11 م File: c:\windows\system32\cryptext.dll ok scanned
29/09/2004 05:11:11 م File: C:\WINDOWS\system32\rundll32.exe ok scanned
29/09/2004 05:11:11 م File: C:\WINDOWS\system32\cryptext.dll ok scanned
29/09/2004 05:11:11 م File: c:\program files\outlook express\wab.exe ok scanned
29/09/2004 05:11:11 م File: c:\windows\explorer.exe ok scanned
29/09/2004 05:11:11 م File: c:\windows\system32\cdfview.dll ok scanned
29/09/2004 05:11:11 م File: c:\windows\hh.exe ok scanned
29/09/2004 05:11:12 م File: c:\windows\system32\clipbrd.exe ok scanned
29/09/2004 05:11:13 م File: c:\progra~1\micros~2\office11\excel.exe ok scanned
29/09/2004 05:11:13 م File: c:\windows\system32\netshell.dll ok scanned
29/09/2004 05:11:13 م File: c:\windows\system32\shimgvw.dll ok scanned
29/09/2004 05:11:13 م File: c:\program files\microsoft office\office11\excel.exe ok scanned
29/09/2004 05:11:13 م File: c:\windows\system32\fontview.exe ok scanned
29/09/2004 05:11:14 م File: c:\windows\system32\msconf.dll ok scanned
29/09/2004 05:11:14 م File: c:\windows\winhlp32.exe ok scanned
29/09/2004 05:11:14 م File: c:\windows\system32\winhlp32.exe ok scanned
29/09/2004 05:11:14 م File: c:\progra~1\micros~2\office11\outlook.exe ok scanned
29/09/2004 05:11:14 م File: c:\program files\windows nt\hypertrm.exe ok scanned
29/09/2004 05:11:14 م File: c:\program files\internet explorer\iexplore.exe ok scanned
29/09/2004 05:11:14 م File: C:\WINDOWS\system32\msconf.dll ok scanned
29/09/2004 05:11:14 م File: c:\windows\system32\wscript.exe ok scanned
29/09/2004 05:11:15 م File: c:\program files\microsoft office\office11\mstore.exe ok scanned
29/09/2004 05:11:15 م File: c:\windows\system32\ntbackup.exe ok scanned
29/09/2004 05:11:15 م File: c:\windows\system32\mmc.exe ok scanned
29/09/2004 05:11:15 م File: c:\program files\microsoft office\office11\outlook.exe ok scanned
29/09/2004 05:11:16 م File: c:\windows\system32\shell32.dll ok scanned
29/09/2004 05:11:16 م File: c:\windows\system32\desk.cpl ok scanned
29/09/2004 05:11:16 م File: i:\zyzoom-104010b926\virtuanes.exe ok scanned
29/09/2004 05:11:16 م File: c:\program files\microsoft office\office11\finder.exe ok scanned
29/09/2004 05:11:17 م File: c:\windows\system32\rasphone.exe ok scanned
29/09/2004 05:11:17 م File: c:\windows\system32\perfmon.exe ok scanned
29/09/2004 05:11:18 م File: c:\program files\microsoft office\office11\powerpnt.exe ok scanned
29/09/2004 05:11:18 م File: c:\windows\system32\msrating.dll ok scanned
29/09/2004 05:11:18 م File: C:\WINDOWS\regedit.exe ok scanned
29/09/2004 05:11:18 م File: c:\program files\windows nt\accessories\wordpad.exe ok scanned
29/09/2004 05:11:18 م File: c:\windows\notepad.exe ok scanned
29/09/2004 05:11:18 م File: c:\windows\system32\wpnpinst.exe ok scanned
29/09/2004 05:11:20 م File: c:\program files\microsoft office\office11\winword.exe ok scanned
29/09/2004 05:11:20 م File: c:\program files\common files\microsoft shared\office11\msoxmled.exe ok scanned
29/09/2004 05:11:21 م File: c:\windows\system32\drwtsn32.exe ok scanned
29/09/2004 05:11:21 م File: C:\WINDOWS\explorer.exe ok scanned
29/09/2004 05:11:21 م File: c:\windows\system32\userinit.exe ok scanned
29/09/2004 05:11:22 م File: c:\windows\system32\crypt32.dll ok scanned
29/09/2004 05:11:22 م File: c:\windows\system32\cryptnet.dll ok scanned
29/09/2004 05:11:22 م File: c:\windows\system32\cscdll.dll ok scanned
29/09/2004 05:11:22 م File: c:\windows\system32\wlnotify.dll ok scanned
29/09/2004 05:11:22 م File: C:\WINDOWS\system32\wlnotify.dll ok scanned
29/09/2004 05:11:22 م File: c:\windows\system32\sclgntfy.dll ok scanned
29/09/2004 05:11:22 م File: c:\windows\ime\imjp8_1\imjpmig.exe ok scanned
29/09/2004 05:11:22 م File: c:\windows\system32\ime\pintlgnt\imscinst.exe ok scanned
29/09/2004 05:11:22 م File: c:\windows\system32\ime\tintlgnt\tintsetp.exe ok scanned
29/09/2004 05:11:22 م File: c:\windows\soundman.exe ok scanned
29/09/2004 05:11:22 م File: c:\windows\system32\sispower.dll ok scanned
29/09/2004 05:11:23 م File: c:\progra~1\alwils~1\avast4\ashdisp.exe ok scanned
29/09/2004 05:11:23 م File: c:\program files\common files\real\update_ob\realsched.exe ok scanned
29/09/2004 05:11:23 م File: c:\windows\system32\ctfmon.exe ok scanned
29/09/2004 05:11:27 م File: c:\program files\yahoo!\messenger\yahoomessenger.exe ok scanned
29/09/2004 05:11:30 م File: c:\program files\msn messenger\msnmsgr.exe ok scanned
29/09/2004 05:11:30 م File: c:\windows\system32\alrsvc.dll ok scanned
29/09/2004 05:11:30 م File: c:\windows\system32\appmgmts.dll ok scanned
29/09/2004 05:11:30 م File: c:\windows\system32\audiosrv.dll ok scanned
29/09/2004 05:11:30 م File: c:\windows\system32\qmgr.dll ok scanned
29/09/2004 05:11:30 م File: c:\windows\system32\browser.dll ok scanned
29/09/2004 05:11:30 م File: c:\windows\system32\cryptsvc.dll ok scanned
29/09/2004 05:11:30 م File: c:\windows\system32\rpcss.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\dhcpcsvc.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\dmserver.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\dnsrslvr.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\ersvc.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\es.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\shsvcs.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\pchealth\helpctr\binaries\pchsvc.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\w3ssl.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\srvsvc.dll ok scanned
29/09/2004 05:11:31 م File: c:\windows\system32\wkssvc.dll ok scanned
29/09/2004 05:11:32 م File: c:\windows\system32\lmhsvc.dll ok scanned
29/09/2004 05:11:32 م File: c:\windows\system32\msgsvc.dll ok scanned
29/09/2004 05:11:32 م File: c:\windows\system32\netman.dll ok scanned
29/09/2004 05:11:32 م File: c:\windows\system32\mswsock.dll ok scanned
29/09/2004 05:11:32 م File: c:\windows\system32\ntmssvc.dll ok scanned
29/09/2004 05:11:32 م File: c:\windows\system32\rasauto.dll ok scanned
29/09/2004 05:11:33 م File: c:\windows\system32\rasmans.dll ok scanned
29/09/2004 05:11:33 م File: c:\windows\system32\mprdim.dll ok scanned
29/09/2004 05:11:33 م File: c:\windows\system32\regsvc.dll ok scanned
29/09/2004 05:11:33 م File: c:\windows\system32\schedsvc.dll ok scanned
29/09/2004 05:11:33 م File: c:\windows\system32\seclogon.dll ok scanned
29/09/2004 05:11:33 م File: c:\windows\system32\sens.dll ok scanned
29/09/2004 05:11:33 م File: c:\windows\system32\ipnathlp.dll ok scanned
29/09/2004 05:11:34 م File: c:\windows\system32\srsvc.dll ok scanned
29/09/2004 05:11:34 م File: c:\windows\system32\ssdpsrv.dll ok scanned
29/09/2004 05:11:34 م File: c:\windows\system32\wiaservc.dll ok scanned
29/09/2004 05:11:34 م File: c:\windows\system32\tapisrv.dll ok scanned
29/09/2004 05:11:34 م File: c:\windows\system32\termsrv.dll ok scanned
29/09/2004 05:11:35 م File: c:\windows\system32\trkwks.dll ok scanned
29/09/2004 05:11:35 م File: c:\windows\system32\upnphost.dll ok scanned
29/09/2004 05:11:35 م File: c:\windows\system32\w32time.dll ok scanned
29/09/2004 05:11:35 م File: c:\windows\system32\webclnt.dll ok scanned
29/09/2004 05:11:35 م File: c:\windows\system32\wbem\wmisvc.dll ok scanned
29/09/2004 05:11:35 م File: c:\windows\system32\mspmsnsv.dll ok scanned
29/09/2004 05:11:36 م File: c:\windows\system32\advapi32.dll ok scanned
29/09/2004 05:11:36 م File: c:\windows\system32\wscsvc.dll ok scanned
29/09/2004 05:11:36 م File: c:\windows\system32\wuauserv.dll ok scanned
29/09/2004 05:11:36 م File: c:\windows\system32\wzcsvc.dll ok scanned
29/09/2004 05:11:36 م File: c:\windows\system32\xmlprov.dll ok scanned
29/09/2004 05:11:37 م File: c:\windows\system32\drivers\acpi.sys ok scanned
29/09/2004 05:11:37 م File: c:\windows\system32\drivers\aec.sys ok scanned
29/09/2004 05:11:37 م File: c:\windows\system32\drivers\afd.sys ok scanned
29/09/2004 05:11:37 م File: c:\windows\system32\drivers\alcxwdm.sys ok scanned
29/09/2004 05:11:37 م File: c:\windows\system32\svchost.exe ok scanned
29/09/2004 05:11:38 م File: c:\windows\system32\alg.exe ok scanned
29/09/2004 05:11:38 م File: c:\windows\system32\drivers\aswfsblk.sys packed file PE_Patch
29/09/2004 05:11:38 م File: c:\windows\system32\drivers\aswfsblk.sys//PE_Patch ok scanned
29/09/2004 05:11:38 م File: c:\windows\system32\drivers\aswfsblk.sys ok scanned
29/09/2004 05:11:38 م File: c:\program files\alwil software\avast4\aswupdsv.exe ok scanned
29/09/2004 05:11:38 م File: c:\windows\system32\drivers\asyncmac.sys ok scanned
29/09/2004 05:11:38 م File: c:\windows\system32\drivers\atapi.sys ok scanned
29/09/2004 05:11:38 م File: c:\windows\system32\drivers\atmarpc.sys ok scanned
29/09/2004 05:11:38 م File: c:\windows\system32\drivers\audstub.sys ok scanned
29/09/2004 05:11:38 م File: c:\program files\alwil software\avast4\ashserv.exe ok scanned
29/09/2004 05:11:38 م File: c:\program files\alwil software\avast4\ashmaisv.exe ok scanned
29/09/2004 05:11:40 م File: c:\program files\alwil software\avast4\ashwebsv.exe ok scanned
29/09/2004 05:11:40 م File: c:\windows\system32\drivers\cdrom.sys ok scanned
29/09/2004 05:11:40 م File: c:\windows\system32\cisvc.exe ok scanned
29/09/2004 05:11:40 م File: c:\windows\system32\clipsrv.exe ok scanned
29/09/2004 05:11:40 م File: c:\windows\system32\dllhost.exe ok scanned
29/09/2004 05:11:40 م File: c:\windows\system32\drivers\disk.sys ok scanned
29/09/2004 05:11:41 م File: c:\windows\system32\dmadmin.exe ok scanned
29/09/2004 05:11:41 م File: c:\windows\system32\drivers\dmboot.sys packed file PE_Patch
29/09/2004 05:11:43 م File: c:\windows\system32\drivers\dmboot.sys//PE_Patch ok scanned
29/09/2004 05:11:43 م File: c:\windows\system32\drivers\dmboot.sys ok scanned
29/09/2004 05:11:43 م File: c:\windows\system32\drivers\dmio.sys ok scanned
29/09/2004 05:11:43 م File: c:\windows\system32\drivers\dmload.sys ok scanned
29/09/2004 05:11:43 م File: c:\windows\system32\drivers\dmusic.sys ok scanned
29/09/2004 05:11:44 م File: c:\windows\system32\drivers\drmkaud.sys ok scanned
29/09/2004 05:11:44 م File: c:\windows\system32\services.exe ok scanned
29/09/2004 05:11:44 م File: c:\windows\system32\drivers\fdc.sys ok scanned
29/09/2004 05:11:44 م File: c:\windows\system32\drivers\flpydisk.sys ok scanned
29/09/2004 05:11:44 م File: c:\windows\system32\drivers\fltmgr.sys packed file PE_Patch
29/09/2004 05:11:44 م File: c:\windows\system32\drivers\fltmgr.sys//PE_Patch ok scanned
29/09/2004 05:11:44 م File: c:\windows\system32\drivers\fltmgr.sys ok scanned
29/09/2004 05:11:44 م File: c:\windows\system32\drivers\ftdisk.sys ok scanned
29/09/2004 05:11:44 م File: c:\windows\system32\drivers\msgpc.sys ok scanned
29/09/2004 05:11:45 م File: c:\windows\system32\drivers\http.sys ok scanned
29/09/2004 05:11:45 م File: c:\windows\system32\drivers\i8042prt.sys ok scanned
29/09/2004 05:11:45 م File: c:\windows\system32\drivers\imapi.sys ok scanned
29/09/2004 05:11:45 م File: c:\windows\system32\imapi.exe ok scanned
29/09/2004 05:11:45 م File: c:\windows\system32\drivers\intelppm.sys ok scanned
29/09/2004 05:11:45 م File: c:\windows\system32\drivers\ip6fw.sys ok scanned
29/09/2004 05:11:45 م File: c:\windows\system32\drivers\ipfltdrv.sys ok scanned
29/09/2004 05:11:46 م File: c:\windows\system32\drivers\ipinip.sys ok scanned
29/09/2004 05:11:46 م File: c:\windows\system32\drivers\ipnat.sys ok scanned
29/09/2004 05:11:46 م File: c:\windows\system32\drivers\ipsec.sys ok scanned
29/09/2004 05:11:46 م File: c:\windows\system32\drivers\irenum.sys ok scanned
29/09/2004 05:11:47 م File: c:\windows\system32\drivers\44411050.sys ok scanned
29/09/2004 05:11:47 م File: c:\windows\system32\drivers\isapnp.sys ok scanned
29/09/2004 05:11:47 م File: c:\windows\system32\drivers\kbdclass.sys ok scanned
29/09/2004 05:11:47 م File: c:\windows\system32\drivers\kmixer.sys ok scanned
29/09/2004 05:11:47 م File: c:\windows\system32\mnmsrvc.exe ok scanned
29/09/2004 05:11:47 م File: c:\windows\system32\drivers\mouclass.sys ok scanned
29/09/2004 05:11:47 م File: c:\windows\system32\drivers\mrxdav.sys packed file PE_Patch
29/09/2004 05:11:48 م File: c:\windows\system32\drivers\mrxdav.sys//PE_Patch ok scanned
29/09/2004 05:11:48 م File: c:\windows\system32\drivers\mrxdav.sys ok scanned
29/09/2004 05:11:48 م File: c:\windows\system32\drivers\mrxsmb.sys packed file PE_Patch
29/09/2004 05:11:48 م File: c:\windows\system32\drivers\mrxsmb.sys//PE_Patch ok scanned
29/09/2004 05:11:48 م File: c:\windows\system32\drivers\mrxsmb.sys ok scanned
29/09/2004 05:11:48 م File: c:\windows\system32\msdtc.exe ok scanned
29/09/2004 05:11:48 م File: c:\windows\system32\msiexec.exe ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\mskssrv.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\mspclock.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\mspqm.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\mssmbios.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\ndistapi.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\ndisuio.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\ndiswan.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\netbios.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\netbt.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\netdde.exe ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\lsass.exe ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\npf.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\nwlnkflt.sys ok scanned
29/09/2004 05:11:49 م File: c:\windows\system32\drivers\nwlnkfwd.sys ok scanned
29/09/2004 05:11:50 م File: c:\program files\common files\microsoft shared\source engine\ose.exe ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\parport.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\pci.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\pciide.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\raspptp.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\psched.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\ptilink.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\rasacd.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\rasl2tp.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\raspppoe.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\raspti.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\rdbss.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\rdpcdd.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\rdpdr.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\sessmgr.exe ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\drivers\redbook.sys ok scanned
29/09/2004 05:11:50 م File: c:\windows\system32\locator.exe ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\rsvp.exe ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\rtl8139.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\scardsvr.exe ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\secdrv.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\serenum.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\serial.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\sisgrp.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\srvkp.sys packed file PE_Patch
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\srvkp.sys//PE_Patch ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\srvkp.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\sisraid.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\splitter.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\spoolsv.exe ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\sr.sys packed file PE_Patch
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\sr.sys//PE_Patch ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\sr.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\srv.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\swenum.sys ok scanned
29/09/2004 05:11:51 م File: c:\windows\system32\drivers\swmidi.sys ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\sysaudio.sys ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\smlogsvc.exe ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\tcpip.sys ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\termdd.sys ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\tlntsvr.exe ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\uagp35.sys ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\update.sys ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\ups.exe ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\usbehci.sys ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\usbhub.sys ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\usbohci.sys ok scanned
29/09/2004 05:11:52 م File: c:\program files\msn messenger\usnsvc.exe ok scanned
29/09/2004 05:11:52 م File: c:\windows\system32\drivers\vga.sys ok scanned
29/09/2004 05:11:53 م File: c:\windows\system32\vssvc.exe ok scanned
29/09/2004 05:11:53 م File: c:\windows\system32\drivers\wanarp.sys ok scanned
29/09/2004 05:11:53 م File: c:\windows\system32\drivers\wdmaud.sys ok scanned
29/09/2004 05:11:53 م File: c:\windows\system32\wbem\wmiapsrv.exe ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\acpi.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\aec.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\alcxwdm.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\aswfsblk.sys packed file PE_Patch
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\aswfsblk.sys//PE_Patch ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\aswfsblk.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\asyncmac.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\atapi.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\atmarpc.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\audstub.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\cdrom.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\disk.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\dmboot.sys packed file PE_Patch
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\dmboot.sys//PE_Patch ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\dmboot.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\dmio.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\dmload.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\dmusic.sys ok scanned
29/09/2004 05:11:53 م File: C:\WINDOWS\system32\drivers\drmkaud.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\fdc.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\flpydisk.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\fltmgr.sys packed file PE_Patch
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\fltmgr.sys//PE_Patch ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\fltmgr.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ftdisk.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\msgpc.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\http.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\i8042prt.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\imapi.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\intelppm.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ip6fw.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ipfltdrv.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ipinip.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ipnat.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ipsec.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\irenum.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\isapnp.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\kbdclass.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\kmixer.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mouclass.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mrxdav.sys packed file PE_Patch
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mrxdav.sys//PE_Patch ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mrxdav.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mrxsmb.sys packed file PE_Patch
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mrxsmb.sys//PE_Patch ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mrxsmb.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mskssrv.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mspclock.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mspqm.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\mssmbios.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ndistapi.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ndisuio.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ndiswan.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\netbios.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\netbt.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\nwlnkflt.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\nwlnkfwd.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\parport.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\pci.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\pciide.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\raspptp.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\psched.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\ptilink.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\rasacd.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\rasl2tp.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\raspppoe.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\raspti.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\rdbss.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\rdpcdd.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\rdpdr.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\redbook.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\rpcss.dll ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\rtl8139.sys ok scanned
29/09/2004 05:11:54 م File: C:\WINDOWS\system32\drivers\secdrv.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\serenum.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\serial.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\sisgrp.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\srvkp.sys packed file PE_Patch
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\srvkp.sys//PE_Patch ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\srvkp.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\sisraid.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\splitter.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\sr.sys packed file PE_Patch
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\sr.sys//PE_Patch ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\sr.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\srv.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\swenum.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\swmidi.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\sysaudio.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\tcpip.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\termdd.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\uagp35.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\update.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\usbehci.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\usbhub.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\usbohci.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\wanarp.sys ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\drivers\wdmaud.sys ok scanned
29/09/2004 05:11:55 م File: c:\windows\system32\autochk.exe ok scanned
29/09/2004 05:11:55 م File: C:\WINDOWS\system32\autochk.exe ok scanned
29/09/2004 05:11:56 م File: c:\windows\inf\unregmp2.exe ok scanned
29/09/2004 05:11:56 م File: c:\windows\system32\shmgrate.exe ok scanned
29/09/2004 05:11:56 م File: c:\windows\system32\iedkcs32.dll ok scanned
29/09/2004 05:11:56 م File: c:\windows\system32\regsvr32.exe ok scanned
29/09/2004 05:11:56 م File: c:\windows\system32\themeui.dll ok scanned
29/09/2004 05:11:56 م File: c:\program files\outlook express\setup50.exe//# ok scanned
29/09/2004 05:11:56 م File: c:\program files\outlook express\setup50.exe ok scanned
29/09/2004 05:11:56 م File: c:\windows\system32\user.exe ok scanned
29/09/2004 05:11:57 م File: c:\windows\system32\advpack.dll ok scanned
29/09/2004 05:11:57 م File: c:\windows\inf\msnetmtg.inf ok scanned
29/09/2004 05:11:57 م File: c:\windows\system32\setupapi.dll ok scanned
29/09/2004 05:11:57 م File: c:\windows\inf\ie.inf ok scanned
29/09/2004 05:11:57 م File: C:\WINDOWS\system32\advpack.dll ok scanned
29/09/2004 05:11:57 م File: c:\windows\inf\msmsgs.inf ok scanned
29/09/2004 05:11:57 م File: c:\windows\inf\wmp.inf ok scanned
29/09/2004 05:11:57 م File: C:\WINDOWS\system32\user.exe ok scanned
29/09/2004 05:11:58 م File: C:\WINDOWS\system32\shell32.dll ok scanned
29/09/2004 05:11:58 م File: c:\windows\system32\ie4uinit.exe ok scanned
29/09/2004 05:11:58 م File: c:\windows\system32\comm.drv ok scanned
29/09/2004 05:11:58 م File: c:\windows\system\vga.drv ok scanned
29/09/2004 05:11:58 م File: c:\windows\system\mmsystem.dll ok scanned
29/09/2004 05:11:58 م File: c:\windows\system\keyboard.drv ok scanned
29/09/2004 05:11:58 م File: c:\windows\system\mouse.drv ok scanned
29/09/2004 05:11:58 م File: c:\windows\system\wfwnet.drv ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\progman.exe ok scanned
29/09/2004 05:11:59 م File: c:\windows\system\sound.drv ok scanned
29/09/2004 05:11:59 م File: c:\windows\system\system.drv ok scanned
29/09/2004 05:11:59 م File: C:\WINDOWS\system32\timer.drv ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\midimap.dll ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\imaadp32.acm ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msadp32.acm ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msg711.acm ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msgsm32.acm ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\tssoft32.acm ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\iccvid.dll ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msh263.drv ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\ir32_32.dll ok scanned
29/09/2004 05:11:59 م File: C:\WINDOWS\system32\ir32_32.dll ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\ir41_32.ax ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\iyuv_32.dll ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msrle32.dll ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msvidc32.dll ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msyuv.dll ok scanned
29/09/2004 05:11:59 م File: C:\WINDOWS\system32\msyuv.dll ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\tsbyuv.dll ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msacm32.drv ok scanned
29/09/2004 05:11:59 م File: c:\windows\system32\msg723.acm ok scanned
29/09/2004 05:11:59 م File: C:\WINDOWS\system32\msh263.drv ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\msh261.drv ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\msaud32.acm ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\sl_anet.acm ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\iac25_32.ax ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\ir50_32.dll ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\l3codeca.acm ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\wdmaud.drv ok scanned
29/09/2004 05:12:00 م File: C:\WINDOWS\system32\wdmaud.drv ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\sirenacm.dll ok scanned
29/09/2004 05:12:00 م File: c:\windows\system32\webcheck.dll ok scanned
29/09/2004 05:12:01 م File: c:\windows\system32\st.dll ok scanned
29/09/2004 05:12:01 م File: c:\windows\system32\logon.scr ok scanned
29/09/2004 05:12:01 م File: C:\WINDOWS\system32\logon.scr ok scanned
29/09/2004 05:12:01 م File: c:\windows\system32\browseui.dll ok scanned
29/09/2004 05:12:01 م File: c:\windows\system32\wuauclt.exe packed file PE_Patch.PECompact
29/09/2004 05:12:01 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact packed file PecBundle
29/09/2004 05:12:01 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact//PecBundle packed file PECompact
29/09/2004 05:12:01 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact//PecBundle//PECompact packed file PE-Crypt.Morf
29/09/2004 05:12:01 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact//PecBundle//PECompact//PE-Crypt.Morf detected virus 'Worm.Win32.AutoRun.pgp'
29/09/2004 05:12:01 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact//PecBundle//PECompact//PE-Crypt.Morf not disinfected postponed
29/09/2004 05:12:02 م File: c:\windows\system32\mmsys.cpl ok scanned
29/09/2004 05:12:02 م File: c:\windows\system32\icmui.dll ok scanned
29/09/2004 05:12:02 م File: c:\windows\system32\rshx32.dll ok scanned
29/09/2004 05:12:02 م File: c:\windows\system32\docprop.dll ok scanned
29/09/2004 05:12:02 م File: c:\windows\system32\ntshrui.dll ok scanned
29/09/2004 05:12:02 م File: c:\windows\system32\deskadp.dll ok scanned
29/09/2004 05:12:02 م File: c:\windows\system32\deskmon.dll ok scanned
29/09/2004 05:12:03 م File: c:\windows\system32\dssec.dll ok scanned
29/09/2004 05:12:03 م File: c:\windows\system32\slayerxp.dll ok scanned
29/09/2004 05:12:03 م File: c:\windows\system32\shscrap.dll ok scanned
29/09/2004 05:12:03 م File: c:\windows\system32\diskcopy.dll ok scanned
29/09/2004 05:12:03 م File: c:\windows\system32\ntlanui2.dll ok scanned
29/09/2004 05:12:04 م File: c:\windows\system32\printui.dll ok scanned
29/09/2004 05:12:05 م File: c:\windows\system32\dskquoui.dll ok scanned
29/09/2004 05:12:05 م File: c:\windows\system32\syncui.dll ok scanned
29/09/2004 05:12:05 م File: c:\windows\system32\hticons.dll ok scanned
29/09/2004 05:12:05 م File: c:\windows\system32\fontext.dll ok scanned
29/09/2004 05:12:05 م File: C:\WINDOWS\system32\rshx32.dll ok scanned
29/09/2004 05:12:05 م File: C:\WINDOWS\system32\ntshrui.dll ok scanned
29/09/2004 05:12:06 م File: c:\windows\system32\deskperf.dll ok scanned
29/09/2004 05:12:06 م File: c:\windows\system32\wiashext.dll ok scanned
29/09/2004 05:12:06 م File: C:\WINDOWS\system32\wiashext.dll ok scanned
29/09/2004 05:12:07 م File: c:\windows\system32\remotepg.dll ok scanned
29/09/2004 05:12:07 م File: c:\windows\system32\wshext.dll ok scanned
29/09/2004 05:12:07 م File: c:\program files\common files\system\ole db\oledb32.dll ok scanned
29/09/2004 05:12:08 م File: c:\windows\system32\mstask.dll ok scanned
29/09/2004 05:12:08 م File: c:\windows\system32\shdocvw.dll ok scanned
29/09/2004 05:12:08 م File: c:\windows\system32\wuaucpl.cpl ok scanned
29/09/2004 05:12:08 م File: c:\windows\system32\twext.dll ok scanned
29/09/2004 05:12:08 م File: c:\windows\system32\shmedia.dll ok scanned
29/09/2004 05:12:09 م File: c:\windows\system32\sendmail.dll ok scanned
29/09/2004 05:12:09 م File: c:\windows\system32\occache.dll ok scanned
29/09/2004 05:12:10 م File: c:\windows\system32\appwiz.cpl ok scanned
29/09/2004 05:12:10 م File: c:\windows\system32\netplwiz.dll ok scanned
29/09/2004 05:12:11 م File: c:\windows\system32\zipfldr.dll ok scanned
29/09/2004 05:12:11 م File: c:\windows\system32\extmgr.dll ok scanned
29/09/2004 05:12:11 م File: c:\windows\system32\msieftp.dll ok scanned
29/09/2004 05:12:11 م File: c:\windows\system32\docprop2.dll ok scanned
29/09/2004 05:12:12 م File: c:\windows\system32\dsquery.dll ok scanned
29/09/2004 05:12:12 م File: c:\windows\system32\dsuiext.dll ok scanned
29/09/2004 05:12:12 م File: c:\windows\system32\mydocs.dll ok scanned
29/09/2004 05:12:12 م File: c:\windows\system32\cscui.dll ok scanned
29/09/2004 05:12:13 م File: c:\windows\msagent\agentpsh.dll ok scanned
29/09/2004 05:12:13 م File: c:\windows\system32\dfsshlex.dll ok scanned
29/09/2004 05:12:13 م File: c:\windows\system32\photowiz.dll ok scanned
29/09/2004 05:12:13 م File: c:\windows\system32\mmcshext.dll ok scanned
29/09/2004 05:12:13 م File: c:\windows\system32\cabview.dll ok scanned
29/09/2004 05:12:13 م File: c:\program files\outlook express\wabfind.dll ok scanned
29/09/2004 05:12:13 م File: c:\windows\system32\wmpshell.dll ok scanned
29/09/2004 05:12:14 م File: c:\program files\alwil software\avast4\ashshell.dll ok scanned
29/09/2004 05:12:14 م File: c:\progra~1\common~1\micros~1\webfol~1\msonsext.dll ok scanned
29/09/2004 05:12:14 م File: c:\progra~1\micros~2\office11\mlshext.dll ok scanned
29/09/2004 05:12:15 م File: c:\progra~1\micros~2\office11\olkfstub.dll ok scanned
29/09/2004 05:12:15 م File: c:\program files\microsoft office\office11\msohev.dll ok scanned
29/09/2004 05:12:15 م File: c:\program files\real\realplayer\rpshell.dll ok scanned
29/09/2004 05:12:15 م File: c:\program files\winrar\rarext.dll ok scanned
29/09/2004 05:12:16 م File: c:\program files\msn messenger\fsshext.8.1.0178.00.dll ok scanned
29/09/2004 05:12:16 م File: c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll ok scanned
29/09/2004 05:12:17 م File: c:\program files\alwil software\avast4\ashavast.exe ok scanned
29/09/2004 05:12:17 م File: c:\program files\msn gaming zone\windows\bckgzm.exe ok scanned
29/09/2004 05:12:17 م File: c:\program files\msn gaming zone\windows\chkrzm.exe ok scanned
29/09/2004 05:12:17 م File: c:\windows\system32\cmcfg32.dll ok scanned
29/09/2004 05:12:18 م File: c:\program files\netmeeting\conf.exe ok scanned
29/09/2004 05:12:19 م File: c:\program files\windows nt\dialer.exe ok scanned
29/09/2004 05:12:29 م File: c:\program files\mozilla firefox\firefox.exe ok scanned
29/09/2004 05:12:32 م File: c:\program files\golden al-wafi translator\golden al-wafi translator.exe ok scanned
29/09/2004 05:12:34 م File: c:\windows\pchealth\helpctr\binaries\helpctr.exe ok scanned
29/09/2004 05:12:34 م File: c:\program files\msn gaming zone\windows\hrtzzm.exe ok scanned
29/09/2004 05:12:35 م File: c:\program files\internet explorer\connection wizard\icwconn1.exe ok scanned
29/09/2004 05:12:35 م File: c:\program files\internet explorer\connection wizard\icwconn2.exe ok scanned
29/09/2004 05:12:35 م File: c:\program files\internet explorer\connection wizard\inetwiz.exe ok scanned
29/09/2004 05:12:37 م File: c:\windows\system32\wuauclt.exe packed file PE_Patch.PECompact
29/09/2004 05:12:37 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact packed file PecBundle
29/09/2004 05:12:37 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact//PecBundle packed file PECompact
29/09/2004 05:12:37 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact//PecBundle//PECompact packed file PE-Crypt.Morf
29/09/2004 05:12:37 م File: c:\windows\system32\wuauclt.exe//PE_Patch.PECompact//PecBundle//PECompact//PE-Crypt.Morf detected virus 'Worm.Win32.AutoRun.pgp'
29/09/2004 05:12:44 م File: c:\program files\microsoft office\office11\infopath.exe ok scanned
29/09/2004 05:12:44 م File: c:\program files\internet explorer\connection wizard\isignup.exe ok scanned
29/09/2004 05:12:44 م File: c:\windows\system32\usmt\migwiz.exe ok scanned
29/09/2004 05:12:52 م File: c:\windows\system32\wuauclt.exe backed up
29/09/2004 05:12:52 م File: c:\windows\system32\wuauclt.exe will be deleted on system restart
29/09/2004 05:12:53 م File: c:\program files\movie maker\moviemk.exe ok scanned
29/09/2004 05:12:53 م File: c:\program files\windows media player\mplayer2.exe ok scanned
29/09/2004 05:12:57 م Startup : HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\internetnet disinfected virus 'Worm.Win32.AutoRun.pgp'
29/09/2004 05:12:58 م File: c:\progra~1\micros~2\office11\msaccess.exe ok scanned
29/09/2004 05:12:58 م File: c:\windows\pchealth\helpctr\binaries\msconfig.exe ok scanned
29/09/2004 05:12:59 م File: c:\program files\outlook express\msimn.exe ok scanned
29/09/2004 05:12:59 م File: c:\program files\common files\microsoft shared\msinfo\msinfo32.exe ok scanned
29/09/2004 05:13:00 م File: c:\program files\messenger\msmsgs.exe ok scanned
29/09/2004 05:13:01 م File: c:\progra~1\micros~2\office11\mspub.exe ok scanned
29/09/2004 05:13:01 م File: c:\progra~1\common~1\micros~1\modi\11.0\mspview.exe ok scanned
29/09/2004 05:13:01 م File: c:\progra~1\micros~2\office11\ois.exe ok scanned
29/09/2004 05:13:01 م File: c:\windows\system32\mspaint.exe ok scanned
29/09/2004 05:13:01 م File: c:\program files\windows nt\pinball\pinball.exe ok scanned
29/09/2004 05:13:03 م File: c:\progra~1\micros~2\office11\powerpnt.exe ok scanned
29/09/2004 05:13:03 م File: c:\program files\real\realplayer\realplay.exe ok scanned
29/09/2004 05:13:03 م File: c:\program files\common files\real\update_ob\rnxproc.exe ok scanned
29/09/2004 05:13:03 م File: c:\program files\msn gaming zone\windows\rvsezm.exe ok scanned
29/09/2004 05:13:03 م File: c:\program files\msn gaming zone\windows\shvlzm.exe ok scanned
29/09/2004 05:13:03 م File: c:\program files\outlook express\wabmig.exe ok scanned
29/09/2004 05:13:04 م File: c:\program files\winrar\winrar.exe ok scanned
29/09/2004 05:13:05 م File: c:\progra~1\micros~2\office11\winword.exe ok scanned
29/09/2004 05:13:05 م File: c:\windows\system32\dllcache\wuauclt.exe skipped locked
29/09/2004 05:13:05 م File: c:\windows\system32\ntsd.exe ok scanned
29/09/2004 05:13:05 م File: c:\progra~1\micros~2\office11\refiebar.dll ok scanned
29/09/2004 05:13:05 م File: c:\progra~1\micros~2\office11\refbar.ico ok scanned
29/09/2004 05:13:05 م File: c:\progra~1\micros~2\office11\refbarh.ico ok scanned
29/09/2004 05:13:05 م File: c:\windows\system32\rsvpsp.dll ok scanned
29/09/2004 05:13:05 م File: c:\windows\system32\winrnr.dll ok scanned
29/09/2004 05:13:05 م File: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini ok scanned
29/09/2004 05:13:05 م File: C:\Documents and Settings\usama\Start Menu\Programs\Startup\desktop.ini ok scanned
29/09/2004 05:13:11 م Logical disk sector: C ok scanned
29/09/2004 05:13:11 م Logical disk sector: D ok scanned
29/09/2004 05:13:11 م Logical disk sector: E ok scanned
29/09/2004 05:13:11 م Logical disk sector: F ok scanned
29/09/2004 05:13:11 م Logical disk sector: G ok scanned
29/09/2004 05:13:11 م Logical disk sector: H ok scanned
29/09/2004 05:13:12 م Logical disk sector: I ok scanned
29/09/2004 05:13:12 م Physical disk sector:

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ok scanned
29/09/2004 05:13:13 م Physical disk sector:

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ok scanned

Statistics
----------
Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------

Settings
--------
Parameter Value
--------- -----
Security Level Custom
Action Prompt for action when the scan is complete
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE s All
Skip if is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives Yes
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search Yes
Use heuristic analyzer Yes

Quarantine
----------
Status Size Added
------ ------ ---- -----

Backup
------
Status Size
------ ------ ----
Infected: virus Worm.Win32.AutoRun.pgp c:\windows\system32\wuauclt.exe 15.5 KB

احمد 251 · 30 سبتمبر 2008

يا أخى كل ما احذف الفيروس ما ينحذف
مع ملاحضظ ان بطارية الساعة
ضعيفة

AbOdy · 30 سبتمبر 2008

==============

(1)
عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم
(2)
واعمل تقرير للهايجاك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات ويظهر لك تقرير ,, انسخه والصقه بردك القادم

البارون · 30 سبتمبر 2008

(( مشكور اخوي عبودي

k:

k: ))

عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

وهات تقريرجديد للهيجاك

احمد 251 · 30 سبتمبر 2008

شكرااااااااااااااا يا بارووون

احمد 251 · 30 سبتمبر 2008

ComboFix 08-09-28.05 - usama 09/30/2008 22:06:31.1 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.2.1256.1.1033.18.67 [GMT 2:00]
Running from: C:\Documents and Settings\usama\Desktop\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\autorun.inf
C:\Documents and Settings\usama\s\usama@google.com[6].txt
C:\Program Files\Common Files\PushWare
C:\Program Files\Common Files\PushWare\Uninst.exe
C:\TUZI.PIF
C:\WINDOWS\system32\d3d1caps.srg
C:\WINDOWS\system32\dllcache\wuauclt.exe
C:\WINDOWS\system32\drivers\npf.sys
C:\WINDOWS\system32\mprmsgse.axz
C:\WINDOWS\system32\Packet.dll
C:\WINDOWS\system32\WanPacket.dll
C:\WINDOWS\system32\wpcap.dll
C:\WINDOWS\system32\wuauclt.exe
D:\Autorun.inf
E:\Autorun.inf
E:\TUZI.PIF
F:\Autorun.inf
F:\TUZI.PIF
G:\Autorun.inf
G:\TUZI.PIF
H:\Autorun.inf
H:\TUZI.PIF
I:\Autorun.inf
I:\TUZI.PIF
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
-------\Legacy_SYS_HKT
-------\Service_npf

((((((((((((((((((((((((( Files Created from 2008-08-28 to 2008-09-30 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-30 20:08 32 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2008-09-30 20:08 32 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat
2008-09-30 18:53 4,224 ----a-w C:\WINDOWS\system32\drivers\beep.sys
2008-09-30 18:39 4,224 ----a-w C:\WINDOWS\system32\dllcache\beep.sys
2008-09-30 15:16 --------- d-----w C:\Documents and Settings\usama\Application Data\Nokia
2008-09-30 15:15 --------- d-----w C:\Documents and Settings\usama\Application Data\Datalayer
2008-09-30 14:41 --------- d-----w C:\Documents and Settings\usama\Application Data\AdobeUM
2008-09-30 12:53 --------- d-----w C:\Program Files\DIFX
2008-09-30 12:53 --------- d-----w C:\Program Files\Common Files\Nokia
2008-09-30 12:52 --------- d-----w C:\Program Files\Nokia
2008-09-30 12:52 --------- d-----w C:\Program Files\Common Files\PCSuite
2008-09-30 12:52 --------- d-----w C:\Documents and Settings\usama\Application Data\PC Suite
2008-09-30 12:52 --------- d-----w C:\Documents and Settings\All Users\Application Data\PC Suite
2008-09-30 02:23 --------- d-----w C:\Program Files\Ubi Soft
2008-09-27 13:59 --------- d-----w C:\Program Files\BuddyCheck
2008-09-27 13:59 --------- d-----w C:\Documents and Settings\usama\Application Data\Nuotex
2008-09-27 13:29 --------- d-----w C:\Program Files\Yahoo!
2008-09-27 13:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\Yahoo!
2008-09-27 12:52 73,216 ----a-w C:\WINDOWS\ST6UNST.EXE
2008-09-27 12:52 172,032 ------w C:\WINDOWS\Setup1.exe
2008-09-27 12:52 --------- d-----w C:\Program Files\Golden Al-Wafi Translator
2008-09-27 12:48 --------- d-----w C:\Program Files\Real
2008-09-27 12:48 --------- d-----w C:\Program Files\Common Files\xing shared
2008-09-27 12:48 --------- d-----w C:\Program Files\Common Files\Real
2008-09-27 12:37 --------- d-----w C:\Program Files\Microsoft.NET
2008-09-27 12:37 --------- d-----w C:\Program Files\Microsoft ActiveSync
2008-09-27 10:46 --------- d-----w C:\Program Files\microsoft frontpage
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo!)"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [09/19/2008 05:34 PM 4347120]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" [01/19/2007 12:55 PM 5674352]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/03/2004 11:56 PM 15360]
"PcSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [06/27/2006 04:21 PM 1449984]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" [08/04/2004 12:32 AM 208952]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [08/04/2004 12:31 AM 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [08/04/2004 12:32 AM 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [08/04/2004 12:32 AM 455168]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [07/19/2008 05:38 PM 78008]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [09/27/2008 02:48 PM 180269]
"PCSuiteTrayApplication"="C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE" [06/15/2006 12:36 PM 229376]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [06/06/2005 11:46 PM 57344]
"SoundMan"="SOUNDMAN.EXE" [11/15/2004 01:20 PM 77824 C:\WINDOWS\SOUNDMAN.EXE]
"SiSPower"="SiSPower.dll" [03/03/2005 09:50 PM 49152 C:\WINDOWS\system32\SiSPower.dll]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\CTFMON.EXE" [08/03/2004 11:56 PM 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [07/19/2008 05:35 PM 78416]
R1 is-GPGCSdrv;is-GPGCSdrv;C:\WINDOWS\system32\DRIVERS\39756643.sys [07/08/2008 02:54 PM 148496]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [07/19/2008 05:37 PM 20560]
S3 ute4odmx;AVZ Kernel Driver;C:\WINDOWS\system32\Drivers\ute4odmx.sys [ ]
.
.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\usama\Application Data\Mozilla\Firefox\Profiles\wttnng7m.default\
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2008-09-30 22:10:33
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
C:\PROGRA~1\COMMON~1\Nokia\MPAPI\MPAPI3s.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
.
**************************************************************************
.
Completion time: 09/30/2008 22:12:40 - machine was rebooted [usama]
ComboFix-quarantined-files.txt 2008-09-30 20:12:34
Pre-Run: 6,066,601,984 bytes free
Post-Run: 6,132,015,104 bytes free
139

احمد 251 · 30 سبتمبر 2008

ComboFix 08-09-28.05 - usama 09/30/2008 22:06:31.1 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.2.1256.1.1033.18.67 [GMT 2:00]
Running from: C:\Documents and Settings\usama\Desktop\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\autorun.inf
C:\Documents and Settings\usama\s\usama@google.com[6].txt
C:\Program Files\Common Files\PushWare
C:\Program Files\Common Files\PushWare\Uninst.exe
C:\TUZI.PIF
C:\WINDOWS\system32\d3d1caps.srg
C:\WINDOWS\system32\dllcache\wuauclt.exe
C:\WINDOWS\system32\drivers\npf.sys
C:\WINDOWS\system32\mprmsgse.axz
C:\WINDOWS\system32\Packet.dll
C:\WINDOWS\system32\WanPacket.dll
C:\WINDOWS\system32\wpcap.dll
C:\WINDOWS\system32\wuauclt.exe
D:\Autorun.inf
E:\Autorun.inf
E:\TUZI.PIF
F:\Autorun.inf
F:\TUZI.PIF
G:\Autorun.inf
G:\TUZI.PIF
H:\Autorun.inf
H:\TUZI.PIF
I:\Autorun.inf
I:\TUZI.PIF
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
-------\Legacy_SYS_HKT
-------\Service_npf

((((((((((((((((((((((((( Files Created from 2008-08-28 to 2008-09-30 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-30 20:08 32 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2008-09-30 20:08 32 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat
2008-09-30 18:53 4,224 ----a-w C:\WINDOWS\system32\drivers\beep.sys
2008-09-30 18:39 4,224 ----a-w C:\WINDOWS\system32\dllcache\beep.sys
2008-09-30 15:16 --------- d-----w C:\Documents and Settings\usama\Application Data\Nokia
2008-09-30 15:15 --------- d-----w C:\Documents and Settings\usama\Application Data\Datalayer
2008-09-30 14:41 --------- d-----w C:\Documents and Settings\usama\Application Data\AdobeUM
2008-09-30 12:53 --------- d-----w C:\Program Files\DIFX
2008-09-30 12:53 --------- d-----w C:\Program Files\Common Files\Nokia
2008-09-30 12:52 --------- d-----w C:\Program Files\Nokia
2008-09-30 12:52 --------- d-----w C:\Program Files\Common Files\PCSuite
2008-09-30 12:52 --------- d-----w C:\Documents and Settings\usama\Application Data\PC Suite
2008-09-30 12:52 --------- d-----w C:\Documents and Settings\All Users\Application Data\PC Suite
2008-09-30 02:23 --------- d-----w C:\Program Files\Ubi Soft
2008-09-27 13:59 --------- d-----w C:\Program Files\BuddyCheck
2008-09-27 13:59 --------- d-----w C:\Documents and Settings\usama\Application Data\Nuotex
2008-09-27 13:29 --------- d-----w C:\Program Files\Yahoo!
2008-09-27 13:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\Yahoo!
2008-09-27 12:52 73,216 ----a-w C:\WINDOWS\ST6UNST.EXE
2008-09-27 12:52 172,032 ------w C:\WINDOWS\Setup1.exe
2008-09-27 12:52 --------- d-----w C:\Program Files\Golden Al-Wafi Translator
2008-09-27 12:48 --------- d-----w C:\Program Files\Real
2008-09-27 12:48 --------- d-----w C:\Program Files\Common Files\xing shared
2008-09-27 12:48 --------- d-----w C:\Program Files\Common Files\Real
2008-09-27 12:37 --------- d-----w C:\Program Files\Microsoft.NET
2008-09-27 12:37 --------- d-----w C:\Program Files\Microsoft ActiveSync
2008-09-27 10:46 --------- d-----w C:\Program Files\microsoft frontpage
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo!)"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [09/19/2008 05:34 PM 4347120]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" [01/19/2007 12:55 PM 5674352]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/03/2004 11:56 PM 15360]
"PcSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [06/27/2006 04:21 PM 1449984]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" [08/04/2004 12:32 AM 208952]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [08/04/2004 12:31 AM 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [08/04/2004 12:32 AM 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [08/04/2004 12:32 AM 455168]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [07/19/2008 05:38 PM 78008]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [09/27/2008 02:48 PM 180269]
"PCSuiteTrayApplication"="C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE" [06/15/2006 12:36 PM 229376]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [06/06/2005 11:46 PM 57344]
"SoundMan"="SOUNDMAN.EXE" [11/15/2004 01:20 PM 77824 C:\WINDOWS\SOUNDMAN.EXE]
"SiSPower"="SiSPower.dll" [03/03/2005 09:50 PM 49152 C:\WINDOWS\system32\SiSPower.dll]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\CTFMON.EXE" [08/03/2004 11:56 PM 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [07/19/2008 05:35 PM 78416]
R1 is-GPGCSdrv;is-GPGCSdrv;C:\WINDOWS\system32\DRIVERS\39756643.sys [07/08/2008 02:54 PM 148496]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [07/19/2008 05:37 PM 20560]
S3 ute4odmx;AVZ Kernel Driver;C:\WINDOWS\system32\Drivers\ute4odmx.sys [ ]
.
.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\usama\Application Data\Mozilla\Firefox\Profiles\wttnng7m.default\
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2008-09-30 22:10:33
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
C:\PROGRA~1\COMMON~1\Nokia\MPAPI\MPAPI3s.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
.
**************************************************************************
.
Completion time: 09/30/2008 22:12:40 - machine was rebooted [usama]
ComboFix-quarantined-files.txt 2008-09-30 20:12:34
Pre-Run: 6,066,601,984 bytes free
Post-Run: 6,132,015,104 bytes free
139

السّاجد لله · 30 سبتمبر 2008

الان هات تقرير هايجاك حبيبي الغالي

احمد 251 · 1 أكتوبر 2008

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 03:34:13 م, on 01/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\PROGRA~1\COMMON~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\usama\Desktop\احمد 251\Zyzoom_HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
--
End of file - 4630 bytes

البارون · 1 أكتوبر 2008

اخوي الحين جهازك مية فل وعشرة

احذف هالقيمة بس

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

استخدم هذه الاداة للتنظيف

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ثم نزل هذه الاداة واتبع الشرح التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

التوافق : ويندوز اكسبي فقط

شرح الاستخدام ,,,,,,
عند تشغيل ملف الاداة تظهر لك هذه الشاشه ,, انتظر ( وتابع مع الصور )

وعند ظهور هذه الشاشه ,, اضغط على Close ليتم اعادة تشغيل جهازك (( لتكملة عملية التنظيف ))

وقلي بعدين ازي الجهاز

السّاجد لله · 1 أكتوبر 2008

طبق كلام البارون وبعدين اخبرنا عن حالة الجهاز الان

احمد 251 · 3 أكتوبر 2008

بارك الله فيك أخى الباروووووووون

k:

k::b::b:
أشعرررربتحسن نوعا مااااااااااااااااااااااااا لان لما عملت سكان باالانتى فايرس لقيت لسه فى فيرس وملفات تجسسسس, الفيرس بيان عليه قوى جداااا مش عارف اعمل ايه بالضبط

k:

k::hh::hh:
بس اقد اظهر الملفات المخفية وفتح القرص بشكل طبيعى

زيزوومى مميز

توقيع : احمد 251

زيزوومى مميز

توقيع : احمد 251

زيزوومى فضى

توقيع : البارون

زيزوومى مميز

توقيع : احمد 251

زيزوومى مميز

توقيع : احمد 251

زيزوومى مميز

توقيع : احمد 251

زيزوومى فضى

توقيع : البارون

زيزوومى مميز

توقيع : احمد 251

زيزوومى مميز

توقيع : احمد 251

عضو شرف

توقيع : AbOdy

زيزوومى فضى

توقيع : البارون

زيزوومى مميز

توقيع : احمد 251

زيزوومى مميز

توقيع : احمد 251

زيزوومى مميز

توقيع : احمد 251

زيزوومى فضى

توقيع : السّاجد لله

زيزوومى مميز

توقيع : احمد 251

زيزوومى فضى

توقيع : البارون

زيزوومى فضى

توقيع : السّاجد لله

زيزوومى مميز

توقيع : احمد 251