مشكلة الوايرلس الي جننتني :(

  • بادئ الموضوع بادئ الموضوع aseel88888
  • تاريخ البدء تاريخ البدء
  • المشاهدات 642
A

aseel88888

زيزوومي نشيط
إنضم
5 فبراير 2009
المشاركات
150
مستوى التفاعل
0
النقاط
200
الإقامة
السعودية
غير متصل
عندي جهاز toshiba satellite A200-204 ( فيستا - Vista 32 )

موديل Psae6e-0dh034ar

عملت له فورمات في محل الكمبيوتر ..

صارت عندي اكثر من مشكلة .. و بفضل الله الاقي لها حل ..

و أخر شي مشكلة الوايرلس يشتغل .. لكن بعد ساعة أو اقل من ساعة تختفي الشبكة و يعلق ...

و لازم اعيد التشغيل عشان ترجع الشبكة من جديد ...؟؟؟؟ لأن كلما ابحث مع وجود الشبكة ..

ما يطلع اي شي ..

ياليت تساعدوووووووني .. أيش اسوي .. ؟؟؟؟

هل احتاج لتعريف للوايرلس .. أو ايش العمل الأن ...

يا اخواني بحاجة لمشووورتكم الله يخليكم
blush2.gif



و هذا تقرير الهاجيك ...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:43:29 ص, on 09/05/09
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\TOSHIBA\Registration\ToshibaRegistration.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Windows Sidebar\sidebar.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Windows\system32\conime.exe
C:\Windows\System32\mobsync.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe
E:\HiJackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Desktop SMS] C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe /auto
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: تدوين هذا في المدونة - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &تدوين هذا في Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: eBay.co.uk - Buy It Sell It Love It - {76577871-04EC-495E-A12B-91F7C3600AFA} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll (file missing)
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe (file missing)
O23 - Service: McAfee Services (mcmscsvc) - Unknown owner - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe (file missing)
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe (file missing)
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe (file missing)
O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe (file missing)
O23 - Service: McAfee Personal Firewall Service (MpfService) - Unknown owner - C:\Program Files\McAfee\MPF\MPFSrv.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 12027 bytes​
 

توقيع : aseel88888
ترتيب حسب التاريخ ترتيب حسب الأصوات
و هذا تقرير ComboFix

ComboFix 09-05-08.03 - tip 05/09/2009 2:46.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1256.966.1033.18.1022.329 [GMT 3:00]
Running from: E:\ComboFix.exe
AV: Norton Internet Security *On-access scanning enabled* (Outdated)
FW: Norton Internet Security *enabled*
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\users\tip\AppData\Local\Temp\ppcrlui_4996_2
.
((((((((((((((((((((((((( Files Created from 2009-04-08 to 2009-05-08 )))))))))))))))))))))))))))))))
.
2009-05-09 16:22 . 2009-05-09 16:25 -------- d-----w c:\program files\SiteAdvisor
2009-05-09 16:22 . 2009-05-09 16:22 -------- d-----w c:\users\tip\AppData\Roaming\SiteAdvisor
2009-05-09 14:42 . 2009-05-09 14:42 -------- d-----w c:\programdata\is-3QDSR
2009-05-09 14:42 . 2009-05-09 14:42 -------- d-----w c:\users\All Users\is-3QDSR
2009-05-09 14:41 . 2009-05-09 16:10 1290272 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-05-09 07:50 . 2009-05-09 07:50 -------- d-----w c:\users\tip\AppData\Local\Mozilla
2009-05-09 07:49 . 2009-03-24 15:08 55640 ----a-w c:\windows\system32\drivers\avgntflt.sys
2009-05-09 07:49 . 2009-05-09 07:49 -------- d-----w c:\program files\Avira
2009-05-09 07:49 . 2009-05-09 07:49 -------- d-----w c:\programdata\Avira
2009-05-09 07:49 . 2009-05-09 07:49 -------- d-----w c:\users\All Users\Avira
2009-05-09 05:33 . 2009-05-09 05:33 -------- d-----w c:\users\tip\AppData\Roaming\GRETECH
2009-05-08 15:26 . 2009-05-08 15:26 -------- d-----w c:\users\tip\AppData\Roaming\Desktopicon
2009-05-08 15:26 . 2009-05-08 15:28 -------- d-----w c:\program files\Unlocker
2009-05-05 21:34 . 2009-05-05 21:34 1812 ----a-w c:\windows\system32\OLE2SYS2.DLL
2009-05-05 21:33 . 2009-05-05 21:58 -------- d-----w c:\programdata\3D-FTP
2009-05-05 21:33 . 2009-05-05 21:58 -------- d-----w c:\users\All Users\3D-FTP
2009-05-05 17:22 . 2009-05-09 11:04 -------- d-----w c:\users\All Users\Google
2009-05-05 12:28 . 2008-04-12 03:32 784896 ----a-w c:\windows\system32\rpcrt4.dll
2009-05-05 12:28 . 2008-04-26 08:26 891448 ----a-w c:\windows\system32\drivers\tcpip.sys
2009-05-05 12:28 . 2008-04-05 01:21 72192 ----a-w c:\windows\system32\drivers\pacer.sys
2009-05-05 12:28 . 2008-04-05 03:34 15360 ----a-w c:\windows\system32\pacerprf.dll
2009-05-05 12:26 . 2009-05-05 12:31 -------- d-----w c:\program files\IDT
2009-05-05 01:15 . 2008-09-18 04:56 147456 ----a-w c:\windows\system32\Faultrep.dll
2009-05-05 01:15 . 2008-09-18 04:56 125952 ----a-w c:\windows\system32\wersvc.dll
2009-05-05 01:15 . 2008-05-08 21:59 430080 ----a-w c:\windows\system32\vbscript.dll
2009-05-05 01:15 . 2008-05-08 21:59 90112 ----a-w c:\windows\system32\wshext.dll
2009-05-05 01:15 . 2008-05-08 21:59 155648 ----a-w c:\windows\system32\wscript.exe
2009-05-05 01:15 . 2008-05-08 21:58 135168 ----a-w c:\windows\system32\cscript.exe
2009-05-05 01:15 . 2008-05-08 21:59 180224 ----a-w c:\windows\system32\scrobj.dll
2009-05-05 01:15 . 2008-05-08 21:59 172032 ----a-w c:\windows\system32\scrrun.dll
2009-05-05 01:12 . 2008-06-26 03:29 565248 ----a-w c:\windows\system32\emdmgmt.dll
2009-05-05 01:11 . 2008-08-02 01:01 625152 ----a-w c:\windows\system32\drivers\dxgkrnl.sys
2009-05-05 01:11 . 2008-06-26 03:29 45056 ----a-w c:\windows\system32\dataclen.dll
2009-05-05 01:11 . 2008-05-20 02:07 148480 ----a-w c:\windows\system32\drivers\nwifi.sys
2009-05-05 01:11 . 2008-08-02 03:26 36864 ----a-w c:\windows\system32\cdd.dll
2009-05-04 19:25 . 2009-05-04 19:25 -------- d-----w C:\PerfLogs
2009-05-04 15:01 . 2008-09-03 03:59 468992 ----a-w c:\windows\system32\newdev.dll
2009-05-04 15:01 . 2008-09-03 03:58 74752 ----a-w c:\windows\system32\newdev.exe
2009-05-04 15:01 . 2008-05-10 03:35 885248 ----a-w c:\windows\system32\RacEngn.dll
2009-05-03 23:08 . 2009-05-03 23:08 -------- d-----w c:\users\tip\AppData\Roaming\SmartFTP
2009-05-03 23:05 . 2009-05-03 23:05 -------- d-----w c:\program files\SmartFTP Client
2009-05-03 23:02 . 2008-01-19 07:36 1541120 ----a-w c:\windows\system32\onex.dll
2009-05-03 23:02 . 2008-01-19 07:33 2623488 ----a-w c:\windows\system32\SLsvc.exe
2009-05-03 23:02 . 2008-01-19 07:42 51768 ----a-w c:\windows\system32\PSHED.DLL
2009-05-03 23:02 . 2008-01-19 07:29 705536 ----a-w c:\windows\system32\imagesp1.dll
2009-05-03 23:02 . 2008-01-19 04:10 681984 ----a-w c:\windows\system32\drivers\spsys.sys
2009-05-03 23:02 . 2008-01-19 07:33 2091520 ----a-w c:\windows\system32\dfsr.exe
2009-05-03 23:02 . 2008-01-19 07:36 1107968 ----a-w c:\windows\system32\pidgenx.dll
2009-05-03 23:02 . 2008-01-19 07:36 116736 ----a-w c:\windows\system32\sstpsvc.dll
2009-05-03 23:02 . 2008-01-19 07:35 2061824 ----a-w c:\windows\system32\mstscax.dll
2009-05-03 23:02 . 2008-01-19 07:36 175104 ----a-w c:\windows\system32\winrscmd.dll
2009-05-03 23:02 . 2008-01-19 07:37 745472 ----a-w c:\windows\system32\WsmSvc.dll
2009-05-03 23:02 . 2008-01-19 07:36 574976 ----a-w c:\windows\system32\sysmain.dll
2009-05-03 23:00 . 2008-01-19 07:34 497664 ----a-w c:\windows\system32\kerberos.dll
2009-05-03 22:59 . 2008-01-19 07:33 1792512 ----a-w c:\windows\system32\mmc.exe
2009-05-03 22:58 . 2008-01-19 05:29 144384 ----a-w c:\windows\system32\drivers\srv2.sys
2009-05-03 22:58 . 2008-01-19 07:33 64512 ----a-w c:\windows\system32\cmicryptinstall.dll
2009-05-03 22:58 . 2008-01-19 07:33 50176 ----a-w c:\windows\system32\gacinstall.dll
2009-05-03 22:58 . 2008-01-19 07:33 297472 ----a-w c:\windows\system32\cmipnpinstall.dll
2009-05-03 22:58 . 2008-01-19 07:34 1135104 ----a-w c:\windows\system32\mfc42.dll
2009-05-03 22:58 . 2008-01-19 07:42 247352 ----a-w c:\windows\system32\clfs.sys
2009-05-03 22:58 . 2008-01-19 07:33 1208320 ----a-w c:\windows\system32\comsvcs.dll
2009-05-03 22:58 . 2008-01-19 07:34 977408 ----a-w c:\windows\system32\crypt32.dll
2009-05-03 22:58 . 2008-01-19 07:37 188928 ----a-w c:\windows\system32\WSManMigrationPlugin.dll
2009-05-03 22:58 . 2008-01-19 07:33 798720 ----a-w c:\windows\system32\certutil.exe
2009-05-03 22:55 . 2008-01-19 07:41 17976 ----a-w c:\windows\system32\drivers\intelide.sys
2009-05-03 22:54 . 2008-01-19 07:43 503864 ----a-w c:\windows\system32\drivers\Wdf01000.sys
2009-05-03 22:54 . 2008-01-19 07:34 215040 ----a-w c:\windows\system32\icm32.dll
2009-05-03 22:54 . 2008-01-19 07:35 445952 ----a-w c:\windows\system32\ncryptui.dll
2009-05-03 22:54 . 2008-01-19 07:33 756736 ----a-w c:\windows\system32\azroles.dll
2009-05-03 22:54 . 2008-01-19 07:36 347648 ----a-w c:\windows\system32\wmdrmnet.dll
2009-05-03 22:54 . 2008-01-19 07:33 860160 ----a-w c:\windows\system32\WerFaultSecure.exe
2009-05-03 22:54 . 2008-01-19 07:34 252416 ----a-w c:\windows\system32\iprtrmgr.dll
2009-05-03 22:54 . 2008-01-19 05:56 62976 ----a-w c:\windows\system32\drivers\raspptp.sys
2009-05-03 22:54 . 2008-01-19 07:36 163840 ----a-w c:\windows\system32\spoolss.dll
2009-05-03 22:54 . 2008-01-19 07:34 806912 ----a-w c:\windows\system32\msctf.dll
2009-05-03 22:54 . 2008-01-19 07:38 131640 ----a-w c:\windows\system32\basecsp.dll
2009-05-03 22:52 . 2008-01-19 07:33 1502720 ----a-w c:\windows\system32\certmgr.dll
2009-05-03 22:51 . 2008-01-19 07:35 216064 ----a-w c:\windows\system32\ntprint.dll
2009-05-03 22:50 . 2008-01-19 07:33 171008 ----a-w c:\windows\system32\apphelp.dll
2009-05-03 22:50 . 2008-01-19 07:33 81920 ----a-w c:\windows\system32\dwm.exe
2009-05-03 22:49 . 2008-01-19 07:33 128000 ----a-w c:\windows\system32\gpresult.exe
2009-05-03 22:49 . 2008-01-19 07:33 96768 ----a-w c:\windows\system32\wininit.exe
2009-05-03 22:49 . 2008-01-19 07:36 154112 ----a-w c:\windows\system32\QSHVHOST.DLL
2009-05-03 22:49 . 2008-01-19 07:34 74752 ----a-w c:\windows\system32\iassvcs.dll
2009-05-03 22:49 . 2008-01-19 07:36 142336 ----a-w c:\windows\system32\spp.dll
2009-05-03 22:49 . 2008-01-19 07:36 825856 ----a-w c:\windows\system32\rasdlg.dll
2009-05-03 22:49 . 2008-01-19 07:33 317440 ----a-w c:\windows\system32\azroleui.dll
2009-05-03 22:49 . 2008-01-19 07:42 52792 ----a-w c:\windows\system32\drivers\volmgr.sys
2009-05-03 22:48 . 2008-01-19 07:33 498176 ----a-w c:\windows\HelpPane.exe
2009-05-03 22:48 . 2008-01-19 07:33 275968 ----a-w c:\windows\system32\mcbuilder.exe
2009-05-03 22:48 . 2008-01-19 07:33 354304 ----a-w c:\windows\system32\SLUI.exe
2009-05-03 22:48 . 2008-01-19 07:36 348160 ----a-w c:\windows\system32\spwizeng.dll
2009-05-03 22:48 . 2008-01-19 07:36 274944 ----a-w c:\windows\system32\srrstr.dll
2009-05-03 22:48 . 2008-01-19 07:36 155136 ----a-w c:\windows\system32\rasmontr.dll
2009-05-03 22:46 . 2008-01-19 07:36 281600 ----a-w c:\windows\system32\raschap.dll
2009-05-03 22:46 . 2008-01-19 07:34 204800 ----a-w c:\windows\system32\framedynos.dll
2009-05-03 22:44 . 2008-01-19 07:33 33792 ----a-w c:\windows\system32\winrs.exe
2009-05-03 22:43 . 2008-01-19 07:34 49664 ----a-w c:\windows\system32\dot3cfg.dll
2009-05-03 22:42 . 2008-01-19 07:33 226816 ----a-w c:\windows\system32\Defrag.exe
2009-05-03 22:41 . 2008-01-19 07:34 123392 ----a-w c:\windows\system32\ifsutil.dll
2009-05-03 22:41 . 2008-01-19 07:41 29240 ----a-w c:\windows\system32\drivers\Dumpata.sys
2009-05-03 22:41 . 2008-01-19 07:33 326656 ----a-w c:\windows\system32\actxprxy.dll
2009-05-03 22:41 . 2008-01-19 07:34 54784 ----a-w c:\windows\system32\dimsroam.dll
2009-05-03 22:40 . 2008-01-19 07:36 73728 ----a-w c:\windows\system32\wdi.dll
2009-05-03 22:40 . 2008-01-19 07:41 21560 ----a-w c:\windows\system32\kdusb.dll
2009-05-03 22:40 . 2008-01-19 07:37 33792 ----a-w c:\windows\system32\wscapi.dll
2009-05-03 22:40 . 2008-01-19 07:35 312320 ----a-w c:\windows\system32\mswmdm.dll
2009-05-03 22:40 . 2008-01-19 07:41 20792 ----a-w c:\windows\system32\drivers\compbatt.sys
2009-05-03 22:40 . 2008-01-19 07:33 125952 ----a-w c:\windows\system32\spoolsv.exe
2009-05-03 22:40 . 2008-01-19 07:36 34304 ----a-w c:\windows\system32\usbmon.dll
2009-05-03 22:40 . 2008-01-19 07:41 24120 ----a-w c:\windows\system32\BOOTVID.DLL
2009-05-03 22:40 . 2008-01-19 07:33 88064 ----a-w c:\windows\system32\audiodg.exe
2009-05-03 22:40 . 2008-01-19 07:34 153088 ----a-w c:\windows\system32\imagehlp.dll
2009-05-03 22:39 . 2008-01-19 07:36 2204672 ----a-w c:\windows\system32\SyncCenter.dll
2009-05-03 22:39 . 2008-01-19 07:33 93696 ----a-w c:\windows\system32\vssadmin.exe
2009-05-03 22:39 . 2008-01-19 07:35 156160 ----a-w c:\windows\system32\msls31.dll
2009-05-03 22:39 . 2008-01-19 07:36 498688 ----a-w c:\windows\system32\wlandlg.dll
2009-05-03 22:39 . 2008-01-19 07:36 196608 ----a-w c:\windows\system32\PortableDeviceWMDRM.dll
2009-05-03 22:39 . 2008-01-19 07:36 67584 ----a-w c:\windows\system32\regapi.dll
2009-05-03 22:39 . 2008-01-19 07:35 229888 ----a-w c:\windows\system32\mycomput.dll
2009-05-03 22:39 . 2008-01-19 07:36 130560 ----a-w c:\windows\system32\uudf.dll
2009-05-03 22:39 . 2008-01-19 07:36 177152 ----a-w c:\windows\system32\scecli.dll
2009-05-03 22:39 . 2008-01-19 07:33 485376 ----a-w c:\windows\system32\mspaint.exe
2009-05-03 22:37 . 2008-01-19 07:41 34360 ----a-w c:\windows\system32\drivers\mouclass.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-09 16:10 . 2009-05-09 14:41 17240 --sha-w c:\windows\system32\drivers\fidbox.idx
2009-05-06 22:08 . 2009-04-30 19:56 112408 ----a-w c:\users\tip\AppData\Local\GDIPFONTCACHEV1.DAT
2009-05-05 12:31 . 2007-04-13 15:34 -------- d--h--w c:\program files\InstallShield Installation Information
2009-05-05 12:30 . 2006-11-02 10:25 86016 ----a-w c:\windows\inf\infstor.dat
2009-05-05 12:30 . 2006-11-02 10:25 51200 ----a-w c:\windows\inf\infpub.dat
2009-05-05 12:30 . 2006-11-02 10:25 143360 ----a-w c:\windows\inf\infstrng.dat
2009-05-04 19:44 . 2006-11-02 12:50 174 --sha-w c:\program files\desktop.ini
2009-05-04 19:30 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Sidebar
2009-05-04 19:30 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Calendar
2009-05-04 19:30 . 2006-11-02 11:18 -------- d-----w c:\program files\Windows Mail
2009-05-04 19:29 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Collaboration
2009-05-04 19:29 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Journal
2009-05-04 19:29 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Photo Gallery
2009-05-04 19:29 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Defender
2009-05-04 19:25 . 2006-11-02 10:25 665600 ----a-w c:\windows\inf\drvindex.dat
2009-05-04 17:56 . 2006-11-02 10:32 101888 ----a-w c:\windows\system32\ifxcardm.dll
2009-05-04 17:55 . 2006-11-02 10:32 82432 ----a-w c:\windows\system32\axaltocm.dll
2009-05-02 12:08 . 2009-05-02 12:08 5071872 ----a-w c:\windows\system32\NlsModels0011.dll
2009-05-02 02:08 . 2009-05-02 02:08 72704 ----a-w c:\windows\system32\admparse.dll
2009-05-02 02:08 . 2009-05-02 02:08 827392 ----a-w c:\windows\system32\wininet.dll
2009-05-02 02:08 . 2009-05-02 02:08 78336 ----a-w c:\windows\system32\ieencode.dll
2009-05-02 02:08 . 2009-05-02 02:08 48128 ----a-w c:\windows\system32\mshtmler.dll
2009-05-02 02:08 . 2009-05-02 02:08 26624 ----a-w c:\windows\system32\ieUnatt.exe
2009-05-01 20:42 . 2007-04-13 16:39 -------- d-----w c:\program files\Common Files\Symantec Shared
2009-05-01 15:48 . 2009-05-01 15:48 -------- d-----w c:\program files\DivX
2009-05-01 15:14 . 2007-04-13 15:22 -------- d-----w c:\program files\Java
2009-05-01 14:09 . 2006-11-02 12:37 -------- d-----w c:\program files\MSBuild
2009-04-30 20:15 . 2007-04-13 05:41 -------- d-----w c:\program files\TOSHIBA
2009-04-30 20:14 . 2007-04-13 15:22 -------- d-----w c:\program files\Intel
2009-04-30 19:46 . 2009-04-30 19:46 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
2009-04-30 19:45 . 2009-04-30 19:45 0 --sha-r c:\windows\system32\drivers\TOSHIBA_Satellite A200_05721-AR_PSAE6E-0DH03.MRK
.
((((((((((((((((((((((((((((( SnapShot@2009-05-09_00.37.26 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-04-13 15:52 . 2009-05-08 22:27 53750 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 13:05 . 2009-05-08 22:27 86178 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-05-09 07:49 . 2009-02-13 11:50 28376 c:\windows\System32\drivers\ssmdrv.sys
+ 2009-05-09 07:49 . 2009-03-30 09:33 96104 c:\windows\System32\drivers\avipbb.sys
- 2009-04-30 19:50 . 2009-05-09 00:02 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-04-30 19:50 . 2009-05-08 23:28 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-04-30 19:50 . 2009-05-08 23:28 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-04-30 19:50 . 2009-05-09 00:02 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-04-30 19:50 . 2009-05-08 23:28 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-04-30 19:50 . 2009-05-09 00:02 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-05-09 07:54 . 2009-05-09 07:54 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-05-09 07:54 . 2009-05-09 07:54 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-05-09 07:54 . 2009-05-09 07:54 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-05-03 19:53 . 2009-05-09 11:52 4666 c:\windows\System32\WDI\ERCQueuedResolutions.dat
+ 2009-04-30 19:58 . 2009-05-08 22:27 7466 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2704951183-3322989321-890494039-1000_UserData.bin
- 2009-05-09 00:01 . 2009-05-09 00:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-05-08 22:24 . 2009-05-08 22:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-05-09 00:01 . 2009-05-09 00:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-05-08 22:24 . 2009-05-08 22:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2007-04-13 17:15 . 2009-05-08 22:33 224378 c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2006-11-02 10:33 . 2009-05-08 22:43 587178 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-05-09 00:32 587178 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-05-09 00:32 101250 c:\windows\System32\perfc009.dat
+ 2006-11-02 10:33 . 2009-05-08 22:43 101250 c:\windows\System32\perfc009.dat
- 2007-04-13 15:58 . 2009-05-08 23:59 1043272 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2007-04-13 15:58 . 2009-05-08 22:22 1043272 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
"TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2006-11-13 413696]
"swg"="c:\program files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2009-05-09 171448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-04-03 154392]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-04-03 133912]
"KeNotify"="c:\program files\TOSHIBA\Utilities\KeNotify.exe" [2006-11-06 34352]
"SVPWUTIL"="c:\program files\TOSHIBA\Utilities\SVPWUTIL.exe" [2006-03-22 438272]
"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2007-03-29 411192]
"HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2006-12-07 55416]
"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2007-04-03 509496]
"00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2007-05-22 538744]
"Desktop SMS"="c:\program files\IDM\Desktop SMS\DesktopSMS.exe" [2007-06-18 1507328]
"topi"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-07-10 581632]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2007-04-10 413696]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-07-27 204800]
"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2007-02-19 571024]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-02-12 174872]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2007-10-19 286720]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-05-01 148888]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-05-01 185896]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2008-05-02 15872]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2007-09-03 4702208]
"NDSTray.exe"="NDSTray.exe" [BU]
"Skytel"="Skytel.exe" - c:\windows\SkyTel.exe [2007-08-03 1826816]
c:\users\tip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2008-10-25 98696]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2009-5-1 113664]
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-2-27 2756608]
WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2008-9-10 525664]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UacDisableNotify"=dword:00000001
"InternetSettingsDisableNotify"=dword:00000001
"AutoUpdateDisableNotify"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-2704951183-3322989321-890494039-1000]
"EnableNotificationsRef"=dword:00000003
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{D8AF8BA6-85BD-4990-BAC1-530B0AB77244}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{71C52E46-532B-4826-AB02-ECE448B7BFD5}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{9EA40D93-41B9-4312-9ABF-36AB005C07ED}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{60649CEE-E35D-4409-A4A0-049CB817B5A9}"= UDP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{C82CA661-2CDA-4AFA-A776-DDCFEEB5C51E}"= TCP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{67B79A2A-7140-4F96-9C52-19B60B105FF1}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{087D1A15-C06D-41A3-927A-86BA55201C8E}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{989C0790-5BD7-47EC-B25A-3CA8F188A7E9}"= Profile=Private|Profile=Public|c:\program files\Common Files\Mcafee\MNA\McNaSvc.exe:McAfee Network Agent
"{1D8BFC4A-09B9-4AC4-9826-B101A706E5D3}"= UDP:c:\program files\SmartFTP Client\SmartFTP.exe:SmartFTP Client
"{307466F2-385D-4D4A-BAD7-0BD8B1171F66}"= TCP:c:\program files\SmartFTP Client\SmartFTP.exe:SmartFTP Client
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [09/05/09 10:49 ص 108289]
R2 SeaPort;SeaPort;c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [14/01/09 07:53 م 226656]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;"c:\program files\McAfee\SiteAdvisor\McSACore.exe" --> c:\program files\McAfee\SiteAdvisor\McSACore.exe [?]
S4 CplIR;Embedded IR Driver;c:\windows\System32\drivers\CplIR.sys [06/03/07 05:01 م 14848]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{80a2e5cd-3733-11de-9035-00037abbe70b}]
\shell\AutoRun\command - G:\LaunchU3.exe -a
.
Contents of the 'Scheduled Tasks' folder
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{76577871-04EC-495E-A12B-91F7C3600AFA} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

FF - ProfilePath - c:\users\tip\AppData\Roaming\Mozilla\Firefox\Profiles\5p8801jh.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.sa/
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-05-09 02:52
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
TOSCDSPD = c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe?/i??????[W ????8?9?`?9???9???9??
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.032"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.abr"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ani"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.arw"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bay"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bmp"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bw"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cr2"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.crw"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cs1"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cur"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dcr"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dcx"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dib"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.djv"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.djvu"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dng"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.emf"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.eps"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.erf"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.fff"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.fpx"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.gif"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.hdr"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.icl"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.icn"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.iff"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ilbm"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.int"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.inta"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.iw4"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.j2c"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.j2k"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jbr"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jfif"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jif"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jp2"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpc"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpe"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpeg"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (S-1-5-21-2704951183-3322989321-890494039-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpg"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpk"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpx"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.kdc"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.lbm"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mef"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mos"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mrw"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.nef"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.orf"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pbm"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pbr"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pcd"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pct"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pcx"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pef"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pgm"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pic"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pict"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pix"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.png"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ppm"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.psp"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pspbrush"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pspimage"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.raf"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ras"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.raw"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rgb"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rgba"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rle"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rsb"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.sgi"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.sr2"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.srf"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tga"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.thm"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tif"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tiff"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ttc"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ttf"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v25po\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.v25po"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v25pp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.v25pp"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v25ppf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.v25ppf"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wbm"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wbmp"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wmf"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xbm"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xif"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xmp"
[HKEY_USERS\S-1-5-21-2704951183-3322989321-890494039-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xpm"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
Completion time: 2009-05-08 2:56
ComboFix-quarantined-files.txt 2009-05-08 23:55
ComboFix2.txt 2009-05-09 00:40
Pre-Run: 58,401,591,296 bytes free
Post-Run: 58,244,538,368 bytes free
597 --- E O F --- 2009-05-05 23:44
 
توقيع : aseel88888
تأييد 0
سلام عليكم

احذف تعريف الواير لس .. ثم قم بتثبيته من جديد .. بعد ذلك قلل من البرامج اللى تشتغل مع بدء التشغيل
 
توقيع : ابـــو عــبــد الــلــه
تأييد 0
أخوي ترى المشكلة في التعريف حمل تعريفة من موقع توشيبا وبعدين لا تعمل سيت أب ........... خش على ادارة الاجهزة واختار محول الشبكة اللاسلكية وقل تحديث برنامج التشغيل بعد ذلك حدد ملف التعريف اللي حملته من توشيبا وراح تنحل مشكلتك ووشكرا ،،،
 
تأييد 0
طيب كيف احذف تعريف الوايرلس.......؟؟؟؟؟؟؟:cr:

جهازي toshiba satellite A200-204 ( فيستا - Vista 32 )
 
توقيع : aseel88888
تأييد 0
؟؟؟؟؟؟ رفع
 
توقيع : aseel88888
تأييد 0
بالماوس يمينعلى جهاز الكمبيوتر من على سطح المكتب
ثمخصائص
ثم اداره الاجهزه
وانزل اسفل لتعاريف كروت الشبكه ستجدمن ضمنها تعريف الوايرلس قف عليه واعمل حذف
وقم بتفحص تغييرات الاجهزه ستجد انالفيستا قام بتعريفه من جديد
واغلق الكمبيوتر وشغل مره اخرى وان شاء الله ستحل المشكله
 
توقيع : DCJ_99
تأييد 0
أشكركم جزيل الشكر لقد تم حذف الوايرلس و تركيب أخر ...

دمتم بأمان الله ..

و سلمتم بألف خير ..
 
توقيع : aseel88888
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى