تكفون أبي مساعده!! البريد وبعض المواقع ماتفتح

[الدمار الشامل]

عندي مشكله في صفحة البريد ما تفتح؟! مع العلم أني أدخل الماسينجر بدون مشاكل وايضاً بعض المواقع مثل الراجحي وغيره لا تفتح وهذا تقرير عن الجهاز:

 

[الدمار الشامل]

Logfile of Trend Micro HijackThis v2.0.2Scan saved at 23:37:32, on 10/05/09Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18226)Boot mode: NormalRunning processes:C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exeC:\Windows\system32\taskeng.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\System32\igfxpers.exeC:\Program Files\Toshiba\ConfigFree\NDSTray.exeC:\Program Files\Camera Assistant Software for Toshiba\traybar.exeC:\Program Files\Java\jre1.6.0_06\bin\jusched.exeC:\Program Files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exeC:\Program Files\Toshiba\Toshiba Online Product Information\TOPI.exeC:\Program Files\Google\Google EULA\GoogleEULALauncher.exeC:\Program Files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exeC:\Windows\System32\igfxtray.exeC:\Windows\system32\igfxsrvc.exeC:\Windows\System32\hkcmd.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\Toshiba\Power Saver\TPwrMain.exeC:\Program Files\Toshiba\SmoothView\SmoothView.exeC:\Program Files\Toshiba\FlashCards\TCrdMain.exeC:\Program Files\Toshiba\HDMICtrlMan\HDMICtrlMan.exeC:\Program Files\Toshiba\Registration\ToshibaRegistration.exeC:\Program Files\Microsoft Office\Office12\GrooveMonitor.exeC:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exeC:\Windows\system32\igfxext.exeC:\Program Files\CyberLink\PowerDVD\PDVDServ.exeC:\Program Files\Common Files\Real\Update_OB\realsched.exeC:\Program Files\Toshiba\HDMICtrlMan\HCMSoundChanger.exeC:\Program Files\QuickTime\qttask.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Windows\ehome\ehtray.exeC:\Program Files\Windows Media Player\wmpnscfg.exeC:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exeC:\Windows\ehome\ehmsas.exeC:\Program Files\Toshiba\ConfigFree\CFSwMgr.exeC:\Program Files\Windows Live\Messenger\msnmsgr.exec:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exec:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exec:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exeC:\Program Files\Synaptics\SynTP\SynTPHelper.exeC:\Program Files\Windows Live\Contacts\wlcomm.exeC:\Windows\system32\wuauclt.exeC:\Windows\system32\conime.exeC:\Program Files\Java\jre1.6.0_06\bin\jucheck.exeC:\Program Files\Internet Explorer\IEUser.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Users\Toshiba\Desktop\HiJackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

- HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

- HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

- HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhostO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dllO2 - BHO: McAntiPhishingBHO - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} - c:\PROGRA~1\mcafee\msk\mcapbho.dll (file missing)O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dllO2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\IPSBHO.DLLO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLLO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dllO2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll (file missing)O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dllO4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exeO4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exeO4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"O4 - HKLM\..\Run: [cfFncEnabler.exe] cfFncEnabler.exeO4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" /startO4 - HKLM\..\Run: [FAHESS_McciTrayApp] C:\Program Files\FAHESS\McciTrayApp.exeO4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /STARTO4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkeyO4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startupO4 - HKLM\..\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe IE PAO4 - HKLM\..\Run: [Toshiba TEMPO] C:\Program Files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exeO4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exeO4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exeO4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXEO4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exeO4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exeO4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exeO4 - HKLM\..\Run: [HDMICtrlMan] C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exeO4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exeO4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osbootO4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottimeO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exeO4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exeO4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exeO4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exeO4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quietO4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] c:\program files\uniblue\registrybooster\StartRegistryBooster.exeO4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user')O4 - Global Startup: Bluetooth Manager.lnk = ?O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dllO9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dllO9 - Extra button: eBay.co.uk - Buy It Sell It Love It - {76577871-04EC-495E-A12B-91F7C3600AFA} -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

(file missing)O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

(file missing)O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLLO13 - Gopher Prefix: O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

- DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

- Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLLO18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dllO23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exeO23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exeO23 - Service: McAfee Services (mcmscsvc) - Unknown owner - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe (file missing)O23 - Service: McAfee Network Agent (McNASvc) - Unknown owner - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe (file missing)O23 - Service: McAfee Scanner (McODS) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe (file missing)O23 - Service: McAfee Proxy Service (McProxy) - Unknown owner - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe (file missing)O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe (file missing)O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe (file missing)O23 - Service: McAfee Personal Firewall Service (MpfService) - Unknown owner - C:\Program Files\McAfee\MPF\MPFSrv.exe (file missing)O23 - Service: McAfee Anti-Spam Service (MSK80Service) - Unknown owner - C:\Program Files\McAfee\MSK\MskSrver.exe (file missing)O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exeO23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exeO23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exeO23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exeO23 - Service: SmartFaceVWatchSrv - Toshiba - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exeO23 - Service: TeamViewer 3 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer3\TeamViewer_Host.exeO23 - Service: Notebook Performance Tuning Service (TempoMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TempoSVC.exeO23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exeO23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exeO23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exeO23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exeO23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exeO23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exeO23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe--End of file - 13082 bytes

 

[format]

و عليكم السلام و رحمة الله و بركته ...

حياك الله ...

أعمل التالي ...

حمل هذه الأداة ...

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شغلها و روح على [ Do a system scan and save log ] ...

شوي و يعطيك تقرير داخل مفكرة ...

أنسخه كاملا ً ... و بشكل صحيح ...

و لصقه في ردك القادم ... ​

 

[format]

من بعد اذن الغالي مجد

استخدم هذة الاداة يالغلاااا

التحميل من هنا​

​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

​

​

التوافق : ويندوز اكسبي فقط ​

​

شرح الاستخدام ,,,,,,​

​

عند تشغيل ملف الاداة تظهر لك هذه الشاشه ,, انتظر ( وتابع مع الصور )​

​

​

​

​

​

وعند ظهور هذه الشاشه ,, اضغط على Close ليتم اعادة تشغيل جهازك (( لتكملة عملية التنظيف ))​

​

وبعدين اعمل الاتي

عطل جميع برامج الحمايه ,,

نزل هذه الاداة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ،، وبذلك يكون الفحص انتهى الصق التقرير بمشاركتك القادمة​

​

​

​

 

[format]

اوكي يالغلااا الحين هاجيك جديد ...
بعد الاداه الثانيه التنظيف استخدم الهايجك وانسخه كامل ​

 

[الدمار الشامل]

أشكرك يا أخي الكريم ولكن الويندوز عندي فيستا وهذا التقرير

 

[الدمار الشامل]

ComboFix 09-05-10.03 - Toshiba 05/11/2009 12:50.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1256.966.1025.18.1912.992 [GMT 3:00]
Running from: c:\users\Toshiba\Desktop\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((( Files Created from 2009-04-11 to 2009-05-11 )))))))))))))))))))))))))))))))
.
2009-05-10 19:30 . 2009-05-10 19:30 -------- d-----w c:\users\Toshiba\AppData\Local\Adobe
2009-05-10 18:55 . 2009-05-10 18:55 -------- d-----w c:\users\Toshiba\AppData\Roaming\TeamViewer
2009-05-10 18:55 . 2009-05-10 18:55 -------- d-----w c:\program files\TeamViewer3
2009-05-10 18:54 . 2009-05-10 18:54 -------- d-----w c:\users\Toshiba\temp
2009-05-10 11:07 . 2009-05-10 11:10 -------- d-----w c:\users\Toshiba\AppData\Roaming\Avant Profiles
2009-05-10 11:07 . 2009-05-10 11:07 -------- d-----w c:\program files\Avant Browser
2009-05-06 13:32 . 2009-05-06 13:32 -------- d-----w c:\users\Toshiba\AppData\Roaming\InstallShield
2009-05-06 09:22 . 2009-05-06 09:22 -------- dc-h--w c:\programdata\{92E7A367-8E12-4830-AA70-29C32E331A81}
2009-05-06 09:22 . 2009-05-06 09:22 -------- dc-h--w c:\users\All Users\{92E7A367-8E12-4830-AA70-29C32E331A81}
2009-05-03 12:35 . 2009-05-03 12:35 680 ----a-w c:\users\Toshiba\AppData\Local\d3d9caps.dat
2009-04-28 00:39 . 2009-05-06 16:42 -------- d-----w c:\users\Toshiba\1
2009-04-18 09:36 . 2009-04-18 09:36 -------- d-----w c:\program files\Ask Search Assistant
2009-04-17 13:09 . 2008-12-06 04:42 376832 ----a-w c:\windows\system32\winhttp.dll
2009-04-17 13:09 . 2008-06-06 03:27 562176 ----a-w c:\windows\system32\msdtcprx.dll
2009-04-17 13:09 . 2008-06-06 03:27 38912 ----a-w c:\windows\system32\xolehlp.dll
2009-04-17 13:09 . 2009-03-03 04:39 551424 ----a-w c:\windows\system32\rpcss.dll
2009-04-17 13:09 . 2009-03-03 04:46 3599328 ----a-w c:\windows\system32\ntkrnlpa.exe
2009-04-17 13:09 . 2009-03-03 04:46 3547632 ----a-w c:\windows\system32\ntoskrnl.exe
2009-04-17 13:09 . 2009-03-03 03:04 666624 ----a-w c:\windows\system32\printfilterpipelinesvc.exe
2009-04-15 18:15 . 2009-04-26 14:00 -------- d-----w c:\users\Toshiba\AppData\Local\Microsoft Games
2009-04-15 11:35 . 2009-04-15 11:35 -------- d-----r c:\program files\Norton Support
2009-04-13 22:04 . 2009-04-13 22:04 -------- d-----w c:\program files\Common Files\xing shared
2009-04-13 10:06 . 2009-04-13 10:28 -------- d-----w c:\programdata\NOS
2009-04-13 10:06 . 2009-04-13 10:28 -------- d-----w c:\users\All Users\NOS
2009-04-13 10:06 . 2009-04-13 10:06 -------- d-----w c:\program files\NOS
2009-04-13 01:22 . 2009-04-13 01:22 -------- d-----w c:\users\Toshiba\AppData\Roaming\Ahead
2009-04-12 13:56 . 2009-04-12 13:56 -------- d-----w c:\users\Toshiba\AppData\Local\HP
2009-04-12 13:33 . 2009-04-12 16:02 -------- d-----w c:\program files\HP
2009-04-12 13:30 . 2009-04-12 14:19 -------- d-----w c:\programdata\HP
2009-04-12 13:30 . 2009-04-12 14:19 -------- d-----w c:\users\All Users\HP
2009-04-11 18:56 . 2009-04-11 18:56 -------- d-----w c:\users\Toshiba\AppData\Roaming\Media Player Classic
2009-04-11 18:23 . 2009-04-11 18:23 -------- d-----w c:\programdata\Symantec
2009-04-11 18:23 . 2009-04-11 18:23 -------- d-----w c:\users\All Users\Symantec
2009-04-11 18:22 . 2009-03-12 09:03 25136 ----a-r c:\windows\system32\drivers\SymIMV.sys
2009-04-11 18:22 . 2009-04-13 08:54 124464 ----a-w c:\windows\system32\drivers\SYMEVENT.SYS
2009-04-11 18:22 . 2009-04-12 14:54 -------- d-----w c:\program files\Common Files\Symantec Shared
2009-04-11 18:22 . 2009-04-13 08:54 -------- d-----w c:\program files\Symantec
2009-04-11 18:22 . 2009-04-14 00:07 -------- d-----w c:\windows\system32\drivers\NIS
2009-04-11 18:22 . 2009-04-11 18:22 -------- d-----w c:\program files\Norton Internet Security
2009-04-11 18:22 . 2009-04-11 18:22 -------- d-----w c:\programdata\Norton
2009-04-11 18:22 . 2009-04-11 18:22 -------- d-----w c:\users\All Users\Norton
2009-04-11 18:21 . 2009-04-11 18:21 -------- d-----w c:\programdata\NortonInstaller
2009-04-11 18:21 . 2009-04-11 18:21 -------- d-----w c:\users\All Users\NortonInstaller
2009-04-11 18:21 . 2009-04-11 18:21 -------- d-----w c:\program files\NortonInstaller
2009-04-11 17:27 . 2009-04-11 18:24 -------- d-----w c:\users\Toshiba\AppData\Roaming\GetRightToGo
2009-04-11 16:41 . 2009-04-11 17:12 -------- d-----w c:\users\Toshiba\AppData\Roaming\Motive
2009-04-11 16:41 . 2009-04-11 16:41 -------- d-----w c:\program files\Fahess_Activation
2009-04-11 16:41 . 2009-04-23 12:12 -------- d-----w c:\program files\Common Files\Motive
2009-04-11 16:40 . 2009-04-11 17:08 -------- d-----w c:\programdata\Motive
2009-04-11 16:40 . 2009-04-11 17:08 -------- d-----w c:\users\All Users\Motive
2009-04-11 10:26 . 2009-04-11 10:26 -------- d-----w c:\users\Toshiba\AppData\Roaming\MSNSlideMax
2009-04-11 10:26 . 2009-04-11 10:28 -------- d-----w c:\programdata\MSNSlideMax
2009-04-11 10:26 . 2009-04-11 10:28 -------- d-----w c:\users\All Users\MSNSlideMax
2009-04-11 10:26 . 2009-04-11 10:26 -------- d-----w c:\program files\MSNSlideMax
2009-04-11 09:56 . 2009-04-11 09:56 -------- d-----w C:\unzipped
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-10 19:39 . 2008-08-05 10:30 -------- d-----w c:\program files\Google
2009-05-06 08:29 . 2006-11-02 10:25 51200 ----a-w c:\windows\inf\infpub.dat
2009-05-06 08:29 . 2006-11-02 10:25 143360 ----a-w c:\windows\inf\infstrng.dat
2009-04-18 09:36 . 2009-04-11 08:09 -------- d-----w c:\program files\Messenger Plus! Live
2009-04-13 22:04 . 2009-04-06 12:02 -------- d-----w c:\program files\Real
2009-04-13 22:03 . 2009-04-06 12:02 -------- d-----w c:\program files\Common Files\Real
2009-04-13 19:41 . 2006-11-02 10:25 86016 ----a-w c:\windows\inf\infstor.dat
2009-04-13 08:54 . 2009-04-11 18:22 805 ----a-w c:\windows\system32\drivers\SYMEVENT.INF
2009-04-13 08:54 . 2009-04-11 18:22 7386 ----a-w c:\windows\system32\drivers\SYMEVENT.CAT
2009-04-11 09:25 . 2009-04-06 12:07 -------- d-----w c:\program files\Yahoo!
2009-04-11 07:52 . 2009-04-11 07:51 -------- d-----w c:\program files\Windows Live
2009-04-11 07:52 . 2009-04-11 07:52 -------- d-----w c:\program files\Microsoft
2009-04-11 07:51 . 2009-04-11 07:51 -------- d-----w c:\program files\Windows Live SkyDrive
2009-04-11 07:45 . 2009-04-11 07:45 -------- d-----w c:\program files\Common Files\Windows Live
2009-04-10 12:59 . 2009-04-10 12:58 -------- d-----w c:\program files\Common Files\Toshiba Shared
2009-04-10 12:59 . 2008-08-05 10:01 -------- d-----w c:\program files\Toshiba
2009-04-10 12:56 . 2009-04-10 12:56 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
2009-04-10 12:56 . 2009-04-10 12:56 -------- d-----w c:\program files\Synaptics
2009-04-10 12:56 . 2009-04-10 12:56 -------- d-----w c:\program files\Camera Assistant Software for Toshiba
2009-04-10 12:55 . 2009-04-10 12:55 0 --sha-r c:\windows\system32\drivers\TOSHIBA_Satellite U400_07804-AR_PSU44E-02K00.MRK
2009-04-10 12:51 . 2008-08-05 09:48 -------- d-----w c:\program files\Intel
2009-04-06 12:16 . 2009-04-06 12:15 -------- d-----w c:\program files\Common Files\Ahead
2009-04-06 12:15 . 2009-04-06 12:15 -------- d-----w c:\program files\Nero
2009-04-06 12:11 . 2009-04-06 12:11 -------- d-----w c:\program files\Golden Al-Wafi Translator
2009-04-06 12:11 . 2009-04-06 12:11 172032 ------w c:\windows\Setup1.exe
2009-04-06 12:11 . 2009-04-06 12:11 73216 ----a-w c:\windows\ST6UNST.EXE
2009-04-06 12:10 . 2009-04-06 12:10 -------- d-----w c:\program files\VideoLAN
2009-04-06 12:10 . 2009-04-06 12:10 -------- d-----w c:\program files\iTunes
2009-04-06 12:10 . 2009-04-06 12:10 -------- d-----w c:\program files\iPod
2009-04-06 12:09 . 2009-04-06 12:08 -------- d-----w c:\program files\QuickTime
2009-04-06 12:08 . 2009-04-06 12:08 -------- d-----w c:\program files\Apple Software Update
2009-04-06 12:04 . 2009-04-06 12:04 -------- d-----w c:\program files\Skype
2009-04-06 12:03 . 2009-04-06 12:03 -------- d-----w c:\program files\قاموس صخر الجديد
2009-04-06 12:01 . 2009-04-06 12:01 -------- d-----w c:\program files\JetAudio
2009-04-06 12:01 . 2009-04-06 12:01 -------- d-----w c:\program files\Common Files\COWON
2009-04-06 12:01 . 2008-08-05 09:56 -------- d--h--w c:\program files\InstallShield Installation Information
2009-04-06 11:59 . 2009-04-06 11:59 -------- d-----w c:\program files\mpegable
2009-04-06 11:59 . 2009-04-06 11:59 47104 ------w c:\windows\AKDeInstall.exe
2009-04-06 11:59 . 2009-04-06 11:59 -------- d-----w c:\program files\K-Lite Codec Pack
2009-04-06 11:58 . 2009-04-06 11:57 -------- d-----w c:\program files\DivX
2009-04-06 11:58 . 2009-04-06 11:58 -------- d-----w c:\program files\Common Files\PX Storage Engine
2009-04-06 11:56 . 2009-04-06 11:56 -------- d-----w c:\program files\CyberLink
2009-04-06 11:55 . 2009-04-06 11:55 0 ---ha-w c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2009-04-06 11:50 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Defender
2009-04-06 11:50 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Journal
2009-04-06 11:50 . 2009-04-06 11:50 41018 ----a-w c:\windows\inf\PERFLIB\0401\perfd.dat
2009-04-06 11:50 . 2009-04-06 11:50 41018 ----a-w c:\windows\inf\PERFLIB\0401\perfc.dat
2009-04-06 11:50 . 2009-04-06 11:50 285290 ----a-w c:\windows\inf\PERFLIB\0401\perfi.dat
2009-04-06 11:50 . 2009-04-06 11:50 285290 ----a-w c:\windows\inf\PERFLIB\0401\perfh.dat
2009-04-06 11:50 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Collaboration
2009-04-06 11:49 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Calendar
2009-04-06 11:49 . 2006-11-02 11:18 -------- d-----w c:\program files\Windows Mail
2009-04-06 11:49 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Photo Gallery
2009-04-06 11:49 . 2006-11-02 12:37 -------- d-----w c:\program files\Windows Sidebar
2009-04-06 11:43 . 2009-04-06 11:08 130112 ----a-w c:\users\Toshiba\AppData\Local\GDIPFONTCACHEV1.DAT
2009-04-06 11:32 . 2006-11-02 12:37 -------- d-----w c:\program files\MSBuild
2009-04-06 11:31 . 2009-04-06 11:31 -------- d-----w c:\program files\Microsoft.NET
2009-04-06 11:30 . 2009-04-06 11:30 -------- d-----w c:\program files\Microsoft Visual Studio 8
2009-03-17 03:38 . 2009-04-17 13:08 13824 ----a-w c:\windows\system32\apilogen.dll
2009-03-17 03:38 . 2009-04-17 13:08 24064 ----a-w c:\windows\system32\amxread.dll
2009-03-03 04:40 . 2009-04-17 13:08 827392 ----a-w c:\windows\system32\wininet.dll
2009-03-03 04:39 . 2009-04-17 13:08 183296 ----a-w c:\windows\system32\sdohlp.dll
2009-03-03 04:39 . 2009-04-17 13:08 26112 ----a-w c:\windows\system32\printfilterpipelineprxy.dll
2009-03-03 04:37 . 2009-04-17 13:08 78336 ----a-w c:\windows\system32\ieencode.dll
2009-03-03 04:37 . 2009-04-17 13:08 98304 ----a-w c:\windows\system32\iasrecst.dll
2009-03-03 04:37 . 2009-04-17 13:08 54784 ----a-w c:\windows\system32\iasads.dll
2009-03-03 04:37 . 2009-04-17 13:08 44032 ----a-w c:\windows\system32\iasdatastore.dll
2009-03-03 02:38 . 2009-04-17 13:08 17408 ----a-w c:\windows\system32\iashost.exe
2009-03-03 02:28 . 2009-04-17 13:08 26624 ----a-w c:\windows\system32\ieUnatt.exe
2009-02-13 08:49 . 2009-04-17 13:08 72704 ----a-w c:\windows\system32\secur32.dll
2009-02-13 08:49 . 2009-04-17 13:08 1255936 ----a-w c:\windows\system32\lsasrv.dll
2008-01-21 02:43 . 2006-11-02 12:50 174 --sha-w c:\program files\desktop.ini
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2008-04-24 430080]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1233920]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-06-25 145944]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-09-29 49152]
"Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2008-04-29 417792]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_06\bin\jusched.exe" [2008-03-25 144784]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-09-28 75136]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"topi"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-07-10 581632]
"Google EULA Launcher"="c:\program files\Google\Google EULA\GoogleEULALauncher.exe" [2008-05-28 20480]
"Toshiba TEMPO"="c:\program files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exe" [2008-04-24 103824]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-06-25 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-06-25 170520]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-11-29 1029416]
"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2008-01-17 431456]
"HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2007-10-31 54608]
"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2008-01-25 509816]
"00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2008-03-19 716800]
"HDMICtrlMan"="c:\program files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe" [2008-04-26 716800]
"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2008-01-11 574864]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-09-18 29696]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-04-13 185896]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-02-16 282624]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2007-03-14 257088]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2008-07-14 570664]
"NDSTray.exe"="NDSTray.exe" [BU]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2008-4-15 2979144]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
@="FSFilter Activity Monitor"
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth Manager.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnk.CommonStartup
backupExtension=.CommonStartup
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
backup=c:\windows\pss\WinZip Quick Pick.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{E3251147-3EA5-47C4-AEB5-9CA7668B7184}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{2BB3AC31-DC00-4623-84E3-B0A69A4D95AC}"= UDP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{1DFD243D-3E29-473B-A592-0715A5DE4D8F}"= TCP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{33C82A0E-3DFE-4147-9D8E-BEAA283AC1F2}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{0133E255-9BA1-44F8-84A5-FDDE77B1967F}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{5547A9EF-ECE2-4B46-BABF-605FFBD817E6}"= UDP:c:\program files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"{B2974325-86F0-404F-9EAB-08C4458EA298}"= TCP:c:\program files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"{121A4A0C-3CE4-4732-BC58-7128AA3D8B6A}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{2E1D864F-C881-4974-993A-C36C843046DD}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{1EF31FD6-D6E0-4CCB-B7E5-BEBB10708EBA}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\hpqtra08.exe:hpqtra08.exe
"{8837CFA1-2AA5-4FC1-A164-23C7BAED88D8}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\hpqtra08.exe:hpqtra08.exe
"{CFD60669-6410-40B2-A938-0C89FECDE0B9}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\hpqste08.exe:hpqste08.exe
"{BE929BBB-0AC3-43C1-A395-CD0E9B64ABE5}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\hpqste08.exe:hpqste08.exe
"{7C4C3CD9-121D-4F09-8462-4C752757D729}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\hposid01.exe:hposid01.exe
"{EDCD85BE-FA45-4356-B958-FCD6BE098194}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\hposid01.exe:hposid01.exe
"{A104C21B-BEB3-49D6-8EAC-13154844A3B8}"= Profile=Private|Profile=Public|c:\program files\Common Files\Mcafee\MNA\McNaSvc.exe:McAfee Network Agent
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)
R0 SymEFA;Symantec Extended File Attributes;c:\windows\System32\drivers\NIS\1005000.087\SymEFA.sys [13/04/09 11:54 310320]
R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\System32\drivers\NIS\1005000.087\BHDrvx86.sys [13/04/09 11:54 258608]
R1 ccHP;Symantec Hash Provider;c:\windows\System32\drivers\NIS\1005000.087\cchpx86.sys [13/04/09 11:53 482352]
R1 IDSVix86;IDSVix86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090508.002\IDSvix86.sys [09/05/09 05:12 292912]
R2 ConfigFree Service;ConfigFree Service;c:\program files\Toshiba\ConfigFree\CFSvcs.exe [17/04/08 02:19 40960]
R2 Norton Internet Security;Norton Internet Security;c:\program files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe [13/04/09 11:54 115560]
R2 TeamViewer;TeamViewer 3;c:\program files\TeamViewer3\TeamViewer_Host.exe [05/05/08 16:27 181544]
R2 TempoMonitoringService;Notebook Performance Tuning Service ;c:\program files\Toshiba TEMPRO\TempoSVC.exe [24/04/08 12:21 99720]
R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\Toshiba\SMARTLogService\TosIPCSrv.exe [03/12/07 19:03 126976]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [12/04/09 17:56 101936]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\System32\drivers\IntcHdmi.sys [05/08/08 12:52 112128]
R3 NETw5v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit ;c:\windows\System32\drivers\NETw5v32.sys [05/08/08 12:57 3658752]
R3 O2MDRDR;O2MDRDR;c:\windows\System32\drivers\o2media.sys [15/04/08 05:13 51160]
R3 QIOMem;Generic IO & Memory Access;c:\windows\System32\drivers\QIOMem.sys [09/04/07 18:13 8192]
R3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\System32\drivers\RTL8187.sys [07/04/09 04:59 335872]
R3 SmartFaceVWatchSrv;SmartFaceVWatchSrv;c:\program files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe [24/04/08 20:35 73728]
R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\System32\drivers\NIS\1005000.087\symndisv.sys [13/04/09 11:54 39984]
S3 getPlus(R) Helper;getPlus(R) Helper;c:\program files\NOS\bin\getPlus_HelperSvc.exe [13/04/09 13:06 33176]
.
- - - - ORPHANS REMOVED - - - -
HKCU-Run-Yahoo! Pager - c:\program files\Yahoo!\Messenger\YahooMessenger.exe
HKCU-Run-Uniblue RegistryBooster 2009 - c:\program files\uniblue\registrybooster\StartRegistryBooster.exe
HKLM-Run-FAHESS_McciTrayApp - c:\program files\FAHESS\McciTrayApp.exe
HKLM-Run-mcagent_exe - c:\program files\McAfee.com\Agent\mcagent.exe
HKLM-Run-cfFncEnabler.exe - cfFncEnabler.exe

.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSEA&bmod=TSEA
IE: {{76577871-04EC-495E-A12B-91F7C3600AFA} -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

IE: {{8A918C1D-E123-4E36-B562-5C1519E434CE} -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-05-11 12:52
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Norton Internet Security]
"ImagePath"="\"c:\program files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\program files\Norton Internet Security\Engine\16.5.0.135\diMaster.dll\" /prefetch:1"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2009-05-11 12:53
ComboFix-quarantined-files.txt 2009-05-11 09:53
Pre-Run: 101,911,134,208 bytes free
Post-Run: 101,888,512,000 bytes free
270 --- E O F --- 2009-05-05 00:53

 

[الدمار الشامل]

الله يعطيك العافيه ولا يحرمنا منك يا الغالي انحلت المشكله

 

[format]

^_^ الحمد لله ^_^ ان شاء الله مايصير معاك مشاكل تقبل تحياتي