رساله خطأ عند تشغيل الجهاز

ا

ابو الخوارع

زيزوومي جديد
إنضم
2 يونيو 2009
المشاركات
3
مستوى التفاعل
0
النقاط
0
الإقامة
k s a
غير متصل
السلام عليكم ورحمة الله وبركاته
اولا
: اسال الله العلي القدير ايثيب القائمين على هذا المنتدى الرائع خير الجزاء على مايقومو به من عمل رائع وتطوير مستمر وفائدة عظيمه وابارك لهم هذا المنتدى الاكثر من رائع واتمنى لهم التوفيق والسداد



ثانيا
تظهر لي رساله الخطأ هذه عند تشغيل الجهاز وعند تشغيل الكاميرا ايضاً
cannot execute CEC_MAIN.exe please reinstall this progreamme
هذه المشكله خاصة بالكاميرا طلعت لي بعد ما سويت حذف للكاسبر القديم وinstall لكاسبر 2009
Looking_anim.gif

ولما جربت وسويت ايقاف للكاسبر ماصارت تطلع هذي الرساله وصارت الكاميرا تشتغل تمام
وش الحل؟



افيدوني اثابكم الله :er:
وجزاكم الله خيرا اخوكم ابو نواف:ok:
progress.gif
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
يعدل العنوان الى ما يناسب
بالتوفيق
 
توقيع : mezouari
تأييد 0
و عليكم السلام و رحمة الله و بركته ...

حياك الله ...

أعمل التالي ...

حمل هذه الأداة ...

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


شغلها و روح على [ Do a system scan and save log ] ...

شوي و يعطيك تقرير داخل مفكرة ...

أنسخه كاملا ً ... و بشكل صحيح ...

و لصقه في ردك القادم ...
 
توقيع : format
تأييد 0
حبيبي فورمات هذا اللي طلع لي كاملا
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:07:11 م, on 02/06/09
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe
C:\tb_eula\EULALauncher.exe
C:\Program Files\Toshiba\Toshiba Online Product Information\TOPI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
C:\Program Files\Toshiba\SmoothView\SmoothView.exe
C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Users\ABO-NAWAF\Desktop\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [Desktop SMS] C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe /auto
O4 - HKLM\..\Run: [toolbar_eula_launcher] c:\tb_eula\EULALauncher.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" /start
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user')
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: eBay.co.uk - Buy It Sell It Love It - {76577871-04EC-495E-A12B-91F7C3600AFA} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)
O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\Windows\System32\TUProgSt.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 10321 bytes
 
تأييد 0
قم بحذف التالي

O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe


O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user')



O9 - Extra button: eBay.co.uk - Buy It Sell It Love It - {76577871-04EC-495E-A12B-91F7C3600AFA} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)


O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
(file missing)



O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe

O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe​
 
توقيع : format
تأييد 0
طريقة الحذف للاكس بي





mg%20%283%29.png





mg%20%284%29.png

بعدين

عطل جميع برامج الحمايه ,,

نزل هذه الاداة


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ،، وبذلك يكون الفحص انتهى الصق التقرير بمشاركتك القادمة
 
التعديل الأخير بواسطة المشرف:
توقيع : format
تأييد 0
بيض الله وجهك حبيبي وانا تعبتك معاي ولكن اسال الله انه يثيب الاجر
طلب صغير ممكن تعرفني على فائدة البرنامج الاخير ComboFix
ComboFix 09-06-01.03 - ABO-NAWAF 06/03/2009 11:35.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1256.966.1033.18.2038.1076 [GMT 1:00]
Running from: c:\users\ABO-NAWAF\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
SP: Kaspersky Internet Security *disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\users\ABO-NA~1\AppData\Local\Temp\ppcrlui_3704_2
c:\users\ABO-NAWAF\AppData\Local\Temp\ppcrlui_3704_2
c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
c:\windows\system32\drivers\TOSHIBA_Satellite A300_06466-AR_PSAJ0E-00W01.MRK
F:\Autorun.inf
.
((((((((((((((((((((((((( Files Created from 2009-05-03 to 2009-06-03 )))))))))))))))))))))))))))))))
.
2009-06-03 10:05 . 2009-06-03 10:05 -------- d-----w- C:\Hotspot Shield
2009-06-03 10:03 . 2009-06-03 10:05 -------- d-----w- c:\program files\Hotspot Shield
2009-06-02 18:18 . 2009-06-02 18:18 368640 ----a-w- c:\programdata\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en-GB_344187C3421752FB.dll
2009-06-02 09:29 . 2009-06-02 09:29 -------- d-----w- c:\programdata\Messenger Plus!
2009-06-01 18:13 . 2009-06-01 18:13 33840 ----a-w- c:\windows\system32\drivers\hssdrv.sys
2009-06-01 15:04 . 2006-10-26 18:56 32592 ----a-w- c:\windows\system32\msonpmon.dll
2009-06-01 15:00 . 2009-06-01 15:00 -------- d-----w- c:\program files\Microsoft Works
2009-06-01 14:59 . 2009-06-01 14:59 -------- d-----w- c:\program files\Microsoft.NET
2009-06-01 14:58 . 2009-06-01 14:58 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2009-06-01 14:56 . 2009-06-01 14:56 -------- d-----w- c:\users\ABO-NAWAF\AppData\Local\Microsoft Help
2009-06-01 14:56 . 2009-06-02 10:01 -------- d-----w- c:\programdata\Microsoft Help
2009-06-01 14:55 . 2009-06-01 14:55 -------- d--h--r- C:\MSOCache
2009-06-01 14:42 . 2009-06-01 14:42 -------- d-----w- c:\users\ABO-NAWAF\AppData\Local\Toshiba
2009-06-01 14:42 . 2009-06-03 10:02 -------- d-----w- c:\users\ABO-NAWAF\AppData\Local\Google
2009-06-01 14:42 . 2009-06-02 09:54 -------- d-----w- c:\users\ABO-NAWAF\AppData\Local\VirtualStore
2009-06-01 14:39 . 2009-06-01 14:39 -------- d-----w- c:\programdata\ToshibaEurope
2009-06-01 14:39 . 2009-06-01 15:06 128120 ----a-w- c:\users\ABO-NAWAF\AppData\Local\GDIPFONTCACHEV1.DAT
2009-06-01 14:35 . 2009-06-01 15:54 -------- d-----w- c:\users\ABO-NAWAF\AppData\Local\Microsoft Games
2009-06-01 14:30 . 2009-06-01 12:20 -------- d-----w- c:\windows\PCHealth
2009-06-01 14:29 . 2006-11-29 12:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2009-06-01 14:29 . 2009-06-01 14:30 -------- d-----w- c:\program files\Common Files\Toshiba Shared
2009-06-01 14:29 . 2008-01-21 14:42 285184 ----a-w- c:\windows\system32\drivers\tos_sps32.sys
2009-06-01 14:26 . 2007-12-17 10:45 18432 ----a-w- c:\windows\system32\drivers\UVCFTR_S.SYS
2009-06-01 14:26 . 2009-06-01 14:26 -------- d-----w- c:\program files\Camera Assistant Software for Toshiba
2009-06-01 14:22 . 2009-06-01 14:22 -------- d-----w- c:\windows\system32\ENU
2009-06-01 14:22 . 2009-06-01 14:22 -------- d-----w- c:\program files\Synaptics
2009-06-01 14:22 . 2007-10-24 09:02 936472 ----a-w- c:\windows\system32\imsmudlg.exe
2009-06-01 13:29 . 2008-10-22 01:22 2048 ----a-w- c:\windows\system32\tzres.dll
2009-06-01 13:16 . 2009-06-01 13:16 603904 ----a-w- c:\windows\system32\TUProgSt.exe
2009-06-01 13:16 . 2008-12-11 12:31 17152 ----a-w- c:\windows\system32\authuitu.dll
2009-06-01 13:16 . 2008-12-11 12:31 27904 ----a-w- c:\windows\system32\uxtuneup.dll
2009-06-01 13:16 . 2009-06-01 13:16 360192 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-06-01 13:16 . 2009-06-01 13:16 -------- d-----w- c:\users\ABO-NAWAF\AppData\Roaming\TuneUp Software
2009-06-01 13:16 . 2009-06-01 13:16 -------- d-----w- c:\program files\TuneUp Utilities 2009
2009-06-01 13:16 . 2009-06-01 13:16 -------- d-----w- c:\programdata\TuneUp Software
2009-06-01 13:15 . 2009-06-01 13:15 -------- d-sh--w- c:\programdata\{55A29068-F2CE-456C-9148-C869879E2357}
2009-06-01 13:12 . 2009-06-01 13:12 -------- d-----w- c:\windows\Google Toolbar
2009-06-01 13:10 . 2008-06-20 01:14 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-06-01 13:10 . 2008-06-20 01:14 97800 ----a-w- c:\windows\system32\infocardapi.dll
2009-06-01 13:10 . 2008-06-20 01:14 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2009-06-01 13:10 . 2008-06-20 01:14 11264 ----a-w- c:\windows\system32\icardres.dll
2009-06-01 13:10 . 2008-06-20 01:14 622080 ----a-w- c:\windows\system32\icardagt.exe
2009-06-01 13:10 . 2008-06-20 01:14 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2009-06-01 13:10 . 2008-06-20 01:14 326160 ----a-w- c:\windows\system32\PresentationHost.exe
2009-06-01 13:05 . 2008-07-27 18:03 96760 ----a-w- c:\windows\system32\dfshim.dll
2009-06-01 13:05 . 2008-07-27 18:03 282112 ----a-w- c:\windows\system32\mscoree.dll
2009-06-01 13:05 . 2008-07-27 18:03 41984 ----a-w- c:\windows\system32\netfxperf.dll
2009-06-01 13:04 . 2008-07-27 18:03 158720 ----a-w- c:\windows\system32\mscorier.dll
2009-06-01 13:04 . 2008-07-27 18:03 83968 ----a-w- c:\windows\system32\mscories.dll
2009-06-01 13:04 . 2009-06-01 13:04 -------- d-----w- c:\program files\uTorrent
2009-06-01 13:03 . 2009-06-01 13:07 -------- d-----w- c:\users\ABO-NAWAF\AppData\Roaming\uTorrent
2009-06-01 13:02 . 2009-06-01 13:03 -------- d-----w- c:\program files\The KMPlayer
2009-06-01 12:59 . 2008-12-05 04:32 428544 ----a-w- c:\windows\system32\EncDec.dll
2009-06-01 12:59 . 2008-12-05 04:32 293376 ----a-w- c:\windows\system32\psisdecd.dll
2009-06-01 12:57 . 2008-06-26 01:45 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll
2009-06-01 12:57 . 2008-06-26 01:45 2644480 ----a-w- c:\windows\system32\NlsLexicons0009.dll
2009-06-01 12:57 . 2008-06-26 03:29 801280 ----a-w- c:\windows\system32\NaturalLanguage6.dll
2009-06-01 12:55 . 2008-11-01 03:44 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-06-01 12:55 . 2008-03-08 04:21 1695744 ----a-w- c:\windows\system32\gameux.dll
2009-06-01 12:55 . 2008-11-01 01:21 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-06-01 12:51 . 2009-06-01 12:51 181680 ----a-w- c:\users\ABO-NAWAF\AppData\Roaming\IDM\idmmzcc2\components\idmmzcc.dll
2009-06-01 12:51 . 2009-06-03 10:39 -------- d-----w- c:\users\ABO-NAWAF\AppData\Roaming\DMCache
2009-06-01 12:51 . 2009-06-01 12:55 -------- d-----w- c:\users\ABO-NAWAF\AppData\Roaming\IDM
2009-06-01 12:51 . 2009-06-01 12:53 -------- d-----w- c:\program files\Internet Download Manager
2009-06-01 12:48 . 2009-06-01 15:14 -------- d-----w- c:\program files\Messenger Plus! Live
2009-06-01 12:47 . 2008-09-10 03:40 1334272 ----a-w- c:\windows\system32\msxml6.dll
2009-06-01 12:41 . 2008-10-16 21:13 1809944 ----a-w- c:\windows\system32\wuaueng.dll
2009-06-01 12:41 . 2008-10-16 21:09 51224 ----a-w- c:\windows\system32\wuauclt.exe
2009-06-01 12:41 . 2008-10-16 21:09 43544 ----a-w- c:\windows\system32\wups2.dll
2009-06-01 12:41 . 2008-10-16 20:56 1524736 ----a-w- c:\windows\system32\wucltux.dll
2009-06-01 12:41 . 2008-10-16 21:12 561688 ----a-w- c:\windows\system32\wuapi.dll
2009-06-01 12:41 . 2008-10-16 21:08 34328 ----a-w- c:\windows\system32\wups.dll
2009-06-01 12:41 . 2008-10-16 20:55 83456 ----a-w- c:\windows\system32\wudriver.dll
2009-06-01 12:41 . 2008-10-16 13:08 162064 ----a-w- c:\windows\system32\wuwebv.dll
2009-06-01 12:41 . 2008-10-16 12:56 31232 ----a-w- c:\windows\system32\wuapp.exe
2009-06-01 12:30 . 2009-06-01 12:30 33808 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\klbg.sys
2009-06-01 12:30 . 2009-06-01 12:30 224272 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\Vista\klif.sys
2009-06-01 12:30 . 2009-06-01 12:30 21256 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\vkbd.dll
2009-06-01 12:29 . 2009-06-01 12:30 861448 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\updater.dll
2009-06-01 12:29 . 2009-06-01 12:29 83208 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\mzvkbd.dll
2009-06-01 12:29 . 2009-06-01 12:29 62728 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\ievkbd.dll
2009-06-01 12:29 . 2009-06-01 12:29 43784 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\fssync.dll
2009-06-01 12:29 . 2009-06-01 12:29 365832 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\ckahum.dll
2009-06-01 12:29 . 2009-06-01 12:29 201992 ----a-w- c:\programdata\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.357\avp.exe
2009-06-01 12:23 . 2009-06-03 10:29 -------- d-----w- c:\users\ABO-NAWAF\Tracing
2009-06-01 12:21 . 2009-06-01 12:21 -------- d-----w- c:\program files\Microsoft
2009-06-01 12:21 . 2009-06-01 12:21 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-06-01 12:21 . 2009-06-01 12:21 -------- d-----w- c:\program files\Windows Live
2009-06-01 12:15 . 2009-06-01 12:15 -------- d-----w- c:\program files\Common Files\Windows Live
2009-06-01 12:12 . 2009-06-01 12:12 -------- d-----w- c:\program files\CCleaner
2009-06-01 12:11 . 2009-06-01 12:11 -------- d-----w- c:\program files\Common Files\Adobe AIR
2009-06-01 12:10 . 2009-06-01 12:10 -------- d-----w- c:\program files\Common Files\Adobe
2009-06-01 12:03 . 2009-06-01 12:30 94643 ----a-w- c:\windows\system32\drivers\klick.dat
2009-06-01 12:03 . 2009-06-01 12:30 105395 ----a-w- c:\windows\system32\drivers\klin.dat
2009-06-01 12:03 . 2009-06-03 10:35 1874464 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-06-01 12:03 . 2009-06-03 10:29 -------- d-----w- c:\programdata\Kaspersky Lab
2009-06-01 12:03 . 2009-06-03 10:23 360480 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-06-01 12:03 . 2009-06-01 12:36 -------- d-----w- c:\program files\Kaspersky Lab
2009-06-01 12:02 . 2009-06-01 12:02 -------- d-----w- c:\programdata\Kaspersky Lab Setup Files
2009-06-01 11:56 . 2009-06-01 11:56 -------- d-----w- c:\users\ABO-NAWAF\AppData\Roaming\Toshiba
2009-06-01 11:53 . 2009-06-01 11:53 410984 ----a-w- c:\windows\system32\deploytk.dll
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-03 10:33 . 2009-06-01 12:03 17820 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-06-03 10:23 . 2009-06-01 12:03 3360 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-06-02 21:01 . 2008-02-15 14:33 -------- d-----w- c:\program files\Google
2009-06-01 15:00 . 2006-11-02 12:37 -------- d-----w- c:\program files\MSBuild
2009-06-01 14:30 . 2008-02-15 14:05 -------- d-----w- c:\program files\Toshiba
2009-06-01 14:29 . 2008-02-19 10:42 -------- d-----w- c:\programdata\Toshiba
2009-06-01 14:22 . 2008-02-15 13:43 -------- d-----w- c:\program files\Intel
2009-06-01 13:44 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-06-01 13:44 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-06-01 13:11 . 2008-02-15 14:00 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-06-01 12:30 . 2008-01-29 17:29 33808 ----a-w- c:\windows\system32\drivers\klbg.sys
2009-06-01 11:59 . 2008-02-15 14:30 -------- d-----w- c:\programdata\McAfee
2009-06-01 11:53 . 2008-02-15 13:42 -------- d-----w- c:\program files\Java
2009-03-17 03:38 . 2009-06-01 12:53 13824 ----a-w- c:\windows\system32\apilogen.dll
2009-03-17 03:38 . 2009-06-01 12:53 24064 ----a-w- c:\windows\system32\amxread.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1233920]
"TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2007-12-29 430080]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-06-01 2745776]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-06-02 39408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-06-01 148888]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-01-25 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-01-25 154136]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-01-25 129560]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-09-28 75136]
"Desktop SMS"="c:\program files\IDM\Desktop SMS\DesktopSMS.exe" [2007-06-18 1507328]
"toolbar_eula_launcher"="c:\tb_eula\EULALauncher.exe" [2008-02-20 21504]
"topi"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-07-10 581632]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-11-29 1029416]
"Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2007-10-25 413696]
"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2008-01-17 431456]
"HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2007-10-31 54608]
"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2008-01-25 509816]
"00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2008-01-22 712704]
"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2007-05-04 571024]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-06-01 201992]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NDSTray.exe"="NDSTray.exe" [BU]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\KASPER~1\KASPER~1\mzvkbd.dll c:\progra~1\KASPER~1\KASPER~1\adialhk.dll c:\progra~1\KASPER~1\KASPER~1\kloehk.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{D057E028-465D-491F-8E5B-1126129BC6FD}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{74906EBB-3489-4E06-8565-48158DEF0DD9}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"{007A323B-25C0-4F00-88B9-F5FE33E5B1BF}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{ECF98220-D9A5-450E-B71C-303D5D796861}"= UDP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{94B3D590-AFEA-4415-937E-D0B224C36599}"= TCP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{8DB4E6CA-9C39-4B46-986D-1001AD23C81E}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{45C08DE1-847E-4846-A623-0858003F04AE}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\System32\drivers\klbg.sys [29/01/08 06:29 م 33808]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [26/03/08 01:10 م 20496]
R2 ConfigFree Service;ConfigFree Service;c:\program files\Toshiba\ConfigFree\CFSvcs.exe [25/12/07 02:07 م 40960]
R2 HssSrv;Hotspot Shield Routing Service;c:\program files\Hotspot Shield\HssWPR\hsssrv.exe [01/06/09 07:13 م 331312]
R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\Toshiba\SMARTLogService\TosIPCSrv.exe [03/12/07 05:03 م 126976]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\System32\TUProgSt.exe [01/06/09 02:16 م 603904]
R3 CnxtHdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service;c:\windows\System32\drivers\CHDART.sys [15/02/08 02:27 م 187904]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\System32\drivers\klfltdev.sys [13/03/08 07:02 م 26640]
R3 O2MDRDR;O2MDRDR;c:\windows\System32\drivers\o2media.sys [15/01/08 10:34 ص 48472]
R3 QIOMem;Generic IO & Memory Access;c:\windows\System32\drivers\QIOMem.sys [09/04/07 04:13 م 8192]
S3 HssTrayService;Hotspot Shield Tray Service;c:\program files\Hotspot Shield\bin\HssTrayService.exe [01/06/09 07:58 م 34352]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\System32\drivers\IntcHdmi.sys [15/02/08 02:27 م 111616]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder
2009-06-03 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 20:36]
.
- - - - ORPHANS REMOVED - - - -
SafeBoot-procexp90.Sys

.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
uInternet Settings,ProxyOverride = local
IE: ت&صدير إلى Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى FLV بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetVL.htm
IE: {{76577871-04EC-495E-A12B-91F7C3600AFA} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

IE: {{8A918C1D-E123-4E36-B562-5C1519E434CE} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-06-03 11:39
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
TOSCDSPD = c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe?/i?????Y?2R????P?Z?x?Z???Z???Z??
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(736)
c:\progra~1\KASPER~1\KASPER~1\adialhk.dll
c:\progra~1\KASPER~1\KASPER~1\kloehk.dll
- - - - - - - > 'lsass.exe'(644)
c:\progra~1\KASPER~1\KASPER~1\adialhk.dll
c:\progra~1\KASPER~1\KASPER~1\kloehk.dll
.
Completion time: 2009-06-03 11:40
ComboFix-quarantined-files.txt 2009-06-03 10:40
Pre-Run: 72,937,951,232 bytes free
Post-Run: 72,732,078,080 bytes free
Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4
260 --- E O F --- 2009-06-02 10:01
 
تأييد 0
اخى طيب حاول تشيل تسطيبه الكاميرا ووقف الكاسبر وتسطب

الكاميرا من جديد والكاسبر مش شغال


بالتوفيق
 
توقيع : C0DeZeR0
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى