[ تم حل المشكلة ] مشاكل في الماسنجر والجهاز بشكل عام . . !

عوكل · 20 يونيو 2009

السلام عليكم ..

هذا رابط الموضوع الاصلي ..

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

وبصراحة استغرب من اعتز بك انه يقفله .. مااختلف ابدا مع قانون او نظام يحتم علي اني اكتب المشكلة في العنوان .. لكن اذا كان الموضوع ماشي وله اكثر من اسبوع والشباب - الله لايهينهم - تفاعلوا مشكورين مع المشكلة .. امور تصّعب علي اني افهم سبب الاغلاق ..

فيه واحد يقول وبصراحة مدري من هو ..
بس يقول ان النظام قبل لا يوضع وضعت بنود لتجاوزه ..

ليس بالامر الكبير .. والتقرير مرة ثانية في الرد اللي بعد هالرد . .

( قلوووووووووب ) من هنا لين هناك :king:

عوكل · 20 يونيو 2009

Logfile of HijackThis v1.99.1
Scan saved at 9:29:08 PM, on 6/20/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\dhcp\svchost.exe
C:\WINDOWS\system32\drivers\services.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Hotspot Shield\bin\openvpnas.exe
C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\drivers\services.exe
C:\Documents and Settings\user\svchost.exe
C:\WINDOWS\System32\reader_s.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\drivers\services.exe
C:\Documents and Settings\user\svchost.exe
C:\Documents and Settings\user\reader_s.exe
C:\program Files\MicPhone\antit.exe
C:\Documents and Settings\user\Start Menu\Programs\Startup\userinit.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Ela-Salaty\Salaty.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\BitTorrent\bittorrent.exe
C:\Program Files\Hotspot Shield\bin\openvpntray.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\sopidkc.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\user\Desktop\HijackThis.exe
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDO WS\system32\drivers\services.exe
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [[system]] C:\WINDOWS\system32\drivers\services.exe
O4 - HKLM\..\Run: [winlogon] C:\Documents and Settings\user\svchost.exe
O4 - HKLM\..\Run: [reader_s] C:\WINDOWS\System32\reader_s.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [[system]] C:\WINDOWS\system32\drivers\services.exe
O4 - HKCU\..\Run: [winlogon] C:\Documents and Settings\user\svchost.exe
O4 - HKCU\..\Run: [reader_s] C:\Documents and Settings\user\reader_s.exe
O4 - HKCU\..\Run: [shv] C:\program Files\MicPhone\antit.exe
O4 - Startup: fmnupd32.exe
O4 - Startup: GigaTribe.lnk = C:\Program Files\GigaTribe\gigatribe.exe
O4 - Startup: userinit.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .amr: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O12 - Plugin for .mpg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: c:\progra~1\MicPhone\antit.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: psfus - C:\WINDOWS\SYSTEM32\psqlpwd.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (antivirscheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (antivirservice) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Background Intelligent Transfer Service (BITS) - Unknown owner - %fystemRoot%\system32\svchost.exe (file missing)
O23 - Service: Dhcp server (dhcpsrv) - Unknown owner - C:\WINDOWS\dhcp\svchost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Hotspot Shield Helper Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: sopidkc Service (sopidkc) - Elecard Lt - C:\WINDOWS\system32\sopidkc.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: Tmesrv3 (Tmesrv) - Unknown owner - C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe" /Service (file missing)
O23 - Service: TuneUp Drive Defrag Service (tuneup.defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
O23 - Service: Automatic Updates (wuauserv) - Unknown owner - %fystemroot%\system32\svchost.exe (file missing)

عوكل · 20 يونيو 2009

وزي ماقلت في الموضوع الاول ..

ياليت اذا فيه اشياء احذفها شرح مبسط لطريقة الحذف .. لاني ماعرفت بصراحة احذفها ..

MAAX · 20 يونيو 2009

بس يقول ان النظام قبل لا يوضع وضعت بنود لتجاوزه

عزيزي النظام موجود لاتباعه
وليس لتجاوزه ،، على الاقل بمنتديات زيزوووم
تصرف اخونا اعتز بك سليم وطبق النظام

نعود لمشكلتك

عطل برامج الحماية عن العمل
ثم
حمل الاداة التالية واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
لا تقم بتشغيل اي برنامج ،، ومهما طالت عملية الفحص انتظر حتى تنتهي
انتظر حتى يظهر لك تقرير ،،انسخه والصقه بمشاركتك القادمة

عوكل · 21 يونيو 2009

لاهنت ماكس .. التقرير :

ComboFix 09-06-20.02 - user 06/21/2009 3:04.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.966.1033.18.1270.861 [GMT 3:00]
Running from: c:\documents and settings\user\Desktop\ComboFix.exe
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7}
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\MicPhone
c:\windows\dhcp
c:\windows\system32\drivers\39fc7de8.sys
c:\windows\TEMP\mta81877.dll
c:\documents and settings\Administrator\Start Menu\Programs\Startup\userinit.exe
c:\documents and settings\Administrator\svchost.exe
c:\documents and settings\user\Application Data\wiaserva.log
c:\documents and settings\user\Application Data\wiaservg.log
c:\documents and settings\user\Start Menu\Programs\Startup\fmnupd32.exe
c:\documents and settings\user\Start Menu\Programs\Startup\zqosys32.exe
c:\program files\MicPhone\antit.dll
c:\program files\MicPhone\antit.exe
c:\windows\dhcp\svchost.exe
c:\windows\Install.txt
c:\windows\irc.txt
c:\windows\KBPK090606.log
c:\windows\KBPK090607.log
c:\windows\KBPK090609.log
c:\windows\KBPK090620.log
c:\windows\system32\6to4v32.dll
c:\windows\system32\certstore.dat
c:\windows\system32\comsa32.sys
c:\windows\system32\dncyool32.sys
c:\windows\system32\FInstall.sys
c:\windows\system32\msncache.dll
c:\windows\system32\sndintd.sys
c:\windows\system32\sopidkc.exe
c:\windows\system32\tpsaxyd.exe
c:\windows\system32\tpszxyd.sys
c:\windows\system32\wtukd32.exe
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_6to4
-------\Legacy_dhcpsrv
-------\Legacy_msncache
-------\Legacy_sndintd
-------\Legacy_sopidkc
-------\Service_39fc7de8
-------\Service_6to4
-------\Service_dhcpsrv
-------\Service_msncache
-------\Service_sndintd
-------\Service_sopidkc

((((((((((((((((((((((((( Files Created from 2009-05-21 to 2009-06-21 )))))))))))))))))))))))))))))))
.
2009-06-20 18:46 . 2009-06-20 18:46 437760 ----a-w- c:\documents and settings\user\system.exe
2009-06-19 12:11 . 2004-08-03 21:56 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2009-06-19 12:11 . 2004-08-03 21:56 21504 ----a-w- c:\windows\system32\hidserv.dll
2009-06-19 12:11 . 2004-08-03 20:07 59264 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2009-06-19 12:11 . 2004-08-03 20:07 59264 ----a-w- c:\windows\system32\drivers\USBAUDIO.sys
2009-06-19 12:11 . 2004-08-03 20:08 31616 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2009-06-19 12:11 . 2004-08-03 20:08 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2009-06-16 09:34 . 2009-06-16 09:34 -------- d-----w- c:\program files\AxBx
2009-06-16 05:40 . 2008-02-27 10:15 28416 ----a-w- c:\windows\system32\uxtuneup.dll
2009-06-16 05:40 . 2009-06-16 05:40 307968 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-06-16 05:40 . 2009-06-16 05:40 -------- d-----w- c:\documents and settings\user\Application Data\TuneUp Software
2009-06-16 05:39 . 2009-06-16 05:39 -------- d-----w- c:\documents and settings\All Users\Application Data\TuneUp Software
2009-06-16 05:39 . 2009-06-16 05:40 -------- d-----w- c:\program files\TuneUp Utilities 2008
2009-06-07 03:26 . 2008-01-21 15:12 41792 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2009-06-07 03:26 . 2008-01-21 15:11 22336 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2009-06-07 03:26 . 2008-03-04 10:28 79424 ----a-w- c:\windows\system32\drivers\avipbb.sys
2009-06-07 03:26 . 2009-06-07 03:26 -------- d-----w- c:\program files\Avira
2009-06-05 23:08 . 2009-06-06 02:27 -------- d-----w- c:\program files\Risk 2
2009-06-05 23:01 . 2009-06-08 03:23 -------- d-----w- c:\program files\Risk
2009-06-05 22:35 . 2009-06-05 22:35 20480 ----a-w- C:\yseoeenc.exe
2009-06-05 11:00 . 2009-06-05 11:00 -------- d-----w- c:\documents and settings\user\Application Data\iWin
2009-06-05 10:00 . 2009-06-05 10:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Trymedia
2009-06-05 09:55 . 2009-06-05 09:55 -------- d-----w- c:\program files\ReflexiveArcade
2009-06-05 01:17 . 2009-06-05 01:17 -------- d-----w- C:\Hotspot Shield
2009-06-02 11:07 . 2009-06-02 11:07 390664 ----a-w- c:\documents and settings\user\Application Data\Real\RealPlayer\Update\RealPlayer11.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-20 18:40 . 2009-02-09 17:50 -------- d-----w- c:\program files\QuickTime
2009-06-20 18:39 . 2009-02-10 23:38 -------- d-----w- c:\documents and settings\user\Application Data\BitTorrent
2009-06-07 16:42 . 2008-05-07 08:40 -------- d-----w- c:\documents and settings\user\Application Data\GigaTribe
2009-06-07 03:38 . 2009-02-09 17:40 -------- d-----w- c:\program files\Circle Developement
2009-06-07 03:26 . 2009-02-17 11:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2009-06-05 01:17 . 2009-02-11 10:33 -------- d-----w- c:\program files\Hotspot Shield
2009-06-01 18:13 . 2009-02-11 11:08 33840 ----a-w- c:\windows\system32\drivers\hssdrv.sys
2009-05-17 18:50 . 2009-05-17 18:32 -------- d-----w- c:\documents and settings\All Users\Application Data\Bluetooth
2009-04-17 13:14 . 2009-04-17 13:14 15240 ----a-w- c:\documents and settings\user\Application Data\Microsoft\IdentityCRL\PROD\ppcrlconfig.dll
1990-01-01 01:01 . 1990-01-01 01:01 53248 --sh--r- c:\windows\system32\wbem\HB32.dll
.
------- Sigcheck -------
[-] 2008-02-27 12:59 1580544 9F960FAC5166F8626B9CDE4DD9A0EB84 c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
2009-02-11 11:08 204248 ----a-w- c:\program files\Hotspot Shield\HssIE\HssIE.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-09 5728112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-02-09 185896]
"avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-12 262401]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]
c:\documents and settings\user\Start Menu\Programs\Startup\
GigaTribe.lnk - c:\program files\GigaTribe\gigatribe.exe [2008-5-7 1071104]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{EDCB0AE8-833C-C1D2-29E1-2A8A1A35D25A}"= "c:\windows\system32\wbem\HB32.dll" [1990-01-01 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2005-12-21 18:42 40448 ----a-w- c:\windows\system32\psqlpwd.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli psqlpwd
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^user^Start Menu^Programs^Startup^Ela-Salaty.lnk]
path=c:\documents and settings\user\Start Menu\Programs\Startup\Ela-Salaty.lnk
backup=c:\windows\pss\Ela-Salaty.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"c:\\Program Files\\BitTorrent_DNA\\dna.exe"=
"c:\\Program Files\\BitTorrent\\bittorrent.exe"=
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [7/31/2008 8:45 PM 20616]
R1 TMEI3E;TMEI3E;c:\windows\system32\drivers\TMEI3E.sys [2/9/2009 9:37 PM 5888]
R2 FdRedir;FdRedir;c:\program files\Common Files\Protector Suite QL\Drivers\FdRedir.sys [12/21/2005 9:55 PM 13568]
R2 FileDisk2;FileDisk Protector Kernel Driver;c:\program files\Common Files\Protector Suite QL\Drivers\filedisk.sys [12/21/2005 9:55 PM 33024]
R2 HssSrv;Hotspot Shield Helper Service;c:\program files\Hotspot Shield\HssWPR\hsssrv.exe [6/1/2009 9:13 PM 331312]
R2 smihlp;SMI helper driver;c:\program files\Protector Suite QL\smihlp.sys [12/21/2005 9:25 PM 3456]
R2 Tmesrv;Tmesrv3;c:\program files\TOSHIBA\TME3\TMESRV31.exe [2/9/2009 9:37 PM 126976]
R3 HssDrv;Hotspot Shield Helper Miniport;c:\windows\system32\drivers\hssdrv.sys [2/11/2009 2:08 PM 33840]
R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [6/10/2005 1:26 PM 35968]
S3 HssTrayService;Hotspot Shield Tray Service;c:\program files\Hotspot Shield\bin\HssTrayService.exe [6/1/2009 9:58 PM 34352]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [7/2/2008 2:58 PM 26248]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder
2009-06-21 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-02-29 11:24]
2009-06-06 c:\windows\Tasks\ADE5E8D7918A9C17.job
- c:\docume~1\user\applic~1\bonede~1\THATBOOBMFCD.exe [2009-02-09 17:42]
2009-06-01 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 11:57]
.
- - - - ORPHANS REMOVED - - - -
HKCU-Run-shv - c:\program files\MicPhone\antit.exe

.
------- Supplementary Scan -------
.
uStart Page = about:blank
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
DPF: Microsoft XML Parser for Java -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-06-21 03:08
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD\000.fcl"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(1648)
c:\windows\system32\psqlpwd.dll
c:\program files\Protector Suite QL\infra.dll
c:\program files\Protector Suite QL\homefus2.dll
c:\windows\system32\biologon.dll
c:\program files\Protector Suite QL\homepass.dll
c:\program files\Protector Suite QL\bio.dll
c:\program files\Protector Suite QL\remote.dll
- - - - - - - > 'lsass.exe'(1704)
c:\windows\system32\psqlpwd.dll
c:\program files\Protector Suite QL\infra.dll
c:\program files\Protector Suite QL\homefus2.dll
- - - - - - - > 'explorer.exe'(180)
c:\windows\system32\wbem\HB32.dll
c:\program files\TOSHIBA\TME3\TMEEJMD.DLL
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\program files\Intel\Wireless\Bin\WLKEEPER.exe
c:\program files\Avira\AntiVir PersonalEdition Classic\sched.exe
c:\program files\Avira\AntiVir PersonalEdition Classic\avguard.exe
c:\program files\Hotspot Shield\bin\openvpnas.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
c:\program files\TOSHIBA\TME3\TMEEJME.exe
c:\program files\Hotspot Shield\bin\openvpntray.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2009-06-21 3:10 - machine was rebooted
ComboFix-quarantined-files.txt 2009-06-21 00:10
Pre-Run: 4,370,427,904 bytes free
Post-Run: 4,764,364,800 bytes free
222

أعتز بك · 21 يونيو 2009

آآسف يا الغلا

ولكن هذا النظام وتفضل هنا لتعرفه

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ومن عيوني بتاابع موضوعك من شان ما تزعل علينا

أعتز بك · 21 يونيو 2009

عطني تقرير هايجاك جديد لا هنت

عوكل · 21 يونيو 2009

آآسف يا الغلا

ابدا اعتز بك انا الاسف وانا اخوك ماكان له اي داعي الكلام اللي كتبته ,, بس الشيطان حريص

وانت ماسويت الا واجبك . . !

تقرير الهايجاك في الرد اللي بعده

عوكل · 21 يونيو 2009

Logfile of HijackThis v1.99.1
Scan saved at 11:52:26 AM, on 6/21/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Hotspot Shield\bin\openvpnas.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\GigaTribe\gigatribe.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Hotspot Shield\bin\openvpntray.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\user\Desktop\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Startup: GigaTribe.lnk = C:\Program Files\GigaTribe\gigatribe.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .amr: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O12 - Plugin for .mpg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: psfus - C:\WINDOWS\SYSTEM32\psqlpwd.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (antivirscheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (antivirservice) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Background Intelligent Transfer Service (BITS) - Unknown owner - %fystemRoot%\system32\svchost.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Hotspot Shield Helper Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: Tmesrv3 (Tmesrv) - Unknown owner - C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe" /Service (file missing)
O23 - Service: TuneUp Drive Defrag Service (tuneup.defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
O23 - Service: Automatic Updates (wuauserv) - Unknown owner - %fystemroot%\system32\svchost.exe (file missing)

أعتز بك · 21 يونيو 2009

طيب يا غالي

أعمل كما في الشرح

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

أعتز بك · 21 يونيو 2009

وأعمل التالي من شان الماسنجر

حمل هذا الملف

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

وقوم بالفحص

وتابع هذه المواضيع

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

وبعد التطبيق بلغنا بالنتائج

بالتوفيق ..

MAAX · 21 يونيو 2009

واضف الى ما تفضل به الاخ اعتز بك هذا الفحص

حمل هذا البرنامج

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ثبته على الجهاز ،، ثم شغله واعمل كما الشرح التالي لفحص الجهاز وعمل تقرير

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

وبعد انتهاء الفحص اعمل التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

انسخ ما بداخل التقرير والصقه بمشاركتك القادمة

عوكل · 23 يونيو 2009

طيب يا غالي

أعمل كما في الشرح

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

أنقر للتوسيع...

اعتز بك سويت اللي قلته والتقرير في الرد اللي بعده هو التقرير اللي طلع لي ..

ماكس حملت البرنامج واول مايخلص التقرير راح انزله

عوكل · 23 يونيو 2009

Engine Version : 5300.2777
Engine Load Time : 17797 milliseconds
AV DAT Version : 5492.0000 488805 detections Built Sunday, January 11, 2009
Extra DAT : 0 detections

Memory : Clean
Please wait ... building list of critical files to scan
Critical : Clean
Scanning the computer's cookie directories
Cookies : Clean
c:\pagefile.sys : Scan Failed
c:\Documents and Settings\LocalService\NTUSER.DAT : Scan Failed
c:\Documents and Settings\LocalService\ntuser.dat.LOG : Scan Failed
c:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\NetworkService\NTUSER.DAT : Scan Failed
c:\Documents and Settings\NetworkService\ntuser.dat.LOG : Scan Failed
c:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\user\NTUSER.DAT : Scan Failed
c:\Documents and Settings\user\ntuser.dat.LOG : Scan Failed
c:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\user\Local Settings\temp\Perflib_Perfdata_b4.dat : Scan Failed
c:\Documents and Settings\user\Local Settings\temp\Perflib_Perfdata_e38.dat : Scan Failed
File : c:\Documents and Settings\user\My Documents\My Pictures\بـــرامـــج\Hotspot Shield\patch.exe : contains "Trojan" called "Generic PWS.y" (Deleted )
c:\Documents and Settings\user\My Documents\My Pictures\بـــرامـــج\Hotspot Shield\patch.exe : Deleted
File : c:\Documents and Settings\user\My Documents\My Pictures\بـــرامـــج\تحميل\ajmlal3mr\Crack\IDMan Crack.exe : contains "Trojan" called "Generic.dx" (Deleted )
c:\Documents and Settings\user\My Documents\My Pictures\بـــرامـــج\تحميل\ajmlal3mr\Crack\IDMan Crack.exe : Deleted
File : c:\Program Files\Real_SC\opt.exe : contains "Virus" called "W32/Sdbot.worm" (Deleted )
c:\Program Files\Real_SC\opt.exe : Deleted
c:\WINDOWS\system32\CatRoot2\edb.log : Scan Failed
c:\WINDOWS\system32\CatRoot2\tmp.edb : Scan Failed
c:\WINDOWS\system32\config\default : Scan Failed
c:\WINDOWS\system32\config\default.LOG : Scan Failed
c:\WINDOWS\system32\config\SAM : Scan Failed
c:\WINDOWS\system32\config\SAM.LOG : Scan Failed
c:\WINDOWS\system32\config\SECURITY : Scan Failed
c:\WINDOWS\system32\config\SECURITY.LOG : Scan Failed
c:\WINDOWS\system32\config\software : Scan Failed
c:\WINDOWS\system32\config\software.LOG : Scan Failed
c:\WINDOWS\system32\config\system : Scan Failed
c:\WINDOWS\system32\config\system.LOG : Scan Failed
c:\WINDOWS\Temp\Perflib_Perfdata_3fc.dat : Scan Failed
Scanning the registry
Registry : Clean

Summary :-
FilesFound : 54479
FilesScanned : 34670
FilesNotScanned : 19809

ObjectsFound : 98194
ObjectsInfected : 3
ObjectsCleaned : 0
ObjectsDeleted : 3

FilesInfected : 3
FilesCleaned : 0
FilesMoved : 0
FilesDeleted : 3

Started at : 2:55:03 AM Tuesday, June 23, 2009
Ended at : 3:18:43 AM Tuesday, June 23, 2009
Duration : 23 minutes 40 seconds
3751 MB scanned in 1420 seconds = 2 MB/s
Engine Version : 5300.2777
Engine Load Time : 19672 milliseconds
AV DAT Version : 5492.0000 488805 detections Built Sunday, January 11, 2009
Extra DAT : 0 detections

Summary :-
FilesFound : 4778
FilesScanned : 4145
FilesNotScanned : 633

ObjectsFound : 5282
ObjectsInfected : 0
ObjectsCleaned : 0
ObjectsDeleted : 0

FilesInfected : 0
FilesCleaned : 0
FilesMoved : 0
FilesDeleted : 0

Started at : 3:19:04 AM Tuesday, June 23, 2009
Ended at : 3:19:46 AM Tuesday, June 23, 2009
Duration : 41 seconds
176 MB scanned in 41 seconds = 4 MB/s

أعتز بك · 23 يونيو 2009

بعد التطبيق عطنا النتائج لا هنت

موفق بأذن الله ..

عوكل · 23 يونيو 2009

ماكس هذا التقرير اللي طلبته في الرد اللي بعده

عوكل · 23 يونيو 2009

Malwarebytes' Anti-Malware 1.38
Database version: 2323
Windows 5.1.2600 Service Pack 2
6/23/2009 4:30:19 AM
mbam-log-2009-06-23 (04-30-19).txt
Scan type: Full Scan (C:\|D:\|E:\|)
Objects scanned: 144283
Time elapsed: 22 minute(s), 19 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 1
Files Infected: 23
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
c:\documents and settings\All Users\Application Data\live 64 math does (Trojan.Agent) -> Quarantined and deleted successfully.
Files Infected:
c:\yseoeenc.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\documents and settings\administrator\svchost.exe.vir (Spyware.Agent) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\documents and settings\administrator\start menu\Programs\Startup\userinit.exe.vir (Spyware.Agent) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\documents and settings\user\start menu\Programs\Startup\fmnupd32.exe.vir (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\documents and settings\user\start menu\Programs\Startup\zqosys32.exe.vir (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\program files\MicPhone\antit.dll.vir (Spyware.Passwords) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\program files\MicPhone\antit.exe.vir (Spyware.Passwords) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\dhcp\svchost.exe.vir (Trojan.Backdoor) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\6to4v32.dll.vir (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\dncyool32.sys.vir (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\msncache.dll.vir (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\sndintd.sys.vir (Rootkit.Agent) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\sopidkc.exe.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\tpsaxyd.exe.vir (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\tpszxyd.sys.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\wtukd32.exe.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\drivers\39fc7de8.sys.vir (Rootkit.Rustock) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\t1p0_557159470806.b1k (Trojan.VB) -> Quarantined and deleted successfully.
c:\documents and settings\user\Desktop\مجلد جديد\reader_s.exe.back (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\documents and settings\user\Desktop\مجلد جديد\services.exe.back (Spyware.Agent) -> Quarantined and deleted successfully.
c:\documents and settings\user\Desktop\مجلد جديد\svchost.exe.back (Spyware.Agent) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\live 64 math does\AMOK ABOUT.dat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wiawow32.sys (Backdoor.Bot) -> Quarantined and deleted successfully.

عوكل · 23 يونيو 2009

بعد التطبيق عطنا النتائج لا هنت

موفق بأذن الله ..

أنقر للتوسيع...

يعطيكم العافية والله ماقصرتوا والله يجزيكم كل خير

روابط الماسنجر راحت والجهاز خفت حركته اكثر من اول بس مازلت احس ان فيه شي من البطء في فتح المجلدات وصفحات الانترنت ..

حبيت اسال من خلال التقارير اللي نزلتها .. جهازي فيه فيروسات الحين ؟
يعني هل يكفي اللي سويناه ومايحتاج الجهاز لفرمتة .. ؟
وشي اخير :$ انا معي هاردسك خارجي ابي اشبكه على الجهاز عليه ضرر من انتقال الفيروسات له ؟

وآآآسف جداً لاني تعبتكم معي

أعتز بك · 23 يونيو 2009

عوكل قال:
يعطيكم العافية والله ماقصرتوا والله يجزيكم كل خير

روابط الماسنجر راحت والجهاز خفت حركته اكثر من اول بس مازلت احس ان فيه شي من البطء في فتح المجلدات وصفحات الانترنت ..

حبيت اسال من خلال التقارير اللي نزلتها .. جهازي فيه فيروسات الحين ؟
يعني هل يكفي اللي سويناه ومايحتاج الجهاز لفرمتة .. ؟
وشي اخير :$ انا معي هاردسك خارجي ابي اشبكه على الجهاز عليه ضرر من انتقال الفيروسات له ؟

وآآآسف جداً لاني تعبتكم معي

الله يعاافيك يا غاالي

من شان ثقل في فتح المجلدات تابع هذا الشرح

ويا ليت تقرير هايجاك جديد من شان التشيك

عوكل · 23 يونيو 2009

وهذا تقرير الهايجاك في الرد اللي بعده

زيزوومي جديد

زيزوومي جديد

زيزوومي جديد

عضوشرف

زيزوومي جديد

زيزوومى محترف

توقيع : أعتز بك

زيزوومى محترف

توقيع : أعتز بك

زيزوومي جديد

زيزوومي جديد

زيزوومى محترف

توقيع : أعتز بك

زيزوومى محترف

توقيع : أعتز بك

عضوشرف

زيزوومي جديد

زيزوومي جديد

زيزوومى محترف

توقيع : أعتز بك

زيزوومي جديد

زيزوومي جديد

زيزوومي جديد

زيزوومى محترف

توقيع : أعتز بك

زيزوومي جديد