ComboFix 09-08-03.A2 - Siemens 08/04/2009 18:35.4.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1256.966.1033.18.1014.523 [GMT 3:00]
Running from: c:\documents and settings\Siemens\My Documents\Downloads\Programs\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Outdated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\Installer\1a9504f.msp
c:\windows\Installer\25d520e.msp
c:\windows\Installer\25d5227.msp
c:\windows\Installer\25d523e.msp
c:\windows\Installer\25d5255.msp
c:\windows\Installer\2cfbf.msp
c:\windows\Installer\2cfd6.msp
c:\windows\Installer\33be8c.msi
c:\windows\Installer\5d8b92.msp
c:\windows\Installer\636d5e.msp
c:\windows\kb913800.exe
c:\windows\system32\404Fix.exe
c:\windows\system32\dumphive.exe
c:\windows\system32\IEDFix.C.exe
c:\windows\system32\IEDFix.exe
c:\windows\system32\o4Patch.exe
c:\windows\system32\Process.exe
c:\windows\system32\SrchSTS.exe
c:\windows\system32\tmp.reg
c:\windows\system32\VACFix.exe
c:\windows\system32\VCCLSID.exe
c:\windows\system32\WS2Fix.exe
D:\AUTORUN.INF
.
((((((((((((((((((((((((( Files Created from 2009-07-04 to 2009-08-04 )))))))))))))))))))))))))))))))
.
2009-08-03 08:12 . 2009-08-03 08:12 -------- d-----w- c:\program files\Trend Micro
2009-08-03 08:05 . 2009-08-03 08:05 -------- d-----w- c:\documents and settings\Siemens\Local Settings\Application Data\Runscanner.net
2009-08-01 12:57 . 2009-08-04 15:35 -------- d-----w- c:\windows\system32\CatRoot2
2009-08-01 10:55 . 2009-08-01 10:55 77676 ---ha-w- c:\windows\system32\mlfcache.dat
2009-08-01 09:35 . 2009-08-01 09:35 -------- d-sh--w- c:\documents and settings\Siemens\IECompatCache
2009-08-01 09:34 . 2009-08-01 09:34 -------- d-sh--w- c:\documents and settings\Siemens\PrivacIE
2009-08-01 09:33 . 2009-08-01 09:33 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2009-08-01 09:32 . 2009-08-01 09:32 -------- d-sh--w- c:\documents and settings\Siemens\IETldCache
2009-08-01 08:51 . 2009-08-01 09:07 -------- dc-h--w- c:\windows\ie8
2009-07-24 00:20 . 2008-02-15 09:49 159744 ----a-w- c:\windows\system32\igfxres.dll
2009-07-23 23:55 . 2009-07-23 23:55 -------- d-----w- c:\program files\Marvell
2009-07-23 23:46 . 2008-02-15 10:21 147456 ----a-w- c:\windows\system32\igfxCoIn_v4926.dll
2009-07-14 19:47 . 2009-06-16 14:36 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2009-07-14 19:47 . 2009-06-16 14:36 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2009-07-10 11:13 . 2009-08-03 11:03 -------- d-----w- c:\documents and settings\Siemens\Application Data\QuickScan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-04 15:44 . 2008-01-30 17:23 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-08-04 15:44 . 2008-02-01 15:58 -------- d-----w- c:\documents and settings\Siemens\Application Data\DMCache
2009-08-04 15:41 . 2008-09-21 09:45 753696 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-08-04 15:41 . 2008-09-21 09:45 4704 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-08-04 15:41 . 2008-09-21 09:45 2763296 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-08-04 15:41 . 2008-09-21 09:45 23716 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-08-01 08:59 . 2008-05-05 10:59 -------- d-----w- c:\program files\Power Mp3 Cutter(Mp3 Sound Cutter)
2009-07-27 15:35 . 2008-09-21 09:46 94643 ----a-w- c:\windows\system32\drivers\klick.dat
2009-07-27 15:35 . 2008-09-21 09:46 105395 ----a-w- c:\windows\system32\drivers\klin.dat
2009-07-27 15:35 . 2009-03-12 18:08 208616 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.454\avp.exe
2009-07-24 00:38 . 2008-03-09 17:10 -------- d-----w- c:\program files\HP
2009-07-23 23:24 . 2008-11-03 10:31 -------- d-----w- c:\documents and settings\All Users\Application Data\ma-config.com
2009-07-23 23:24 . 2008-11-03 10:27 -------- d-----w- c:\program files\ma-config.com
2009-07-20 16:49 . 2008-10-21 17:51 -------- d-----w- c:\documents and settings\Siemens\Application Data\cleaner
2009-07-14 20:17 . 2008-05-03 09:14 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-07-14 14:15 . 2008-08-20 19:32 100968 ----a-w- c:\windows\system32\GDIPFONTCACHEV1.DAT
2009-07-12 17:29 . 2008-05-11 12:31 -------- d-----w- c:\program files\Messenger Plus! Live
2009-06-16 14:36 . 2006-01-17 07:39 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-16 14:36 . 2006-01-17 07:39 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-15 08:10 . 2009-06-15 08:10 282624 ----a-w- c:\windows\system32\yk51x86.dll
2009-06-15 08:10 . 2008-01-30 16:46 297728 ----a-w- c:\windows\system32\drivers\yk51x86.sys
2009-06-13 22:44 . 2009-06-13 22:44 4096 ----a-w- c:\windows\d3dx.dat
2009-06-13 20:17 . 2009-06-13 20:17 390664 ----a-w- c:\documents and settings\Siemens\Application Data\Real\RealPlayer\Update\realplayer11gold.exe
2009-06-03 19:09 . 2006-01-17 07:39 1291264 ----a-w- c:\windows\system32\quartz.dll
2009-05-07 15:32 . 2005-10-23 22:17 345600 ----a-w- c:\windows\system32\localspl.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2008-11-25 935856]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-04-21 761946]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-07-27 208616]
"LaunchAp"="c:\program files\Launch Manager\LaunchAp.exe" [2005-07-25 32768]
"HotkeyApp"="c:\program files\Launch Manager\HotkeyApp.exe" [2006-09-04 65536]
"Wbutton"="c:\program files\Launch Manager\Wbutton.exe" [2006-09-13 86016]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-04-20 198160]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-09-12 182808]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"IntelZeroConfig"="c:\program files\Intel\WiFi\bin\ZCfgSvc.exe" [2008-10-02 1368064]
"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2008-10-02 1191936]
"CtrlVol"="c:\program files\Launch Manager\CtrlVol.exe" [BU]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-15 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-15 159744]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-15 131072]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2006-08-01 16049664]
"SkyTel"="SkyTel.EXE" - c:\windows\SkyTel.exe [2006-05-16 2879488]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2006-4-7 1773568]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"PcSync"=c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe"
"ctfmon.exe"=c:\windows\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"WatcherHelper"="c:\program files\Sierra Wireless Inc\3G Watcher\WaHelper.exe"
"UnlockerAssistant"=c:\program files\Unlocker\UnlockerAssistant.exe -H
"MsgCenterExe"="c:\program files\Common Files\Real\Update_OB\RealOneMessageCenter.exe" -osboot
"Picasa Media Detector"=c:\program files\Picasa2\PicasaMediaDetector.exe
"NSLauncher"=c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
"SMSERIAL"=sm56hlpr.exe
"BluetoothAuthenticationAgent"=rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
"LaunchAp"="c:\program files\Launch Manager\LaunchAp.exe"
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"igfxtray"=c:\windows\system32\igfxtray.exe
"Acrobat Assistant 7.0"="c:\program files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
"NeroFilterCheck"=c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" -atboottime
"AzMixerSel"=c:\program files\Realtek\InstallShield\AzMixerSel.exe
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" -osboot
"igfxpers"=c:\windows\system32\igfxpers.exe
"igfxhkcmd"=c:\windows\system32\hkcmd.exe
"HotkeyApp"="c:\program files\Launch Manager\HotkeyApp.exe"
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe"
"RTHDCPL"=RTHDCPL.EXE
"Alcmtr"=ALCMTR.EXE
"Wbutton"="c:\program files\Launch Manager\Wbutton.exe"
"IAAnotif"=c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe
"<NO NAME>"=
"AppleSyncNotifier"=c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Sierra Wireless Inc\\3G Watcher\\SwiApiMux.exe"=
"c:\\Program Files\\Mobily Connect Card\\Mobily Connect Card.exe"=
"c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\CrossLoop\\CrossLoopConnect.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"443:TCP"= 443:TCP
oVoo TCP المنفذ 443
"443:UDP"= 443:UDP
oVoo UDP المنفذ 443
"37674:TCP"= 37674:TCP
oVoo TCP المنفذ 37674
"37674:UDP"= 37674:UDP
oVoo UDP المنفذ 37674
"37675:UDP"= 37675:UDP
oVoo UDP المنفذ 37675
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [29/01/2008 06:29 م 33808]
R2 LF30FS;LF30FS;c:\program files\Everstrike Software\Lock Folder XP 3.5\LF30XP.sys [19/11/2004 05:07 م 101488]
R2 NCWatch;Network Connection Watcher;c:\program files\Fujitsu Siemens Computers\NCWatch\NCWatch.exe [07/04/2006 01:02 م 204800]
R3 EKBfltr;ENE Keyboard Controller;c:\windows\system32\drivers\EKBfltr.sys [14/01/2005 05:22 م 5504]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [13/03/2008 07:02 م 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [30/04/2008 06:06 م 24592]
R3 swivsp;AC8xx Virtual Serial Port;c:\windows\system32\drivers\swivspnt.sys [20/03/2006 09:07 ص 20736]
R3 SWUMX00;Sierra Wireless USB MUX Driver (UMTS00);c:\windows\system32\drivers\swumx00.sys [30/01/2008 07:46 م 61312]
S1 mailKmd;mailKmd; [x]
S3 br3gmdm;BandLuxe 3.5G HSDPA Adapter - USB;c:\windows\system32\DRIVERS\br3gmdm.sys --> c:\windows\system32\DRIVERS\br3gmdm.sys [?]
S3 BTIAUSB;Generic Bluetooth Device;c:\windows\system32\drivers\btiausb.sys [30/07/2008 09:04 ص 23808]
S3 BTPROT;Generic Bluetooth Filter;c:\windows\system32\drivers\btprot.sys [02/08/2008 10:22 ص 453120]
S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [29/05/2009 05:13 م 234864]
S3 RTLWUSB;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [18/04/2009 09:46 م 332928]
S3 SWNC8U00;Sierra Wireless MUX NDIS Driver (UMTS00);c:\windows\system32\drivers\SWNC8U00.sys [30/01/2008 07:46 م 81408]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder
2008-10-08 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 14:57]
2009-08-04 c:\windows\Tasks\User_Feed_Synchronization-{94C419D4-8262-43D0-ACBA-2AC394486127}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 01:31]
2009-08-03 c:\windows\Tasks\WebReg Deskjet D1300 series.job
- c:\program files\HP\Digital Imaging\bin\hpqwrg.exe [2006-02-19 13:45]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
IE: Add to Banner Ad Blocker - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى FLV بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetVL.htm
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\Siemens\Start Menu\Programs\IMVU\Run IMVU.lnk
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
Rootkit scan 2009-08-04 18:44
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
CtrlVol = c:\program files\Launch Manager\CtrlVol.exe?????\??? ??|h??|????a??|Nj?w?j?w????????4???
???????????????d??????|????????p?????@?????????h{?w???????????????sx??s@??????????????|h??st??????????s?????????????????C?sc"?sx??s??????B~??@?N'?s?=???
??=?????????
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):a5,71,ff,a5,01,d8,8f,98,9c,70,c1,8d,d1,38,11,bc,58,1b,99,e3,90,
8a,cb,bd,fd,3a,d9,c1,ae,fa,d1,c0,b0,19,52,26,66,5b,04,ff,00,00,00,00,00,00,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{9c4b8952-b8c9-4ed8-b9db-c26c30eaf680}]
@Denied: (Full) (Everyone)
"Model"=dword:0000009a
"Therad"=dword:0000001e
"MData"=hex(0):cb,9b,ad,ef,27,7d,29,69,f5,02,f0,76,aa,4a,f1,7c,d3,d9,67,7f,6a,
4b,7b,ad,04,7a,b1,b5,76,9b,27,47,5a,5d,26,66,f8,0d,95,72,97,fb,88,c0,fc,19,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(1736)
c:\windows\system32\netprovcredman.dll
- - - - - - - > 'explorer.exe'(3168)
c:\program files\Windows Media Player\wmpband.dll
c:\windows\system32\ieframe.dll
c:\program files\Internet Download Manager\idmmkb.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\hnetcfg.dll
c:\windows\system32\OneX.DLL
c:\windows\system32\eappprxy.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Intel\WiFi\bin\S24EvMon.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\HPZipm12.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
c:\program files\Internet Download Manager\IEMonitor.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe
.
**************************************************************************
.
Completion time: 2009-08-04 18:48 - machine was rebooted
ComboFix-quarantined-files.txt 2009-08-04 15:48
ComboFix2.txt 2008-10-21 15:54
Pre-Run: 18,545,725,440 bytes free
Post-Run: 18,582,548,480 bytes free
279 --- E O F --- 2009-08-02 00:01
وهاذي مواصفات الجهاز
