مشكلة بالصور والميديا

المصدر: مشكلة بالصور والميديا
في منتدى : منتدى مشاكـل وحلول الحـاسب

صبآح الخير
مشاكل جهازي حدث ولا حرج
من يوم ماحذف الفايروس لنظام الى يوم فرمته

عندي مشكلتين
وحده نظامي اول وندوز اكس بي والحين فيستا
بالوندوز في بعض المنتديات ماعندهم الصندوق الاحترافي
ماعندهم الا لشائع بس لما ابي انقل صور للمنتدى اسوي الطريقه العاديه
كلك يمين خصائص وانسخ لرابط واحطه بمكان الصوره بس تطلع عليها اكس
يعني الصور مو ظاهره مع انا بجهازي الثاني الاكس بي عادي تطلع بنفس الطريقه
مدري وين المشكله

المشكله الثانيه..!
الميديا بلير مايشغل لي الوسائط رفع ضغط مدري وش جاه
بعض الملفات احملها وتتحمل على نفس الصيغه ميديا بلير بس مايشتغل معي
مو فديوا ام بي 3 لا <مدري اذا فهمتوا علي

الظاهر الصيغه هذي wmv
بالاكس بي كان يشتغل كل شي :er:

 

حملي هذا البرنامج

http://media.download.hr/codecs/K-LiteCodecPack510Full.exe

وهو بيشغل لك كل المقاطع او يكمل الاكواد الناقصه


بالتوفيق

 

بسئل اخوي هذا برنامج مستقل
ولا تابع للميديآ..؟!

يعني لو بحمله يشغلي نفس البرنامج ميديا او يشغل
برنامج ثاني..!

 

طيب مشكله الصور..!!

=(

 

:u:

 

ياليت القى افاه عن هالصور

 

ابد احذفي كل الكوكيز وجربي الصور تطلع يا سكر والا لا
بهذه الاداه علمي على اخر مربع واضغطي على التنظيف بالانجلش
اداة ATF cleaner


​

 

آحم اعتقد مافهمت علي
عندي اداة تنظيف حملتها من هنا
وسويت مسح للكويكز
بس لما انقل صوره من منتدى لمنتدى ثاني
بس المنتدى مافيه الصندوق الاحترافي
الي نسخ ولصق على طول
لا في الصندوق الشائع
الي كلك يمين على الصوره خصائص وتاخذ الرابط
لما اسوي هالشي ماتطلع لي الصور بالفيستا بس الوندوز تطلع لي
:u:

 

:no::i:

 

=( =(

ماحد عنده حل لي!!:no:

 

فعلي خيار اظهار الصور في متصفحك وبرضه اعملي اصلاح للمتصفح لديك

 

شلون اعمل اصلاح للمتصفح؟؟!

 

خيار اظهار الصور موجود..!
:no:

 

جربي ولو ما نفعت هات تقرير هيجاك
اداة لاصلاح الاكسبلورر





شرح الاستخدام​

 

سويت اصلاح ماضبط
وتآكدت من الخيارات انا فيه اظهار الصور
وهذا التقرير



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:11:09 م, on 06/10/09
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe
C:\Program Files\MicroStar\WLANUtility\WLAN_Service.exe
C:\Program Files\MessengerDiscovery 2\MessengerDiscovery 2.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery 2\MessengerDiscovery 2.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: مساعد رابط Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Uniblue SpeedUpMyPC] C:\Program Files\Uniblue\SpeedUpMyPC\SpeedUpMyPC.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: WlanUtility.lnk = C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe
O4 - Global Startup: سرعة تشغيل Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\r3hook.dll,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
--
End of file - 7910 bytes

 

طبق التالي بالترتيب​

عطل برامج الحماية لديك

نزل هذه الاداة



عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ،، وبذلك يكون الفحص انتهى الصق التقرير بردك[COLOR=red] [SIZE=3]الاول[/SIZE][/COLOR]

[SIZE=4]ثانيا[/SIZE]

​

[FONT=Times New Roman][COLOR=black][SIZE=3][B][FONT=Times New Roman][COLOR=black][SIZE=3][B]



[CENTER][COLOR=blue]حمل هذا البرنامج[/COLOR]

[/CENTER]
[URL="http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe"][FONT=Times New Roman][COLOR=black][SIZE=3][B][CENTER][IMG]http://www.zyzoom1.com//uploads/images/zyzoom-a6501b45a2.gif[/IMG]
[/CENTER]
[/B][/SIZE][/COLOR][/FONT][/URL][CENTER][SIZE=3][COLOR=blue][FONT=Times New Roman][FONT=Times New Roman][B][SIZE=3][FONT=Times New Roman]شغل البرنامج ==> واضغط على[/FONT][/SIZE][/B][/FONT][/FONT][/COLOR][/SIZE]
[SIZE=3][FONT=Times New Roman][COLOR=black][FONT=Times New Roman][B][SIZE=3][COLOR=black][FONT=Times New Roman][COLOR=red]Do a system scan and save log[/COLOR][/FONT][/COLOR][/SIZE][/B][/FONT][/COLOR][/FONT][/SIZE]
[SIZE=3][COLOR=darkgreen][FONT=Times New Roman][FONT=Times New Roman][B][SIZE=3][FONT=Times New Roman]لحظات .. ويظهر لك تقرير داخل المفكرة==> انسخه والصقه [COLOR=darkgreen]بردك[COLOR=red] [SIZE=3]الثاني[/SIZE][/COLOR][/COLOR][/FONT][/SIZE][/B][/FONT][/FONT][/COLOR][/SIZE][/CENTER]
[/B][/SIZE][/COLOR][/FONT][/B][/SIZE][/COLOR][/FONT]

 

تقرير الهايجك حطيته

امممم لازم احمل الاداة الاولى بعدين اسوي
هايجك ثاني ولا ..!

 

ايه افضل بالترتيب نشوف المستجدات

 

ComboFix 09-10-05.01 - LM 10/06/2009 16:29.1.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1256.966.1025.18.1013.548 [GMT 3:00]
Running from: c:\users\LM\Documents\Downloads\Programs\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
SP: Kaspersky Internet Security *disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\$recycle.bin\S-1-5-21-2152478756-3922319563-605102323-500
c:\progra~1\KASPER~1\KASPER~1.0\r3hook.dll . . . . failed to delete
.
((((((((((((((((((((((((( Files Created from 2009-09-06 to 2009-10-06 )))))))))))))))))))))))))))))))
.
2009-10-06 10:46 . 2009-10-06 10:46 -------- d-----w- c:\users\LM\Office Genuine Advantage
2009-10-05 00:01 . 2009-10-05 00:01 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2009-10-04 10:40 . 2009-10-05 09:45 -------- d-----w- c:\users\LM\AppData\Roaming\MessengerDiscovery 2
2009-10-04 10:40 . 2009-10-04 10:40 -------- d-----w- c:\program files\MessengerDiscovery 2
2009-10-03 22:48 . 2009-10-03 22:48 -------- d-----w- c:\programdata\Office Genuine Advantage
2009-10-03 10:59 . 2009-08-07 02:24 44768 ----a-w- c:\windows\system32\wups2.dll
2009-10-03 10:59 . 2009-08-07 02:24 53472 ----a-w- c:\windows\system32\wuauclt.exe
2009-10-03 10:59 . 2009-08-07 01:45 2421760 ----a-w- c:\windows\system32\wucltux.dll
2009-10-03 10:59 . 2009-08-07 02:23 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-10-03 10:58 . 2009-08-07 02:24 35552 ----a-w- c:\windows\system32\wups.dll
2009-10-03 10:58 . 2009-08-07 02:23 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-10-03 10:58 . 2009-08-07 01:44 87552 ----a-w- c:\windows\system32\wudriver.dll
2009-10-03 10:58 . 2009-08-06 16:23 171608 ----a-w- c:\windows\system32\wuwebv.dll
2009-10-03 10:58 . 2009-08-06 15:44 33792 ----a-w- c:\windows\system32\wuapp.exe
2009-10-02 23:10 . 2009-10-01 07:29 195440 ------w- c:\windows\system32\MpSigStub.exe
2009-10-02 20:36 . 2009-10-02 20:36 -------- d-----w- c:\program files\Trend Micro
2009-10-01 18:40 . 2008-03-26 03:30 87552 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2009-10-01 18:40 . 2008-03-26 03:30 55296 ----a-w- c:\windows\system32\WUDFSvc.dll
2009-10-01 18:40 . 2008-03-26 03:30 305152 ----a-w- c:\windows\system32\WUDFx.dll
2009-10-01 18:40 . 2008-03-26 03:30 181248 ----a-w- c:\windows\system32\WUDFPlatform.dll
2009-10-01 18:40 . 2008-03-26 03:30 142336 ----a-w- c:\windows\system32\WUDFHost.exe
2009-10-01 18:40 . 2008-03-26 01:13 83328 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2009-10-01 18:40 . 2008-03-26 01:13 51200 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2009-10-01 18:36 . 2008-03-21 22:41 503864 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2009-10-01 18:36 . 2008-03-21 22:41 35896 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2009-10-01 18:34 . 2009-10-06 13:39 1660 ----a-w- c:\windows\bthservsdp.dat
2009-10-01 14:59 . 2009-10-01 14:59 354560 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-10-01 14:59 . 2008-04-04 11:51 28416 ----a-w- c:\windows\system32\uxtuneup.dll
2009-10-01 14:59 . 2008-04-04 11:51 16640 ----a-w- c:\windows\system32\authuitu.dll
2009-10-01 14:57 . 2009-10-01 14:57 -------- d-----w- c:\users\LM\AppData\Roaming\TuneUp Software
2009-10-01 14:56 . 2009-10-01 14:56 -------- d-----w- c:\programdata\TuneUp Software
2009-10-01 14:56 . 2009-10-01 14:59 -------- d-----w- c:\program files\TuneUp Utilities 2008
2009-10-01 14:55 . 2009-10-01 14:55 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-10-01 13:08 . 2009-10-01 13:08 268800 ----a-w- c:\windows\system32\es.dll
2009-09-30 21:37 . 2009-09-30 21:37 -------- d-----w- c:\program files\The KMPlayer
2009-09-30 21:34 . 2009-09-30 21:34 -------- d-----w- c:\program files\Common Files\xing shared
2009-09-30 21:33 . 2009-09-30 21:33 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-09-30 21:33 . 2009-09-30 21:33 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-09-30 21:33 . 2009-09-30 21:34 -------- d-----w- c:\program files\Common Files\Real
2009-09-30 21:33 . 2009-09-30 21:34 -------- d-----w- c:\program files\Real
2009-09-30 21:27 . 2009-09-30 21:27 -------- d-----w- c:\users\LM\AppData\Local\Mozilla
2009-09-30 20:59 . 2009-10-01 18:40 -------- d-----w- c:\users\LM\AppData\Roaming\PC Suite
2009-09-30 20:59 . 2009-10-01 18:40 -------- d-----w- c:\programdata\PC Suite
2009-09-30 20:59 . 2009-10-01 18:40 -------- d-----w- c:\users\LM\AppData\Roaming\Nokia
2009-09-30 20:54 . 2009-09-30 20:54 -------- d-----w- c:\program files\Common Files\PCSuite
2009-09-30 20:53 . 2009-09-30 20:53 -------- d-----w- c:\program files\Common Files\Nokia
2009-09-30 20:53 . 2009-09-30 20:56 -------- d-----w- c:\program files\DIFX
2009-09-30 20:53 . 2008-08-26 07:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2009-09-30 20:50 . 2009-09-30 20:53 -------- dc----w- c:\windows\system32\DRVSTORE
2009-09-30 20:50 . 2009-09-30 20:50 -------- d-----w- c:\program files\PC Connectivity Solution
2009-09-30 20:41 . 2009-02-09 05:37 91136 ----a-w- c:\windows\system32\nmwcdcls.dll
2009-09-30 20:41 . 2009-09-30 20:53 -------- d-----w- c:\program files\Nokia
2009-09-30 20:34 . 2009-09-30 20:41 -------- d-----w- c:\programdata\Installations
2009-09-30 20:26 . 2009-09-30 21:36 95259 ----a-w- c:\windows\system32\drivers\klick.dat
2009-09-30 20:26 . 2009-09-30 21:36 107547 ----a-w- c:\windows\system32\drivers\klin.dat
2009-09-30 20:24 . 2009-10-06 07:53 -------- d-----w- c:\programdata\Kaspersky Lab
2009-09-30 20:24 . 2009-09-30 20:24 -------- d-----w- c:\program files\Kaspersky Lab
2009-09-30 20:24 . 2009-10-06 13:41 5607200 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-09-30 20:23 . 2009-09-30 20:23 -------- d-----w- C:\kav
2009-09-30 20:12 . 2009-09-30 20:12 -------- d-----w- c:\programdata\Messenger Plus!
2009-09-30 16:17 . 2009-09-30 20:14 -------- d-----w- c:\program files\Messenger Plus! Live
2009-09-30 15:39 . 2009-09-30 15:39 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-09-30 15:19 . 2009-09-30 15:19 49664 ----a-w- c:\windows\system32\csrsrv.dll
2009-09-30 15:19 . 2009-09-30 15:19 376320 ----a-w- c:\windows\system32\winsrv.dll
2009-09-30 15:18 . 2009-09-30 15:18 71680 ----a-w- c:\windows\system32\atl.dll
2009-09-30 15:18 . 2009-09-30 15:18 297472 ----a-w- c:\windows\system32\gdi32.dll
2009-09-30 15:18 . 2009-09-30 15:18 41984 ----a-w- c:\windows\system32\drivers\monitor.sys
2009-09-30 15:18 . 2009-09-30 15:18 1060920 ----a-w- c:\windows\system32\drivers\ntfs.sys
2009-09-30 15:18 . 2009-09-30 15:18 211456 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2009-09-30 15:18 . 2009-09-30 15:18 374456 ----a-w- c:\windows\system32\mcupdate_GenuineIntel.dll
2009-09-30 15:17 . 2009-09-30 15:17 500736 ----a-w- c:\windows\system32\msdtcprx.dll
2009-09-30 15:17 . 2009-09-30 15:17 30208 ----a-w- c:\windows\system32\xolehlp.dll
2009-09-30 15:17 . 2009-09-30 15:17 303616 ----a-w- c:\windows\system32\wmpeffects.dll
2009-09-30 15:17 . 2009-09-30 15:17 2048 ----a-w- c:\windows\system32\msxml3r.dll
2009-09-30 15:17 . 2009-09-30 15:17 1194496 ----a-w- c:\windows\system32\msxml3.dll
2009-09-30 15:17 . 2009-09-30 15:17 414208 ----a-w- c:\windows\system32\msscp.dll
2009-09-30 15:16 . 2009-09-30 15:16 356864 ----a-w- c:\windows\system32\MediaMetadataHandler.dll
2009-09-30 15:16 . 2009-09-30 15:16 45112 ----a-w- c:\windows\system32\drivers\pciidex.sys
2009-09-30 15:16 . 2009-09-30 15:16 21560 ----a-w- c:\windows\system32\drivers\atapi.sys
2009-09-30 15:16 . 2009-09-30 15:16 211000 ----a-w- c:\windows\system32\drivers\volsnap.sys
2009-09-30 15:16 . 2009-09-30 15:16 17464 ----a-w- c:\windows\system32\drivers\intelide.sys
2009-09-30 15:16 . 2009-09-30 15:16 154624 ----a-w- c:\windows\system32\drivers\nwifi.sys
2009-09-30 15:16 . 2009-09-30 15:16 109624 ----a-w- c:\windows\system32\drivers\ataport.sys
2009-09-30 15:16 . 2009-09-30 15:16 104448 ----a-w- c:\windows\system32\DWWIN.EXE
2009-09-30 15:15 . 2009-09-30 15:15 29184 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2009-09-30 15:15 . 2009-09-30 15:15 220160 ----a-w- c:\windows\system32\drivers\bthport.sys
2009-09-30 15:15 . 2009-09-30 15:15 19456 ----a-w- c:\windows\system32\drivers\bthenum.sys
2009-09-30 15:15 . 2009-09-30 15:15 181760 ----a-w- c:\windows\system32\fsquirt.exe
2009-09-30 15:15 . 2009-09-30 15:15 25600 ----a-w- c:\windows\system32\amxread.dll
2009-09-30 15:15 . 2009-09-30 15:15 14848 ----a-w- c:\windows\system32\apilogen.dll
2009-09-30 15:14 . 2009-09-30 15:14 712192 ----a-w- c:\windows\system32\WindowsCodecs.dll
2009-09-30 15:14 . 2009-09-30 15:14 425472 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2009-09-30 15:14 . 2009-09-30 15:14 347136 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2009-09-30 15:13 . 2009-09-30 15:13 441856 ----a-w- c:\windows\system32\win32spl.dll
2009-09-30 15:13 . 2009-09-30 15:13 37376 ----a-w- c:\windows\system32\printcom.dll
2009-09-30 14:42 . 2009-09-30 14:43 -------- d-----w- c:\program files\Analog Devices
2009-09-30 14:42 . 2009-09-30 14:42 -------- d-----w- c:\users\LM\AppData\Roaming\InstallShield
2009-09-30 14:09 . 2009-09-30 14:09 2048 ----a-w- c:\windows\system32\tzres.dll
2009-09-30 14:07 . 2009-09-30 14:07 61440 ----a-w- c:\windows\system32\winipsec.dll
2009-09-30 14:07 . 2009-09-30 14:07 361984 ----a-w- c:\windows\system32\IPSECSVC.DLL
2009-09-30 14:07 . 2009-09-30 14:07 28672 ----a-w- c:\windows\system32\FwRemoteSvr.dll
2009-09-30 14:07 . 2009-09-30 14:07 272896 ----a-w- c:\windows\system32\polstore.dll
2009-09-30 14:05 . 2009-09-30 14:05 241152 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2009-09-30 14:05 . 2009-09-30 14:05 95232 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2009-09-30 14:05 . 2009-09-30 14:05 160768 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2009-09-30 14:03 . 2009-09-30 14:03 428032 ----a-w- c:\windows\system32\EncDec.dll
2009-09-30 14:03 . 2009-09-30 14:03 1244672 ----a-w- c:\windows\system32\mcmde.dll
2009-09-30 14:03 . 2009-09-30 14:03 292352 ----a-w- c:\windows\system32\psisdecd.dll
2009-09-30 14:01 . 2009-09-30 14:01 87040 ----a-w- c:\windows\system32\msoert2.dll
2009-09-30 14:01 . 2009-09-30 14:01 39424 ----a-w- c:\windows\system32\ACCTRES.dll
2009-09-30 14:01 . 2009-09-30 14:01 205824 ----a-w- c:\windows\system32\msoeacct.dll
2009-09-30 13:58 . 2009-09-30 13:58 704000 ----a-w- c:\windows\system32\PhotoScreensaver.scr
2009-09-30 13:58 . 2009-09-30 13:58 356352 ----a-w- c:\windows\system32\wbem\wbemcomn.dll
2009-09-30 13:58 . 2009-09-30 13:58 24064 ----a-w- c:\windows\system32\wtsapi32.dll
2009-09-30 13:58 . 2009-09-30 13:58 258232 ----a-w- c:\windows\system32\drivers\acpi.sys
2009-09-30 13:58 . 2009-09-30 13:58 542720 ----a-w- c:\windows\system32\sysmain.dll
2009-09-30 13:57 . 2009-09-30 13:57 194560 ----a-w- c:\windows\system32\WebClnt.dll
2009-09-30 13:57 . 2009-09-30 13:57 110080 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2009-09-30 13:56 . 2009-09-30 13:56 123904 ----a-w- c:\windows\system32\L2SecHC.dll
2009-09-30 13:56 . 2009-09-30 13:56 67584 ----a-w- c:\windows\system32\wlanhlp.dll
2009-09-30 13:56 . 2009-09-30 13:56 47104 ----a-w- c:\windows\system32\wlanapi.dll
2009-09-30 13:56 . 2009-09-30 13:56 502272 ----a-w- c:\windows\system32\wlansvc.dll
2009-09-30 13:56 . 2009-09-30 13:56 297984 ----a-w- c:\windows\system32\wlansec.dll
2009-09-30 13:56 . 2009-09-30 13:56 290816 ----a-w- c:\windows\system32\wlanmsm.dll
2009-09-30 13:54 . 2009-09-30 13:54 2028032 ----a-w- c:\windows\system32\win32k.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-06 13:40 . 2009-09-27 22:04 1356 ----a-w- c:\users\LM\AppData\Local\d3d9caps.dat
2009-10-06 13:39 . 2009-09-30 20:24 76124 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-10-06 07:57 . 2006-12-05 05:23 80552 ----a-w- c:\windows\system32\perfc001.dat
2009-10-06 07:57 . 2006-12-05 05:23 459676 ----a-w- c:\windows\system32\perfh001.dat
2009-10-01 22:33 . 2009-10-01 22:33 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2009-10-01 20:58 . 2009-10-01 20:58 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
2009-10-01 18:36 . 2009-10-01 18:36 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-10-01 18:36 . 2009-10-01 18:36 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-09-30 21:38 . 2007-04-28 13:51 112144 ----a-w- c:\windows\system32\drivers\kl1.sys
2009-09-30 14:29 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2009-09-30 14:29 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-09-30 14:29 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2009-09-30 14:29 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2009-09-30 14:00 . 2009-09-30 14:00 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-09-30 14:00 . 2009-09-30 14:00 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-09-30 14:00 . 2009-09-30 14:00 15360 ----a-w- c:\windows\system32\netevent.dll
2009-09-30 14:00 . 2009-09-30 14:00 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-09-30 14:00 . 2009-09-30 14:00 103936 ----a-w- c:\windows\system32\netiohlp.dll
2009-09-30 14:00 . 2009-09-30 14:00 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-09-30 14:00 . 2009-09-30 14:00 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-09-30 14:00 . 2009-09-30 14:00 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-09-30 14:00 . 2009-09-30 14:00 10240 ----a-w- c:\windows\system32\finger.exe
2009-09-30 14:00 . 2009-09-30 14:00 813568 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-09-30 14:00 . 2009-09-30 14:00 22016 ----a-w- c:\windows\system32\netiougc.exe
2009-09-30 14:00 . 2009-09-30 14:00 213592 ----a-w- c:\windows\system32\drivers\netio.sys
2009-09-30 14:00 . 2009-09-30 14:00 167424 ----a-w- c:\windows\system32\tcpipcfg.dll
2009-09-30 13:27 . 2009-09-30 13:27 3102720 ----a-w- c:\windows\system32\NlsData0039.dll
2009-09-30 13:24 . 2009-09-30 13:24 613888 ----a-w- c:\windows\system32\wpd_ci.dll
2009-09-30 11:34 . 2009-09-27 22:04 115576 ----a-w- c:\users\LM\AppData\Local\GDIPFONTCACHEV1.DAT
2009-09-30 11:12 . 2006-11-02 12:37 -------- d-----w- c:\program files\MSBuild
2009-08-03 12:07 . 2009-08-03 12:07 403816 ----a-w- c:\windows\system32\OGACheckControl.dll
2009-08-03 12:07 . 2009-08-03 12:07 322928 ----a-w- c:\windows\system32\OGAAddin.dll
2009-08-03 12:07 . 2009-08-03 12:07 230768 ----a-w- c:\windows\system32\OGAEXEC.exe
2009-07-26 13:44 . 2009-07-26 13:44 48448 ----a-w- c:\windows\system32\sirenacm.dll
2009-07-21 21:52 . 2009-10-03 22:36 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-21 21:47 . 2009-10-03 22:36 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-07-21 21:47 . 2009-10-03 22:36 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-07-21 20:13 . 2009-10-03 22:36 133632 ----a-w- c:\windows\system32\ieUnatt.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-09-30 1232896]
"swg"="c:\program files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2009-09-30 171448]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-09-30 3114416]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144]
"Uniblue SpeedUpMyPC"="c:\program files\Uniblue\SpeedUpMyPC\SpeedUpMyPC.exe" [2006-11-09 4943872]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2009-09-30 1006264]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2006-10-06 98304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2006-10-06 114688]
"Persistence"="c:\windows\system32\igfxpers.exe" [2006-10-06 94208]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-09-30 149280]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2006-10-10 1097728]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-30 185896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{9C55854E-90B7-4E8D-A1EC-DD802FEB3F1F}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{8551B47C-57E9-4E6A-88BA-3106345DD02D}"= UDP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{083B4A26-F414-4A97-BA76-842E51A6CED3}"= TCP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{FEA3AF60-69CD-4F38-8A41-1D797CF3471C}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{627DB373-74AD-42C9-84F2-D5F709F368E9}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
"DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [04/04/07 02:59 م 20760]
R3 netr73;RT73 USB Wireless LAN Card Driver for Vista;c:\windows\System32\drivers\netr73.sys [11/05/07 04:40 م 329728]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [02/11/06 01:25 م 167936]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder
2009-10-02 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe [2008-01-08 06:59]
2009-10-06 c:\windows\Tasks\User_Feed_Synchronization-{E49CC29A-033F-4AE8-A087-620CF144793D}.job
- c:\windows\system32\msfeedssync.exe [2009-10-03 20:13]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
IE: ت&صدير إلى Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى FLV بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetVL.htm
FF - ProfilePath - c:\users\LM\AppData\Roaming\Mozilla\Firefox\Profiles\w2xr24pw.default\
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-06 16:42
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'Explorer.exe'(2864)
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_ara.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\audiodg.exe
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
c:\windows\System32\WUDFHost.exe
c:\windows\servicing\TrustedInstaller.exe
.
**************************************************************************
.
Completion time: 2009-10-06 16:53 - machine was rebooted
ComboFix-quarantined-files.txt 2009-10-06 13:53
Pre-Run: 116,452,646,912 bytes free
Post-Run: 116,069,732,352 bytes free
Current=1 Default=1 Failed=0 LastKnownGood=11 Sets=1,2,3,4,5,6,7,8,9,10,11
289 --- E O F --- 2009-10-05 00:03



هذا تقرير الاداه الاولى

<يآن قلبي سقط في بطني

خوفتني هالاداه :d:

 

هذا تقرير الهيجاك



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 05:09:46 م, on 06/10/09
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\Explorer.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery 2\MessengerDiscovery 2.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: مساعد رابط Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Uniblue SpeedUpMyPC] C:\Program Files\Uniblue\SpeedUpMyPC\SpeedUpMyPC.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: WlanUtility.lnk = C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe
O4 - Global Startup: سرعة تشغيل Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
--
End of file - 6174 bytes