هل من حل لهذه الرسالة يا اهل الخبرة بالمنتدى

[wael1]

اخوتى الكرام مشرفى المنتدى مشكلتى هى عندما احاول تشغيل برنامج راديو سامى سوفت

على جهازى تظهر لى هذه الرسالة ولم اجد لها حلا حتى الان وحاولت كثيرا وما زالت المشكلة مستمرة

فما هى هذه الرسالة هل هى فايرس ام ماذا؟؟ انقذونى بالحل افادكم الله لاهمية هذا البرنامج لدى ولا استطيع تشغيله بسبب هذه الرسالة وهذه صورتها

 

[فارس الملاك]

حمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes

انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

--------------------------------------------

( 2 )

واعمل تقرير للهايجاك

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات ويظهر لك تقرير ,, انسخه والصقه بردك القادم


رابط تحميل آخر تحديث للاداة

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

شرح الاستخدام ,,,,,,
قم بتشغيل الملف SmitfraudFix.exe ,, وتابع الشرح كماا بهذه الصور

​

 

[wael1]

تفضل اخى الكريم هذا هو تقرير الفحص باداة ComboFix.exe

ComboFix 08-06-20.4 - WAEL 06/22/2008 12:41:24.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.1.1033.18.292 [GMT 3:00]
Running from: C:\Documents and Settings\WAEL\My Documents\Downloads\Programs\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((( Files Created from 2008-05-22 to 2008-06-22 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-22 09:46 --------- d-----w C:\Documents and Settings\WAEL\Application Data\DMCache
2008-06-22 09:44 720,416 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat
2008-06-22 09:44 6,708 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2008-06-22 09:44 180,256 --sha-w C:\WINDOWS\system32\drivers\fidbox2.dat
2008-06-22 09:44 1,696 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx
2008-06-22 09:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-06-21 23:57 --------- d-----w C:\Documents and Settings\All Users\Application Data\McAfee
2008-06-21 23:56 --------- d-----w C:\Documents and Settings\WAEL\Application Data\TeraCopy
2008-06-21 23:36 1,684 ----a-w C:\WINDOWS\system32\tmp.reg
2008-06-21 18:48 --------- d-----w C:\Program Files\Unlocker
2008-06-21 16:06 --------- d-----w C:\Documents and Settings\WAEL\Application Data\CyberScrub
2008-06-21 16:06 --------- d-----w C:\Documents and Settings\WAEL\Application Data\cleaner
2008-06-21 04:26 --------- d-----w C:\Documents and Settings\WAEL\Application Data\IDM
2008-06-21 04:05 --------- d-----w C:\Documents and Settings\WAEL\Application Data\Media Player Classic
2008-06-21 03:54 --------- d-----w C:\Documents and Settings\WAEL\Application Data\Skype
2008-06-21 03:51 --------- d-----w C:\Program Files\Skype
2008-06-21 03:51 --------- d-----w C:\Program Files\Common Files\Skype
2008-06-21 03:51 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype
2008-06-21 03:49 --------- d-----w C:\Program Files\Camfrog
2008-06-21 03:49 --------- d-----w C:\Documents and Settings\WAEL\Application Data\Camfrog
2008-06-21 03:45 --------- d--h--r C:\Documents and Settings\WAEL\Application Data\yahoo!
2008-06-21 03:45 --------- d-----w C:\Program Files\Yahoo!
2008-06-21 03:45 --------- d-----w C:\Documents and Settings\All Users\Application Data\Yahoo!
2008-06-21 03:32 402,784 ----a-w C:\WINDOWS\system32\deploytk.dll
2008-06-21 03:32 --------- d-----w C:\Program Files\Java
2008-06-21 03:31 --------- d-----w C:\Program Files\Samy Soft
2008-06-21 03:30 --------- d-----w C:\Program Files\Samy_Soft
2008-06-21 03:30 --------- d-----w C:\Documents and Settings\WAEL\Application Data\GlarySoft
2008-06-21 03:29 --------- d-----w C:\Program Files\Glary Utilities
2008-06-21 03:26 --------- d-----w C:\Program Files\Uniblue
2008-06-21 03:26 --------- d-----w C:\Documents and Settings\WAEL\Application Data\Uniblue
2008-06-21 03:25 --------- d-----w C:\Program Files\CCleaner
2008-06-21 03:24 --------- d-----w C:\Program Files\DFX
2008-06-21 03:24 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-06-21 03:24 --------- d-----w C:\Documents and Settings\All Users\Application Data\DFX
2008-06-21 03:21 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll
2008-06-21 03:21 348,160 ----a-w C:\WINDOWS\system32\msvcr71.dll
2008-06-21 03:21 --------- d-----w C:\Program Files\Real
2008-06-21 03:21 --------- d-----w C:\Program Files\Common Files\xing shared
2008-06-21 03:21 --------- d-----w C:\Program Files\Common Files\Real
2008-06-21 03:19 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-06-21 03:18 --------- d-----w C:\Program Files\Xvid
2008-06-21 03:18 --------- d-----w C:\Program Files\DsNET Corp
2008-06-21 03:17 --------- d-----w C:\Program Files\Internet Download Manager
2008-06-21 03:16 --------- d-----w C:\Program Files\TeraCopy
2008-06-21 03:14 --------- d-----w C:\Program Files\Ahead
2008-06-21 03:13 --------- d-----w C:\Program Files\Common Files\Ahead
2008-06-21 02:58 --------- d-----w C:\Program Files\Microsoft.NET
2008-06-21 02:42 96,966 ----a-w C:\WINDOWS\system32\drivers\klin.dat
2008-06-21 02:42 88,774 ----a-w C:\WINDOWS\system32\drivers\klick.dat
2008-06-21 02:32 --------- d-----w C:\Program Files\Kaspersky Lab
2008-06-21 02:27 --------- d-----w C:\Program Files\PC Camera
2008-06-21 02:27 --------- d-----w C:\Program Files\Common Files\PCCamera
2008-06-21 02:18 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-21 02:18 --------- d-----w C:\Program Files\Realtek Sound Manager
2008-06-21 02:18 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-06-21 02:18 --------- d-----w C:\Program Files\AvRack
2008-06-21 02:17 --------- d-----w C:\Program Files\Marvell
2008-06-21 02:14 --------- d-----w C:\Program Files\MSN Messenger
2008-06-21 02:08 --------- d-----w C:\Program Files\Windows Update Download
2008-06-21 02:08 --------- d-----w C:\Program Files\VistaPack
2008-06-21 02:08 --------- d-----w C:\Program Files\System Tools
2008-06-21 02:08 --------- d-----w C:\Program Files\Msn Explorer7
2008-06-21 02:08 --------- d-----w C:\Program Files\microsoft frontpage
2008-06-21 02:08 --------- d-----w C:\Program Files\LClock
2008-06-21 02:07 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-04-25 15:22 206,088 ----a-w C:\WINDOWS\system32\klogon.dll
2008-04-25 15:21 26,964 ----a-w C:\WINDOWS\system32\drivers\klopp.dat
.
------- Sigcheck -------
09/09/2006 03:00 PM 577024 1800f293bccc8ede8a70e12b88d80036 C:\WINDOWS\system32\user32.dll
09/09/2006 03:00 PM 664576 64ce26db72810b30f7855ea51e1df836 C:\WINDOWS\system32\wininet.dll
09/09/2006 03:00 PM 360576 bb4d3a8e6f7eb1d370bc4ad27ab23368 C:\WINDOWS\system32\drivers\tcpip.sys
09/09/2006 03:00 PM 2056832 d8aba3eab509627e707a3b14f00fbb6b C:\WINDOWS\system32\ntkrnlpa.exe
09/09/2006 03:00 PM 2319232 715663447a8e6583861cc0c374da31ae C:\WINDOWS\system32\ntoskrnl.exe
09/09/2006 03:00 PM 1245184 5f46d7fe2fe7966c5d21672161be98a3 C:\WINDOWS\explorer.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper s\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
04/25/2008 06:22 PM 62728 --a------ C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper s\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
06/21/2008 06:32 AM 31744 --a------ C:\Program Files\Java\jre6\bin\jp2ssv.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper s\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
06/21/2008 06:32 AM 73728 --a------ C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [06/21/2008 06:17 AM 2594224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LClock"="C:\Program Files\LClock\LClock.exe" [09/20/2004 01:27 AM 65536]
"DrvIcon"="E:\wael source\ستايل\VistaDriveIcon\DrvIcon.exe" [ ]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [09/09/2006 03:00 PM 15360]
C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Startup\
Dock.lnk - C:\Program Files\VistaPack\Dock\Dock.exe [2008-06-21 05:08:09 1826885]
YzToolbar.lnk - C:\Program Files\VistaPack\YzToolbar\YzToolBar.exe [2008-06-21 05:08:10 90112]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoResolveSearch"= 1 (0x1)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoResolveSearch"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.YV12"= yv12vfw.dll
[HKLM\~\startupfolder\C:^Documents and Settings^WAEL^Start Menu^Programs^Startup^Dock.lnk]
backup=C:\WINDOWS\pss\Dock.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^WAEL^Start Menu^Programs^Startup^YzToolbar.lnk]
backup=C:\WINDOWS\pss\YzToolbar.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Camfrog]
--a------ 09/29/2003 09:22 AM 36352 C:\Program Files\Camfrog\Camfrog Video Chat\CamfrogNet.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
--a------ 09/09/2006 03:00 PM 15360 C:\WINDOWS\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 06/06/2006 12:38 PM 5322536 C:\Program Files\MSN Messenger\MsnMsgr.Exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
--a------ 11/15/2004 01:20 PM 77824 C:\WINDOWS\SOUNDMAN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
--a------ 08/20/2006 01:48 PM 6656 C:\Program Files\Unlocker\UnlockerAssistant.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\msncall.exe"=
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 klbg;Kaspersky Lab Boot Guard Driver;C:\WINDOWS\system32\drivers\klbg.sys [01/29/2008 06:29 PM]
R2 JavaQuickStarterService;Java Quick Starter;"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" []
R3 KLFLTDEV;Kaspersky Lab KLFltDev;C:\WINDOWS\system32\DRIVERS\klfltdev.sys [03/13/2008 07:02 PM]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [03/25/2008 08:07 PM]
.
s of the 'Scheduled Tasks' folder
"2008-06-21 16:23:57 C:\WINDOWS\Tasks\GlaryInitialize.job"
- C:\Program Files\Glary Utilities\initialize.exe
"2008-06-21 03:26:43 C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC Nag.job"
- C:\Program Files\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe
"2008-06-21 03:26:42 C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC.job"
- C:\Program Files\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

Rootkit scan 2008-06-22 12:46:43
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
PROCESS: C:\WINDOWS\explorer.exe
-> C:\Program Files\LClock\LC.dll
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Java\jre6\bin\jqs.exe
E:\wael source\C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
.
**************************************************************************
.
Completion time: 06/22/2008 12:48:47 - machine was rebooted
ComboFix-quarantined-files.txt 2008-06-22 09:48:40
Pre-Run: 4,743,168,000 bytes free
Post-Run: 4,709,560,320 bytes free
189

 

[wael1]

وهذا تقرير الهايجاك الذى طلبت يا اخى الكريم


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:57:00, on 22/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\LClock\LClock.exe
E:\wael source\ستايل\VistaDriveIcon\DrvIcon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\WINDOWS\explorer.exe
C:\Program Files\internet explorer\iexplore.exe
E:\wael source\حماية\Zyzoom_HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [LClock] C:\Program Files\LClock\LClock.exe
O4 - HKLM\..\Run: [DrvIcon] E:\wael source\ستايل\VistaDriveIcon\DrvIcon.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_10] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_11] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: Dock.lnk = C:\Program Files\VistaPack\Dock\Dock.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: YzToolbar.lnk = C:\Program Files\VistaPack\YzToolbar\YzToolBar.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: Dock.lnk = C:\Program Files\VistaPack\Dock\Dock.exe (User 'Default user')
O4 - .DEFAULT Startup: YzToolbar.lnk = C:\Program Files\VistaPack\YzToolbar\YzToolBar.exe (User 'Default user')
O4 - .DEFAULT User Startup: Dock.lnk = C:\Program Files\VistaPack\Dock\Dock.exe (User 'Default user')
O4 - .DEFAULT User Startup: YzToolbar.lnk = C:\Program Files\VistaPack\YzToolbar\YzToolBar.exe (User 'Default user')
O8 - Extra context menu item: &تصدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: تحميل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{5B51C74E-3632-44B7-869F-78E0F6838A4B}: NameServer = 163.121.128.134,163.121.128.135
O17 - HKLM\System\CS1\Services\Tcpip\..\{5B51C74E-3632-44B7-869F-78E0F6838A4B}: NameServer = 163.121.128.134,163.121.128.135
O17 - HKLM\System\CS2\Services\Tcpip\..\{5B51C74E-3632-44B7-869F-78E0F6838A4B}: NameServer = 163.121.128.134,163.121.128.135
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Indexing Service (CiSvc) - Unknown owner - C:\WINDOWS\system32\cisvc.exe (file missing)
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 5999 bytes