فايروس المسن

  • بادئ الموضوع بادئ الموضوع 36r
  • تاريخ البدء تاريخ البدء
  • المشاهدات 855
3

36r

زيزوومي جديد
إنضم
13 يونيو 2011
المشاركات
51
مستوى التفاعل
1
النقاط
50
غير متصل
السلام عليكم
عندي فايروس بس ماعرفت الحل معاه اذا دخلت على المسن يرسل نفسه لكل الموجودين عندي

يجيني تحذير من windows defender وكل ما اسوي ازاله يرجع مره ثانيه
هذي صورة للتنبيه
115f4c238ba9baa1404d52e186cc18f2.jpg

المشكلة اني ما اعرف اسمه عشان اقدر ادور حل له ، ساعدوني الله يجزاكم خير
:er:
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
هذا الفحص:
************' Anti-Malware 1.51.0.1200


Database version: 6705

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

15/06/11 06:46:01 م
mbam-log-2011-06-15 (18-46-01).txt

Scan type: Full scan (C:\|)
Objects scanned: 254879
Time elapsed: 34 minute(s), 36 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
 
تأييد 0

3b3ce221851b60a78bfa55cbd704e323.jpg


للتحميل من هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAG4ALAAAAAARABAAAAfNgG6Cbg4sJwSIiYgag4RGPUAHkpMHMWsSg2kjSTwInp8ISi5PghY1bWwDqqurR0NuORxdUhAAAFclPrYREBAtbmMiVQ8Pth0vtlw4xGdLQmgK0bYYWAA7HtEKN2pmNgbftuFO399UVk0J6QnhAGA0IRfpWR8oWgz34WRbABEb9yZuCAhYQNCWigViItgiGMUNERkkGjQAkAFJAxhebEkMI+gHEx0BQoocGYDCIAkgoAhYyZJligqDHMyY8KWAzZsFVkwxGTNIBXbsJrgJBAA7


الباسورد هو الرقم 1

رقم الهاش للاداة

CRC32: 5D1AE045
MD5: 1B7F9C41AA7756C32346C0056BC682BC
SHA-1: 9BB7A8E98BAC7571383FEE32097B8E0316D48F70


قبل التحميل والتشغيل
يجب تعطيل برامج الحماية لان الاداة تحتوي على nircmd & avenger
التي تستخدم لحذف الفيروسات الصعبة
وتعتبرها كثير من برامج الحماية ملفات ضارة

عند التشغيل تطلب باسورد

290efc3efc8461c60de2a09fe467d825.jpg


الباسورد هو الرقم 1

هات ولا تهون ( تقرير هايجاك + البرامج المثبته + رن سكنر )

ب الانتظار
 
توقيع : Corporation
تأييد 0
تقرير الهايجاك
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 07:11:59 م, on 15/06/11
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\ManyCam 2.4\ManyCam.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Paltalk Messenger\paltalk.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Zyzoom_Forum_Tools\zyzoom.exe
C:\Zyzoom_Forum_Tools\zHijak.com
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: MessengerPlusLive Saudi Arabia TB Toolbar - {f78a8f02-19ee-4de8-8ea7-6138e8b524f4} - C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0.dll
R3 - URLSearchHook: Messenger Plus Saudi Toolbar - {9e1b5c68-1ab5-49fe-97a9-d3f777c51663} - C:\Program Files\Messenger_Plus_Saudi\prxtbMess.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Messenger Plus Saudi - {9e1b5c68-1ab5-49fe-97a9-d3f777c51663} - C:\Program Files\Messenger_Plus_Saudi\prxtbMess.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: PDF-XChange Viewer IE-Plugin - {C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F} - C:\Program Files\Tracker Software\PDF Viewer\PDFXCviewIEPlugin.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O2 - BHO: Windows 7 Starter Helper - {D381FF29-7CFB-4D4E-B92A-C4EDDC696614} - C:\Program Files\Oceanis\SystemSetting\StarterHelper.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: MessengerPlusLive Saudi Arabia TB - {f78a8f02-19ee-4de8-8ea7-6138e8b524f4} - C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O3 - Toolbar: MessengerPlusLive Saudi Arabia TB Toolbar - {f78a8f02-19ee-4de8-8ea7-6138e8b524f4} - C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O3 - Toolbar: Paltalk Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Messenger Plus Saudi Toolbar - {9e1b5c68-1ab5-49fe-97a9-d3f777c51663} - C:\Program Files\Messenger_Plus_Saudi\prxtbMess.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ManyCam] "C:\Program Files\ManyCam 2.4\ManyCam.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
O8 - Extra context menu item: إرسال إلى &جهاز Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: إرسال إلى Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: خدمة تحديث Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

--
End of file - 9991 bytes

البرامج المثبته:


====== معلومات نظام التشغيل ======

X86 WIN_7 7600


====== قائمة البرامج المثبتة ======

7-Zip 4.65
AAC Decoder
Adobe Flash Player 10 ActiveX
Advanced Audio FX Engine
Any Audio Converter 2.0.4
Apple Application Support
Ask Toolbar
Ask.com Search Assistant 1.0.2
AutoUpdate
BB FlashBack
BB FlashBack
Bing Bar
Bing Bar Platform
Bonjour
Conduit Engine
D3DX10
Dell Touchpad
Dell Webcam Central
DivX Codec
DivX Converter
DivX Converter
DivX Player
DivX Plus DirectShow Filters
DivX Version Checker
DivX Web Player
Google Chrome
Google Earth
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer
Google Update Helper
H.264 Decoder
Instant Messenger Cleaner
Intel(R) Graphics Media *********** Driver
Intel(R) TV Wizard
iTunes
Java(TM) 6 Update 15
Java(TM) 6 Update 17
Junk Mail filter update
K-Lite Codec Pack 3.8.0 Standard
Live! Cam Avatar Creator
ManyCam 2.4 (remove only)
Mesh Runtime
Messenger Companion
Messenger Plus Saudi Toolbar
Messenger Plus! 5
MessengerPlusLive Saudi Arabia TB Toolbar
Metin2
Microsoft Application Error Reporting
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft XML Parser
MKV Splitter
Mobily Connect Card
MSVCRT
Oceanis Change Background Windows 7
OpenOffice.org 3.1
PaltalkScene
PDF-Viewer
QuickSet32
QuickTime
RealPlayer
Skype™ 5.3
VC80CRTRedist - 8.0.50727.762
VideoLAN VLC media player 0.8.6h
Winamp
Windows Live Communications Platform
Windows Live Essentials
Windows Live Essentials
Windows Live Family Safety
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh
Windows Live Messenger
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer
Windows Live Writer
Windows Live Writer Resources
Xvid 1.2.2 final uninstall
Yahoo! Messenger
برنامج WIDCOMM Bluetooth
بريد Windows Live
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة
معرض صور Windows Live

الرن سكنر:
Runscanner logfile
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


* = signed file
- = file not found

General info
------------
Computer name : DELL-PC
Creation time : 15/06/11 07:26:37 م
Hosts <> 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 8.0.7600.16385
OS : Windows 7 Starter
OS Build : 7600
OS SP :
RunScanner Version : 2.0.0.50
User Language : العربية (السعودية)‏
User rights : Administrator
Windows folder : C:\Windows

Running processes
-----------------
* C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
* C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\dwm.exe (Microsoft Corporation)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\taskhost.exe (Microsoft Corporation)
* C:\Windows\System32\lsass.exe (Microsoft Corporation)
* C:\Program Files\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
* C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
* C:\Windows\System32\SearchIndexer.exe (Microsoft Corporation)
* C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
* C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)
C:\Program Files\OpenOffice.org 3\program\soffice.exe (OpenOffice.org)
C:\Program Files\OpenOffice.org 3\program\soffice.bin (OpenOffice.org)
* C:\Program Files\Paltalk Messenger\paltalk.exe (AVM Software Inc.)
* C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
* C:\Zyzoom_Forum_Tools\zRunScanner.com (Runscanner.net)
* C:\Windows\System32\services.exe (Microsoft Corporation)
* C:\Windows\System32\spoolsv.exe (Microsoft Corporation)
C:\Program Files\Winamp\winampa.exe
* C:\Windows\system32\audiodg.exe (Microsoft Corporation)
* C:\Windows\System32\WUDFHost.exe (Microsoft Corporation)
* C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
* C:\Windows\System32\smss.exe (Microsoft Corporation)
C:\Zyzoom_Forum_Tools\zyzoom.exe
* C:\Windows\System32\wininit.exe (Microsoft Corporation)
* C:\Windows\System32\winlogon.exe (Microsoft Corporation)
* C:\Windows\System32\lsm.exe (Microsoft Corporation)
* C:\Windows\System32\rundll32.exe (Microsoft Corporation)
* C:\Windows\explorer.exe (Microsoft Corporation)
* C:\Windows\System32\taskeng.exe (Microsoft Corporation)

Unrated items
-------------
002 C:\Program Files\Winamp\winampa.exe
003 * C:\Program Files\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
004 C:\Program Files\OpenOffice.org 3\program\quickstart.exe
005 * C:\Program Files\Paltalk Messenger\paltalk.exe (AVM Software Inc.)
006 * C:\Program Files\Paltalk Messenger\paltalk.exe (AVM Software Inc.)
007 C:\Program Files\OpenOffice.org 3\program\quickstart.exe
011 * C:\Windows\system32\DRIVERS\Apfiltr.sys (Alps Touch Pad Driver)
040 * C:\Program Files\Messenger_Plus_Saudi\prxtbMess.dll (Conduit Ltd.) {9e1b5c68-1ab5-49fe-97a9-d3f777c51663}
040 * C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0.dll (Conduit Ltd.) {f78a8f02-19ee-4de8-8ea7-6138e8b524f4}
041 * C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) {30F9B915-B755-4826-820B-08FBA6BD249D}
041 * C:\Program Files\Messenger_Plus_Saudi\prxtbMess.dll (Conduit Ltd.) {9e1b5c68-1ab5-49fe-97a9-d3f777c51663}
041 * C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0.dll (Conduit Ltd.) {f78a8f02-19ee-4de8-8ea7-6138e8b524f4}
042 GUID / CLSID not found {CCA281CA-C863-46ef-9331-5C8D4460577F}
042 GUID / CLSID not found {0000036B-C524-4050-81A0-243669A86B9F}
042 GUID / CLSID not found {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}
042 * C:\Program Files\Paltalk Messenger\Paltalk.exe (AVM Software Inc.) {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE}
045 * C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) {30F9B915-B755-4826-820B-08FBA6BD249D}
045 * C:\Program Files\Messenger_Plus_Saudi\prxtbMess.dll (Conduit Ltd.) {9E1B5C68-1AB5-49FE-97A9-D3F777C51663}
045 * C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0.dll (Conduit Ltd.) {F78A8F02-19EE-4DE8-8EA7-6138E8B524F4}
052 * C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) {30F9B915-B755-4826-820B-08FBA6BD249D}
052 * C:\Program Files\Messenger_Plus_Saudi\prxtbMess.dll (Conduit Ltd.) {9e1b5c68-1ab5-49fe-97a9-d3f777c51663}
052 * C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0.dll (Conduit Ltd.) {f78a8f02-19ee-4de8-8ea7-6138e8b524f4}
052 * C:\Program Files\Tracker Software\PDF Viewer\PDFXCviewIEPlugin.dll (Tracker Software Products Ltd.) {C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F}
052 C:\Program Files\Oceanis\SystemSetting\StarterHelper.dll (Oceanis) {D381FF29-7CFB-4D4E-B92A-C4EDDC696614}
060 GUID / CLSID not found {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
061 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
061 C:\Windows\system32\btncopy.dll (Broadcom Corporation.) {7842554E-6BED-11D2-8CDB-B05550C10000}
061 C:\Windows\system32\BTNEIG~1.DLL (Broadcom Corporation.) {6af09ec9-b429-11d4-a1fb-0090960218cb}
061 C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll (Sun Microsystems, Inc.) {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}
061 C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll (Sun Microsystems, Inc.) {087B3AE3-E237-4467-B8DB-5A38AB959AC9}
061 C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll (Sun Microsystems, Inc.) {63542C48-9552-494A-84F7-73AA6A7C99C1}
061 C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll (Sun Microsystems, Inc.) {3B092F0C-7696-40E3-A80F-68D74DA84210}
061 * C:\Program Files\Tracker Software\Shell Extensions\XCShInfo.dll (Tracker Software Products Ltd.) {CF822AB4-6DB5-4FDA-BC28-E61DF36D2583}
061 * C:\Program Files\Tracker Software\Shell Extensions\XCShInfo.dll (Tracker Software Products Ltd.) {67EB453C-1BE1-48EC-AAF3-23B10277FCC1}
061 * C:\Program Files\Tracker Software\Shell Extensions\XCShInfo.dll (Tracker Software Products Ltd.) {EBD0B8F4-A9A0-41B7-9695-030CD264D9C8}
062 * C:\Program Files\Tracker Software\Shell Extensions\XCShInfo.dll (Tracker Software Products Ltd.) {B2F55D43-C7A4-4B7C-90D7-7A860DFA9F2A}
062 C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll (Sun Microsystems, Inc.) {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}
069 C:\Windows\system32\bthcrp.dll (Broadcom Corporation.)
105 Google Sidewiki... : res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
105 إرسال إلى &جهاز Bluetooth... : C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
105 إرسال إلى Bluetooth : C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
107 C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
170 {03c6268e-7001-11df-bcf2-b8ac6f51a86c} : H:\LaunchU3.exe -a
170 {75d54f6c-b9e4-11df-940b-b8ac6f51a86c} : H:\AutoRun.exe
170 {75d54f79-b9e4-11df-940b-b8ac6f51a86c} : G:\AutoRun.exe
170 {8608b25e-7000-11df-a7f8-806e6f6e6963} : F:\autorun.exe
170 {be5c77f7-bd18-11df-890f-b8ac6f51a86c} : G:\AutoRun.exe
170 {da560feb-bc6b-11df-8c66-b8ac6f51a86c} : G:\AutoRun.exe
170 G : G:\AutoRun.exe
170 H : H:\AutoRun.exe
173 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
221 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
227 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
231 C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll (Sun Microsystems, Inc.) OpenOffice.org Column Handler
231 * C:\Program Files\Tracker Software\Shell Extensions\XCShInfo.dll (Tracker Software Products Ltd.) PDF-XChange column ext
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
241 GUID / CLSID not found
251 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
254 C:\Windows\system32\btncopy.dll (Broadcom Corporation.) {7842554E-6BED-11D2-8CDB-B05550C10000}

Missing files
-------------
003 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
032 rdpclip
034 C:\Program
034 Files\Oceanis\SystemSetting\WallPaperAgent.exe
176 Drwtsn32
شاكر لكم تفاعلـكم مع مشكلتي واننظر الحل..
 
تأييد 0
احذف القيم التالية

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: MessengerPlusLive Saudi Arabia TB - {f78a8f02-19ee-4de8-8ea7-6138e8b524f4} - C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0. dll

O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll


O3 - Toolbar: MessengerPlusLive Saudi Arabia TB Toolbar - {f78a8f02-19ee-4de8-8ea7-6138e8b524f4} - C:\Program Files\MessengerPlusLive_Saudi_Arabia_TB\prxtbMes0. dll


O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll


O3 - Toolbar: Paltalk Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll


O3 - Toolbar: Messenger Plus Saudi Toolbar - {9e1b5c68-1ab5-49fe-97a9-d3f777c51663} - C:\Program Files\Messenger_Plus_Saudi\prxtbMess.dll



 
توقيع : ثعلب الجزائري
تأييد 0
بعد اذن الإخوان
اذا عندك فايروس يرسل روابط لجهات الإتصال فهذا هو الحل


حمل اداة الكاسبر من هنا


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي



بعد التحميل اعمل التالي لفحص وتنظيف الاصابات بشكل تلقائي


c82152576cc455c1475b8c4d880ba4bc.png



d4adcbfbc949d0385b1385306152e8d6.png



cd0208b6832936ee65e5cda6e9397737.png



b42c647aa13460333827dccf5ac98f82.png



630706707d430c15f6b17dc3433649a1.png



770ce858ff56856b4ed72a8ec8300f14.png



947344366e0e00c57b727d88f53cacfa.png



3880b5a4058b8bbb4bd1b39ea3ea65fb.png



430cdaab1075948df9cd1b57b8e87a48.png



0ea689a404fb166859903178cb3c1d9d.png



7e632e59d6a742925297ca90bc597ad9.png


 
توقيع : غَيّوضْ
تأييد 0
طبقيُ مشاركة الأخت غيوض
وبعد الأنتهاء قومي بحذف هذه التولبارات ..

كود: 
Ask Toolbar
Ask.com Search Assistant 1.0.2
Bing Bar
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer

بعد ما تسوين كل شئ ارجعي سوي هايجاك جديد والصقيه ب مشاركتك القادمه
 
توقيع : Corporation
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى