مشكلة بطئ الجهاز عند تشغيل ميديا بلاير 11 + مشكلة في القرص الصلب d

bent_almarah · 1 أغسطس 2011

السلام عليكم
انا عندي مشكلة ببرنامج ويندوز ميديا بلاير
اني كل مرة افتح البرنامج الجهاز بعلق كتير وبصير بطئ وبخبرني انه البرنامج غير مثبت بشكل صحيح مع العلم انه البرنامج كان شغال وسليم 100% ومافي مشاكل ابدا
حذفت البرنامج ونزلته مرة تانية ونزلت اصدار احدث منه ونفس المشكلة
كمان لما افتح أي مجلد فيه ملفات صوتيتة بعلق الجهاز وما تنحل الا لما احذف البرنامج كليا من الجهاز
وفيمشكلة تانية انه بظهري انه تقرير خطأ بدرايفر D ما بعرف شو هو
بس استخدم برنامج دكتور Tuneup 2011 بس المشكلة ما انحلت
بدي اسالكم في حل جذري للمشكلتين دون اللجوء للفورمات
انا عملت تقرير ببرنامج ComboFix وهذا التقرير التالي

ComboFix 11-07-31.03 - munamuna 08/01/2011 6:30.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1256.962.1033.18.1015.308 [GMT -7:00]
Running from: c:\documents and settings\munamuna\Desktop\ComboFix.exe
AV: ESET Smart Security 3.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Resident AV is active
.
.
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
ADS - system32: deleted 24 bytes in 2 streams.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\mazuki.dll
c:\documents and settings\All Users\Application Data\Tarma Installer
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setup.dll
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.exe
c:\documents and settings\All Users\Application Data\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.ico
c:\documents and settings\munamuna\Application Data\Dealio
c:\documents and settings\munamuna\Application Data\Dealio\res\widgets.xml
c:\documents and settings\munamuna\Application Data\Dealio\temp\http___www_dealio_com_rss_coupons-deals_dotd_.xml
c:\documents and settings\munamuna\Application Data\Desktopicon
c:\documents and settings\munamuna\Application Data\MiniDm
c:\documents and settings\munamuna\Application Data\MiniDm\conf.ini
c:\documents and settings\munamuna\Application Data\PriceGong
c:\documents and settings\munamuna\Application Data\PriceGong\Data\1.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\a.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\b.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\c.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\d.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\e.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\f.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\g.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\h.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\i.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\J.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\k.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\l.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\m.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\mru.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\n.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\o.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\p.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\q.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\r.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\s.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\t.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\u.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\v.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\w.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\x.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\y.xml
c:\documents and settings\munamuna\Application Data\PriceGong\Data\z.xml
c:\documents and settings\munamuna\Local Settings\Application Data\.#
c:\documents and settings\munamuna\My Documents\Readiris.DUS
c:\documents and settings\munamuna\WINDOWS
c:\program files\Bifrost
c:\program files\Bifrost\logg.dat
c:\program files\Bifrost\server.exe
c:\windows\ktd32.atm
c:\windows\ST6UNST.000
c:\windows\system32\d3d10core.dll
c:\windows\system32\kakle.dll
c:\windows\system32\lncom_.exe
c:\windows\system32\scrnrdr.exe
c:\windows\system32\videocore.dll
c:\windows\system32\videoformat.dll
c:\windows\system32\VIRepair
c:\windows\system32\VIRepair\vi.sif
c:\windows\system32\winitn.dll
c:\windows\system32\YMSG12ENCRYPT.dll
d:\59c4~1\طبي\210C~1.exe
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_AFPANSI
.
.
((((((((((((((((((((((((( Files Created from 2011-07-01 to 2011-08-01 )))))))))))))))))))))))))))))))
.
.
2011-07-30 08:01 . 2011-07-30 08:01 -------- d-----w- c:\windows\system32\wbem\Repository
2011-07-30 07:24 . 2011-07-30 08:00 -------- d-----w- c:\program files\Windows Media Connect 2
2011-07-30 06:05 . 2011-06-16 04:28 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-07-30 04:47 . 2011-07-30 05:16 -------- d-----w- C:\0d6a49e0c6ea070bc5811df81ff8
2011-07-30 04:29 . 2011-07-30 05:22 -------- d-----w- c:\program files\DllErrorsFix
2011-07-29 07:59 . 2011-07-29 08:05 -------- d-----w- c:\program files\GoldWave
2011-07-28 05:20 . 2011-07-29 08:00 -------- d-----w- c:\program files\AlbumPlayer
2011-07-27 20:14 . 2011-07-29 08:04 -------- d-----w- c:\program files\vanBasco's Karaoke Player
2011-07-24 14:24 . 2011-07-24 14:24 -------- d-----w- C:\d6b6d5e542e9f7c4a8500e2e4096bb
2011-07-23 17:33 . 2008-09-18 22:47 430088 ----a-w- c:\windows\system32\D3D10SDKLayers.DLL
2011-07-23 17:33 . 2005-12-15 16:57 928768 ----a-w- c:\windows\system32\d3d10.dll
2011-07-23 17:33 . 2000-07-31 19:28 286208 ----a-w- c:\windows\system32\binkw32.dll
2011-07-23 17:32 . 2010-06-14 21:26 1998168 ----a-w- c:\windows\system32\D3DX9_43.dll
2011-07-23 17:32 . 2009-12-17 16:25 14311680 ----a-w- c:\windows\system32\xlive.dll
2011-07-23 17:32 . 2009-03-17 06:18 22360 ----a-w- c:\windows\system32\X3DAudio1_6.dll
2011-07-23 17:32 . 2006-04-13 16:38 737280 ----a-w- c:\windows\system32\msidcrl40.dll
2011-07-23 17:32 . 2009-09-30 20:08 1892184 ----a-w- c:\windows\system32\d3dx9_42.dll
2011-07-23 17:32 . 2009-05-21 07:23 4178264 ----a-w- c:\windows\system32\D3DX9_41.dll
2011-07-23 17:32 . 2008-10-09 23:36 512008 ----a-w- c:\windows\system32\D3DX10d_39.dll
2011-07-23 17:32 . 2006-11-29 20:06 440080 ----a-w- c:\windows\system32\d3dx10.dll
2011-07-23 17:26 . 2011-07-23 17:26 -------- d-----w- c:\documents and settings\munamuna\Tracing
2011-07-23 05:40 . 2011-03-26 01:03 15592 ----a-w- c:\windows\system32\roboot.exe
2011-07-23 05:06 . 2011-07-23 05:06 -------- d-----w- C:\992e245bef7daa830a4c
2011-07-23 04:55 . 2011-07-23 05:53 -------- d-----w- c:\program files\Dll-Files.com Fixer
2011-07-23 04:51 . 2011-07-23 05:05 -------- dc----w- c:\documents and settings\All Users\Application Data\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
2011-07-23 04:28 . 2011-07-23 05:06 -------- d-----w- c:\program files\Registry Easy(2)
2011-07-19 17:48 . 2011-07-19 17:48 -------- d-----w- C:\adfa1c68370455c8f1c4403d3133
2011-07-19 15:47 . 2011-07-19 16:03 -------- d-----w- C:\14878a8ed6059970b59aac9d79
2011-07-17 14:37 . 2011-07-17 14:37 -------- d-----w- C:\Temp
2011-07-17 11:49 . 2011-07-19 16:04 -------- d-----w- c:\program files\ChickenInvadersROTYXmas
2011-07-16 10:11 . 2011-07-16 10:11 -------- d-----w- c:\program files\ImTOO
2011-07-16 10:06 . 2011-07-16 10:07 -------- d-----w- c:\program files\Real_SC
2011-07-16 09:59 . 2011-07-16 09:59 -------- d-----w- c:\documents and settings\All Users\Application Data\InterAction studios
2011-07-14 14:58 . 2010-01-01 08:00 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-07-14 14:58 . 2010-01-01 08:00 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-07-13 14:01 . 2011-07-19 17:12 -------- d-----w- c:\program files\PIXresizer
2011-07-13 10:20 . 2011-07-19 17:13 -------- d-----w- c:\program files\JPEG Imager
2011-07-12 16:37 . 2011-07-16 10:09 -------- d-----w- c:\program files\Advanced JPEG Compressor
2011-07-03 14:53 . 2011-07-03 14:53 -------- d-----w- c:\program files\directx
2011-07-03 14:53 . 2011-07-03 14:53 -------- d-----w- c:\program files\honestech
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-16 10:06 . 2009-09-22 20:22 196608 ----a-w- c:\windows\system32\maag.dll
2011-07-16 10:06 . 2009-09-22 20:22 1212416 ----a-w- c:\windows\system32\ckll.dll
2011-07-16 10:06 . 2009-09-22 20:22 1245184 ----a-w- c:\windows\system32\bkll.dll
2011-07-16 10:06 . 2009-09-22 20:22 1986560 ----a-w- c:\windows\system32\akll.dll
2011-07-16 10:06 . 2009-09-22 20:22 2535424 ----a-w- c:\windows\system32\agsaamj.dll
2011-07-16 10:06 . 2009-09-22 20:22 90112 ----a-w- c:\windows\system32\agsaami.dll
2011-07-16 10:06 . 2009-09-22 20:22 610304 ----a-w- c:\windows\system32\agsaamg.dll
2011-07-16 10:06 . 2009-09-22 20:22 372736 ----a-w- c:\windows\system32\agsaamc.dll
2011-06-06 18:44 . 2009-09-22 20:22 626688 ----a-w- c:\windows\system32\agsaamh.dll
2011-06-06 18:44 . 2009-09-22 20:22 551424 ----a-w- c:\windows\system32\agsaame.dll
2011-06-06 18:44 . 2009-09-22 20:22 544256 ----a-w- c:\windows\system32\agsaamd.dll
2011-06-06 18:44 . 2009-09-22 20:22 215552 ----a-w- c:\windows\system32\ALOWMVFile.dll
2011-06-06 18:44 . 2009-09-22 20:22 403968 ----a-w- c:\windows\system32\ALOWMAFile2.dll
2011-06-06 18:44 . 2009-09-22 20:22 188416 ----a-w- c:\windows\system32\ALOVideoFile.dll
2011-06-06 18:44 . 2009-09-22 20:22 495104 ----a-w- c:\windows\system32\ALOVideoCoreM.dll
2011-06-06 18:44 . 2009-09-22 20:22 780288 ----a-w- c:\windows\system32\ALOVideoCompress.dll
2011-06-06 18:44 . 2009-09-22 20:22 538624 ----a-w- c:\windows\system32\agsaamb.dll
2011-06-06 18:44 . 2009-09-22 20:22 331776 ----a-w- c:\windows\system32\agsaama.dll
2011-06-06 18:44 . 2009-09-22 20:22 249856 ----a-w- c:\windows\system32\ALOQuickTimeFile.dll
2011-06-06 18:44 . 2009-09-22 20:22 382464 ----a-w- c:\windows\system32\ALOAVIFile.dll
2011-06-06 18:44 . 2009-09-22 20:22 360448 ----a-w- c:\windows\system32\agsaamf.ocx
2011-06-06 18:44 . 2009-09-22 20:22 90112 ----a-w- c:\windows\system32\ALOAudioFormatSettings3.dll
2011-06-06 18:44 . 2009-09-22 20:22 877568 ----a-w- c:\windows\system32\ALOAudioFile2.dll
2011-06-06 18:44 . 2009-09-22 20:22 2846720 ----a-w- c:\windows\system32\ALOAudioCompress3.dll
2011-06-06 18:44 . 2009-09-22 20:22 778240 ----a-w- c:\windows\system32\ALOAudioCompress2.dll
2011-06-06 18:43 . 2009-09-22 20:22 98304 ----a-w- c:\windows\system32\viscomtran.dll
2011-06-06 18:43 . 2009-09-22 20:22 81920 ----a-w- c:\windows\system32\viscomwave.dll
2011-06-06 18:43 . 2009-09-22 20:22 442368 ----a-w- c:\windows\system32\viscomswfenc.ax
2011-06-06 18:43 . 2009-09-22 20:22 48640 ----a-w- c:\windows\system32\viscomsamplerate.dll
2011-06-06 18:43 . 2009-09-22 20:22 147456 ----a-w- c:\windows\system32\viscomqtenc.dll
2011-06-06 18:43 . 2009-09-22 20:22 118784 ----a-w- c:\windows\system32\viscomrmenc.dll
2011-06-06 18:43 . 2009-09-22 20:22 602112 ----a-w- c:\windows\system32\viscomqtde.dll
2011-06-06 18:43 . 2009-09-22 20:22 1470464 ----a-w- c:\windows\system32\viscomm4aenc.dll
2011-06-06 18:43 . 2009-09-22 20:22 86016 ----a-w- c:\windows\system32\viscomframe.dll
2011-06-06 18:43 . 2009-09-22 20:22 1470464 ----a-w- c:\windows\system32\viscomdata3.dll
2011-06-06 18:43 . 2009-09-22 20:22 1462272 ----a-w- c:\windows\system32\viscomflvenc.dll
2011-06-06 18:43 . 2009-09-22 20:22 118784 ----a-w- c:\windows\system32\viscomflvdec.dll
2011-06-06 18:43 . 2009-09-22 20:22 1462272 ----a-w- c:\windows\system32\viscomdata1.dll
2011-06-06 18:43 . 2009-09-22 20:22 1454080 ----a-w- c:\windows\system32\viscomdata2.dll
2011-06-06 18:43 . 2009-09-22 20:22 18628608 ----a-w- c:\windows\system32\viscomavi.dll
2011-06-06 18:43 . 2009-09-22 20:22 94208 ----a-w- c:\windows\system32\viscomaudiodata.dll
2011-06-06 18:43 . 2009-09-22 20:22 1454080 ----a-w- c:\windows\system32\viscomamrenc.dll
2011-06-06 18:43 . 2009-09-22 20:22 110592 ----a-w- c:\windows\system32\viscomaudioencoder.dll
2011-06-06 18:43 . 2009-09-22 20:22 6963712 ----a-w- c:\windows\system32\videotrans.dll
2011-06-06 18:43 . 2009-09-22 20:22 1462272 ----a-w- c:\windows\system32\viscom3gpenc.dll
2011-06-06 18:43 . 2009-09-22 20:22 18599936 ----a-w- c:\windows\system32\videoencode.dll
2011-06-06 18:43 . 2009-09-22 20:22 262144 ----a-w- c:\windows\system32\VideoEdit.ocx
2011-06-06 18:43 . 2009-09-22 20:22 90112 ----a-w- c:\windows\system32\ssvideo.dll
2011-06-06 18:43 . 2009-09-22 20:22 421888 ----a-w- c:\windows\system32\RealMediaSplitter.ax
2011-06-06 18:43 . 2009-09-22 20:22 856064 ----a-w- c:\windows\system32\mpgfiltr.ax
2011-06-06 18:43 . 2009-09-22 20:22 1128128 ----a-w- c:\windows\system32\NMSDVDXU.dll
2011-06-06 18:43 . 2009-09-22 20:22 18595840 ----a-w- c:\windows\system32\coredata.dll
2011-05-22 13:13 . 2011-05-22 13:13 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-05-19 17:54 . 2011-05-19 17:55 25512 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2011-05-19 17:54 . 2011-05-19 17:55 13224 ----a-w- c:\windows\system32\drivers\ggflt.sys
2011-05-19 17:54 . 2011-05-19 17:55 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2011-05-10 18:12 . 2011-05-10 18:30 5640352 ----a-w- C:\برنامج تشغيل الفلاش.exe
2011-06-16 04:28 . 2011-07-30 06:05 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-05-20 177464]
"{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}"= "c:\program files\************\prxtb4sh2.dll" [2011-01-17 175912]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656]
"{9565115d-c7d6-46d3-bd63-b67b481a4368}"= "c:\program files\PageRage\prxtbPag0.dll" [2011-03-28 176936]
"{6778613D-616B-4A6C-9856-65DE943CF424}"= "c:\program files\FVD Suite\addons\IE\FVDToolbar.dll" [2011-02-05 473088]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
.
[HKEY_CLASSES_ROOT\clsid\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}]
.
[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
.
[HKEY_CLASSES_ROOT\clsid\{9565115d-c7d6-46d3-bd63-b67b481a4368}]
.
[HKEY_CLASSES_ROOT\clsid\{6778613d-616b-4a6c-9856-65de943cf424}]
[HKEY_CLASSES_ROOT\FVDToolbar.FVDSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{2B171655-A69C-5c18-B693-6CB5DC269D40}]
[HKEY_CLASSES_ROOT\FVDToolbar.FVDSearchHook]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}]
2011-01-17 14:54 175912 ----a-w- c:\program files\************\prxtb4sh2.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-10 23:51 3906656 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
2010-10-10 23:51 3906656 ----a-w- c:\program files\Softonic-Eng7\tbSoft.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9565115d-c7d6-46d3-bd63-b67b481a4368}]
2011-03-28 16:22 176936 ----a-w- c:\program files\PageRage\prxtbPag0.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-05-20 22:36 1258808 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F8C564CD-2FA0-4534-AF8D-52F3D054C0EF}]
2007-11-15 12:36 2293760 ----a-w- c:\program files\AmanLinks_Beta_0.0.4\AmanLinks_Beta_0.0.4_Lite\tbu08943\untitled.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-05-20 1258808]
"{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}"= "c:\program files\************\prxtb4sh2.dll" [2011-01-17 175912]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-10-10 3906656]
"{0C55A48A-97DC-4003-8729-7D0B159B40D3}"= "c:\program files\AmanLinks_Beta_0.0.4\AmanLinks_Beta_0.0.4_Lite\tbu08943\untitled.dll" [2007-11-15 2293760]
"{9565115d-c7d6-46d3-bd63-b67b481a4368}"= "c:\program files\PageRage\prxtbPag0.dll" [2011-03-28 176936]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
.
[HKEY_CLASSES_ROOT\clsid\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}]
.
[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CLASSES_ROOT\clsid\{0c55a48a-97dc-4003-8729-7d0b159b40d3}]
[HKEY_CLASSES_ROOT\TBSB09257.TBSB09257.3]
[HKEY_CLASSES_ROOT\TBSB09257.TBSB09257]
.
[HKEY_CLASSES_ROOT\clsid\{9565115d-c7d6-46d3-bd63-b67b481a4368}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{9565115D-C7D6-46D3-BD63-B67B481A4368}"= "c:\program files\PageRage\prxtbPag0.dll" [2011-03-28 176936]
"{09EC805C-CB2E-4D53-B0D3-A75A428B81C7}"= "c:\program files\************\prxtb4sh2.dll" [2011-01-17 175912]
"{0C55A48A-97DC-4003-8729-7D0B159B40D3}"= "c:\program files\AmanLinks_Beta_0.0.4\AmanLinks_Beta_0.0.4_Lite\tbu08943\untitled.dll" [2007-11-15 2293760]
.
[HKEY_CLASSES_ROOT\clsid\{9565115d-c7d6-46d3-bd63-b67b481a4368}]
.
[HKEY_CLASSES_ROOT\clsid\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}]
.
[HKEY_CLASSES_ROOT\clsid\{0c55a48a-97dc-4003-8729-7d0b159b40d3}]
[HKEY_CLASSES_ROOT\TBSB09257.TBSB09257.3]
[HKEY_CLASSES_ROOT\TBSB09257.TBSB09257]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\CFi]
@="{2DBD5D71-CBB7-41D1-B170-511646B170BD}"
[HKEY_CLASSES_ROOT\CLSID\{2DBD5D71-CBB7-41D1-B170-511646B170BD}]
2007-01-28 22:50 55296 ----a-w- c:\progra~1\CFi\SHELLT~1\CFiShlJP.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CFi ShellToys Utility Manager"="c:\program files\CFi\ShellToys\CFiShlMan.exe" [2008-01-03 44032]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2008-10-29 2606512]
"VistaIcon"="c:\program files\VistaDriveIcon\VistaDrv.exe" [2008-01-02 132096]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-03-01 472776]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2008-03-01 1443072]
"USB Antivirus"="c:\program files\USB Disk Security\USBGuard.exe" [2008-05-24 794624]
"Autorun Eater"="c:\program files\Autorun Eater\oldmcdonald.exe" [2008-11-27 501768]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-03 59392]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-03 208952]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 49152]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-09-24 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-09-24 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-09-24 137752]
"DrvIcon"="c:\program files\Vista Drive Icon\DrvIcon.exe" [2008-04-13 49152]
"assawsanaReader"="c:\documents and settings\munamuna\Local Settings\Apps\2.0\NH1DP5Y2.DTL\ZRLXVBEV.EH7\assa..tion_9c1c7f8c5e15d6b2_0001.0000_0865aa7080620218\assawsanaReader.exe" [2011-05-13 413696]
"Anti Mosquito"="C:\Anti Mosquito.exe" [2001-12-20 258048]
"ClocX"="c:\program files\ClocX\ClocX.exe" [2007-07-26 270336]
"TkBellExe"="c:\program files\Real\realplayer\update\realsched.exe" [2010-12-05 274608]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360]
"VistaIcon"="c:\program files\VistaDriveIcon\VistaDrv.exe" [2008-01-02 132096]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
BlueSoleil.lnk - c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe [2009-11-1 1048576]
Snagit 9.lnk - c:\program files\TechSmith\Snagit 9\Snagit32.exe [2009-1-22 7225672]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"NoSecCpl"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fsp_lmwl]
2007-02-22 05:21 43376 ----a-w- c:\windows\system32\fsp_lmwl.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"4shared Update"="c:\program files\4shared Desktop\checkUpdate.exe"
"WatchDog"=c:\program files\InterVideo\DVD Check\DVDCheck.exe
"PDVD9LanguageShortcut"="c:\program files\CyberLink\PowerDVD9\Language\Language.exe"
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" -osboot
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe"
"SweetIM"=c:\program files\SweetIM\Messenger\SweetIM.exe
"SynTPEnh"=c:\program files\Synaptics\SynTP\SynTPEnh.exe
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD9\\PowerDVD Cinema\\PowerDVDCinema.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD9\\PowerDVD9.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\games\\Alice\\Alice\\alice.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
.
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/05/04 16:00];c:\program files\CyberLink\PowerDVD9\000.fcl [28/02/2009 07:40 م 87536]
R2 BR_Launcher;BR_Launcher;c:\program files\Zain\Zain BroadBand\BRService.exe [30/12/2010 11:24 ص 104264]
R2 EAPPkt;Realtek EAPPkt Protocol;c:\windows\system32\drivers\EAPPkt.sys [23/03/2010 01:42 م 38144]
R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [21/12/2007 08:21 ص 468224]
R2 ezntsvc;EasyBits Magic Desktop Services for Windows NT;c:\windows\system32\ezntsvc.exe [20/11/2010 10:53 ص 33792]
R2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe -k netsvcs [03/08/2004 03:56 م 14336]
R2 jswpbapi;JumpStart Push-Button Service;c:\program files\TP-LINK\QSS\jswpbapi.exe [17/11/2009 06:13 م 188416]
R2 Scutum50;Scutum50 NDIS Protocol Driver;c:\windows\system32\drivers\Scutum50.sys [19/01/2011 12:13 ص 19072]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [27/10/2010 07:23 م 1483072]
R3 br_bandluxe_dc_enum;BandLuxe HSPA DC Enumerator;c:\windows\system32\drivers\br_bandluxe_dc_enum.sys [17/05/2010 04:56 م 82176]
R3 JSWSCIMD;jswscimd Service;c:\windows\system32\drivers\jswscimd.sys [17/11/2009 06:13 م 57440]
R3 LMPC4;LMPC4;c:\windows\system32\drivers\lmpc4.sys [02/12/2010 11:37 ص 10096]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [07/10/2010 02:34 م 10064]
S0 Shadow;Shadow; [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18/03/2010 01:16 م 130384]
S2 gupdate1caf0d5f051a224;Google Update Service (gupdate1caf0d5f051a224);c:\program files\Google\Update\GoogleUpdate.exe [10/05/2010 11:48 م 133104]
S3 AR9271;Wireless Network Adapter Service;c:\windows\system32\drivers\athuw.sys [17/11/2009 05:47 م 1668352]
S3 athrusb;TP-LINK Extensible Wireless LAN device driver;c:\windows\system32\drivers\athrusb.sys [20/04/2010 02:26 م 857600]
S3 br_bandluxe_cdc_acm;BandLuxe HSPA CDC-ACM driver;c:\windows\system32\drivers\br_bandluxe_cdc_acm.sys [17/05/2010 04:56 م 85888]
S3 br_bandluxe_cdc_ecm;br_bandluxe_cdc_ecm;c:\windows\system32\drivers\br_bandluxe_cdc_ecm.sys [17/05/2010 04:56 م 51072]
S3 br_bandluxe_cpo;BandLuxe HSPA Mass Storage Device;c:\windows\system32\drivers\br_bandluxe_cpo.sys [17/05/2010 04:56 م 9856]
S3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\DfSdkS.exe [06/01/2011 07:21 م 406016]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [19/05/2011 10:55 ص 13224]
S3 gupdatem;خدمة Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10/05/2010 11:48 م 133104]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup;c:\program files\TP-LINK\QSS\jswpsapi.exe [17/11/2009 06:13 م 360529]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18/03/2010 01:16 م 753504]
S3 ZD1211BU(TP-LINK);TL-WN322G Wireless USB Adapter Driver(TP-LINK);c:\windows\system32\drivers\ZD1211BU.sys [24/03/2010 12:07 ص 477696]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9C450606-ED24-4958-92BA-B8940C99D441}]
2009-03-04 23:32 8192 ----a-w- c:\program files\PixiePack Codec Pack\InstallerHelper.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-08-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-11 06:48]
.
2011-08-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-11 06:48]
.
2011-07-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1390067357-682003330-1003Core.job
- c:\documents and settings\munamuna\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-04-17 02:38]
.
2011-08-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1390067357-682003330-1003UA.job
- c:\documents and settings\munamuna\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-04-17 02:38]
.
2011-08-01 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-583907252-1390067357-682003330-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 19:33]
.
2011-07-18 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-583907252-1390067357-682003330-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 19:33]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ycomp/defaults/su/*

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

IE: &Download All using 4shared Desktop - c:\program files\4shared Desktop\down_all.htm
IE: &Download using 4shared Desktop - c:\program files\4shared Desktop\down_link.htm
IE: &Save Flash In This Page - c:\progra~1\Flash Saver 4.0\save.htm
IE: &تصدير إلى Microsoft Excel - c:\progra~1\MI1933~1\Office10\EXCEL.EXE/3000
IE: Google Sidewiki...
IE: Open using &Advanced JPEG Compressor - c:\program files\Advanced JPEG Compressor\ajcieex.htm
IE: Search - c:\program files\FVD Suite\addons\IE\FVDToolbar.dll/IECONTEXT.DLL.HTM
IE: Sothink SWF Catcher - c:\program files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
IE: الدليل السريع - c:\windows\ww80.html
IE: تحميل الكل بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEGetVL.htm
IE: {{46012075-ED62-464b-9554-AD0BEC35D1EC} -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

IE: {{46012076-ED62-464b-9554-AD0BEC35D1EC}
IE: {{C1E3533C-70F6-4f36-B97C-032C8A5EE759}
DPF: Microsoft XML Parser for Java
FF - ProfilePath - c:\documents and settings\munamuna\Application Data\Mozilla\Firefox\Profiles\bjq9dq8g.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=IEFM1&q=
FF - prefs.js: browser.search.selectedEngine - Google Custom Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.jo/
FF - prefs.js: keyword.URL - hxxp://start.flashvideodownloader.org/result.php?cx=partner-pub-5087362176467115:lyglkqaff6i&cof=FORID:10&ie=ISO-8859-1&sa=Search&q=
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)
URLSearchHooks-{707db484-2428-402d-afb5-d85b387544c7} - (no file)
URLSearchHooks-{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - (no file)
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
BHO-{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - (no file)
Toolbar-{707db484-2428-402d-afb5-d85b387544c7} - (no file)
Toolbar-{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - (no file)
Toolbar-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-10 - (no file)
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
ShellExecuteHooks-UPB:{067B597C-C099-4A08-A180-E5FEC5DCF2DF} - (no file)
Notify-WgaLogon - (no file)
HKLM_ActiveSetup-{F93F1BA6-1EAF-FBCB-4321-9963C3869E41} - c:\program files\Bifrost\server.exe
AddRemove-{889DF117-14D1-44EE-9F31-C5FB5D47F68B} - c:\docume~1\ALLUSE~1\APPLIC~1\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

Rootkit scan 2011-08-01 06:51
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Anti Mosquito = C:\Anti Mosquito.exe???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):14,2d,52,90,2b,b8,a8,b1,4f,7f,5d,f2,e2,f1,c4,5d,3e,55,16,0b,ee,
70,71,8f,5d,3f,0a,a6,94,52,0a,4e,a1,ed,7c,c2,0b,16,ab,b1,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{d708e37d-17eb-43b9-94e2-82e85ffb8aba}]
@Denied: (Full) (Everyone)
"Model"=dword:0000014e
"Therad"=dword:0000000f
"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,
38,95,44,85,b1,12,f9,90,dd,23,a1,49,8c,bf,1a,9d,fe,41,71,cb,3f,46,a4,7c,ab,\
.
[HKEY_LOCAL_MACHINE\software\Classes\giffile\shell\Open\ddeexec]
@DACL=(02 0000)
@="\"file:%1\",,-1,,,,,"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(684)
c:\windows\system32\fsp_lmwl.dll
.
- - - - - - - > 'explorer.exe'(3696)
c:\program files\RocketDock\RocketDock.dll
c:\progra~1\CFi\SHELLT~1\CFiShlJP.dll
c:\program files\Internet Download Manager\idmmkb.dll
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\browselc.dll
c:\program files\Internet Download Manager\IDMIECC.dll
c:\progra~1\Flash2X\FLASHP~1\FLASHP~1.DLL
c:\program files\Microsoft Office\Office10\msohev.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\IVT Corporation\BlueSoleil\BTNtService.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Autorun Eater\billy.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
c:\windows\system32\wscntfy.exe
c:\program files\TechSmith\Snagit 9\TSCHelp.exe
c:\program files\TechSmith\Snagit 9\SnagPriv.exe
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\TechSmith\Snagit 9\snagiteditor.exe
c:\program files\Internet Download Manager\IEMonitor.exe
.
**************************************************************************
.
Completion time: 2011-08-01 06:55:06 - machine was rebooted
ComboFix-quarantined-files.txt 2011-08-01 13:55
.
Pre-Run: 21,819,006,976 bytes free
Post-Run: 21,702,455,296 bytes free
.
- - End Of File - - FA921CCE52862FCC90318A9D881B1CFD

MAAX · 1 أغسطس 2011

عندك باتش اختراق
اعمل الفحص التالي

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

bent_almarah · 4 أغسطس 2011

جاري الفحص وان شاء الله خير

bent_almarah · 5 أغسطس 2011

سويت اللي طلبته مني بس ما انحلت المشكلة
وهاي التقرير

Malwarebytes' Anti-Malware 1.51.0.1200

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

Database version: 6705

Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2462.0000

05/08/2011 11:04:43 ص
mbam-log-2011-08-05 (11-04-43).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|H:\|)
Objects scanned: 298912
Time elapsed: 1 hour(s), 25 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 194

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SETUP.EXE (PUP.WEPKey) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\program files\desktop icon toy\desktop.icon.toy.2.2-patch.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
c:\program files\dllerrorsfix\dllerrorsfix-patch.exe (PUP.Hacktool.Patcher) -> Quarantined and deleted successfully.
c:\program files\easy dvd creator\keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\program files\ebook workshop\manual.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
c:\program files\Real\realplayer\Patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\program files\WinRAR\winrar.3.x إنسخ الملف إلى وينرار وشغله.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
c:\documents and settings\munamuna\application data\thinstall\microsoft text-to-speech engine 4.0 (english)\4000005e00002i\vcmd.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\documents and settings\munamuna\application data\thinstall\readiris pro 11 mr.underground edition\300000003400002i\dwwin.exe (Rootkit.Dropper) -> Quarantined and deleted successfully.
c:\documents and settings\munamuna\application data\thinstall\readiris pro 11 mr.underground edition\400000600002i\acrord32info.exe (Rootkit.Dropper) -> Quarantined and deleted successfully.
c:\documents and settings\munamuna\application data\thinstall\readiris pro 11 mr.underground edition\400000a00002i\hh.exe (Rootkit.Dropper) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\program files\Bifrost\server.exe.vir (Malware.Packer.Gen) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\lncom_.exe.vir (PUP.WirelessKeyView) -> Quarantined and deleted successfully.
c:\Qoobox\quarantine\C\WINDOWS\system32\ymsg12encrypt.dll.vir (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{c933e750-b890-4aea-9776-e88ccfd2a649}\RP64\A0095509.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{c933e750-b890-4aea-9776-e88ccfd2a649}\RP64\A0095612.exe (PUP.Hacktool.Patcher) -> Quarantined and deleted successfully.
c:\system volume information\_restore{c933e750-b890-4aea-9776-e88ccfd2a649}\RP64\A0095615.exe (PUP.Hacktool.Patcher) -> Quarantined and deleted successfully.
c:\system volume information\_restore{c933e750-b890-4aea-9776-e88ccfd2a649}\RP64\A0095617.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{c933e750-b890-4aea-9776-e88ccfd2a649}\RP70\A0098307.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{c933e750-b890-4aea-9776-e88ccfd2a649}\RP70\A0098311.exe (PUP.WirelessKeyView) -> Quarantined and deleted successfully.
c:\system volume information\_restore{c933e750-b890-4aea-9776-e88ccfd2a649}\RP70\A0098317.dll (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\fusionbuttons.ocx (Hacktool.KewlButtonz) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\kewlbuttonz.ocx (Hacktool.KewlButtonz) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\important.ocx (Hacktool.KewlButtonz) -> Quarantined and deleted successfully.
d:\العاب\armada tanks 1.0 - portable\armada tanks 1.0 - portable.exe (Trojan.Agent) -> Quarantined and deleted successfully.
d:\العاب\العاب فلاش\اجمل العاب الفلاش\king-of-the-hill.exe (Spyware.Passwords) -> Quarantined and deleted successfully.
d:\العاب\العاب فلاش\اجمل العاب الفلاش\حطم.EXE (Joke.Stressreducer) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\تفسير ابن كثير.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\قصص مؤثرة للشباب.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\لا تحزن.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\مع القرآن ومراحله.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\مكتبة الامام النووي.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\مكتية ابن حزم الأندلسي.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\موسوعة علوم القرآن.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\فتاوي ابن تيمية\fatawee ibntaimiah.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب اسلامية\فتاوي اللجنة والامامين\fatawaa lajna wa imameen.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب نفسية\سيكولوجية السعادة.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتب نفسية\آفات على الطريق (أربعة أجزاء) في كتاب.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\3ebrah.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\jammel_v200.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\medad qalam.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\sheif taira.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\أهــــل الهـــمة.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\امراة وراء القضبان.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\ثلاثون سبب للسعادة.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\رومنسيات زوجية.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\ضحايا الحب.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\قصص الالنبياء.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\مقولات في تطوير الذات وعلم النس.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\كتبي\هــكذا أســلموا.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\لغة انكليزية\تعلم الانجليزية.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\أختي في الثانوية.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\أسعد إمرأة في العالم.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\الاجمال في تربية الاجيال.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\الانتصار على العادة السرية.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\تحفة العروسين.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\فضائح الفتن.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\كشكول الأسرة.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\كيف تحفظ القرآن.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\محاضرات تربية الأولاد.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الامومة والطفل والاسرة\نصائح في تربية الأولاد.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\السياسة\شاهد على العصر مع الشيخ احمد ياسين.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الشعر والادب\الأذكياء.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الشعر والادب\عمر المختار ـ الصلابي.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الشعر والادب\لافتات ـ أحمد مطر.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الطبخ\تعلم كل انواع الطبخ العربي.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\كتب\الطبخ\كتاب ما لذ وطاب.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\موبايل\برامج الكمبيوتر الخاصة بالموبايل\Tools\برامج القص وتحويل الاغاني\acoustica mp3towave converter plus v2.22\mp3towave_crk.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
d:\RECYCLER\s-1-5-21-1454471165-1644491937-839522115-500\Dd2231\الدرس الخامس_files\flowers17.gif (Extension.Mismatch) -> Quarantined and deleted successfully.
d:\برامج\ملف.exe (HackTool.Shutdown) -> Quarantined and deleted successfully.
d:\برامج\كتب\عمل قناة إذاعية متطورة.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\ebook_workshop_v-1.4.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\007spy_1.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\access_8_9.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\ace_utilities_2.5.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\ad_aware_professional.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\array_explain_microsoft_word .exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\axialis_icon_workshop.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\backup&restore_forxp.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\basic_excel_lessons.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\comment_activespeed_2_1.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\comment_business_card_designer_plus.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\dars_marwaha.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\definite-area-specification-way-of-all-an-using-by-your-syst.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\del_partition_resize.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\dont_dump_any_picture.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\earth_design.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\excel_average_function.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\excel_lists_rhomd_explain.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\explain_windows_vaccine_3_0.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\explicated_panda_2005.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\fonts_design.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\f_secure_2006_full.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\f_secure_internet_security_2005.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\hardware1.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\how_to_shut-out_cookies.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\install_winxp_office_arbic_modem_vga_internet_conjunction.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\kellk_2000.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\learn_microsoft_access.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\make_pro_style.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\make_rain.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\making_background.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\making_blinker_moved.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\mindsoft_utlty_xp_8.11.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\ms_windows_defender_beta.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\pest_patrol.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\pe_builder_3032.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\photoshop_best_back ground.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\photoshop_cars_speed.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\registry_mechanic.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\registry_repair_2005 .exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\shrh_dos.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\swish.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\target_point.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\users_groups_win_xp.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\visualizer_photo_resize.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\vmware_4.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\win xp.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\win2000.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\السلسلة التعليمية للفوتوشوب.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\تعرّف على أجزاء الحاسوب - هارد وير.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح بالصور لخيارات الإنترنت.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج avg anti virus.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج baze media pro v. 5.0 لتحرير الفيديو و الصور.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج bullet proof ftp server.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج comment system machanic v4.1 للتحكم بالوندز.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج getright.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج norton ghost 8.0 لصنع و استعادة صورة من نظام التش.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج parition manager 2003.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج real draw pro v.0.8.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج realplayer v.10 gold full.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج vcd cutter.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج vmware workstation.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج xing mpeg encoder.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح تركيب الدوس 7.1.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح طريقة تحويل صيغة الصوت من ram الى wav بدون برامج مع التع.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح قوائم إكسل.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح لخمسة برامج ftp.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\كيفية عمل شبكة منزلية صغيرة.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\مكونات الحاسوب تفاصيل نصائح تجميع.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\computer devices_allabout.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\google mail.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\power_point_ 2_ flash.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\المشاغب\شرح برنامج 3d & 2d animator.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\المواقع في الفوتوشوب.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\عمل نص متغير الالوان.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\فوتوشوب\طرق تعليمية\كيفية انشاء تاثير ترابي متحجر في الفوتوشوب_files\aragau.gif (Extension.Mismatch) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\فوتوشوب\طرق تعليمية\كيفية انشاء تاثير ترابي متحجر في الفوتوشوب_files\top_logout2.gif (Extension.Mismatch) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\فوتوشوب\طرق تعليمية\كيفية تصميم مسمار لولبي في الفوتوشوب_files\screw_3.gif (Extension.Mismatch) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\كتب فوتوشوب\adobephotoshopbook_1.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\كتب فوتوشوب\learn.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\كتب فوتوشوب\mopark alosimi.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\كتب فوتوشوب\waleed_book2.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\كتب فوتوشوب\سلسلة دروس المبتدئين.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\فوتوشوب\كتب فوتوشوب\شرح الفوتوشوب الكامل.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\كتاب شروحات المنتديات\كتاب شروحات المنتديات - الإصدار 1.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\كتاب شروحات المنتديات\كتاب شروحات المنتديات - الإصدار 2.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\كتاب شروحات المنتديات\كتاب شروحات المنتديات - الإصدار 3.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\كتاب شروحات المنتديات\كتاب شروحات المنتديات - الإصدار 4.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\كتب\كتاب شروحات المنتديات\كتاب شروحات المنتديات - الإصدار 5.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\برامج اختراق ويرلس\wireless wep key password spy\Setup.exe (PUP.WEPKey) -> Quarantined and deleted successfully.
d:\برامج\برامج التصميم\برنامج عمل البوم فلاشي\Keygen.exe (Trojan.Dropper.PGen) -> Quarantined and deleted successfully.
d:\برامج\برامج التصميم\برنامج عمل البوم فلاشي\sothink swf decompiler v4.1 build 80421.exe (Trojan.Dropper.PGen) -> Quarantined and deleted successfully.
d:\برامج\برامج التصميم\عمل توقيع باليد\signature.creator.1.12.0.43-patch.exe (PUP.Hacktool.Patcher) -> Quarantined and deleted successfully.
d:\برامج\برامج التصميم\لتحويل الصور الإعتيادية إلى كرتونية\Register\Patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
d:\برامج\برامج التصميم\لعمل أفلام من صورة الخاصة وإضافة المؤثرات عليها\Register\Patch.exe (Malware.NSPack) -> Quarantined and deleted successfully.
d:\برامج\برامج عربية\صانع شهادات التقدير 1.55\frame1.5\صانع شهادات التقدير 1.55.exe (Trojan.StartPage) -> Quarantined and deleted successfully.
d:\برامج\برامج مكتبية\desktop ico دلع ايقونات\الكراك\desktop.icon.toy.2.2-patch.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
d:\برامج\برامج ممتعة وخفيفة\التقويم.exe (Trojan.Banker) -> Quarantined and deleted successfully.
d:\برامج\انتي فيروس\eset_smartsecurity_3.0.645.0_32bit_setup\eset_n32_av.0.68_beta youssef middown\eset login viewer v1.3.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
d:\برامج\انتي فيروس\eset_smartsecurity_3.0.645.0_32bit_setup\eset_n32_av.0.68_beta youssef middown\eset serials.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
d:\برامج\انتي فيروس\eset_smartsecurity_3.0.645.0_32bit_setup\الاهم\eset login viewer v1.3.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
d:\برامج\انتي فيروس\للتغلب على فيروس اوتورن\autorun.virus.remover.v2.3.build.0618\patch.exe (PUP.Hacktool.Patcher) -> Quarantined and deleted successfully.
d:\برامج\عمل كتاب الكتروني\عمل كتاب الكتروني\web_exe_v-1.5.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\عمل كتاب الكتروني\كتاب الكتروني\الجامعة نت\jammel v1.0.0.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\عمل كتاب الكتروني\كتاب الكتروني\طلاب اليرموك\jammel v1.0.0.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\عمل كتاب الكتروني\كتاب الكتروني\نور العرب\jammel v1.0.0.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\اسلامية\موسوعة إسلامية\almoeasr.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\اسلامية\موسوعة إسلامية\تفسير ابن كثير.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\اسلامية\موسوعة إسلامية\فتاوي ابن تيمية.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\الصوتيات والفيديو\شرح فتح أى شىء بدون ماوس ولاكيبورد من مايكروسوفت وبالصوت.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\الصوتيات والفيديو\windows movie maker العربي الجديد\win_movie_maker_2.0.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\برامج\الصوتيات والفيديو\New Con\easy dvd creator v1.7\Patch\keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
d:\برامج\الصوتيات والفيديو\real player\realplayer sp 12.0.0.297 final\betamaster activator\Patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
d:\برامج\انترنت\برنامج لتنزيل الفيديو من موقع يوتب\keymaker.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
d:\برامج\انترنت\برامج فيس بوك\دردشة فيس بوك.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
d:\برامج\حفظ النظام\لترخيص الويندوز.exe (PUP.RemoveWGA) -> Quarantined and deleted successfully.
d:\برامج\حفظ النظام\xtratools 2007\keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
d:\برامج\حفظ النظام\تصليح اخطاء النظام\erpsetup.exe (Rogue.ErrorRepairProfessional) -> Quarantined and deleted successfully.
d:\برامج\خطوط\Fonts\أداة تمكنك من استعراض جميع الخطوط المثبته على نظامك\tool_to_view_installed_fonts_in_pc.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\رياض الاطفال\الطفولة مشاكل وحلول.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\رياض الاطفال\ـ 99 نصيحة للتعامل مع الأطفال.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\رياض الاطفال\مقالات مفيدة في تربية الأبناء.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
d:\رياض الاطفال\قصص اطفال\قصص متنوعة للأطفال ـ خفايا الروح.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\homepage.txt (Stolen.Data) -> Quarantined and deleted successfully.

MAAX · 5 أغسطس 2011

حمل الاداة من هذا الموضوع

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

واعمل تقرير هايجاك + قائمة البرامج المثبتة

bent_almarah · 6 أغسطس 2011

تقرير هايجاك

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:09:05 ص, on 07/08/2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.17184)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\Program Files\Code Red\AirStop Wireless v2.5.0\AirStopWSVC.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Zain\Zain BroadBand\BRService.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Autorun Eater\oldmcdonald.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\windows\system32\igfxtray.exe
C:\windows\system32\hkcmd.exe
C:\windows\system32\igfxpers.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\windows\system32\igfxsrvc.exe
C:\Anti Mosquito.exe
C:\Program Files\ClocX\ClocX.exe
C:\program files\code red\airstop wireless v2.5.0\AirStopWireless.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Autorun Eater\billy.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
C:\Program Files\TechSmith\Snagit 9\Snagit32.exe
C:\Program Files\TechSmith\Snagit 9\TSCHelp.exe
C:\Program Files\TechSmith\Snagit 9\SnagPriv.exe
C:\Program Files\TechSmith\Snagit 9\snagiteditor.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\windows\system32\ezNTSvc.exe
C:\Program Files\TP-LINK\QSS\jswpbapi.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\windows\system32\wscntfy.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Zain\Zain BroadBand\CManager.exe
C:\Documents and Settings\munamuna\Local Settings\Apps\2.0\NH1DP5Y2.DTL\ZRLXVBEV.EH7\assa..tion_9c1c7f8c5e15d6b2_0001.0000_0865aa7080620218\assawsanaReader.exe
C:\windows\explorer.exe
C:\Zyzoom_Forum_Tools\zyzoom.exe
C:\Zyzoom_Forum_Tools\zHijak.com

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
R3 - URLSearchHook: ************ Toolbar - {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - C:\Program Files\************\prxtb4sh2.dll
R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll
R3 - URLSearchHook: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - C:\Program Files\PageRage\prxtbPag0.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: FVDSearchHook Class - {6778613D-616B-4A6C-9856-65DE943CF424} - C:\Program Files\FVD Suite\addons\IE\FVDToolbar.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll
O2 - BHO: ************ - {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - C:\Program Files\************\prxtb4sh2.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Open FVD Suite Toolbar - {2B171655-A69C-5c18-B693-6CB5DC269D44} - C:\Program Files\FVD Suite\addons\IE\FVDToolbar.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.31.6\bh\BabylonToolbar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: PageRage - {9565115d-c7d6-46d3-bd63-b67b481a4368} - C:\Program Files\PageRage\prxtbPag0.dll
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O2 - BHO: (no name) - {C90DBB52-46E0-4E65-92BC-799ADEE54C86} - C:\PROGRA~1\Flash2X\FLASHP~1\FLASHP~1.DLL
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1308.0\msneshellx.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: TBSB09257 - {F8C564CD-2FA0-4534-AF8D-52F3D054C0EF} - C:\Program Files\AmanLinks_Beta_0.0.4\AmanLinks_Beta_0.0.4_Lite\tbu08943\untitled.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1308.0\msneshellx.dll
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll
O3 - Toolbar: ************ Toolbar - {09ec805c-cb2e-4d53-b0d3-a75a428b81c7} - C:\Program Files\************\prxtb4sh2.dll
O3 - Toolbar: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: AmanLinks_Beta_0.0.4 - {0C55A48A-97DC-4003-8729-7D0B159B40D3} - C:\Program Files\AmanLinks_Beta_0.0.4\AmanLinks_Beta_0.0.4_Lite\tbu08943\untitled.dll
O3 - Toolbar: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - C:\Program Files\PageRage\prxtbPag0.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: FVD Suite Toolbar - {2B171655-A69C-5c18-B693-6CB5DC269D41} - C:\Program Files\FVD Suite\addons\IE\FVDToolbar.dll
O3 - Toolbar: &Save Flash - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files\Save Flash\SaveFlash.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.31.6\BabylonToolbarTlbr.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [Autorun Eater] C:\Program Files\Autorun Eater\oldmcdonald.exe
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [assawsanaReader] C:\Documents and Settings\munamuna\Local Settings\Apps\2.0\NH1DP5Y2.DTL\ZRLXVBEV.EH7\assa..tion_9c1c7f8c5e15d6b2_0001.0000_0865aa7080620218\assawsanaReader.exe
O4 - HKLM\..\Run: [Anti Mosquito] C:\Anti Mosquito.exe
O4 - HKLM\..\Run: [ClocX] C:\Program Files\ClocX\ClocX.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [AirStopWireless] "c:\program files\code red\airstop wireless v2.5.0\AirStopWireless.exe"
O4 - HKLM\..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart
O4 - HKCU\..\Run: [CFi ShellToys Utility Manager] "C:\Program Files\CFi\ShellToys\CFiShlMan.exe" -start
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [VistaIcon] C:\Program Files\VistaDriveIcon\VistaDrv.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\munamuna\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [MediaGet2] C:\Documents and Settings\munamuna\Local Settings\Application Data\MediaGet2\mediaget.exe --minimized
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [VistaIcon] C:\Program Files\VistaDriveIcon\VistaDrv.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Snagit 9.lnk = C:\Program Files\TechSmith\Snagit 9\Snagit32.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Download All using 4shared Desktop - C:\Program Files\4shared Desktop\down_all.htm
O8 - Extra context menu item: &Download using 4shared Desktop - C:\Program Files\4shared Desktop\down_link.htm
O8 - Extra context menu item: &Save Flash In This Page - C:\PROGRA~1\Flash Saver 4.0\save.htm
O8 - Extra context menu item: &تصدير إلى Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Open using &Advanced JPEG Compressor - C:\Program Files\Advanced JPEG Compressor\ajcieex.htm
O8 - Extra context menu item: Search - res://C:\Program Files\FVD Suite\addons\IE\FVDToolbar.dll/IECONTEXT.DLL.HTM
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
O8 - Extra context menu item: الدليل السريع - C:\windows\ww80.html
O8 - Extra context menu item: تحميل الكل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\Flash Saver 4.0\save.htm (file missing)
O9 - Extra 'Tools' menuitem: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\Flash Saver 4.0\save.htm (file missing)
O9 - Extra button: تدوين هذا في المدونة - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &تدوين هذا في Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: الدليل - {46012075-ED62-464b-9554-AD0BEC35D1EC} -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

(file missing)
O9 - Extra button: (no name) - {46012076-ED62-464b-9554-AD0BEC35D1EC} - C:\windows\system32\shdocvw.dll
O9 - Extra button: C-SMS - {C1E3533C-70F6-4f36-B97C-032C8A5EE759} - C:\windows\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Send an SMS using C-SMS - {C1E3533C-70F6-4f36-B97C-032C8A5EE759} - C:\windows\system32\shdocvw.dll
O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O9 - Extra 'Tools' menuitem: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Open FVD Suite Toolbar - {2B171655-A69C-5c18-B693-6CB5DC269D43} - C:\Program Files\FVD Suite\addons\IE\FVDToolbar.dll (HKCU)
O9 - Extra 'Tools' menuitem: Open FVD Suite Toolbar - {2B171655-A69C-5c18-B693-6CB5DC269D43} - C:\Program Files\FVD Suite\addons\IE\FVDToolbar.dll (HKCU)
O18 - Protocol: hddlife - {BD758015-47D9-477A-8873-4B688A2BC0E2} - "C:\Program Files\Common Files\BinarySense\hlAPP.dll" (file missing)
O20 - Winlogon Notify: fsp_lmwl - fsp_lmwl.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\windows\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: ASTPWSVC - Unknown owner - C:\Program Files\Code Red\AirStop Wireless v2.5.0\AirStopWSVC.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: BR_Launcher - BandRich Inc. - C:\Program Files\Zain\Zain BroadBand\BRService.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\Dfsdks.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: EasyBits Magic Desktop Services for Windows NT (ezntsvc) - EasyBits Software Corp. - C:\windows\system32\ezNTSvc.exe
O23 - Service: Google Update Service (gupdate1caf0d5f051a224) (gupdate1caf0d5f051a224) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: خدمة Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HDDlife HDD Access service - BinarySense, Inc. - C:\Program Files\Common Files\BinarySense\hldasvc.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: JumpStart Push-Button Service (jswpbapi) - Wireless - C:\Program Files\TP-LINK\QSS\jswpbapi.exe
O23 - Service: JumpStart Wi-Fi Protected Setup (jswpsapi) - wireless - C:\Program Files\TP-LINK\QSS\jswpsapi.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

--
End of file - 17020 bytes

bent_almarah · 6 أغسطس 2011

قائمة البرامج المثبتة

====== معلومات نظام التشغيل ======

X86 WIN_XP 2600 Service Pack 2

====== قائمة البرامج المثبتة ======

4shared Desktop
************ Toolbar
ACDSee Photo Manager 2009
Active@ File Recovery
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader X - Arabic
AirStop Wireless v2.5.0
Allok 3GP PSP MP4 iPod Video Converter 4.1.0422
AmanLinks_Beta_0.0.4
AnyReader 1.6
AscToHTM
Ashampoo WinOptimizer 2010 Advanced
Autorun Eater v2.3
AviSynth 2.5
AVS Document Converter 1.0.2
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.4
Babylon
Babylon toolbar on IE
BlueSoleil
Bombard Deluxe
BoneLab
Broadcom 802.11 Wireless LAN Adapter
CFi ShellToys v6.2.1
Chinese (Simplified) Language Support
ClocX (1.5b2)
Compatibility Pack for the 2007 Office system
Conduit Engine
Conexant HD Audio
Crystalize! (remove only)
CyberLink PowerDVD 9
CyberLink PowerDVD 9
DAMN NFO Viewer 2.10.0031 RC3
Dealio Toolbar v4.0.2
DietMP3 4.03.00
DVD Ripper 4
Easy DVD Creator 1.7.10
eBook Workshop version v1.4
ESET Smart Security
Express English
FastStone Photo Resizer 2.4
Flash Intro and Banner Maker 2.1.90
FVD Suite 2.5.1.1
Go-Go Gourmet
Google Update Helper
Happy Hour
Harvest Mania To Go
HijackThis 1.99.1
HP Quick Launch Buttons 6.30 A3
HP Update
HP Wireless Assistant
iCF Skin Pack
iColorFolder
ImageShack Uploader 2.2.0
Intel(R) Graphics Media *********** Driver
Intel(R) Network Connections Drivers
InterVideo DVD Check
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6
Junk Mail filter update
K-Lite Codec Pack 4.7.5 (Full)
KP-Anti Mosquitoes
Lock My PC 4.3
LUXOR 2
Macromedia Flash MX
Maxidix Wifi Suite version 11.6
MediaGet2 version 2.1.898.0
Microsoft .NET Compact Framework 3.5
Microsoft .NET Framework 1.1
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - ARA
Microsoft .NET Framework 3.0
Microsoft .NET Framework 3.0
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5 Language Pack - ARA
Microsoft .NET Framework 3.5 Language Pack - ara
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Office XP Professional with FrontPage
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Windows Media Video 9 VCM
Movavi Flash Converter
Mozilla Firefox 5.0 (x86 ar)
MP3 Converter V4.5.2
MSN Toolbar
MSVCRT
MSXML 6.0 Parser
Nanny 911
Nero 9.0.9.4 Lite
One-click Ringtone Converter
PixiePack Codec Pack
QSS Installation Program
QSS Installation Program
Real Alternative 1.9.0 Lite
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
RealUpgrade 1.1
Right Click Image Converter
RocketDock 1.3.5
Samy Soft Radio 3.0
Samy TV 2011
Sandlot Games Client Services
Save Flash 4.3
Segoe UI
Snagit 9.1.1
Snowy Space Trip
Sothink SWF Quicker
SpeedConnect Connection Tester
SpeedFan (remove only)
Sprill
SweetIM for Messenger 2.7
Swiff Player 1.1
Synaptics Pointing Device Driver
TOEFL Sample Questions
TuneUp Utilities 2011
TuneUp Utilities 2011
TuneUp Utilities Language Pack (en-US)
Uniblue SpeedUpMyPC
Unlocker 1.8.7
USB Disk Security 5.0.0.60
Vista Drive Icon
Vista Drive Icon 1.4
Vocaboly 2.1
Water Bugs
WebFldrs XP
WiFi Hopper
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 8 Beta 1
Windows Live Communications Platform
Windows Live Essentials
Windows Live Essentials
Windows Live Messenger
Windows Live Toolbar
Windows Live Writer
Windows Media Format 11 runtime
Windows Media Player Firefox Plugin
WinRAR 4.00 beta 4 (32-bit)
WinXP Manager
WinXP Manager
Xilisoft DVD Ripper Ultimate
XP Repair Pro 4.0
Your Uninstaller! 2010
Zain BroadBand
أداة التحميل Windows Live Upload Tool
أمان العائلة في Windows Live
أوزو ميديا 9.0
أوزو ميديا لتحويل الصوتيات والفيديو 8
بريد Windows Live
دليل الهاتف
مساعد تسجيل الدخول إلى Windows Live
معرض صور Windows Live

bent_almarah · 6 أغسطس 2011

قائمة البرامج المثبتة

====== معلومات نظام التشغيل ======

X86 WIN_XP 2600 Service Pack 2

====== قائمة البرامج المثبتة ======

4shared Desktop
************ Toolbar
ACDSee Photo Manager 2009
Active@ File Recovery
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader X - Arabic
AirStop Wireless v2.5.0
Allok 3GP PSP MP4 iPod Video Converter 4.1.0422
AmanLinks_Beta_0.0.4
AnyReader 1.6
AscToHTM
Ashampoo WinOptimizer 2010 Advanced
Autorun Eater v2.3
AviSynth 2.5
AVS Document Converter 1.0.2
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.4
Babylon
Babylon toolbar on IE
BlueSoleil
Bombard Deluxe
BoneLab
Broadcom 802.11 Wireless LAN Adapter
CFi ShellToys v6.2.1
Chinese (Simplified) Language Support
ClocX (1.5b2)
Compatibility Pack for the 2007 Office system
Conduit Engine
Conexant HD Audio
Crystalize! (remove only)
CyberLink PowerDVD 9
CyberLink PowerDVD 9
DAMN NFO Viewer 2.10.0031 RC3
Dealio Toolbar v4.0.2
DietMP3 4.03.00
DVD Ripper 4
Easy DVD Creator 1.7.10
eBook Workshop version v1.4
ESET Smart Security
Express English
FastStone Photo Resizer 2.4
Flash Intro and Banner Maker 2.1.90
FVD Suite 2.5.1.1
Go-Go Gourmet
Google Update Helper
Happy Hour
Harvest Mania To Go
HijackThis 1.99.1
HP Quick Launch Buttons 6.30 A3
HP Update
HP Wireless Assistant
iCF Skin Pack
iColorFolder
ImageShack Uploader 2.2.0
Intel(R) Graphics Media *********** Driver
Intel(R) Network Connections Drivers
InterVideo DVD Check
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6
Junk Mail filter update
K-Lite Codec Pack 4.7.5 (Full)
KP-Anti Mosquitoes
Lock My PC 4.3
LUXOR 2
Macromedia Flash MX
Maxidix Wifi Suite version 11.6
MediaGet2 version 2.1.898.0
Microsoft .NET Compact Framework 3.5
Microsoft .NET Framework 1.1
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - ARA
Microsoft .NET Framework 3.0
Microsoft .NET Framework 3.0
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5 Language Pack - ARA
Microsoft .NET Framework 3.5 Language Pack - ara
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Office XP Professional with FrontPage
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Windows Media Video 9 VCM
Movavi Flash Converter
Mozilla Firefox 5.0 (x86 ar)
MP3 Converter V4.5.2
MSN Toolbar
MSVCRT
MSXML 6.0 Parser
Nanny 911
Nero 9.0.9.4 Lite
One-click Ringtone Converter
PixiePack Codec Pack
QSS Installation Program
QSS Installation Program
Real Alternative 1.9.0 Lite
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
RealUpgrade 1.1
Right Click Image Converter
RocketDock 1.3.5
Samy Soft Radio 3.0
Samy TV 2011
Sandlot Games Client Services
Save Flash 4.3
Segoe UI
Snagit 9.1.1
Snowy Space Trip
Sothink SWF Quicker
SpeedConnect Connection Tester
SpeedFan (remove only)
Sprill
SweetIM for Messenger 2.7
Swiff Player 1.1
Synaptics Pointing Device Driver
TOEFL Sample Questions
TuneUp Utilities 2011
TuneUp Utilities 2011
TuneUp Utilities Language Pack (en-US)
Uniblue SpeedUpMyPC
Unlocker 1.8.7
USB Disk Security 5.0.0.60
Vista Drive Icon
Vista Drive Icon 1.4
Vocaboly 2.1
Water Bugs
WebFldrs XP
WiFi Hopper
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 8 Beta 1
Windows Live Communications Platform
Windows Live Essentials
Windows Live Essentials
Windows Live Messenger
Windows Live Toolbar
Windows Live Writer
Windows Media Format 11 runtime
Windows Media Player Firefox Plugin
WinRAR 4.00 beta 4 (32-bit)
WinXP Manager
WinXP Manager
Xilisoft DVD Ripper Ultimate
XP Repair Pro 4.0
Your Uninstaller! 2010
Zain BroadBand
أداة التحميل Windows Live Upload Tool
أمان العائلة في Windows Live
أوزو ميديا 9.0
أوزو ميديا لتحويل الصوتيات والفيديو 8
بريد Windows Live
دليل الهاتف
مساعد تسجيل الدخول إلى Windows Live
معرض صور Windows Live

KoNaMi · 6 أغسطس 2011

من اضافة وازالة البرامج احذفي

4shared Desktop
************ Toolbar
Dealio Toolbar v4.0.2

وايضا احذفي جميع مشغلات الصوت .. وايضا جميع برامج التحويل

<< بعد انتهاء المشكله راح نركبها من جديد

بعد الانتهاء .. اعملي تقرير رن سكانر

MAAX · 6 أغسطس 2011

من اضافة وازالة البرامج احذف التالي

4shared Desktop
Toolbar4shared
Babylon toolbar on IE
Conduit Engine
Dealio Toolbar v4.0.2
MSN Toolbar

اعيدي تشغيل الجهاز ثم اعملي تقرير رن سكنر

MAAX · 6 أغسطس 2011

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

:d::d:

bent_almarah · 18 أغسطس 2011

جاري الحذف وان شاء الله خير
وكل عام وانتم بخير

bent_almarah · 21 أغسطس 2011

لم تحل المشكلة
طيب خبروني عن مشكلة القرص الصلب

ابو شبر · 21 أغسطس 2011

اختي مشكلتك بسيطة و أعتقد "إعتقاد"

آنه السبب برنامج anti moskito << المهم برنامج طرد الناموس إحذفيه ..

و خبرينا النتائج

حصرياً الحل السحري لإصلاح جميع مشاكل ويندوز 10 و 11

حصرياً الحل السحري لإصلاح جميع مشاكل ويندوز 10 و 11

برنامج Avast Premium Security 24.12.9725 تفعيل بسيريال مدة 680 يوم

تفعيل اخر اصدار من برنامج عملاق تجميد النظام Faronics Deep Freeze Standard 9.0.20.5760

مشكلة بطئ الجهاز عند تشغيل ميديا بلاير 11 + مشكلة في القرص الصلب d

bent_almarah

زيزوومي جديد

MAAX

عضوشرف

bent_almarah

زيزوومي جديد

bent_almarah

زيزوومي جديد

MAAX

عضوشرف

bent_almarah

زيزوومي جديد

bent_almarah

زيزوومي جديد

bent_almarah

زيزوومي جديد

KoNaMi

زيزوومى فضى

توقيع : KoNaMi

MAAX

عضوشرف

MAAX

عضوشرف

bent_almarah

زيزوومي جديد

bent_almarah

زيزوومي جديد

ابو شبر

زيزوومى مميز

برنامج Avast Premium Security 24.12.9725 تفعيل بسيريال مدة 680 يوم​

زيزوومي جديد

عضوشرف

زيزوومي جديد

زيزوومي جديد

عضوشرف

زيزوومي جديد

زيزوومي جديد

زيزوومي جديد

زيزوومى فضى

توقيع : KoNaMi

عضوشرف

عضوشرف

زيزوومي جديد

زيزوومي جديد

زيزوومى مميز

برنامج Avast Premium Security 24.12.9725 تفعيل بسيريال مدة 680 يوم