مشاكل مع جهازي .... يوجد تقارير

الدم الاسود · 6 فبراير 2012

سلام ....

انا جهازي بطيئ في بدء التشقيل..... وكله يعلق

يعني اشقل فديو يعلق ... اركب هاردسك خارجي يعلق... اسوي اي شي يعلق ... تعبني

وتطلعلي رساله .... ارسال تقرير الخطأ او عدم ارسال....

ولازم اشغل اداره المهام واسوي خروج بالقوه من كل البرامج الي معلقه .... والحل معاااه :cr:

وهذا تقرير الهايجك

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:50:15 PM, on 2/5/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17103)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\System32\snmp.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\Documents and Settings\ahmad sky\Desktop\sky\Zyzoom_Tools\mbam.exe
C:\WINDOWS\system32\drwtsn32.exe
C:\WINDOWS\explorer.exe
C:\PROGRA~1\THEKMP~1\KMPlayer.exe
C:\Program Files\Opera\Opera.exe
C:\Documents and Settings\ahmad sky\Desktop\sky\Zyzoom_Tools\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 10.0.0.1:5555
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
O2 - BHO: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Problem Solver] C:\Documents and Settings\ahmad sky\Desktop\sky\ProblemSolver.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: E?E - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Avira FireWall (AntiVirFirewallService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe
O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

--
End of file - 8464 bytes

وهذا تقرير المالوبايت

Malwarebytes' Anti-Malware 1.46

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Database version: 4298

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

2/5/2012 4:53:36 PM
mbam-log-2012-02-05 (16-53-36).txt

Scan type: Full scan (C:\|F:\|H:\|)
Objects scanned: 214025
Time elapsed: 1 hour(s), 6 minute(s), 37 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\System Volume Information\_restore{09885F2E-A214-4809-A0F5-25B9F08C5700}\RP252\A0049782.exe (PUP.KeyLogger) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{09885F2E-A214-4809-A0F5-25B9F08C5700}\RP252\A0049920.exe (Malware.Packer) -> Quarantined and deleted successfully.

الدم الاسود · 6 فبراير 2012

وهذا تقرير .....

ران سكانر

Runscanner logfile

* = signed file
- = file not found

General info
------------
Computer name : MR-NOBODY
Creation time : 2/5/2012 4:59:32 PM
Hosts <> 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 7.0.5730.13
OS : Microsoft Windows XP
OS Build : 2600
OS SP : Service Pack 3
RunScanner Version : 1.9.0.9
User Language : Arabic (Jordan)
User rights : Administrator
Windows folder : C:\WINDOWS

Running processes
-----------------
* C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
* C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
* C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE (Avira GmbH)
* C:\Program Files\Avira\AntiVir Desktop\avmailc.exe (Avira GmbH)
* C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
* C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
* C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
* C:\WINDOWS\System32\alg.exe (Microsoft Corporation)
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE (Broadcom Corporation.)
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
* C:\WINDOWS\system32\csrss.exe (Microsoft Corporation)
* C:\WINDOWS\system32\dllhost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
C:\WINDOWS\System32\bcmwltry.exe (Dell Inc.)
C:\WINDOWS\system32\WLTRAY.exe (Dell Inc.)
* C:\WINDOWS\system32\drwtsn32.exe (Microsoft Corporation)
* C:\WINDOWS\system32\drwtsn32.exe (Microsoft Corporation)
* C:\WINDOWS\system32\drwtsn32.exe (Microsoft Corporation)
* C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe (Avira GmbH)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe (Intel Corporation)
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (Intel Corporation)
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (Intel Corporation)
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe (Dell Inc.)
* C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
* C:\Program Files\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
* C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
* C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
* C:\WINDOWS\system32\lsass.exe (Microsoft Corporation)
* C:\WINDOWS\system32\mqsvc.exe (Microsoft Corporation)
* C:\Program Files\Windows Live\Messenger\usnsvc.exe (Microsoft Corporation)
* C:\WINDOWS\system32\msdtc.exe (Microsoft Corporation)
* C:\Program Files\Opera\Opera.exe (Opera Software)
C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc)
* C:\Documents and Settings\ahmad sky\Desktop\sky\Zyzoom_Tools\RunScanner.exe (Runscanner.net)
* C:\WINDOWS\system32\services.exe (Microsoft Corporation)
* C:\WINDOWS\System32\snmp.exe (Microsoft Corporation)
* C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation)
C:\PROGRA~1\THEKMP~1\KMPlayer.exe (Pandora.TV)
* C:\WINDOWS\explorer.exe (Microsoft Corporation)
* C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
* C:\WINDOWS\system32\winlogon.exe (Microsoft Corporation)
* C:\WINDOWS\system32\mqtgsvc.exe (Microsoft Corporation)
* c:\windows\System32\smss.exe (Microsoft Corporation)
* C:\WINDOWS\system32\wscntfy.exe (Microsoft Corporation)
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe (Intel Corporation )
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe (Intel(R) Corporation)
C:\WINDOWS\System32\WLTRYSVC.EXE
* C:\WINDOWS\system32\wbem\wmiprvse.exe (Microsoft Corporation)
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)

Unrated items
-------------
002 * C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
002 C:\WINDOWS\system32\WLTRAY.exe (Dell Inc.)
002 C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc)
002 C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
002 C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
002 * C:\Documents and Settings\ahmad sky\Desktop\sky\Zyzoom_Tools\mbam.exe (Malwarebytes Corporation)
003 * C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
003 C:\Documents and Settings\ahmad sky\Desktop\sky\ProblemSolver.exe (almksb.com)
003 * C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
005 C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe (Broadcom Corporation.)
010 * C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira AntiVir Guard)
010 * C:\Program Files\Avira\AntiVir Desktop\avmailc.exe (Avira AntiVir MailGuard)
010 * C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira AntiVir Scheduler)
010 * C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE (Avira AntiVir WebGuard)
010 * C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe (Avira FireWall)
010 C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Bluetooth Service)
010 C:\WINDOWS\System32\WLTRYSVC.EXE (Dell Wireless WLAN Tray Service)
010 C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (Intel(R) PROSet/Wireless Event Log)
010 C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (Intel(R) PROSet/Wireless Registry Service)
010 C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe (Intel(R) PROSet/Wireless Service)
010 C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe (Intel(R) PROSet/Wireless SSO Service)
010 C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe (NICCONFIGSVC)
011 C:\WINDOWS\system32\DRIVERS\AegisP.sys (AEGIS Protocol (IEEE 802.1x) v3.4.9.0)
011 c:\windows\SYSTEM32\DRIVERS\APPDRV.SYS (APPDRV)
011 * C:\WINDOWS\system32\DRIVERS\avfwim.sys (AvFw Packet Filter Miniport)
011 * C:\WINDOWS\system32\DRIVERS\avfwot.sys (avfwot)
011 * C:\Program Files\Avira\AntiVir Desktop\avgio.sys (avgio)
011 * C:\WINDOWS\system32\DRIVERS\avgntflt.sys (avgntflt)
011 * C:\WINDOWS\system32\DRIVERS\avipbb.sys (avipbb)
011 C:\WINDOWS\system32\drivers\btaudio.sys (Bluetooth Audio Device)
011 C:\WINDOWS\system32\DRIVERS\btkrnl.sys (Bluetooth Bus Enumerator)
011 C:\WINDOWS\system32\DRIVERS\btwdndis.sys (Bluetooth LAN Access Server)
011 C:\WINDOWS\system32\drivers\btserial.sys (Bluetooth Serial Driver)
011 C:\WINDOWS\system32\DRIVERS\btport.sys (Bluetooth Virtual Communications Driver)
011 * C:\WINDOWS\system32\DRIVERS\idmtdi.sys (IDMTDI)
011 C:\WINDOWS\System32\drivers\hsici.sys (knvg)
011 c:\windows\SYSTEM32\DRIVERS\OMCI.SYS (OMCI)
011 * C:\WINDOWS\system32\DRIVERS\OXSDIDRV_x32.sys (Oxford Semi eSATA Filter (x32))
011 * C:\WINDOWS\system32\Drivers\OXUDIDRV_X32.sys (OXUDIDRV)
011 * C:\WINDOWS\system32\DRIVERS\ssudmdm.sys (SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.))
011 * C:\WINDOWS\system32\DRIVERS\ssudbus.sys (SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.))
011 * C:\WINDOWS\system32\DRIVERS\ssmdrv.sys (ssmdrv)
011 C:\WINDOWS\System32\Drivers\btwusb.sys (WIDCOMM USB Bluetooth Driver)
011 C:\WINDOWS\system32\DRIVERS\s24trans.sys (WLAN Transport)
052 GUID / CLSID not found {140BD8E3-C167-11D4-B4A3-080000180323}
052 * C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.) {0055C089-8582-441B-A0BF-17B458C2A3A8}
061 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
061 * C:\Program Files\Internet Download Manager\IDMShellExt.dll (Tonec Inc.) {CDC95B92-E27C-4745-A8C5-64A52A78855D}
061 C:\WINDOWS\system32\BTNeighborhood.dll (Broadcom Corporation.) {6af09ec9-b429-11d4-a1fb-0090960218cb}
061 C:\Program Files\Avira\AntiVir Desktop\shlext.dll (Avira GmbH) {45AC2688-0253-4ED8-97DE-B5370FA7D48A}
061 C:\Program Files\TeraCopy\TeraCopy.dll {A7005AF0-D6E8-48AF-8DFA-023B1CF660A7}
061 C:\Program Files\TeraCopy\TeraCopyExt.dll {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7}
061 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
068 * C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)
068 * C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)
068 * C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)
069 C:\WINDOWS\system32\bthcrp.dll (Broadcom Corporation.)
069 C:\WINDOWS\system32\mdimon.dll (Microsoft Corporation)
100 ProxyServer HKCU : 10.0.0.1:5555
100 ShellNext HKCU :

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

104 GUID / CLSID not found {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}
105 Send to &Bluetooth Device... : C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
105 تحميل الكل بواسطة Internet Download Manager : C:\Program Files\Internet Download Manager\IEGetAll.htm
105 تحميل بواسطة Internet Download Manager : C:\Program Files\Internet Download Manager\IEExt.htm
172 C:\WINDOWS\System32\BCMLogon.dll (Broadcom Corporation)
173 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
173 C:\Program Files\Avira\AntiVir Desktop\shlext.dll (Avira GmbH) {45AC2688-0253-4ED8-97DE-B5370FA7D48A}
173 C:\Program Files\TeraCopy\TeraCopyExt.dll {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7}
173 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
221 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
221 C:\Program Files\Avira\AntiVir Desktop\shlext.dll (Avira GmbH) {45AC2688-0253-4ED8-97DE-B5370FA7D48A}
221 C:\Program Files\TeraCopy\TeraCopyExt.dll {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7}
221 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 C:\Program Files\Avira\AntiVir Desktop\shlext.dll (Avira GmbH) {45AC2688-0253-4ED8-97DE-B5370FA7D48A}
225 C:\Program Files\Avira\AntiVir Desktop\shlext.dll (Avira GmbH) {45AC2688-0253-4ED8-97DE-B5370FA7D48A}
225 C:\Program Files\TeraCopy\TeraCopyExt.dll {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7}
225 C:\Program Files\TeraCopy\TeraCopyExt.dll {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7}
225 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
227 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
227 C:\Program Files\TeraCopy\TeraCopyExt.dll {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7}
227 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
229 C:\Program Files\TeraCopy\TeraCopyExt.dll {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7}
241 * C:\Program Files\Internet Download Manager\IDMShellExt.dll (Tonec Inc.) {CDC95B92-E27C-4745-A8C5-64A52A78855D}
251 C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) {23170F69-40C1-278A-1000-000100020000}
251 C:\Program Files\TeraCopy\TeraCopy.dll {A7005AF0-D6E8-48AF-8DFA-023B1CF660A7}
251 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
254 C:\WINDOWS\system32\BTNCopy.dll (Broadcom Corporation.) {7842554E-6BED-11D2-8CDB-B05550C10000}

Missing files
-------------
011 C:\WINDOWS\system32\drivers\Abiosdsk.sys
011 C:\WINDOWS\system32\drivers\abp480n5.sys
011 C:\WINDOWS\system32\drivers\adpu160m.sys
011 C:\WINDOWS\system32\drivers\Aha154x.sys
011 C:\WINDOWS\system32\drivers\aic78u2.sys
011 C:\WINDOWS\system32\drivers\aic78xx.sys
011 C:\WINDOWS\system32\drivers\AliIde.sys
011 C:\WINDOWS\system32\drivers\amsint.sys
011 C:\WINDOWS\system32\drivers\asc.sys
011 C:\WINDOWS\system32\drivers\asc3350p.sys
011 C:\WINDOWS\system32\drivers\asc3550.sys
011 C:\WINDOWS\system32\drivers\Atdisk.sys
011 C:\WINDOWS\system32\drivers\cd20xrnt.sys
011 C:\WINDOWS\system32\drivers\Changer.sys
011 C:\WINDOWS\system32\drivers\CmdIde.sys
011 C:\WINDOWS\system32\drivers\UIUSys.sys
011 C:\WINDOWS\system32\drivers\Cpqarray.sys
011 C:\WINDOWS\system32\drivers\dac2w2k.sys
011 C:\WINDOWS\system32\drivers\dac960nt.sys
011 C:\WINDOWS\system32\drivers\dpti2o.sys
011 c:\windows\System32\drivers\dwshd.sys
011 C:\WINDOWS\system32\drivers\hpn.sys
011 C:\WINDOWS\system32\drivers\i2omgmt.sys
011 C:\WINDOWS\system32\drivers\i2omp.sys
011 C:\WINDOWS\system32\drivers\ini910u.sys
011 C:\WINDOWS\system32\drivers\IntelIde.sys
011 C:\WINDOWS\system32\drivers\lbrtfdc.sys
011 C:\WINDOWS\system32\drivers\mraid35x.sys
011 C:\WINDOWS\system32\drivers\PCIDump.sys
011 C:\WINDOWS\system32\drivers\PDCOMP.sys
011 C:\WINDOWS\system32\drivers\PDFRAME.sys
011 C:\WINDOWS\system32\drivers\PDRELI.sys
011 C:\WINDOWS\system32\drivers\PDRFRAME.sys
011 C:\WINDOWS\system32\drivers\perc2.sys
011 C:\WINDOWS\system32\drivers\perc2hib.sys
011 C:\WINDOWS\system32\drivers\ql1080.sys
011 C:\WINDOWS\system32\drivers\Ql10wnt.sys
011 C:\WINDOWS\system32\drivers\ql12160.sys
011 C:\WINDOWS\system32\drivers\ql1240.sys
011 C:\WINDOWS\system32\drivers\ql1280.sys
011 C:\WINDOWS\system32\drivers\Simbad.sys
011 C:\WINDOWS\system32\drivers\Sparrow.sys
011 C:\WINDOWS\system32\drivers\sym_hi.sys
011 C:\WINDOWS\system32\drivers\sym_u3.sys
011 C:\WINDOWS\system32\drivers\symc810.sys
011 C:\WINDOWS\system32\drivers\symc8xx.sys
011 C:\WINDOWS\system32\drivers\TosIde.sys
011 C:\WINDOWS\system32\drivers\ultra.sys
011 C:\WINDOWS\system32\drivers\ViaIde.sys
011 C:\WINDOWS\system32\drivers\WDICA.sys
040 C:\Program Files\Ask.com\GenericAskToolbar.dll
041 C:\Program Files\Ask.com\GenericAskToolbar.dll
045 C:\Program Files\Ask.com\GenericAskToolbar.dll
052 C:\Program Files\Ask.com\GenericAskToolbar.dll
073 C:\DOCUME~1\AHMADS~1\LOCALS~1\Temp\Ynl.exe
073 C:\WINDOWS\Ygazoa.exe
073 C:\Program Files\Ask.com\UpdateTask.exe

الدم الاسود · 6 فبراير 2012

لرفع

rd-19 · 6 فبراير 2012

طبق هذا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

الدم الاسود · 6 فبراير 2012

تفضل
SUPERAntiSpyware Scan Log

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Generated 02/06/2012 at 08:24 AM

Application Version : 5.0.1144

Core Rules Database Version : 8197
Trace Rules Database Version: 6009

Scan type : Complete Scan
Total Scan Time : 00:41:24

Operating System Information
Windows XP Professional 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 641
Memory threats detected : 0
Registry items scanned : 23521
Registry threats detected : 0
File items scanned : 28908
File threats detected : 16

Malware.Trace
C:\WINDOWS\TASKS\{22116563-108C-42c0-A7CE-60161B75E508}.job

Adware.Tracking Cookie
C:\Documents and Settings\ahmad sky\Cookies\LJYRBZVX.txt [ /ad.yieldmanager.com ]
C:\Documents and Settings\ahmad sky\Cookies\OFEKNKPN.txt [ /atdmt.com ]
C:\Documents and Settings\ahmad sky\Cookies\CWMQ722J.txt [ /zedo.com ]
C:\Documents and Settings\ahmad sky\Cookies\HECGAP0P.txt [ /ru4.com ]
C:\Documents and Settings\ahmad sky\Cookies\OBLZ003M.txt [ /ads.arabictrader.com ]
C:\Documents and Settings\ahmad sky\Cookies\2U03LUBJ.txt [ /invitemedia.com ]
C:\Documents and Settings\ahmad sky\Cookies\C4B1DTUC.txt [ /h.atdmt.com ]
C:\Documents and Settings\ahmad sky\Cookies\WJVAX0HT.txt [ /tribalfusion.com ]
C:\Documents and Settings\ahmad sky\Cookies\F2Q163IX.txt [ /serving-sys.com ]
C:\Documents and Settings\ahmad sky\Cookies\QOCUSFKM.txt [ /media6degrees.com ]
C:\Documents and Settings\ahmad sky\Cookies\PM23UEFS.txt [ /tradefx.advertserve.com ]
C:\Documents and Settings\ahmad sky\Cookies\LAEOCY7D.txt [ /doubleclick.net ]
C:\Documents and Settings\ahmad sky\Cookies\NZOJY2DP.txt [ /mediafire.com ]
ia.media-imdb.com [ C:\DOCUMENTS AND SETTINGS\AHMAD SKY\APPLICATION DATA\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\GYJCZKBB ]

Trojan.Agent/Gen-Frauder
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\CLEANER\RUN.EXE

الدم الاسود · 7 فبراير 2012

^^^^^^^
^^^^^^
^^^^^
^^^
^^
^

format · 7 فبراير 2012

حمل الاداة التالية وطبق الشرح للفحص

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شرح الاستخدام ,,,,,,
قم بتشغيل الملف SmitfraudFix.exe ,, وتابع الشرح كماا بهذه الصور

الدم الاسود · 7 فبراير 2012

تفضل

SmitFraudFix v2.424

Scan done at 5:36:48.20, Tue 02/07/2012
Run from C:\Documents and Settings\ahmad sky\Application Data\IDM\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
The filesystem type is NTFS
Fix run in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Before SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Killing process

»»»»»»»»»»»»»»»»»»»»»»»» hosts

127.0.0.1 localhost

»»»»»»»»»»»»»»»»»»»»»»»» VACFix

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Agent.OMZ.Fix

Agent.OMZ.Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» 404Fix

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» RK

»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Intel(R) PRO/Wireless 3945ABG Network Connection - Packet Scheduler Miniport
DNS Server Search Order: 84.235.6.54

HKLM\SYSTEM\CCS\Services\Tcpip\..\{BA3E65CB-397D-4266-925C-4812679DFAF0}: DhcpNameServer=84.235.6.54
HKLM\SYSTEM\CS2\Services\Tcpip\..\{BA3E65CB-397D-4266-925C-4812679DFAF0}: DhcpNameServer=84.235.6.54
HKLM\SYSTEM\CS3\Services\Tcpip\..\{BA3E65CB-397D-4266-925C-4812679DFAF0}: DhcpNameServer=84.235.6.54
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=84.235.6.54
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=84.235.6.54
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=84.235.6.54

»»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, following keys are not inevitably infected!!!

"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» RK.2

»»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning

Registry Cleaning done.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler After SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» End

البارون · 7 فبراير 2012

اعمل التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

الدم الاسود · 7 فبراير 2012

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

الخفـوق · 7 فبراير 2012

لا هنت اعمل التالي :

حمل ملف الرن سكنر

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

طبق عليه الشرح التالي :

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

بعدين

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

ثم اعد تشغيل الجهاز ضروري

الدم الاسود · 7 فبراير 2012

انا سويت الي قلت اخوي ... بس ماطلع لي اخطاء ....

هل الجهاز سليم يعني....

او يحتاج اسوي تقرير لتأكد؟؟

مشاكل مع جهازي .... يوجد تقارير

الدم الاسود

زيزوومى مميز

الدم الاسود

زيزوومى مميز

الدم الاسود

زيزوومى مميز

rd-19

زيزوومى فضى

الدم الاسود

زيزوومى مميز

الدم الاسود

زيزوومى مميز

format

زيزوومي ماسى

توقيع : format

الدم الاسود

زيزوومى مميز

البارون

زيزوومى فضى

توقيع : البارون

الدم الاسود

زيزوومى مميز

الخفـوق

خبراء تحليل ملفات

توقيع : الخفـوق

الدم الاسود

زيزوومى مميز