مشكلتي مع الشآت الصوتي + فحص الإخترآق ..

ب

بو جريمة

زيزوومي جديد
إنضم
16 أكتوبر 2012
المشاركات
20
مستوى التفاعل
0
النقاط
20
غير متصل
السلآم عليكم ورحمة الله وبركآته ..

أخوآني أعضآء منتدى زيزوم .. أنآ عندي كم مشكله وحبيت أعرضهآ لكم لعلي أجد حلهآ في هذآ المنتدى ..

أولاً : الشآت الصوتي .. كآن يعمل معي قبل كم يوم وبنفس اليوم رجعت أشغله مآ إشتغل .. مع العلم إن نظآم جهآزي إكس بي .. وأني لآ أستخدم متصفح إنترنت إكسبلورر أبداً لأنه ثقيل جداً ويعلق معي .. وفتحت الشآت من المتصفحين كروم وفآيرفوكس إشتغل لكن بعدهآ صآرت تطلع لي هالنآفذة ..


2acda5bc1c17ac7db83c1ec3ae88b98b.jpg


وهذآ تقرير الهآيجآك ..

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:07:27 PM, on 10/16/2012
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Nitro PDF\Professional 7\NitroPDFDriverService2.exe
C:\WINDOWS\system32\NLSSRV32.EXE
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\PremierOpinion\pmropn.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\VooMuu\bin\1.0.36.0\VooMuuSA.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\IDA\ida.exe
C:\Documents and Settings\All Users\Application Data\GameXN\GameXNGO.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.0.229\SSScheduler.exe
C:\Program Files\REALTEK RTL8187 Wireless LAN Driver and Utility\RtWLan.exe
C:\Program Files\TechSmith\Snagit 11\Snagit32.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\TechSmith\Snagit 11\TSCHelp.exe
C:\Program Files\TechSmith\Snagit 11\SnagPriv.exe
C:\PROGRA~1\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\TechSmith\Snagit 11\snagiteditor.exe
C:\WINDOWS\system32\dwwin.exe
C:\Program Files\Java\jre7\bin\java.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Java\jre7\bin\java.exe
C:\Program Files\Java\jre7\bin\java.exe
C:\Zyzoom_Forum_Tools\zyzoom.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
C:\Documents and Settings\USER\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Zyzoom_Forum_Tools\zHijak.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;*.local
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: AF-HSS Toolbar - {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Program Files\AF-HSS\prxtbAF-0.dll
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\SplitCam DB Toolbar\tbhelper.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: PriceGong - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files\PriceGong\2.5.4\PriceGongIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IE 4.x-6.x BHO for Internet Download *********** - {2A646672-9C3A-4C28-9A7A-1FB0F63F28B6} - C:\PROGRA~1\IDA\idaiehlp.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: FBDownloader - {553318DA-D010-469E-84B1-496563CAE1BF} - C:\Program Files\DelorTech, Ltd\MXDFP 1.0\FBDownloader.dll
O2 - BHO: PlayBryte BHO - {61e0ef7a-9bc0-45ea-9b2f-f3e9f02692bd} - mscoree.dll (file missing)
O2 - BHO: RebateRobot - {66616350-A70C-4FF5-912E-A92B8076F6F7} - C:\Program Files\RebateRobot\RebateRobot.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: ??C?I E???? C?II?? ??? Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Skype_Portable_410179\App\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: CIEDownloadManager Object - {C9F97205-62A3-41F2-9F2C-D99392F882EB} - C:\Program Files\Download Direct\plugins\IEDLM.dll
O2 - BHO: Complitly - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Documents and Settings\USER\Application Data\Complitly\Complitly.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: AF-HSS - {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Program Files\AF-HSS\prxtbAF-0.dll
O2 - BHO: (no name) - {FA3FEDF6-1A34-4076-9F25-A26A2DE6A401} - (no file)
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\SplitCam DB Toolbar\tbcore3.dll
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: IDA Bar - {C70E30C7-140A-4166-A2E8-43557E62B41A} - C:\Program Files\IDA\idabar.dll
O3 - Toolbar: AF-HSS Toolbar - {f0381dbd-e018-4e07-ae40-d96ab15083f0} - C:\Program Files\AF-HSS\prxtbAF-0.dll
O3 - Toolbar: SplitCam DB Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\SplitCam DB Toolbar\tbcore3.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
O3 - Toolbar: (no name) - {b278d9f8-0fa9-465e-9938-0c392605d8e3} - (no file)
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2291.0\npwinext.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [Power2GoExpress] "C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe" /Startup
O4 - HKLM\..\Run: [Detect] C:\Program Files\iNTERNET Turbo\iDetect.exe /auto
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [iBryte playbryte Desktop] C:\Program Files\iBryte\playbryte\ibrytedesktop.exe
O4 - HKLM\..\Run: [VooMuuSA] "C:\Program Files\VooMuu\bin\1.0.36.0\VooMuuSA.exe"
O4 - HKLM\..\Run: [ROC_roc_dec12] "C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\USER\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun
O4 - HKCU\..\Run: [DLD.EXE] C:\Program Files\Download Direct\DLD.exe
O4 - HKCU\..\Run: [Internet Download ***********] C:\Program Files\IDA\ida.exe -autorun
O4 - HKCU\..\Run: [GameXN (update)] "C:\Documents and Settings\All Users\Application Data\GameXN\GameXNGO.exe" /u
O4 - HKCU\..\Run: [GameXN (news)] "C:\Documents and Settings\All Users\Application Data\GameXN\GameXNGO.exe" /n
O4 - HKCU\..\Run: [GameXN] "C:\Documents and Settings\All Users\Application Data\GameXN\GameXNGO.exe" /silent
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\PROGRA~1\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.229\SSScheduler.exe
O4 - Global Startup: REALTEK RTL8187 Wireless LAN Utility.lnk = ?
O4 - Global Startup: Snagit 11.lnk = C:\Program Files\TechSmith\Snagit 11\Snagit32.exe
O8 - Extra context menu item: Download ALL with IDA - C:\Program Files\IDA\idaieall.htm
O8 - Extra context menu item: Download Photo... - res://C:\Program Files\DelorTech, Ltd\MXDFP 1.0\FBDownloader.dll/500
O8 - Extra context menu item: Download remotely with IDA - C:\Program Files\IDA\remdown.htm
O8 - Extra context menu item: Download with IDA - C:\Program Files\IDA\idaie.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Skype_Portable_410179\App\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Skype_Portable_410179\App\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Internet Download *********** - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - C:\Program Files\IDA\ida.exe
O9 - Extra 'Tools' menuitem: &Internet Download *********** - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - C:\Program Files\IDA\ida.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Skype_Portable_410179\App\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O20 - Winlogon Notify: PremierOpinion - C:\Program Files\PremierOpinion\pmls.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: II?E E?I?E Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.229\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NitroPDFDriverCreatorReadSpool2 (NitroDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Nitro PDF\Professional 7\NitroPDFDriverService2.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\WINDOWS\system32\NLSSRV32.EXE
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe

--
End of file - 20485 bytes


أتمنى ألقى الحل لهالمشكلة ..

ثآنياً : أبي أعرف كيف أسوي فحص إخترآق .. لأنه من قبل تم إخترآق جهآزي بدون علمي وسويت فورمآت لكن لي فترة طويلة مآ سويت الفورمآت .. أبي أعرف كيف أسوي فحص الإخترآق لآ هنتوآ ..


ومشكورين سلفاً ..
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
توقيع : كفاح الجريح
تأييد 0




+


بعده هذا


حمل الاداة التالية واتبع الشرح لعمل تقرير ورفعه

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


2c29d21f4feca664083f4077338f341d.png

اعمل كما الصورة لبدء الفحص

6a72a6ba8302d44106eeb8d83b3be9af.png

ثم اعمل التالي لحفظ ملف التقريرر

a4c2dabf736a5f979c8de595fcfcdef2.png

هذا هو التقرير المطلوب

dce37dbcade59fcb66de4e9713c9d71f.png

بعد حفظه قم بضغط الملف >>>

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


وارفع الملف هنا

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


------------------------------
 
توقيع : الخفـوق
تأييد 0
مشكورين أخوآني كفآح الجريح + الخفوق ..

سؤآلي .. وتحملوني لأن والله مآلي بالصيآنة ولآني فآهم شي .. إلحين أسوي كل إللي برآبط المشآركآت إللي برد أخوي كفآح ؟

ولآ أسوي شي معين يعني ..

شآكر لكم ..
 
تأييد 0
اعملي فحص المالويربايت كما بالمشاركة
 
توقيع : كفاح الجريح
تأييد 0
أوكي جآري الفحص ..

جزآك الله خير ..
 
تأييد 0
اجمعين ان شاء الله
خذ وقتك :)
 
توقيع : الخفـوق
تأييد 0
آسف على التأخير بس صآرت مشآكل وهو بنص الفحص فجأة الجهآز قلبت شآشته زرقآ وكلآم أبيض مدري وش صآر فيه ..

هذآ تقرير المآلوير بآيت .. وجآري تنفيذ الخطوة التآلية ..

Malwarebytes' Anti-Malware 1.51.2.1300

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



Database version: 7622

Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

10/17/2012 2:37:22 AM
mbam-log-2012-10-17 (02-37-22).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|)
Objects scanned: 330105
Time elapsed: 2 hour(s), 32 minute(s), 25 second(s)

Memory Processes Infected: 2
Memory Modules Infected: 3
Registry Keys Infected: 9
Registry Values Infected: 2
Registry Data Items Infected: 1
Folders Infected: 31
Files Infected: 108

Memory Processes Infected:
c:\program files\VooMuu\bin\1.0.36.0\VooMuuSA.exe (Adware.HotBar.CP) -> 1600 -> Unloaded process successfully.
c:\program files\premieropinion\pmropn.exe (Trojan.Agent) -> 4048 -> Unloaded process successfully.

Memory Modules Infected:
c:\program files\VooMuu\bin\1.0.36.0\voomuusahook.dll (Adware.HotBar.VM) -> Delete on reboot.
c:\program files\premieropinion\pmls.dll (Trojan.Agent) -> Delete on reboot.
c:\program files\premieropinion\firefox\pmnx.dll (Trojan.Agent) -> Delete on reboot.

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{82184935-B894-4AB2-8590-603BA7D74B71} (Trojan.WebMoner) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AlakhlakWasseiar.nat.eProtocol (Trojan.WebMoner) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{E8CFC029-8420-4EAE-ADEF-915BDC77E1DC} (Spyware.AdaEbook) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\FrontPage.MyNSHandler (Spyware.AdaEbook) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{eeb86aef-4a5d-4b75-9d74-f16d438fc286} (Adware.PremierOpinion) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\voomuusa (Adware.HotBar.VM) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\VooMuu (Adware.HotBar.VM) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\PremierOpinion (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VooMuuSA (Adware.HotBar.VM) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\VooMuuSA (Adware.HotBar.CP) -> Value: VooMuuSA -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\iBryte playbryte Desktop (Adware.IBryte) -> Value: iBryte playbryte Desktop -> Quarantined and deleted successfully.

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
c:\documents and settings\all users\application data\2aca5cc3-0f83-453d-a079-1076fe1a8b65 (Adware.Seekmo) -> Quarantined and deleted successfully.
c:\program files\premieropinion (Trojan.Agent) -> Delete on reboot.
c:\program files\premieropinion\components (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox (Trojan.Agent) -> Delete on reboot.
c:\program files\premieropinion\firefox\defaults (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\defaults\preferences (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\locale (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\addon-kit (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\addon-kit\data (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\addon-kit\lib (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\data (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\content (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\dom (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\events (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\tabs (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\traits (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\utils (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\windows (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs\data (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs\data\.idea (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs\data\.idea\scopes (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs\lib (Trojan.Agent) -> Quarantined and deleted successfully.
c:\documents and settings\all users\start menu\Programs\premieropinion (Adware.PremierOpinion) -> Quarantined and deleted successfully.
c:\program files\VooMuu (Adware.HotBar.VM) -> Delete on reboot.
c:\program files\VooMuu\bin (Adware.HotBar.VM) -> Delete on reboot.
c:\program files\VooMuu\bin\1.0.36.0 (Adware.HotBar.VM) -> Delete on reboot.
c:\documents and settings\all users\application data\VooMuuSA (Adware.HotBar.VM) -> Quarantined and deleted successfully.

Files Infected:
c:\program files\VooMuu\bin\1.0.36.0\voomuusahook.dll (Adware.HotBar.VM) -> Delete on reboot.
c:\program files\VooMuu\bin\1.0.36.0\VooMuuSA.exe (Adware.HotBar.CP) -> Quarantined and deleted successfully.
c:\program files\iBryte\playbryte\ibrytedesktop.exe (Adware.IBryte) -> Quarantined and deleted successfully.
c:\documents and settings\USER\Desktop\تحميلآت\fbdownloader_setup.exe (PUP.Bundle.Installer.OI) -> Quarantined and deleted successfully.
c:\documents and settings\USER\local settings\application data\iBryte\implementations\playbryte\assemblies\1\browserobjects.dll (Adware.IBryte) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmls.dll (Trojan.Agent) -> Delete on reboot.
c:\program files\premieropinion\chrome.manifest (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\install.rdf (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\MSVCP71.DLL (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\MSVCR71.DLL (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\nscf.dat (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmcm.crx (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmcm.txt (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmls64.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmoci.bin (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmph.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmropn.exe (Trojan.Agent) -> Delete on reboot.
c:\program files\premieropinion\pmropn64.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmservice.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\pmxf.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\shfscp.dat (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\components\pmxg.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\bootstrap.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\harness-options.json (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\install.rdf (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\locales.json (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\pmnx.dll (Trojan.Agent) -> Delete on reboot.
c:\program files\premieropinion\firefox\defaults\preferences\prefs.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\locale\en-gb.json (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\locale\eo.json (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\locale\fr-fr.json (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\chrome.manifest (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\addon-kit\lib\page-mod.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\addon-kit\lib\tabs.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\addon-kit\lib\windows.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\data\content-proxy.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\data\test-content-symbiont.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\data\test-message-manager.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\data\test-trusted-document.html (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\globals!.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\api-utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\byte-streams.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\channel.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\collection.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\content.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\cortex.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\cuddlefish.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\environment.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\errors.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\events.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\file.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\hidden-frame.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\light-traits.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\list.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\match-pattern.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\memory.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\message-manager.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\namespace.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\observer-service.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\plain-text-console.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\process.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\runtime.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\sandbox.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\self!.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\system.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\text-streams.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\timer.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\traceback.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\traits.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\unload.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\url.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\window-utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\xpcom.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\xul-app.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\content\loader.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\content\symbiont.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\content\worker.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\dom\events.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\events\assembler.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\tabs\events.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\tabs\observer.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\tabs\tab.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\tabs\utils.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\traits\core.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\utils\data.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\utils\function.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\utils\object.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\utils\registry.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\utils\thumbnail.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\windows\dom.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\windows\loader.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\windows\observer.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\api-utils\lib\windows\tabs.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs\data\content.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs\lib\dompilot.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs\lib\dputil.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\premieropinion\firefox\resources\dpjs\lib\main.js (Trojan.Agent) -> Quarantined and deleted successfully.
c:\documents and settings\all users\start menu\Programs\premieropinion\about premieropinion.lnk (Adware.PremierOpinion) -> Quarantined and deleted successfully.
c:\documents and settings\all users\start menu\Programs\premieropinion\member of grid - goodware repository information database.lnk (Adware.PremierOpinion) -> Quarantined and deleted successfully.
c:\documents and settings\all users\start menu\Programs\premieropinion\privacy policy and user license agreement.lnk (Adware.PremierOpinion) -> Quarantined and deleted successfully.
c:\documents and settings\all users\start menu\Programs\premieropinion\Support.lnk (Adware.PremierOpinion) -> Quarantined and deleted successfully.
c:\documents and settings\all users\start menu\Programs\premieropinion\uninstall instructions.lnk (Adware.PremierOpinion) -> Quarantined and deleted successfully.
c:\program files\VooMuu\bin\1.0.36.0\copyright.txt (Adware.HotBar.VM) -> Quarantined and deleted successfully.
c:\program files\VooMuu\bin\1.0.36.0\voomuuuninstaller.exe (Adware.HotBar.VM) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\VooMuuSA\VooMuuSA.dat (Adware.HotBar.VM) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\VooMuuSA\voomuusaau.dat (Adware.HotBar.VM) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\VooMuuSA\voomuusa_hpk.dat (Adware.HotBar.VM) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\VooMuuSA\voomuusa_kyf.dat (Adware.HotBar.VM) -> Quarantined and deleted successfully.
 
تأييد 0
الحين اعمل هذا التقرير


حمل الاداة التالية واتبع الشرح لعمل تقرير ورفعه

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


2c29d21f4feca664083f4077338f341d.png

اعمل كما الصورة لبدء الفحص

6a72a6ba8302d44106eeb8d83b3be9af.png

ثم اعمل التالي لحفظ ملف التقريرر

a4c2dabf736a5f979c8de595fcfcdef2.png

هذا هو التقرير المطلوب

dce37dbcade59fcb66de4e9713c9d71f.png

بعد حفظه قم بضغط الملف >>>

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


وارفع الملف هنا

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



------------------------------
 
توقيع : الخفـوق
تأييد 0
أخوي الخفوق الرآبط مآ يشتغل حق تحميل الأدآه جربته ويطلع لي تعذر الإتصآل ..

^ خلآص تم وأنآ أخوك تسلم ..
 
تأييد 0
توقيع : الخفـوق
تأييد 0
ندآء لأخوي الخفوق هههههه


وبعد هالخطوة وش أسوي ؟؟
 
تأييد 0
احذف البرامج التاليه :


AVG Secure Search\vprot.exe
McAfee Security Scanner Scheduler
SplitCam DB Toolbar
Ask Toolbar
Conduit Toolbar
Yahoo! Toolbar
Babylon Toolbar
Bing Bar
Yontoo Runtime






~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~






طبق تنظيف التقرير التالي /




يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



الملف المضاف بمشاركة خبير الصيانة

وبالماوس دبل كلك على الملف ... بعدها راح يفتح لك واجهة الاداة

اعمل كما بالشرح ...

f8fd92ac6c717d0f9c0f0cd8263f51ac.png


2a46f96f18e87bbcebb5807519efca1e.png


ce21e1edb408a7d086d16286d47c176a.png


ثم

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



 
توقيع : الخفـوق
تأييد 0
طيب أخوي خفوق لمآ أحذف AVG ومكآفي يصير جهآزي بدون برنآمج حمآية .. ولآ معلومآتي غلط ؟
 
تأييد 0
قمت بجميع الخطوآت .. بعد ذلك ؟
 
تأييد 0
تمام


الحين كيف الجهاز ؟



 
توقيع : الخفـوق
تأييد 0
الجهآز تمآم .. وإن شآء الله إنه مآ يعلق بعد لأني لآحظت إني لمآ شغلته ثآني أحسن من أول ، أول كآن يعلق معي بإستمرآر عند بدآية التشغيل ..

لكن للأسف جربت أشغل الشآت الصوتي إشتغل أول مرة قفلته ورجعت جربت بعضهآ مآ تفتح الصفحة نهآئياً وإللي إشتغل أول مرة تطلع لي نفس النآفذة .. خطأ غير محدد ..

جربت وشغلته بمتصفح الفآير فوكس إشتغل وحصل نفس الشي .. إنه إشتغل مرة ومن بعدهآ تطلع النآفذة .. لآحظت عند تشغيل الصوتي يشتغل معه برنآمج الـ BM CHAT وإذآ قفلته ينقفل البرنآمج .. مآ أعرف هل هي المشكلة منه أو لآ ..

أمآ بالنسبة لفحص الإخترآق ، للحين أنآ مآعرفت يعني الجهآز مخترق أو لآ .. هل فيه منآفذ إخترآق أو لآ ..

بس فيه طلب .. بحيث إني لمآ حذفت الـ AVG والمكآفي أصبح الجهآز بدون حمآية .. بمآذآ تنصحني ؟


شآكر لجهودك أخوي الخفوق ..
 
تأييد 0
العفو يا غالي
انصحك ب النورتن ( شعبيه ، خفه ، تلقائي )


بالاول طبق التالي :


يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



بعده اعد تشغيل الجهاز


بعدها


يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي






+
بخصوص مشكلة الشات ياليت تصور ياغالي المشكله
ان كان يطلع رقم خطا



 
توقيع : الخفـوق
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى