تم حل المشكلة مشكلة ظهور اعلانات والقرص C

الحالة
مغلق و غير مفتوح للمزيد من الردود.
غربة مشاعر

غربة مشاعر

زيزوومى متألق
إنضم
26 سبتمبر 2007
المشاركات
271
مستوى التفاعل
9
النقاط
360
غير متصل
السلام عليكم ورحمة الله

مشكلتي في ظهور اعلانات مفاجئة والقرص C ممتلئ بالرغم من حذفي لكثير من البرامج

وهذا تقرير الهاجيك


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 09:03:24 م, on 29/06/13
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Windows\AsScrPro.exe
C:\Users\O\AppData\Local\Smartbar\Application\Smartbar.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosHdpProc.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\BtAssist.exe
C:\Users\O\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HiJackThis.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 74.208.10.249 gs.apple.com
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\SnagIt 9\SnagItBHO.dll
O2 - BHO: CrossriderApp0032000 - {11111111-1111-1111-1111-110311201100} - C:\Program Files (x86)\Plus-HD-1.5\Plus-HD-1.5-bho.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Messenger Plus! Community SmartbarEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - mscoree.dll (file missing)
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~2\FlashFXP\IEFlash.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\SnagIt 9\SnagItIEAddin.dll
O3 - Toolbar: Messenger Plus! Community Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll (file missing)
O3 - Toolbar: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [MessengerPlusForSkypeService] "C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe"
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Browser Infrastructure Helper] C:\Users\O\AppData\Local\Smartbar\Application\Smartbar.exe startup
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart (User 'Default user')
O4 - Startup: Dropbox.lnk = O\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: IMVU.lnk = O\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe
O4 - Startup: _uninst_26929851.lnk = O\AppData\Local\Temp\_uninst_26929851.bat
O4 - User Startup: Dropbox.lnk = O\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - User Startup: IMVU.lnk = O\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe
O4 - User Startup: _uninst_26929851.lnk = O\AppData\Local\Temp\_uninst_26929851.bat
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: إضافة إلى مكافحة الشعارات - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm
O9 - Extra button: تدوين هذا في المدونة - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &تدوين هذا في Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &لوحة المفاتيح الظاهرية - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll
O9 - Extra button: ملاحظات OneNote الم&رتبطة - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: ملاحظات OneNote الم&رتبطة - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: فحص &عناوين مواقع الويب - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apache - Unknown owner - C:\AppServ\Apache\Apache.exe (file missing)
O23 - Service: Apache2.2 - Apache Software Foundation - C:\AppServ\Apache2.2\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: خدمة Kaspersky لمكافحة الفيروسات (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
O23 - Service: BlackBerry Device Manager (Blackberry Device Manager) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\Windows\SYSTEM32\crypserv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: خدمة Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: خدمة Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Messenger Plus! Service (MsgPlusService) - Yuna Software - C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
O23 - Service: mysql - Unknown owner - C:\AppServ\MySQL\bin\mysqld-nt.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TurboBoost - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 17571 bytes
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
السلام عليكم أخي قم بالتالي فضلا و على الترتيب :
سنقوم بحل مشكلة الإعلانات أولاً :)
إفحص الجهاز ب

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

.. .نزيل الإصابات .. أرفق التقرير بردك القادم
ثم قم بتقرير

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

 
توقيع : المقدم بو همام
تأييد 0
ماهو براضي يحمل شي مررررررره ثقيل الجهاز

عندي ادوات زيزومينفع اشتغل عليها ولا لا ؟

3b3ce221851b60a78bfa55cbd704e323.jpg
 
تأييد 0
Runscanner logfile

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



* = signed file
- = file not found

General info
------------
Computer name : O-PC
Creation time : 29/06/13 10:28:10 م
Hosts <> 127.0.0.1 : 1
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 9.10.9200.16614
OS : Windows 7 Home Premium
OS Build : 7601
OS SP : Service Pack 1
RunScanner Version : 2.0.0.50
User Language : العربية (السعودية)‏
User rights : Administrator
Windows folder : C:\Windows

Running processes
-----------------
C:\Windows\SysWOW64\ACEngSvr.exe (ASUSTeK)
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ATK)
* C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
* C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe (Adobe Systems, Inc.)
* C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe (Adobe Systems, Inc.)
* C:\Windows\System32\atieclxx.exe (AMD)
* C:\Windows\System32\atiesrxx.exe (AMD)
C:\AppServ\Apache2.2\bin\httpd.exe (Apache Software Foundation)
C:\AppServ\Apache2.2\bin\httpd.exe (Apache Software Foundation)
* C:\Windows\System32\FBAgent.exe (ASUSTeK Computer Inc.)
* C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (ASUS)
* C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\dllhost.exe (Microsoft Corporation)
* C:\Windows\System32\conhost.exe (Microsoft Corporation)
* C:\Windows\System32\dwm.exe (Microsoft Corporation)
* C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
* C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUS)
* C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\taskhost.exe (Microsoft Corporation)
* C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe (Internet Download Manager, Tonec Inc.)
* C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe (Kaspersky Lab ZAO)
* C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe (Kaspersky Lab ZAO)
* C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUS)
C:\Windows\KMService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
* C:\Windows\System32\lsass.exe (Microsoft Corporation)
* C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe (Nokia)
* C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation)
* C:\Windows\System32\SearchIndexer.exe (Microsoft Corporation)
* C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
C:\AppServ\MySQL\bin\mysqld-nt.exe
* C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
C:\Program Files\P4G\BatteryLife.exe (ATK)
* C:\Zyzoom_Forum_Tools\zRunScanner.com (Runscanner.net)
C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Yuna Software)
* C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia)
* C:\Windows\System32\services.exe (Microsoft Corporation)
* C:\Windows\System32\spoolsv.exe (Microsoft Corporation)
C:\Windows\SysWOW64\srvany.exe
* C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
* C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)
* C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe (Nokia)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
* C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (ASUS)
* C:\Windows\system32\audiodg.exe (Microsoft Corporation)
* C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
* C:\Windows\System32\smss.exe (Microsoft Corporation)
* C:\Windows\System32\wbem\WmiPrvSE.exe (Microsoft Corporation)
C:\Zyzoom_Forum_Tools\zyzoom.exe
* C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
* C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
* C:\Windows\System32\wininit.exe (Microsoft Corporation)
* C:\Windows\System32\winlogon.exe (Microsoft Corporation)
* C:\Windows\System32\lsm.exe (Microsoft Corporation)
* C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation)
* C:\Windows\explorer.exe (Microsoft Corporation)
* C:\Windows\System32\taskeng.exe (Microsoft Corporation)
* C:\Windows\System32\taskeng.exe (Microsoft Corporation)

Unrated items
-------------
002 * C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
002 * C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
002 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe (Kaspersky Lab ZAO)
002 C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk
002 * C:\Program Files (x86)\iTunes\iTunesHelper.exe (Apple Inc.)
002 C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Yuna Software)
002 C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
002 C:\Program Files (x86)\QuickTime\QTTask.exe (Apple Inc.)
002 * C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
002 * C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
003 * C:\Users\O\AppData\Local\Smartbar\Application\Smartbar.exe (Smartbar)
003 * C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
003 * C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
003 * C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
004 * C:\Users\O\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
010 * C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Acrobat Update Service)
010 * C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe® Flash® Player Update Service 11.7 r700)
010 C:\AppServ\Apache2.2\bin\httpd.exe (Apache HTTP Server)
010 c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe (Apache HTTP Server)
010 C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe (BlackBerry Device Manager)
010 C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (IDriverT Module)
010 * C:\Program Files\iPod\bin\iPodService.exe (iPodService Module (64-bit))
010 * C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe (Kaspersky Anti-Virus)
010 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Local Manageability Service)
010 * C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (maintenanceservice.exe)
010 * C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (MobileDeviceService)
010 C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Service - Messenger Plus! for Skype)
010 * C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Updater Service)
010 * C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer 8)
010 * C:\Program Files\Intel\TurboBoost\TurboBoost.exe (Turbo Boost Monitor Service)
010 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (User Notification Service)
011 * C:\Windows\system32\drivers\aswKbd.sys (avast! Keyboard Filter Driver)
011 * C:\Windows\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter)
011 * C:\Game\SoftnyxGame\GunBoundIS\Gun64.sys (Gun64.sys)
011 * C:\Windows\system32\DRIVERS\idmwfp.sys (Internet Download Manager WFP Driver)
011 * C:\Windows\system32\DRIVERS\jmcr.sys (JMCR)
011 * C:\Windows\system32\DRIVERS\JME.sys (JMicron NDIS6.20 Driver)
011 * C:\Windows\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_amd64])
011 * C:\Windows\system32\drivers\SCDEmu.sys (SCDEmu)
011 * C:\Windows\system32\DRIVERS\taphss.sys (TAP-Win32 Virtual Network Driver)
011 * C:\Windows\system32\DRIVERS\TurboB.sys (TurboB.sys)
031 GUID / CLSID not found {828030A1-22C1-4009-854F-8E305202313F}
031 GUID / CLSID not found {828030A1-22C1-4009-854F-8E305202313F}
031 * C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}
042 GUID / CLSID not found {4248FE82-7FCB-46AC-B270-339F08212110}
042 GUID / CLSID not found {2670000A-7350-4f3c-8081-5663EE0C6C49}
042 GUID / CLSID not found {92780B25-18CC-41C8-B9BE-3C9C571A8263}
042 GUID / CLSID not found {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}
042 GUID / CLSID not found {CCF151D8-D089-449F-A5A4-D9909053F20F}
042 GUID / CLSID not found {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}
052 GUID / CLSID not found {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
052 * C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.) {0055C089-8582-441B-A0BF-17B458C2A3A8}
052 * C:\PROGRA~2\FlashFXP\IEFlash.dll (IniCom Networks, Inc.) {E5A1691B-D188-4419-AD02-90002030B8EE}
052 * C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
052 * C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) {DBC80044-A445-435b-BC74-9C25C1C588A9}
052 C:\Program Files (x86)\Plus-HD-1.5\Plus-HD-1.5-bho.dll (Plus HD) {11111111-1111-1111-1111-110311201100}
052 * C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) {3049C3E9-B461-4BC5-8870-4C09146192CA}
061 C:\Program Files (x86)\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
062 * C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll (Adobe Systems, Inc.) {F9DB5320-233E-11D1-9F84-707F02C10627}
069 C:\Windows\system32\fppmon3.dll (FinePrint Software, LLC)
073 Adobe Flash Player Updater.job : C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
073 Plus-HD-1.5-codedownloader.job : C:\Program Files (x86)\Plus-HD-1.5\Plus-HD-1.5-codedownloader.exe (Plus HD)
073 Plus-HD-1.5-enabler.job : C:\Program Files (x86)\Plus-HD-1.5\Plus-HD-1.5-enabler.exe (Plus HD)
073 Plus-HD-1.5-firefoxinstaller.job : C:\Program Files (x86)\Plus-HD-1.5\Plus-HD-1.5-firefoxinstaller.exe (Plus HD)
073 Plus-HD-1.5-updater.job : C:\Program Files (x86)\Plus-HD-1.5\Plus-HD-1.5-updater.exe (Plus HD)
073 ReclaimerUpdateFiles_O.job : C:\Users\O\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe (RealNetworks, Inc.)
073 ReclaimerUpdateXML_O.job : C:\Users\O\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe (RealNetworks, Inc.)
073 RNUpgradeHelperLogonPrompt_O.job : C:\Users\O\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe (RealNetworks, Inc.)
100 Default_Page_URL HKCU :

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


100 Search Page HKCU :

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


100 SearchAssistant HKCU :

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


100 Start Page HKCU :

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


104 * C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll {8AD9C840-044E-11D1-B3E9-00805F499D93}
104 * C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
104 * C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
104 * C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
105 Download all links with IDM : C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
105 Download with IDM : C:\Program Files (x86)\Internet Download Manager\IEExt.htm
105 إضافة إلى مكافحة الشعارات : C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm
145 * C:\Windows\system32\drivers\aswKbd.sys (AVAST Software)
170 {2242043e-4877-11df-ac8c-1c4bd601da6a} : G:\.\ShowModem.exe
170 F : F:\ZILzaL2.EXE
170 I : I:\Autorun.exe
173 GUID / CLSID not found {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1}
173 GUID / CLSID not found {967B2D40-8B7D-4127-9049-61EA0C2C6DCE}
173 GUID / CLSID not found {b1b96b20-da1d-4a3c-92c1-7229b32f2325}
173 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
173 GUID / CLSID not found {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}
173 * C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreams.dll (Apple Inc.) {89D984B3-813B-406A-8298-118AFA3A22AE}
173 C:\Program Files (x86)\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
220 GUID / CLSID not found {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}
221 GUID / CLSID not found {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1}
221 GUID / CLSID not found {967B2D40-8B7D-4127-9049-61EA0C2C6DCE}
221 GUID / CLSID not found {b1b96b20-da1d-4a3c-92c1-7229b32f2325}
221 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
221 * C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreams.dll (Apple Inc.) {89D984B3-813B-406A-8298-118AFA3A22AE}
221 C:\Program Files (x86)\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
223 GUID / CLSID not found {472083B0-C522-11CF-8763-00608CC02F24}
223 GUID / CLSID not found {b1b96b20-da1d-4a3c-92c1-7229b32f2325}
225 GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225 GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225 GUID / CLSID not found {967B2D40-8B7D-4127-9049-61EA0C2C6DCE}
225 GUID / CLSID not found {967B2D40-8B7D-4127-9049-61EA0C2C6DCE}
225 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
225 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
225 C:\Program Files (x86)\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 C:\Program Files (x86)\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
226 GUID / CLSID not found {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}
227 GUID / CLSID not found {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1}
227 GUID / CLSID not found {967B2D40-8B7D-4127-9049-61EA0C2C6DCE}
227 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
227 C:\Program Files (x86)\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
228 GUID / CLSID not found {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}
229 GUID / CLSID not found {5E2121EE-0300-11D4-8D3B-444553540000}
231 * C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll (Adobe Systems, Inc.) PDF Column Info
241 GUID / CLSID not found {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}
241 GUID / CLSID not found {FB314EDA-A251-47B7-93E1-CDD82E34AF8B}
241 GUID / CLSID not found {FB314EDB-A251-47B7-93E1-CDD82E34AF8B}
251 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
251 C:\Program Files (x86)\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
254 GUID / CLSID not found {E15E1D68-0D1C-49F7-BEB8-812B1E00FA60}
254 C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll {DB70412E-EEC9-479C-BBA9-BE36BFDDA41B}

Missing files
-------------
004 C:\Users\O\AppData\Local\Temp\_uninst_26929851.bat
004 C:\Users\O\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe
008 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
010 C:\AppServ\Apache\Apache.exe
010 crypserv.exe
010 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
010 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
010 C:\AppServ\MySQL\bin\mysqld-nt --defaults-file=C:\AppServ\MySQL\my.ini
010 C:\Windows\system32\srvany.exe
011 c:\windows\system32\drivers\btwaudio.sys
011 c:\windows\system32\DRIVERS\btwavdt.sys
011 c:\windows\system32\DRIVERS\btwl2cap.sys
011 c:\windows\system32\DRIVERS\btwrchid.sys
011 c:\windows\system32\ckldrv.sys
011 System32\Drivers\RimUsb_AMD64.sys
012 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
032 rdpclip
069
073 C:\Windows\AutoKMS\AutoKMS.exe
073 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
073 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
تأييد 0
توقيع : المقدم بو همام
تأييد 0
السلام عليكم أخي سنفعل التالي على الترتيب فضلا
إحذف البرامج التالية من إضافة إزالة برامج
boingo wi-fi +plus+hd-1.5+punch home and landscape+topaz adjust
ثم نضغط على زر إبداء في الكيبور مع حرف R نكتب داخل المربع msconfig ثم نضغط إنتر
من تبويب الخدمات نضغط في الأسفل على
إخفاء كافة خدمات microsoft
ثم
نعطل جميع الخدمات ماعدا خدمات برنامج الحماية الكاسبر
ثم
من تبويب بدء التشغيل نعطل كافة البرامج مع بداية الإقلاع ماعدا برنامج الحماية الكاسبر
يبدو أنه كان لديك برنامج الأفاست سابقا له بعض المخلفات
سنحمل هذه الأداة

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

نعيد تشغيل الجهاز إلى

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

ثم نشغل الأدة و نضغط على ريموف
بعد الإنتهاء نعيد تشغيل الجهاز إذا لاحظت أن الثقل قد ذهب ... إفحص الجهاز بالمالوير بايت و أعد تقرير رن سكنر
إذا لم يذهب الثقل
أعتقد و اجزم أن ثقل جهازك من الكاسبر سكاي عليك بحذفه مؤقتا لنتأكد "
نحمل اداة الحذف الخاصة بالكاسبر

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

نعيد التشغيل إلى الوضع الآمن
نشغل الأداة و نختار منتج الكاسبر الموجود في الجهاز ثم ريموف
بعدها نعيد تشغيل الجهاز إلى الوضع الطبيعي
common_1464_02_en13-195949.jpg


نستخدم اداة حذف مخلفات التيمب

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

بعد إعادة تشغيل الجهاز

نفحص الجهاز بالمالوير بايت و نزيل الإصابات ... ونرفق التقرير
ونعيد تقرير رن سكنر
--------------------
يتبع إن شاء الله بعد الإنتهاء مما سبق
 
توقيع : المقدم بو همام
تأييد 0
Malwarebytes Anti-Malware 1.75.0.1300

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



Database version: v2013.06.29.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
O :: O-PC [administrator]

21/08/34 01:21:13 ص
mbam-log-2013-06-30 (01-21-13).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 537662
Time elapsed: 1 hour(s), 55 minute(s), 27 second(s)

Memory Processes Detected: 1
C:\Windows\KMService.exe (RiskWare.Tool.CK) -> 2316 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 4
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011221158} (Adware.GamePlayLab) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158} (Adware.GamePlayLab) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\VيTIMA (Backdoor.Trace) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\ضحية (Backdoor.Trace) -> Quarantined and deleted successfully.

Registry Values Detected: 2
HKCU\Software\vيtima|FirstExecution (Backdoor.Trace) -> Data: 22/02/2013 -- 00:44 -> Quarantined and deleted successfully.
HKCU\Software\ضحية|FirstExecution (Backdoor.Trace) -> Data: 05/05/2011 -- 02:11 -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Windows\KMService.exe (RiskWare.Tool.CK) -> Delete on reboot.
C:\Users\O\AppData\Roaming\logs.dat (Bifrose.Trace) -> Quarantined and deleted successfully.

(end)
 
تأييد 0
بالاذن

جهازك كان مخترق :D وتم حذف الاصابه
+ الاباتشي ان ماكان تستخدمه عطله لانه يقلع مع النظام
بيتابع معك اخي ان شاء الله
( ياليت توضح ايش البرامج اللي ماتحتاجها عشان يتم حذفها )
 
توقيع : الخفـوق
تأييد 0
السلام عليكم أخي
مازل للأفاست بقايا لم تحذف
حمل ملف

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

و طبق عملية التنظيف

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


بعدها نستخدم أداة

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

بعد إعادة تشغيل الجهاز

سنحمل هذه أداة حذف الأفاست

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

نعيد تشغيل الجهاز إلى

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

ثم نشغل الأدة و نضغط على ريموف


ثم نعيد تشغيل الجهاز إلى الوضع الطبيعي
نحمل أداة

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

... زر يمين عليها تشغيل كمسؤول ... نضغط على بحث ... ننتظر ظهور المفكرة ... نضغط على حذف .. ستطلب الأداة إعادة التشغيل سنقوم بذلك فضلا .. أرفق التقرير بردك القادم
ثم
سنقوم بفحص الجهاز بواسطة

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

بعد الموافقة على الإتفاقية ضع إشارة الصح على
Scan archives
Remove found threats
ثم إختر Advanced settings
ثم ضع إشارة الصح على
Scan potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth technology
بعدها إبداء الفحص ثم بعد الإنتهاء صدر التقرير على سطح المكتب و أرفقه لنا
أعد إقلاع الجهاز بعد الإنتهاء
-----------
و إن شاء الله ستحل مشكلة الإعلانات
الاباتشي ان ماكان تستخدمه عطله لانه يقلع مع النظام
 
توقيع : المقدم بو همام
تأييد 0

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


حسبي الله عليهم هالبزران لا بارك الله فيهم
والله يسلط عليهم وعلى اجهزة اهاليهم اللي مايخافون الله
 
تأييد 0

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


بعد ما استخدمت اداة TFC وسويت اعدة تشغيل علق الجهاز على شاشه الترحيب وادخال الباسورد
ومافي امل يكتب اي شي داخل مستطيل تسجيل الدخول لا بالوضع الامن ولا غيره

الان انا داخله من الايباد
 
تأييد 0
حسنا أخي
عند بدء التشغيل إضغط F8 ستظهر لك الصورة أدناه أختر منها LAST KNOW GOOD أو directory services restore mode وعند دخولك للوندوز أخبرني
last-known-good-configuration.jpg
 
توقيع : المقدم بو همام
تأييد 0
الحمد لله ضبط والان انا داخله من الجهاز

الله يجزاك الجنة وكل خير
 
تأييد 0
:) الحمد لله إذن نتابع ما تبقى ما من الحل
 
توقيع : المقدم بو همام
تأييد 0
من اداة ادوير كلينر

# AdwCleaner v2.303 - Logfile created 06/30/2013 at 17:58:17
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : O - O-PC
# Boot Mode : Normal
# Running from : C:\Users\O\Desktop\AdwCleaner_2.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Found : C:\Program Files (x86)\AVG Secure Search
Folder Found : C:\Program Files (x86)\BrowserCompanion
Folder Found : C:\Program Files (x86)\I Want This
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\Users\O\AppData\LOcal\Smartbar
Folder Found : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}
Folder Found : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\extensions\bbrs_002@blabbers.com
Folder Found : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\extensions\engine@conduit.com
Folder Found : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\extensions\helperbar@helperbar.com

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\BrowserCompanion
Key Found : HKCU\Software\Headlight
Key Found : HKCU\Software\IGearSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Found : HKCU\Software\SmartBar
Key Found : HKCU\Software\SmartbarBackup
Key Found : HKCU\Software\SmartbarLog
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Key Found : HKLM\SOFTWARE\Classes\IESmartBar.BandObjectAttribute
Key Found : HKLM\SOFTWARE\Classes\IESmartBar.BHO
Key Found : HKLM\SOFTWARE\Classes\IESmartBar.DockingPanel
Key Found : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBar
Key Found : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBarBandObject
Key Found : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarMenuForm
Key Found : HKLM\SOFTWARE\Classes\LinkurySmartBar.BHO
Key Found : HKLM\SOFTWARE\Classes\LinkurySmartBar.DockingPanel
Key Found : HKLM\SOFTWARE\Classes\LinkurySmartBar.LinkuryMenuForm
Key Found : HKLM\SOFTWARE\Classes\LinkurySmartBar.LinkurySmartBar
Key Found : HKLM\SOFTWARE\Classes\LinkurySmartBar.LinkurySmartBarBandObject
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BabylonToolbarsrv_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BabylonToolbarsrv_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{63E471BB-23F1-3A92-8D43-4079E7B7FA8E}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B397BC55-576C-39E6-BF64-9E2A96317447}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B973AB12-952F-31C4-A321-E8FA6FE4421E}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EC5983DF-8DE2-31B5-989F-850F265E7F3C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kolgnaidildmdbfgdnoapjdianbpajne
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{63E471BB-23F1-3A92-8D43-4079E7B7FA8E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B397BC55-576C-39E6-BF64-9E2A96317447}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B973AB12-952F-31C4-A321-E8FA6FE4421E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EC5983DF-8DE2-31B5-989F-850F265E7F3C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Found : HKU\S-1-5-21-800624832-1490406121-1209559680-1001\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Found : HKU\S-1-5-21-800624832-1490406121-1209559680-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKU\S-1-5-21-800624832-1490406121-1209559680-1001\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Value Found : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

[HKCU\Software\Microsoft\Internet Explorer\Main - Search Page] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms}
[HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms}
[HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms}
[HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms}
[HKCU\Software\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms}
[HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



-\\ Mozilla Firefox v21.0 (ar)

File : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\prefs.js

Found : user_pref("extensions.helperbar.SmartbarDisabled", false);
Found : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);

*************************

AdwCleaner[R1].txt - [9418 octets] - [30/06/2013 17:58:17]

########## EOF - C:\AdwCleaner[R1].txt - [9478 octets] ##########
 
تأييد 0
وهذي بعد ما سويت ريستارت

# AdwCleaner v2.303 - Logfile created 06/30/2013 at 17:59:56
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : O - O-PC
# Boot Mode : Normal
# Running from : C:\Users\O\Desktop\AdwCleaner_2.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\BrowserCompanion
Folder Deleted : C:\Program Files (x86)\I Want This
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Users\O\AppData\LOcal\Smartbar
Folder Deleted : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}
Folder Deleted : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\extensions\bbrs_002@blabbers.com
Folder Deleted : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\extensions\engine@conduit.com
Folder Deleted : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\extensions\helperbar@helperbar.com

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\BrowserCompanion
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\SmartbarBackup
Key Deleted : HKCU\Software\SmartbarLog
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.BandObjectAttribute
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.BHO
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.DockingPanel
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBar
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBarBandObject
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarMenuForm
Key Deleted : HKLM\SOFTWARE\Classes\LinkurySmartBar.BHO
Key Deleted : HKLM\SOFTWARE\Classes\LinkurySmartBar.DockingPanel
Key Deleted : HKLM\SOFTWARE\Classes\LinkurySmartBar.LinkuryMenuForm
Key Deleted : HKLM\SOFTWARE\Classes\LinkurySmartBar.LinkurySmartBar
Key Deleted : HKLM\SOFTWARE\Classes\LinkurySmartBar.LinkurySmartBarBandObject
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonToolbarsrv_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonToolbarsrv_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{63E471BB-23F1-3A92-8D43-4079E7B7FA8E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B397BC55-576C-39E6-BF64-9E2A96317447}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B973AB12-952F-31C4-A321-E8FA6FE4421E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EC5983DF-8DE2-31B5-989F-850F265E7F3C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kolgnaidildmdbfgdnoapjdianbpajne
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{63E471BB-23F1-3A92-8D43-4079E7B7FA8E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B397BC55-576C-39E6-BF64-9E2A96317447}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B973AB12-952F-31C4-A321-E8FA6FE4421E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EC5983DF-8DE2-31B5-989F-850F265E7F3C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Page] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms} --> hxxp://

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms} --> hxxp://

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms} --> hxxp://

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms} --> hxxp://

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


Replaced : [HKCU\Software\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://feed-msgplus.linkury.com/?publisher=MessengerPlus&dpid=MessengerPlus&co=SA&userid=a42ba6e5-a733-49b8-93ce-de5e7aeb69cb&sp=addr&q={searchTerms} --> hxxp://

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

--> hxxp://

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



-\\ Mozilla Firefox v21.0 (ar)

File : C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\prefs.js

C:\Users\O\AppData\ROaming\MOzilla\FirefOx\Profiles\41w458nb.default\user.js ... Deleted !

Deleted : user_pref("extensions.helperbar.SmartbarDisabled", false);
Deleted : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);

*************************

AdwCleaner[R1].txt - [9511 octets] - [30/06/2013 17:58:17]
AdwCleaner[S1].txt - [9512 octets] - [30/06/2013 17:59:56]

########## EOF - C:\AdwCleaner[S1].txt - [9572 octets] ##########
 
تأييد 0
الحالة
مغلق و غير مفتوح للمزيد من الردود.
عودة
أعلى