أخي هذا تقرير runscanner
Runscanner logfile
* = signed file
- = file not found
General info
------------
Computer name : HP-HP
Creation time : 24/08/2013 04:42:30 م
Hosts <> 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 9.0.8112.16421
OS : Windows 7 Home Premium
OS Build : 7601
OS SP : Service Pack 1
RunScanner Version : 2.0.0.60
User Language : Arabic (Iraq)
User rights : Administrator
Windows folder : C:\Windows
Running processes
-----------------
* C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
* C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe (Adobe Systems, Inc.)
* C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe (Adobe Systems, Inc.)
* C:\Windows\System32\atieclxx.exe (AMD)
* C:\Windows\System32\atiesrxx.exe (AMD)
* C:\Program Files\IDT\WDM\AESTSr64.exe (Andrea Electronics Corporation)
* C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
* C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
* C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe (HP)
* C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Intel Corporation)
* C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe (Intel Corporation)
* C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Intel Corporation)
* C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel Corporation)
* C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ATI Technologies Inc.)
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\csrss.exe (Microsoft Corporation)
* C:\Windows\System32\dwm.exe (Microsoft Corporation)
* C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
* C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (ESET)
* C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
* C:\Windows\System32\hkcmd.exe (Intel Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\svchost.exe (Microsoft Corporation)
* C:\Windows\System32\taskhost.exe (Microsoft Corporation)
* C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (Hewlett-Packard Development Company, L.P.)
* C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
* C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (Hewlett-Packard Development Company, L.P.)
* C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
* C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe (Hewlett-Packard Company)
* C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe (Hewlett-Packard Company)
* C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe (HP)
* C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (Hewlett-Packard Company)
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (Hewlett-Packard Company)
* C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
* C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe (Hewlett-Packard Development Company, L.P.)
* C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe (Hewlett-Packard)
* C:\Windows\System32\hpservice.exe (Hewlett-Packard Company)
* C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
* C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
* C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
* C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
* C:\Program Files\IDT\WDM\stacsv64.exe (IDT, Inc.)
* C:\Windows\System32\igfxtray.exe (Intel Corporation)
* C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Intel Corporation)
* C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Intel(R) Corporation)
* C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Corporation)
* C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel Corporation)
* C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
* C:\Program Files (x86)\Internet Explorer\ielowutil.exe (Microsoft Corporation)
* C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung)
* C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe (Samsung Electronics)
* C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
* C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
* C:\Windows\System32\lsass.exe (Microsoft Corporation)
* C:\Windows\System32\lsm.exe (Microsoft Corporation)
C:\Windows\SysWOW64\MDM.EXE (Microsoft Corporation)
* C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
* C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
* C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
* C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
C:\Program Files (x86)\Broderbund\Mavis Beacon Teaches Typing Deluxe 15\MiniMavis.exe (TLC Education Properties LLC)
* C:\Windows\System32\SearchIndexer.exe (Microsoft Corporation)
* C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
* C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)
* C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
* C:\Windows\System32\igfxpers.exe (Intel Corporation)
* C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
* C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.)
C:\Program Files (x86)\Realtek\RTL8187 Wireless LAN Utility\RtlService.exe (Realtek)
C:\Program Files (x86)\Realtek\RTL8187 Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
* C:\Users\hp\Downloads\Programs\runscanner.exe (Runscanner.net)
* C:\Windows\System32\services.exe (Microsoft Corporation)
C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
* C:\Windows\System32\wbem\unsecapp.exe (Microsoft Corporation)
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
* C:\Windows\System32\spoolsv.exe (Microsoft Corporation)
* C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation)
* C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
* C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Synaptics Incorporated)
* C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated)
* C:\Windows\System32\taskeng.exe (Microsoft Corporation)
* C:\Windows\System32\taskeng.exe (Microsoft Corporation)
* C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe (HP)
* C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
* C:\Windows\system32\audiodg.exe (Microsoft Corporation)
* C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
* C:\Windows\explorer.exe (Microsoft Corporation)
* C:\Windows\System32\rundll32.exe (Microsoft Corporation)
* C:\Windows\System32\winlogon.exe (Microsoft Corporation)
* C:\Windows\System32\smss.exe (Microsoft Corporation)
* C:\Windows\System32\wininit.exe (Microsoft Corporation)
* C:\Windows\System32\wbem\WmiPrvSE.exe (Microsoft Corporation)
* C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe (Yahoo! Inc.)
* C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (CyberLink)
Unrated items
-------------
002 * C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
002 C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
002 * C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (Hewlett-Packard Development Company, L.P.)
002 * C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
003 * C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
003 * C:\Users\hp\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
003 * C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
003 * C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
003 C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe (Samsung Electronics)
003 * C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung)
003 * C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
003 C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
005 C:\PROGRA~2\BRODER~1\MAVISB~1\MINIMA~1.EXE (TLC Education Properties LLC)
006 C:\PROGRA~2\BRODER~1\MAVISB~1\MINIMA~1.EXE (TLC Education Properties LLC)
010 * C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Acrobat Update Service)
010 * C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe® Flash® Player Update Service 11.8 r800)
010 * C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe (ESET Service)
010 * C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe (HP Quick Synchronization Service)
010 * C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe (HP Service)
010 * C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (HP Software Framework WMI Service)
010 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (HP Support Assistant Service)
010 * C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Intel IPT Host Interface Service)
010 * C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Intel(R) BlueTooth(R) HS Security Manager Service)
010 * C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) PROSet/Wireless Registry Service)
010 * C:\Program Files\iPod\bin\iPodService.exe (iPodService Module (64-bit))
010 * C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (maintenanceservice.exe)
010 * C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Anti-Malware)
010 * C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Anti-Malware)
010 * C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (MobileDeviceService)
010 C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realtek Card Reader Icon Tool.)
010 C:\Program Files (x86)\Realtek\RTL8187 Wireless LAN Utility\RtlService.exe (RtlService MFC Application)
010 * C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer Module)
010 C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe (Sony PCCompanion Service)
010 * C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Wireless PAN DHCP and DNS Server)
011 * C:\Windows\system32\DRIVERS\eamonm.sys (Amon monitor)
011 * C:\Windows\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter)
011 * C:\Windows\system32\DRIVERS\EpfwLWF.sys (Epfw NDIS LightWeight Filter)
011 * C:\Windows\system32\DRIVERS\ehdrv.sys (ESET Helper driver)
011 * C:\Windows\system32\DRIVERS\epfw.sys (ESET Personal Firewall driver)
011 * C:\Windows\system32\DRIVERS\epfwwfp.sys (ESET Personal Firewall driver)
011 C:\Windows\SysWOW64\FsUsbExDisk.SYS (FsUsbExDisk.SYS)
011 * C:\Windows\system32\DRIVERS\iwdbus.sys (Intel® WiDi Solution)
011 * C:\Windows\system32\drivers\intelaud.sys (Intel® WiDi Solution)
011 * C:\Windows\system32\drivers\mbam.sys (MBAMProtector)
035 * C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe (Google Inc.) {8A69D345-D564-463c-AFF1-A69D9E530F96}
041 * C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.) {EF99BD32-C1FB-11D2-892F-0090271D4F88}
042 GUID / CLSID not found {A95fe080-8f5d-11d2-a20b-00aa003c157a}
042 * C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard) {25510184-5A38-4A99-B273-DCA8EEF6CD08}
042 GUID / CLSID not found {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}
042 GUID / CLSID not found {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}
042 GUID / CLSID not found {2670000A-7350-4f3c-8081-5663EE0C6C49}
050 C:\Windows\SysWow64\EZUPBH~1.DLL (EasyBits Software Corp.) {E54729E8-BB3D-4270-9D49-7389EA579090}
052 * C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard) {E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
052 * C:\Program Files (x86)\HP SimplePass 2012\IEBHO.dll (HP) {8590886E-EC8C-43C1-A32C-E4C2B0B6395B}
052 * C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.) {02478D38-C3F9-4efb-9B51-7695ECA05670}
060 GUID / CLSID not found {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
061 * C:\Program Files\ESET\ESET Smart Security\x86\shellExt.dll (ESET) {B089FE88-FB52-11D3-BDF1-0050DA34150D}
061 C:\Program Files (x86)\WinRAR\rarext.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
062 * C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll (Adobe Systems, Inc.) {F9DB5320-233E-11D1-9F84-707F02C10627}
073 Adobe Flash Player Updater.job : C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
073 FacebookUpdateTaskUserS-1-5-21-4224187428-2372965139-577165589-1000Core.job : C:\Users\hp\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
073 FacebookUpdateTaskUserS-1-5-21-4224187428-2372965139-577165589-1000UA.job : C:\Users\hp\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
100 Default_Page_URL HKCU :
100 Default_Page_URL HKLM :
100 Start Page HKLM :
104 * C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_8_800_94.ocx (Adobe Systems, Inc.) {D27CDB6E-AE6D-11CF-96B8-444553540000}
105 Add to Google Photos Screensa&ver : res://C:\Windows\system32\GPhotos.scr/200
105 E&xport to Microsoft Excel : res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
105 Se&nd to OneNote : res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
105 تحميل الكل بواسطة Internet Download Manager : C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
105 تحميل بواسطة Internet Download Manager : C:\Program Files (x86)\Internet Download Manager\IEExt.htm
122 C:\Windows\SYSTEM32\RtlGina\RtlGina.DLL (Realtek)
170 {2596564d-818f-11e2-88e1-4c809344fc0e} : H:\Startme.exe
170 {3b444957-30cd-11e2-89fc-4c809344fc0e} : "H:\WD SmartWare.exe" autoplay=true
170 {b3fcc388-fdb9-11e2-9c47-4c809344fc0e} : H:\Startme.exe
170 {d9b3062f-058d-11e2-90ed-4c809344fc0e} : H:\LaunchU3.exe -a
173 GUID / CLSID not found {0A7D34C2-E9DA-48A1-9E34-0CDFC2DE3B44}
173 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
173 * C:\Program Files\ESET\ESET Smart Security\x86\shellExt.dll (ESET) {B089FE88-FB52-11D3-BDF1-0050DA34150D}
173 * C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreams.dll (Apple Inc.) {89D984B3-813B-406A-8298-118AFA3A22AE}
173 C:\Program Files (x86)\WinRAR\rarext.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
221 GUID / CLSID not found {0A7D34C2-E9DA-48A1-9E34-0CDFC2DE3B44}
221 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
221 * C:\Program Files\ESET\ESET Smart Security\x86\shellExt.dll (ESET) {B089FE88-FB52-11D3-BDF1-0050DA34150D}
221 * C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreams.dll (Apple Inc.) {89D984B3-813B-406A-8298-118AFA3A22AE}
221 C:\Program Files (x86)\WinRAR\rarext.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
223 GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225 GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225 GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
225 GUID / CLSID not found {B41DB860-64E4-11D2-9906-E49FADC173CA}
225 * C:\Program Files\ESET\ESET Smart Security\x86\shellExt.dll (ESET) {B089FE88-FB52-11D3-BDF1-0050DA34150D}
225 * C:\Program Files\ESET\ESET Smart Security\x86\shellExt.dll (ESET) {B089FE88-FB52-11D3-BDF1-0050DA34150D}
225 C:\Program Files (x86)\WinRAR\rarext.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 C:\Program Files (x86)\WinRAR\rarext.dll (Alexander Roshal) {B41DB860-8EE4-11D2-9906-E49FADC173CA}
229 GUID / CLSID not found {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4}
229 GUID / CLSID not found {5E2121EE-0300-11D4-8D3B-444553540000}
231 * C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll (Adobe Systems, Inc.) PDF Column Info
Missing files
-------------
010 C:\Windows\System32\ezSharedSvcHost.exe
032 rdpclip
