مشكله في نظام فيستا

غنـــج · 31 يناير 2009

السلام عليكم ورحمة الله وبركاته

شخباركم

ياليت تساعدوني اخواني

عندي نظام الفيستا وانا مافهم فيه كثير

اولا استعادة النظام فيه

يسوي استعاده للنظام بس مايسترجع اللي كان موجود

يعني مثلا انا حذفت برنامج وابي اسوي له استعاده

مايستعيد لي اياه

ان شاء الله فهمتو علي

ثانيا انا عندي نود32 بس لما ابحث عن فايروسات يطلع لي اكثر من 43 فايروس

مع ان الجهاز توه جديد ومع ذلك تطلع واحذفها

بس للاسف ماتنحذف يعني لما اشغل البحث مره ثانيه الاقي نفس الفايروسات موجوده ماتروح

دلوني تكفون واكون شاكره لكم

ووش تنصحوني فيه بليز

وشكرا مقدما

غنـــج · 31 يناير 2009

هو كان مجلد عندي فيه برامج ومو مثبته

نقلتها للجهاز واعدت تثبيتها من جديد

ان شاء الله تكون فهمت علي

البرونز · 31 يناير 2009

طيب ماعندك مشكلة

حمل هذه الاداة عن طريق الضغط على الرابط التالي

وسيقوم تلقائياً بتحميل الاصدار الاخير من نفس موقع الشركة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

أوقف برنامج الحماية لديك >>>>>> مهمة جداً هذه النقطة

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes

بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes

انتظر حتى الاداة تنتهي من فحص جهازك

وبشكل تلقائي يعاد تشغيل جهازك >>> قد لايعمل إعادة تشغيل فهو يختلف من جهاز لأخر

وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه

انتظر حتى يظهر لك تقرير ضعه في ردك القادم

ثم اعد تشغيل الجهاز وأخبرني بالنتائج

غنـــج · 31 يناير 2009

لا يمكن عرض الصفحه ع الرابط اللي عطيتني

ثانيا انا عندي النود

وماعرف اوقفه :b:

غنـــج · 31 يناير 2009

تحملت الاداة بس النود شلون اوقفه ؟؟؟؟

البرونز · 31 يناير 2009

تم تعديل الرابط والعذر على هذا الخطأ

وبالنسبة للنود دبل كليك على البرنامج

ستظهر شاشة البرنامج اختاري من اليسار Nod32

وتجدين على الجهة الاخرى علامة الصح أزيليها وسيتغير ايقونة البرنامج للون الاحمر

غنـــج · 31 يناير 2009

اوك مشكور اخوي

مشي الحال وصارت حمرا

ابجرب الحين

انتظرني لا تروح :b:

غنـــج · 31 يناير 2009

******** 09-01-31.01 - الشماخي 01/31/2009 21:58:50.1 - NTFSx86
Microsoft®‎ Windows Vista™ Home Premium 6.0.6001.1.1256.1.1025.18.1976.910 [GMT 3:00]
Running from: c:\users\الشماخي\Desktop\********.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Updated)
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\x64
.
((((((((((((((((((((((((( Files Created from 2008-12-28 to 2009-01-31 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-31 19:04 --------- d-----w c:\users\الشماخي\AppData\Roaming\DMCache
2009-01-31 19:03 --------- d-----w c:\programdata\hpqLog
2009-01-31 19:02 50,408 --sha-w c:\windows\system32\drivers\fidbox.idx
2009-01-31 19:02 4,120,608 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-01-31 18:49 --------- d---a-w c:\programdata\TEMP
2009-01-31 17:28 --------- d-----w c:\program files\FLV to AVI MPEG WMV 3GP MP4 iPod Converter
2009-01-31 17:28 --------- d-----w c:\program files\Fingerprint Sensor
2009-01-31 17:23 --------- d-----w c:\program files\Circle Developement
2009-01-31 12:06 --------- d-----w c:\programdata\Bagsknobiso
2009-01-31 11:31 --------- d-----w c:\programdata\is-5O1NL
2009-01-31 00:28 --------- d-----w c:\programdata\Nero
2009-01-31 00:22 --------- d-----w c:\program files\Common Files\LightScribe
2009-01-30 22:12 --------- d-----w c:\program files\Any Audio Converter
2009-01-30 21:26 --------- d-----w c:\program files\Google
2009-01-30 18:45 --------- d-----w c:\program files\AviSynth 2.5
2009-01-29 23:53 --------- d-----w c:\program files\IDA
2009-01-27 17:53 --------- d-----w c:\program files\ESET
2009-01-27 14:02 --------- d-----w c:\programdata\ESET
2009-01-27 13:55 --------- d-----w c:\program files\Common Files\Adobe
2009-01-27 13:52 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-26 20:27 --------- d-----w c:\programdata\Megaupload
2009-01-26 20:27 --------- d-----w c:\programdata\EmailNotifier
2009-01-26 19:31 --------- d-----w c:\users\الشماخي\AppData\Roaming\Systweak
2009-01-26 19:31 --------- d-----w c:\programdata\Systweak
2009-01-26 13:36 --------- d-----w c:\programdata\Kaspersky Lab Setup Files
2009-01-26 12:58 --------- d-----w c:\users\الشماخي\AppData\Roaming\Media Player Classic
2009-01-26 12:46 81,920 ----a-w c:\users\الشماخي\AppData\Roaming\ezpinst.exe
2009-01-26 12:46 47,360 ----a-w c:\users\الشماخي\AppData\Roaming\pcouffin.sys
2009-01-26 12:46 --------- d-----w c:\users\الشماخي\AppData\Roaming\Vso
2009-01-26 12:42 --------- d-----w c:\users\الشماخي\AppData\Roaming\GetRightToGo
2009-01-26 12:41 --------- d-----w c:\program files\QuickTime
2009-01-26 12:31 --------- d-----w c:\program files\Online TV Player 4
2009-01-26 12:23 --------- d-----w c:\program files\Ultra MP4 Video Converter
2009-01-26 12:23 --------- d-----w c:\program files\Nokia
2009-01-26 12:18 --------- d-----w c:\program files\Xilisoft
2009-01-26 12:14 --------- d-----w c:\programdata\TechSmith
2009-01-26 12:14 --------- d-----w c:\program files\TechSmith
2009-01-26 12:13 --------- d-----w c:\program files\Ela-Salaty
2009-01-26 12:13 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
2009-01-26 06:17 --------- d-----w c:\programdata\byte loud style cool
2009-01-26 01:05 --------- d-----w c:\program files\Common Files\SureThing Shared
2009-01-26 00:50 --------- d-----w c:\program files\Common Files\PX Storage Engine
2009-01-26 00:44 --------- d-----w c:\program files\AAQ
2009-01-26 00:20 --------- d-----w c:\program files\Windows Mail
2009-01-25 23:31 --------- d-----w c:\users\الشماخي\AppData\Roaming\ESET
2009-01-25 22:37 --------- d-----w c:\users\الشماخي\AppData\Roaming\InterVideo
2009-01-25 22:24 --------- d-----w c:\program files\Saree PC Cleaner 2
2009-01-25 22:13 --------- d-----w c:\programdata\Messenger Plus!
2009-01-25 22:02 --------- d-----w c:\users\الشماخي\AppData\Roaming\IDM
2009-01-25 22:01 --------- d-----w c:\users\الشماخي\AppData\Roaming\Internet Download Accelerator
2009-01-25 21:42 73,216 ----a-w c:\windows\ST6UNST.EXE
2009-01-25 21:42 172,032 ------w c:\windows\Setup1.exe
2009-01-25 20:50 --------- d-----w c:\users\الشماخي\AppData\Roaming\Thinstall
2009-01-25 19:32 --------- d-----w c:\program files\Windows Live
2009-01-25 19:32 --------- d-----w c:\program files\MSN Messenger
2009-01-25 19:32 --------- d-----w c:\program files\Messenger Plus! Live
2009-01-25 19:25 --------- d-----w c:\program files\SWiSHmax
2009-01-25 17:53 --------- d-----w c:\users\الشماخي\AppData\Roaming\HPQLOG
2009-01-23 20:58 --------- d-----w c:\program files\MSXML 4.0
2009-01-23 20:32 --------- d-----w c:\program files\Internet Download Manager
2009-01-23 20:22 --------- d-----w c:\program files\Real
2009-01-23 20:22 --------- d-----w c:\program files\Common Files\xing shared
2009-01-23 20:22 --------- d-----w c:\program files\Common Files\Real
2009-01-23 20:20 --------- d-----w c:\programdata\LightScribe
2009-01-23 20:18 --------- d-----w c:\programdata\Microsoft Help
2009-01-23 20:17 --------- d-----w c:\program files\MSBuild
2009-01-23 20:17 --------- d-----w c:\program files\Microsoft Works
2009-01-23 20:16 --------- d-----w c:\program files\Microsoft.NET
2009-01-23 20:14 --------- d-----w c:\program files\Microsoft Visual Studio 8
2009-01-23 17:45 --------- d-----w c:\users\الشماخي\AppData\Roaming\Nero
2009-01-23 17:44 --------- d-----w c:\program files\Nero
2009-01-23 17:41 --------- d-----w c:\program files\AskTBar
2009-01-23 17:40 0 ---ha-w c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2009-01-23 15:07 --------- d-----w c:\programdata\Hewlett-Packard
2009-01-23 15:05 --------- d-----w c:\program files\HP Webcam Application
2009-01-23 15:04 --------- d-----w c:\program files\Common Files\SNP2UVC
2009-01-23 15:03 --------- d-----w c:\program files\WIDCOMM
2009-01-23 15:00 0 --sha-r c:\windows\system32\drivers\103C_HP_bNB_2230s_Y5336AN_0U_QCNU84062F5_E503441-172_4A_I3037_SHP_V11.15_68PHU F.03_T080721_WV3-1_L401_M1977_J250_7Intel_86FD_92.00_#080929_N_(FU568ES#ABV)_XMOBILE_CN10_Z_2F.03_G80862A42;80862A43.MRK
2009-01-23 15:00 --------- d-----w c:\users\الشماخي\AppData\Roaming\InstallShield
2009-01-23 15:00 --------- d-----w c:\programdata\SonicFocus
2009-01-23 15:00 --------- d-----w c:\program files\Analog Devices
2009-01-23 14:55 --------- d-sh--w c:\programdata\قائمة ابدأ
2009-01-23 14:55 --------- d-sh--w c:\programdata\سطح المكتب
2008-12-16 02:42 288,768 ----a-w c:\windows\system32\drivers\srv.sys
2008-11-01 03:44 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll
2008-11-01 03:44 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
2008-11-01 03:44 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
2008-11-01 03:44 28,672 ----a-w c:\windows\System32\Apphlpdm.dll
2008-11-01 03:44 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll
2008-11-01 03:44 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll
2008-11-01 01:21 4,240,384 ----a-w c:\windows\System32\GameUXLegacyGDFs.dll
2008-10-29 06:29 2,927,104 ----a-w c:\windows\explorer.exe
2008-10-22 03:57 241,152 ----a-w c:\windows\System32\PortableDeviceApi.dll
2008-10-22 01:22 2,048 ----a-w c:\windows\System32\tzres.dll
2008-10-21 05:25 296,960 ----a-w c:\windows\System32\gdi32.dll
2008-10-21 05:25 1,645,568 ----a-w c:\windows\System32\connect.dll
2008-10-16 21:13 1,809,944 ----a-w c:\windows\System32\wuaueng.dll
2008-10-16 21:12 561,688 ----a-w c:\windows\System32\wuapi.dll
2008-10-16 21:09 51,224 ----a-w c:\windows\System32\wuauclt.exe
2008-10-16 21:09 43,544 ----a-w c:\windows\System32\wups2.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
07/03/2008 12:04 AM 110592 --a------ c:\program files\Hewlett-Packard\File Sanitizer\IEBHO.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cast one"="c:\programdata\InsideCityCity.18nqx6j" [X]
"style cool 2 city"="c:\programdata\Clock Thunk Burn.ndp3ge1" [X]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [01/21/2008 05:23 AM 1233920]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [03/18/2008 03:59 AM 2289664]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [01/23/2009 11:32 PM 2606512]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [01/19/2007 12:55 PM 5674352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [06/20/2008 06:37 PM 178712]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [06/28/2008 12:35 AM 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [06/28/2008 12:35 AM 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [06/28/2008 12:35 AM 145944]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [05/16/2007 02:08 AM 293168]
"PTHOSTTR"="c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE" [07/09/2008 04:29 AM 238896]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [06/18/2008 03:05 PM 24848]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [05/12/2008 04:28 PM 318488]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [03/27/2008 10:05 PM 1045800]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [04/16/2008 12:51 AM 488752]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [06/16/2008 06:03 PM 75008]
"File Sanitizer"="c:\program files\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [07/03/2008 12:04 AM 10244096]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_06\bin\jusched.exe" [03/25/2008 02:28 PM 144784]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [06/04/2008 02:40 AM 177456]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [04/04/2008 06:10 PM 1314816]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [10/27/2006 12:47 AM 31016]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [01/23/2009 11:22 PM 185896]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [02/20/2008 11:06 AM 1443072]
c:\users\ںé¬êں¦ï\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Ela-Salaty.lnk - c:\program files\Ela-Salaty\Salaty.exe [2007-03-05 5205504]
is-5O1NL.lnk - c:\users\ںé¬êں¦ï\Desktop\Virus Removal Tool\is-5O1NL\startup.exe [2009-01-31 65536]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=G APSHook.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0antispynative32
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"AntiVirusDisableNotify"=dword:00000001
"FirewallOverride"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
"UacDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{06B007DD-E804-4DB7-AB89-339D6F3E3C41}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
"{4CBFB397-80AB-42CC-8DA0-D28C3CA593B8}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{EB56D60F-350B-4C44-8867-00171CB81200}"= UDP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{AA7D3FD8-D62A-467A-B11C-88A770CA746F}"= TCP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{E143D0B3-28EF-4184-A1A0-4F51E922D87B}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{DA67EAE3-9D20-4A6A-B531-FDF533B3082F}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"TCP Query User{B9514618-8183-4930-900A-50436E3E786F}c:\\program files\\analog devices\\core\\smax4pnp.exe"= UDP:c:\program files\analog devices\core\smax4pnp.exe:SMax4PNP
"UDP Query User{996695E6-E73D-43CB-9EE1-664CBB812834}c:\\program files\\analog devices\\core\\smax4pnp.exe"= TCP:c:\program files\analog devices\core\smax4pnp.exe:SMax4PNP
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"DoNotAllowExceptions"= 0 (0x0)
R0 SbAlg;SbAlg;c:\windows\System32\drivers\SbAlg.sys [2008-07-12 51376]
R0 SbFsLock;SbFsLock;c:\windows\System32\drivers\SbFsLock.sys [2008-07-12 12928]
R1 epfwtdir;epfwtdir;c:\windows\System32\drivers\epfwtdir.sys [2008-02-20 33800]
R1 is-5O1NLdrv;is-5O1NLdrv;c:\windows\System32\drivers\73440150.sys [2009-01-31 148496]
R1 RsvLock;RsvLock;c:\windows\System32\drivers\rsvlock.sys [2008-07-12 12496]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;c:\windows\System32\drivers\ATSwpWDF.sys [2008-06-13 477696]
R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-09-29 193840]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\System32\drivers\IntcHdmi.sys [2008-06-28 113664]
R3 NETw5v32;برنامج تشغيل محول Intel(R) Wireless WiFi Link لنظام Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [2008-04-28 3658752]
R4 accoca;ActivClient Middleware Service;c:\program files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R4 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [2008-01-21 21504]
R4 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [2008-01-21 21504]
R4 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\AtService.exe [2008-06-12 1164536]
R4 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-02-20 472320]
R4 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-07-09 19968]
R4 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-07-12 256512]
R4 HPFSService;File Sanitizer for HP ProtectTools;c:\program files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-09-29 77824]
R4 hpsrv;HP Service;c:\windows\System32\hpservice.exe [2008-04-07 24936]
R4 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2008-09-29 576024]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [2008-01-21 179712]
S3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S4 0076351232723545mcinstcleanup;McAfee Application Installer Cleanup (0076351232723545);c:\users\0D43~1\AppData\Local\Temp\007635~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service --> c:\users\0D43~1\AppData\Local\Temp\007635~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service [?]
S4 NOD32FiXTemDono;Eset Nod32 Boot;c:\windows\System32\regedt32.exe [2006-11-02 9216]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Cognizance REG_MULTI_SZ ASBroker ASChannel
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
bthsvcs REG_MULTI_SZ BthServ
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
*******s of the 'Scheduled Tasks' folder
2009-01-26 c:\windows\Tasks\Systweak AntiSpyware 2008 Update Checker.job
- c:\program files\Systweak AntiSpyware\AntiSpyware.exe []
2009-01-26 c:\windows\Tasks\Systweak AntiSpyware 2008.job
- c:\program files\Systweak AntiSpyware\AntiSpyware.exe []
2009-01-26 c:\windows\Tasks\Systweak AntiSpyware 2008.job
- c:\program files\Systweak AntiSpyware\ []
.
- - - - ORPHANS REMOVED - - - -
WebBrowser-{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - (no file)
WebBrowser-{A057A204-BACC-4D26-C39E-35F1D2A32EC8} - (no file)
HKCU-Run-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe
HKCU-Run-Internet Download Accelerator - c:\program files\IDA\ida.exe
HKCU-Run-Systweak AntiSpyware 2008 - c:\program files\Systweak AntiSpyware\AntiSpyware.exe
HKLM-Run-WatchDog - c:\program files\InterVideo\DVD Check\DVDCheck.exe
HKLM-Run-HP Software Update - c:\program files\Hp\HP Software Update\HPWuSchd2.exe
HKLM-Run-NBKeyScan - c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=ar_sa&c=83&bd=all&pf=cmnb
uInternet Settings,ProxyOverride = <local>
IE: تحميل الكل بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEGetVL.htm
.
.
------- File Associations -------
.
txtfile=c:\windows\notepad.exe %1
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-01-31 22:04:05
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'lsass.exe'(616)
c:\program files\Hewlett-Packard\IAM\bin\ASWLNPkg.dll
c:\program files\Hewlett-Packard\IAM\bin\ItMsg.dll
- - - - - - - > 'Explorer.exe'(6072)
c:\program files\Hewlett-Packard\IAM\Bin\ItClient.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\btncopy.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\audiodg.exe
c:\windows\System32\AEADISRV.EXE
c:\windows\System32\agrsmsvc.exe
c:\program files\ActivIdentity\ActivClient\acevents.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Hewlett-Packard\Shared\hpqWmiEx.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\Hewlett-Packard\IAM\Bin\asghost.exe
c:\windows\System32\conime.exe
c:\windows\System32\igfxsrvc.exe
c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\program files\ActivIdentity\ActivClient\acevents.exe
c:\program files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
c:\program files\WIDCOMM\Bluetooth Software\BTStackServer.exe
c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
c:\program files\TechSmith\SnagIt 8\SnagIt32.exe
c:\program files\TechSmith\SnagIt 8\TscHelp.exe
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
c:\windows\System32\wscript.exe
c:\windows\System32\wbem\WMIADAP.exe
.
**************************************************************************
.
Completion time: 01/31/2009 22:07:30 - machine was rebooted [الشماخي]
********-quarantined-files.txt 2009-01-31 19:07:16
Pre-Run: 217,488,445,440 bytes free
Post-Run: 217,286,184,960 bytes free
294 --- E O F --- 2009-01-30 03:44:10

وهذا التقرير

البرونز · 31 يناير 2009

حالياً بشكل عام كيف أداء الجهاز

غنـــج · 31 يناير 2009

هو الجهاز مافيه شي بس هي الفايروسات اللي اطلعت قبل هي اللي خوفتني

وش طلع لك بالتقرير ؟؟؟

Corporation · 31 يناير 2009

عذراً ياغالي يا برونز ..

من التقرير عالج أصابة وحدة بس يعني خفت النسبة إلى حد كبير ..

ولآن جـآآري تحليل تقرير الهآيجآك ..

لاتروحين بعيد ..

غنـــج · 31 يناير 2009

اوك بانتظارك

بس وشو عالج اصابه وحده بس

يعني للحين جهازي حايس :er: ؟؟

Corporation · 31 يناير 2009

هآتي تقرير هآيجآك جديد بعد أستعمال أدآة كمبوفكس

غنـــج · 31 يناير 2009

هذا تقرير جديد

واعتقد انه نفس الاول

******** 09-01-31.01 - الشماخي 01/31/2009 22:23:43.2 - NTFSx86
Microsoft®‎ Windows Vista™ Home Premium 6.0.6001.1.1256.1.1025.18.1976.923 [GMT 3:00]
Running from: d:\برامج\********.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Updated)
.
((((((((((((((((((((((((( Files Created from 2008-12-28 to 2009-01-31 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-31 19:28 5,513,248 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-01-31 19:28 --------- d-----w c:\users\الشماخي\AppData\Roaming\DMCache
2009-01-31 19:27 --------- d-----w c:\programdata\hpqLog
2009-01-31 19:26 65,192 --sha-w c:\windows\system32\drivers\fidbox.idx
2009-01-31 18:49 --------- d---a-w c:\programdata\TEMP
2009-01-31 17:28 --------- d-----w c:\program files\FLV to AVI MPEG WMV 3GP MP4 iPod Converter
2009-01-31 17:28 --------- d-----w c:\program files\Fingerprint Sensor
2009-01-31 17:23 --------- d-----w c:\program files\Circle Developement
2009-01-31 12:06 --------- d-----w c:\programdata\Bagsknobiso
2009-01-31 11:31 --------- d-----w c:\programdata\is-5O1NL
2009-01-31 00:28 --------- d-----w c:\programdata\Nero
2009-01-31 00:22 --------- d-----w c:\program files\Common Files\LightScribe
2009-01-30 22:12 --------- d-----w c:\program files\Any Audio Converter
2009-01-30 21:26 --------- d-----w c:\program files\Google
2009-01-30 18:45 --------- d-----w c:\program files\AviSynth 2.5
2009-01-29 23:53 --------- d-----w c:\program files\IDA
2009-01-27 17:53 --------- d-----w c:\program files\ESET
2009-01-27 14:02 --------- d-----w c:\programdata\ESET
2009-01-27 13:55 --------- d-----w c:\program files\Common Files\Adobe
2009-01-27 13:52 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-26 20:27 --------- d-----w c:\programdata\Megaupload
2009-01-26 20:27 --------- d-----w c:\programdata\EmailNotifier
2009-01-26 19:31 --------- d-----w c:\users\الشماخي\AppData\Roaming\Systweak
2009-01-26 19:31 --------- d-----w c:\programdata\Systweak
2009-01-26 13:36 --------- d-----w c:\programdata\Kaspersky Lab Setup Files
2009-01-26 12:58 --------- d-----w c:\users\الشماخي\AppData\Roaming\Media Player Classic
2009-01-26 12:46 81,920 ----a-w c:\users\الشماخي\AppData\Roaming\ezpinst.exe
2009-01-26 12:46 47,360 ----a-w c:\users\الشماخي\AppData\Roaming\pcouffin.sys
2009-01-26 12:46 --------- d-----w c:\users\الشماخي\AppData\Roaming\Vso
2009-01-26 12:42 --------- d-----w c:\users\الشماخي\AppData\Roaming\GetRightToGo
2009-01-26 12:41 --------- d-----w c:\program files\QuickTime
2009-01-26 12:31 --------- d-----w c:\program files\Online TV Player 4
2009-01-26 12:23 --------- d-----w c:\program files\Ultra MP4 Video Converter
2009-01-26 12:23 --------- d-----w c:\program files\Nokia
2009-01-26 12:18 --------- d-----w c:\program files\Xilisoft
2009-01-26 12:14 --------- d-----w c:\programdata\TechSmith
2009-01-26 12:14 --------- d-----w c:\program files\TechSmith
2009-01-26 12:13 --------- d-----w c:\program files\Ela-Salaty
2009-01-26 12:13 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
2009-01-26 06:17 --------- d-----w c:\programdata\byte loud style cool
2009-01-26 01:05 --------- d-----w c:\program files\Common Files\SureThing Shared
2009-01-26 00:50 --------- d-----w c:\program files\Common Files\PX Storage Engine
2009-01-26 00:44 --------- d-----w c:\program files\AAQ
2009-01-26 00:20 --------- d-----w c:\program files\Windows Mail
2009-01-25 23:31 --------- d-----w c:\users\الشماخي\AppData\Roaming\ESET
2009-01-25 22:37 --------- d-----w c:\users\الشماخي\AppData\Roaming\InterVideo
2009-01-25 22:24 --------- d-----w c:\program files\Saree PC Cleaner 2
2009-01-25 22:13 --------- d-----w c:\programdata\Messenger Plus!
2009-01-25 22:02 --------- d-----w c:\users\الشماخي\AppData\Roaming\IDM
2009-01-25 22:01 --------- d-----w c:\users\الشماخي\AppData\Roaming\Internet Download Accelerator
2009-01-25 21:42 73,216 ----a-w c:\windows\ST6UNST.EXE
2009-01-25 21:42 172,032 ------w c:\windows\Setup1.exe
2009-01-25 20:50 --------- d-----w c:\users\الشماخي\AppData\Roaming\Thinstall
2009-01-25 19:32 --------- d-----w c:\program files\Windows Live
2009-01-25 19:32 --------- d-----w c:\program files\MSN Messenger
2009-01-25 19:32 --------- d-----w c:\program files\Messenger Plus! Live
2009-01-25 19:25 --------- d-----w c:\program files\SWiSHmax
2009-01-25 17:53 --------- d-----w c:\users\الشماخي\AppData\Roaming\HPQLOG
2009-01-23 20:58 --------- d-----w c:\program files\MSXML 4.0
2009-01-23 20:32 --------- d-----w c:\program files\Internet Download Manager
2009-01-23 20:22 --------- d-----w c:\program files\Real
2009-01-23 20:22 --------- d-----w c:\program files\Common Files\xing shared
2009-01-23 20:22 --------- d-----w c:\program files\Common Files\Real
2009-01-23 20:20 --------- d-----w c:\programdata\LightScribe
2009-01-23 20:18 --------- d-----w c:\programdata\Microsoft Help
2009-01-23 20:17 --------- d-----w c:\program files\MSBuild
2009-01-23 20:17 --------- d-----w c:\program files\Microsoft Works
2009-01-23 20:16 --------- d-----w c:\program files\Microsoft.NET
2009-01-23 20:14 --------- d-----w c:\program files\Microsoft Visual Studio 8
2009-01-23 17:45 --------- d-----w c:\users\الشماخي\AppData\Roaming\Nero
2009-01-23 17:44 --------- d-----w c:\program files\Nero
2009-01-23 17:41 --------- d-----w c:\program files\AskTBar
2009-01-23 17:40 0 ---ha-w c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2009-01-23 15:07 --------- d-----w c:\programdata\Hewlett-Packard
2009-01-23 15:05 --------- d-----w c:\program files\HP Webcam Application
2009-01-23 15:04 --------- d-----w c:\program files\Common Files\SNP2UVC
2009-01-23 15:03 --------- d-----w c:\program files\WIDCOMM
2009-01-23 15:00 0 --sha-r c:\windows\system32\drivers\103C_HP_bNB_2230s_Y5336AN_0U_QCNU84062F5_E503441-172_4A_I3037_SHP_V11.15_68PHU F.03_T080721_WV3-1_L401_M1977_J250_7Intel_86FD_92.00_#080929_N_(FU568ES#ABV)_XMOBILE_CN10_Z_2F.03_G80862A42;80862A43.MRK
2009-01-23 15:00 --------- d-----w c:\users\الشماخي\AppData\Roaming\InstallShield
2009-01-23 15:00 --------- d-----w c:\programdata\SonicFocus
2009-01-23 15:00 --------- d-----w c:\program files\Analog Devices
2009-01-23 14:55 --------- d-sh--w c:\programdata\قائمة ابدأ
2009-01-23 14:55 --------- d-sh--w c:\programdata\سطح المكتب
2008-12-16 02:42 288,768 ----a-w c:\windows\system32\drivers\srv.sys
2008-11-01 03:44 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll
2008-11-01 03:44 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
2008-11-01 03:44 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
2008-11-01 03:44 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll
2008-11-01 03:44 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll
2008-10-29 06:29 2,927,104 ----a-w c:\windows\explorer.exe
2008-01-21 02:43 174 --sha-w c:\program files\desktop.ini
.
((((((((((((((((((((((((((((( snapshot@Sat 01-31-2009_22.06.02.37 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-01-31 19:03:04 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-01-31 19:27:02 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-01-31 19:27:02 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-01-31 19:03:29 262,144 --sha-w c:\windows\ServiceProfiles\LocalService\ntuser.dat
+ 2009-01-31 19:27:28 262,144 --sha-w c:\windows\ServiceProfiles\LocalService\ntuser.dat
- 2009-01-31 19:03:29 262,144 --sha-w c:\windows\ServiceProfiles\NetworkService\ntuser.dat
+ 2009-01-31 19:27:28 262,144 --sha-w c:\windows\ServiceProfiles\NetworkService\ntuser.dat
- 2009-01-31 19:00:11 82,472 ----a-w c:\windows\System32\perfc001.dat
+ 2009-01-31 19:09:32 82,472 ----a-w c:\windows\System32\perfc001.dat
- 2009-01-31 19:00:11 105,276 ----a-w c:\windows\System32\perfc009.dat
+ 2009-01-31 19:09:32 105,276 ----a-w c:\windows\System32\perfc009.dat
- 2009-01-31 19:00:11 447,698 ----a-w c:\windows\System32\perfh001.dat
+ 2009-01-31 19:09:32 447,698 ----a-w c:\windows\System32\perfh001.dat
- 2009-01-31 19:00:11 595,946 ----a-w c:\windows\System32\perfh009.dat
+ 2009-01-31 19:09:32 595,946 ----a-w c:\windows\System32\perfh009.dat
- 2009-01-31 18:55:29 6,414 ----a-w c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1533706572-1405260553-4018124304-1004_UserData.bin
+ 2009-01-31 19:28:57 6,422 ----a-w c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1533706572-1405260553-4018124304-1004_UserData.bin
- 2009-01-31 18:55:29 104,600 ----a-w c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-01-31 19:28:55 104,720 ----a-w c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
07/03/2008 12:04 AM 110592 --a------ c:\program files\Hewlett-Packard\File Sanitizer\IEBHO.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cast one"="c:\programdata\InsideCityCity.18nqx6j" [X]
"style cool 2 city"="c:\programdata\Clock Thunk Burn.ndp3ge1" [X]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [01/21/2008 05:23 AM 1233920]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [03/18/2008 03:59 AM 2289664]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [01/23/2009 11:32 PM 2606512]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [01/19/2007 12:55 PM 5674352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [06/20/2008 06:37 PM 178712]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [06/28/2008 12:35 AM 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [06/28/2008 12:35 AM 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [06/28/2008 12:35 AM 145944]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [05/16/2007 02:08 AM 293168]
"PTHOSTTR"="c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE" [07/09/2008 04:29 AM 238896]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [06/18/2008 03:05 PM 24848]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [05/12/2008 04:28 PM 318488]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [03/27/2008 10:05 PM 1045800]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [04/16/2008 12:51 AM 488752]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [06/16/2008 06:03 PM 75008]
"File Sanitizer"="c:\program files\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [07/03/2008 12:04 AM 10244096]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_06\bin\jusched.exe" [03/25/2008 02:28 PM 144784]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [06/04/2008 02:40 AM 177456]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [04/04/2008 06:10 PM 1314816]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [10/27/2006 12:47 AM 31016]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [01/23/2009 11:22 PM 185896]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [02/20/2008 11:06 AM 1443072]
c:\users\ںé¬êں¦ï\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Ela-Salaty.lnk - c:\program files\Ela-Salaty\Salaty.exe [2007-03-05 5205504]
is-5O1NL.lnk - c:\users\ںé¬êں¦ï\Desktop\Virus Removal Tool\is-5O1NL\startup.exe [2009-01-31 65536]
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=G APSHook.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0antispynative32
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"AntiVirusDisableNotify"=dword:00000001
"FirewallOverride"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
"UacDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{06B007DD-E804-4DB7-AB89-339D6F3E3C41}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
"{4CBFB397-80AB-42CC-8DA0-D28C3CA593B8}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{EB56D60F-350B-4C44-8867-00171CB81200}"= UDP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{AA7D3FD8-D62A-467A-B11C-88A770CA746F}"= TCP:c:\program files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{E143D0B3-28EF-4184-A1A0-4F51E922D87B}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{DA67EAE3-9D20-4A6A-B531-FDF533B3082F}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"TCP Query User{B9514618-8183-4930-900A-50436E3E786F}c:\\program files\\analog devices\\core\\smax4pnp.exe"= UDP:c:\program files\analog devices\core\smax4pnp.exe:SMax4PNP
"UDP Query User{996695E6-E73D-43CB-9EE1-664CBB812834}c:\\program files\\analog devices\\core\\smax4pnp.exe"= TCP:c:\program files\analog devices\core\smax4pnp.exe:SMax4PNP
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"DoNotAllowExceptions"= 0 (0x0)
R0 SbAlg;SbAlg;c:\windows\System32\drivers\SbAlg.sys [2008-07-12 51376]
R0 SbFsLock;SbFsLock;c:\windows\System32\drivers\SbFsLock.sys [2008-07-12 12928]
R1 epfwtdir;epfwtdir;c:\windows\System32\drivers\epfwtdir.sys [2008-02-20 33800]
R1 is-5O1NLdrv;is-5O1NLdrv;c:\windows\System32\drivers\73440150.sys [2009-01-31 148496]
R1 RsvLock;RsvLock;c:\windows\System32\drivers\rsvlock.sys [2008-07-12 12496]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;c:\windows\System32\drivers\ATSwpWDF.sys [2008-06-13 477696]
R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-09-29 193840]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\System32\drivers\IntcHdmi.sys [2008-06-28 113664]
R3 NETw5v32;برنامج تشغيل محول Intel(R) Wireless WiFi Link لنظام Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [2008-04-28 3658752]
R4 accoca;ActivClient Middleware Service;c:\program files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R4 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [2008-01-21 21504]
R4 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [2008-01-21 21504]
R4 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\AtService.exe [2008-06-12 1164536]
R4 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-02-20 472320]
R4 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-07-09 19968]
R4 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-07-12 256512]
R4 HPFSService;File Sanitizer for HP ProtectTools;c:\program files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-09-29 77824]
R4 hpsrv;HP Service;c:\windows\System32\hpservice.exe [2008-04-07 24936]
R4 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2008-09-29 576024]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [2008-01-21 179712]
S3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S4 0076351232723545mcinstcleanup;McAfee Application Installer Cleanup (0076351232723545);c:\users\0D43~1\AppData\Local\Temp\007635~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service --> c:\users\0D43~1\AppData\Local\Temp\007635~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service [?]
S4 NOD32FiXTemDono;Eset Nod32 Boot;c:\windows\System32\regedt32.exe [2006-11-02 9216]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Cognizance REG_MULTI_SZ ASBroker ASChannel
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
bthsvcs REG_MULTI_SZ BthServ
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
*******s of the 'Scheduled Tasks' folder
2009-01-26 c:\windows\Tasks\Systweak AntiSpyware 2008 Update Checker.job
- c:\program files\Systweak AntiSpyware\AntiSpyware.exe []
2009-01-26 c:\windows\Tasks\Systweak AntiSpyware 2008.job
- c:\program files\Systweak AntiSpyware\AntiSpyware.exe []
2009-01-26 c:\windows\Tasks\Systweak AntiSpyware 2008.job
- c:\program files\Systweak AntiSpyware\ []
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=ar_sa&c=83&bd=all&pf=cmnb
uInternet Settings,ProxyOverride = <local>
IE: تحميل الكل بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - c:\program files\Internet Download Manager\IEGetVL.htm
.
.
------- File Associations -------
.
txtfile=c:\windows\notepad.exe %1
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-01-31 22:28:38
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'lsass.exe'(616)
c:\program files\Hewlett-Packard\IAM\bin\ASWLNPkg.dll
c:\program files\Hewlett-Packard\IAM\bin\ItMsg.dll
- - - - - - - > 'Explorer.exe'(5252)
c:\program files\Hewlett-Packard\IAM\Bin\ItClient.dll
c:\windows\system32\btmmhook.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\audiodg.exe
c:\windows\System32\AEADISRV.EXE
c:\windows\System32\agrsmsvc.exe
c:\program files\ActivIdentity\ActivClient\acevents.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Hewlett-Packard\Shared\hpqWmiEx.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\Hewlett-Packard\IAM\Bin\asghost.exe
c:\windows\System32\conime.exe
c:\windows\System32\igfxsrvc.exe
c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\program files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
c:\program files\WIDCOMM\Bluetooth Software\BTStackServer.exe
c:\program files\TechSmith\SnagIt 8\SnagIt32.exe
c:\program files\ActivIdentity\ActivClient\acevents.exe
c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\TechSmith\SnagIt 8\TscHelp.exe
c:\********\hidec.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
c:\windows\System32\wscript.exe
c:\windows\System32\wbem\WMIADAP.exe
c:\windows\System32\dllhost.exe
c:\********\Catchme.tmp
.
**************************************************************************
.
Completion time: 01/31/2009 22:32:52 - machine was rebooted
********-quarantined-files.txt 2009-01-31 19:31:30
********2.txt 2009-01-31 19:07:31
Pre-Run: 217,465,769,984 bytes free
Post-Run: 217,434,103,808 bytes free
296 --- E O F --- 2009-01-30 03:44:10

البرونز · 31 يناير 2009

البرونز قال:
اعمل فحص لجهازك بهذا البرنامج
وضع التقرير في ردك القادم إن شاء الله

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

نريد تقرير بهذه الاداة

Corporation · 31 يناير 2009

هآيجآك يآغالية مش كمبوفكس :d:

الحين تقرير الكمبوفكس سليم هآتي تقرير هآيجآك اللي حطيتيه أول شئ :king:

غنـــج · 31 يناير 2009

الحين انا عرفت الاول عشان اعرف الثاني ^_^

قصدك اداة الكاسبر اللي عطاني اخوي البرونز ؟؟؟؟

البرونز · 31 يناير 2009

شاهدي ردي رقم 34

غنـــج · 31 يناير 2009

قصدك هذا ؟؟

Logfile of HijackThis v1.99.1
Scan saved at 10:43:56 م, on 31/01/09
Platform: Unknown Windows (WinNT 6.00.1905 SP1)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Running processes:
C:\windows\system32\taskeng.exe
C:\windows\system32\Dwm.exe
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
C:\Program Files\Ela-Salaty\Salaty.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Program Files\TechSmith\SnagIt 8\TSCHelp.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
c:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
D:\برامج\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: HelperObject Class - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [accrdsub] "c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
O4 - HKLM\..\Run: [PTHOSTTR] c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [cast one] "C:\ProgramData\InsideCityCity.18nqx6j"
O4 - HKCU\..\Run: [style cool 2 city] "C:\ProgramData\Clock Thunk Burn.ndp3ge1"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: Ela-Salaty.lnk = C:\Program Files\Ela-Salaty\Salaty.exe
O4 - Startup: is-5O1NL.lnk = ?
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: SnagIt 8.lnk = C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: تحميل الكل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - AppInit_DLLs: G APSHook.dll
O20 - Winlogon Notify: igfxcui - C:\windows\SYSTEM32\igfxdev.dll
O23 - Service: McAfee Application Installer Cleanup (0076351232723545) (0076351232723545mcinstcleanup) - Unknown owner - C:\Users\0D43~1\AppData\Local\Temp\007635~1.EXE (file missing)
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - c:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe (file missing)
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: stllssvr - Unknown owner - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

البرونز · 31 يناير 2009

أخي كومباك هل ستقوم بتحليل التقرير

Corporation · 31 يناير 2009

تقرير هايجاك
حمل هذا البرنامج

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شغل البرنامج ==> واضغط على
Do a system scan and save log
لحظات .. ويظهر لك تقرير داخل المفكرة==> انسخه والصقه بردك القادم

زيزوومي نشيط

زيزوومي نشيط

زيزوومي جديد

توقيع : البرونز

زيزوومي نشيط

زيزوومي نشيط

زيزوومي جديد

توقيع : البرونز

زيزوومي نشيط

زيزوومي نشيط

زيزوومي جديد

توقيع : البرونز

زيزوومي نشيط

زيزوومى فضى

توقيع : Corporation

زيزوومي نشيط

زيزوومى فضى

توقيع : Corporation

زيزوومي نشيط

زيزوومي جديد

توقيع : البرونز

زيزوومى فضى

توقيع : Corporation

زيزوومي نشيط

زيزوومي جديد

توقيع : البرونز

زيزوومي نشيط

زيزوومي جديد

توقيع : البرونز

زيزوومى فضى

توقيع : Corporation