المرجو حل virus.win32.parite.b

[Noni]

السلام عليكم
المرجو ممن يستطيع حل مشكلة virus.win32.parite.b فانا لا استطيع التخلص منه
اضافة الى مشكلة اخرى و هي عند تشغيل الويندوز لا يظهر شيء على سطح المكتب و لا استطيع الولوج الى start الا بغد الحروج من session باستعمال ctr+alt+supp و بعد العودة و فتح المستخدم يشتغل الا انني اضطر الى تكرار العملية في كل مرة
الرجاء المساعدة:no:

 

[صمت السكوت]

اعمل تقرير للهايجاك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات .. ويظهر لك تقرير اعمل تحديد الكل ==> انسخه والصقه بردك القادم​

 

[Noni]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:54:48, on 16/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Launch Manager\LaunchAp.exe
C:\Program Files\Launch Manager\PowerKey.exe
C:\Program Files\Launch Manager\CtrlVol.exe
C:\Program Files\Launch Manager\OSDCtrl.exe
C:\Program Files\Launch Manager\Wbutton.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
D:\cours S5-S6\BackStreetS's boys Version\mirc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Real\Update_OB\rnathchk.exe
C:\Documents and Settings\Admin\Mes documents\Downloads\Programs\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Program Files\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [LMgrOSD] C:\Program Files\Launch Manager\OSDCtrl.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [UMService] C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\system32\wltrysvc.exe
--
End of file - 6402 bytes
​

 

[صمت السكوت]

عطل نقطة استعادة النظام حسب الشرح التالي

حمل اداة الكاسبر من الرابط التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

او من هنا​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

بعد التحميل ،، دبل كلك وسيتم استخراج ملف الاداة الى مجلد بسطح المكتب لحظات وتبدأ الاداة بالعمل

تابع الشرح لفحص الجهاز وتنظيفه وارفاق التقرير

ثم قم بضغط التقرير ورفعه هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

​

 

[Noni]

شكرا لك اختي k:
تم الرفع

 

[Corporation]

أين تقرير الكآسبر أخي ,,
​

 

[Noni]

Scan
----
Scanned: 139
Detected: 2
Untreated: 0
Start time: 16/02/2009 14:20:52
Duration: 00:05:49
Finish time: 16/02/2009 14:26:41

Detected
--------
Status Object
------ ------
will be disinfected when the computer is restarted: virus Virus.Win32.Parite.b File: D:\cours S5-S6\BackStreetS's boys Version\mirc.exe
will be deleted when the computer is restarted: virus Virus.Win32.Parite.b File: C:\WINDOWS\TEMP\gia1.tmp//UPX

Events
------
Time Name Status Reason
---- ---- ------ ------
16/02/2009 14:18:16 Running module: mirc.exe\mirc.exe ok scanned
16/02/2009 14:18:20 File: D:\cours S5-S6\BackStreetS's boys Version\mirc.exe detected virus 'Virus.Win32.Parite.b'
16/02/2009 14:18:20 File: D:\cours S5-S6\BackStreetS's boys Version\mirc.exe backed up
16/02/2009 14:18:20 File: D:\cours S5-S6\BackStreetS's boys Version\mirc.exe detected virus 'Virus.Win32.Parite.b'
16/02/2009 14:18:20 File: D:\cours S5-S6\BackStreetS's boys Version\mirc.exe disinfected virus 'Virus.Win32.Parite.b'
16/02/2009 14:18:24 File: D:\cours S5-S6\BackStreetS's boys Version\mirc.exe will be disinfected on system restart
16/02/2009 14:18:25 Running module: mirc.exe\ntdll.dll ok scanned
16/02/2009 14:18:26 File: C:\WINDOWS\system32\ntdll.dll ok scanned
16/02/2009 14:18:27 Running module: mirc.exe\kernel32.dll ok scanned
16/02/2009 14:18:30 File: C:\WINDOWS\system32\kernel32.dll ok scanned
16/02/2009 14:18:30 Running module: mirc.exe\COMCTL32.dll ok scanned
16/02/2009 14:18:38 File: C:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.dll ok scanned
16/02/2009 14:18:38 Running module: mirc.exe\msvcrt.dll ok scanned
16/02/2009 14:18:38 File: C:\WINDOWS\system32\msvcrt.dll ok scanned
16/02/2009 14:18:38 Running module: mirc.exe\ADVAPI32.dll ok scanned
16/02/2009 14:18:39 File: C:\WINDOWS\system32\ADVAPI32.dll ok scanned
16/02/2009 14:18:40 Running module: mirc.exe\RPCRT4.dll ok scanned
16/02/2009 14:18:43 File: C:\WINDOWS\system32\RPCRT4.dll ok scanned
16/02/2009 14:18:46 Running module: mirc.exe\GDI32.dll ok scanned
16/02/2009 14:18:46 File: C:\WINDOWS\system32\GDI32.dll ok scanned
16/02/2009 14:18:46 Running module: mirc.exe\USER32.dll ok scanned
16/02/2009 14:18:46 File: C:\WINDOWS\system32\USER32.dll ok scanned
16/02/2009 14:18:46 Running module: mirc.exe\SHLWAPI.dll ok scanned
16/02/2009 14:18:46 File: C:\WINDOWS\system32\SHLWAPI.dll ok scanned
16/02/2009 14:18:46 Running module: mirc.exe\MPR.dll ok scanned
16/02/2009 14:18:46 File: C:\WINDOWS\system32\MPR.dll ok scanned
16/02/2009 14:18:46 Running module: mirc.exe\VERSION.dll ok scanned
16/02/2009 14:18:46 File: C:\WINDOWS\system32\VERSION.dll ok scanned
16/02/2009 14:18:46 Running module: mirc.exe\WINMM.dll ok scanned
16/02/2009 14:18:47 File: C:\WINDOWS\system32\WINMM.dll ok scanned
16/02/2009 14:18:47 Running module: mirc.exe\WSOCK32.dll ok scanned
16/02/2009 14:18:47 File: C:\WINDOWS\system32\WSOCK32.dll ok scanned
16/02/2009 14:18:47 Running module: mirc.exe\WS2_32.dll ok scanned
16/02/2009 14:18:47 File: C:\WINDOWS\system32\WS2_32.dll ok scanned
16/02/2009 14:18:47 Running module: mirc.exe\WS2HELP.dll ok scanned
16/02/2009 14:18:47 File: C:\WINDOWS\system32\WS2HELP.dll ok scanned
16/02/2009 14:18:48 Running module: mirc.exe\comdlg32.dll ok scanned
16/02/2009 14:18:48 File: C:\WINDOWS\system32\comdlg32.dll ok scanned
16/02/2009 14:18:49 Running module: mirc.exe\SHELL32.dll ok scanned
16/02/2009 14:18:50 File: C:\WINDOWS\system32\SHELL32.dll ok scanned
16/02/2009 14:18:50 Running module: mirc.exe\ole32.dll ok scanned
16/02/2009 14:18:51 File: C:\WINDOWS\system32\ole32.dll ok scanned
16/02/2009 14:18:51 Running module: mirc.exe\OLEAUT32.dll ok scanned
16/02/2009 14:18:51 File: C:\WINDOWS\system32\OLEAUT32.dll ok scanned
16/02/2009 14:18:51 Running module: mirc.exe\IMM32.DLL ok scanned
16/02/2009 14:18:51 File: C:\WINDOWS\system32\IMM32.DLL ok scanned
16/02/2009 14:18:51 Running module: mirc.exe\LPK.DLL ok scanned
16/02/2009 14:18:51 File: C:\WINDOWS\system32\LPK.DLL ok scanned
16/02/2009 14:18:51 Running module: mirc.exe\USP10.dll ok scanned
16/02/2009 14:18:51 File: C:\WINDOWS\system32\USP10.dll ok scanned
16/02/2009 14:18:51 Running module: mirc.exe\adialhk.dll ok scanned
16/02/2009 14:18:51 File: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll ok scanned
16/02/2009 14:18:51 Running module: mirc.exe\gia1.tmp ok scanned
16/02/2009 14:18:51 File: C:\WINDOWS\TEMP\gia1.tmp packed file UPX
16/02/2009 14:18:52 File: C:\WINDOWS\TEMP\gia1.tmp//UPX detected virus 'Virus.Win32.Parite.b'
16/02/2009 14:18:53 File: C:\WINDOWS\TEMP\gia1.tmp skipped processing stopped
16/02/2009 14:25:43 Running module: firefox.exe\firefox.exe ok scanned
16/02/2009 14:26:03 File: C:\Program Files\Mozilla Firefox\firefox.exe ok scanned
16/02/2009 14:26:04 Running module: firefox.exe\ntdll.dll ok scanned
16/02/2009 14:26:04 File: C:\WINDOWS\system32\ntdll.dll ok scanned
16/02/2009 14:26:04 Running module: firefox.exe\kernel32.dll ok scanned
16/02/2009 14:26:04 File: C:\WINDOWS\system32\kernel32.dll ok scanned
16/02/2009 14:26:05 Running module: firefox.exe\xul.dll ok scanned
16/02/2009 14:26:05 File: C:\Program Files\Mozilla Firefox\xul.dll ok scanned
16/02/2009 14:26:06 Running module: firefox.exe\sqlite3.dll ok scanned
16/02/2009 14:26:06 File: C:\Program Files\Mozilla Firefox\sqlite3.dll ok scanned
16/02/2009 14:26:06 Running module: firefox.exe\MOZCRT19.dll ok scanned
16/02/2009 14:26:06 File: C:\Program Files\Mozilla Firefox\MOZCRT19.dll ok scanned
16/02/2009 14:26:06 Running module: firefox.exe\msvcrt.dll ok scanned
16/02/2009 14:26:06 File: C:\WINDOWS\system32\msvcrt.dll ok scanned
16/02/2009 14:26:06 Running module: firefox.exe\js3250.dll ok scanned
16/02/2009 14:26:06 File: C:\Program Files\Mozilla Firefox\js3250.dll ok scanned
16/02/2009 14:26:06 Running module: firefox.exe\nspr4.dll ok scanned
16/02/2009 14:26:06 File: C:\Program Files\Mozilla Firefox\nspr4.dll ok scanned
16/02/2009 14:26:07 Running module: firefox.exe\ADVAPI32.dll ok scanned
16/02/2009 14:26:07 File: C:\WINDOWS\system32\ADVAPI32.dll ok scanned
16/02/2009 14:26:07 Running module: firefox.exe\RPCRT4.dll ok scanned
16/02/2009 14:26:07 File: C:\WINDOWS\system32\RPCRT4.dll ok scanned
16/02/2009 14:26:07 Running module: firefox.exe\WSOCK32.dll ok scanned
16/02/2009 14:26:07 File: C:\WINDOWS\system32\WSOCK32.dll ok scanned
16/02/2009 14:26:07 Running module: firefox.exe\WS2_32.dll ok scanned
16/02/2009 14:26:07 File: C:\WINDOWS\system32\WS2_32.dll ok scanned
16/02/2009 14:26:07 Running module: firefox.exe\WS2HELP.dll ok scanned
16/02/2009 14:26:07 File: C:\WINDOWS\system32\WS2HELP.dll ok scanned
16/02/2009 14:26:07 Running module: firefox.exe\WINMM.dll ok scanned
16/02/2009 14:26:07 File: C:\WINDOWS\system32\WINMM.dll ok scanned
16/02/2009 14:26:07 Running module: firefox.exe\USER32.dll ok scanned
16/02/2009 14:26:08 File: C:\WINDOWS\system32\USER32.dll ok scanned
16/02/2009 14:26:08 Running module: firefox.exe\GDI32.dll ok scanned
16/02/2009 14:26:08 File: C:\WINDOWS\system32\GDI32.dll ok scanned
16/02/2009 14:26:08 Running module: firefox.exe\smime3.dll ok scanned
16/02/2009 14:26:08 File: C:\Program Files\Mozilla Firefox\smime3.dll ok scanned
16/02/2009 14:26:08 Running module: firefox.exe\nss3.dll ok scanned
16/02/2009 14:26:08 File: C:\Program Files\Mozilla Firefox\nss3.dll ok scanned
16/02/2009 14:26:08 Running module: firefox.exe\nssutil3.dll ok scanned
16/02/2009 14:26:08 File: C:\Program Files\Mozilla Firefox\nssutil3.dll ok scanned
16/02/2009 14:26:08 Running module: firefox.exe\plc4.dll ok scanned
16/02/2009 14:26:08 File: C:\Program Files\Mozilla Firefox\plc4.dll ok scanned
16/02/2009 14:26:08 Running module: firefox.exe\plds4.dll ok scanned
16/02/2009 14:26:08 File: C:\Program Files\Mozilla Firefox\plds4.dll ok scanned
16/02/2009 14:26:08 Running module: firefox.exe\ssl3.dll ok scanned
16/02/2009 14:26:08 File: C:\Program Files\Mozilla Firefox\ssl3.dll ok scanned
16/02/2009 14:26:10 Running module: firefox.exe\SHELL32.dll ok scanned
16/02/2009 14:26:23 File: C:\WINDOWS\system32\SHELL32.dll ok scanned
16/02/2009 14:26:23 Running module: firefox.exe\SHLWAPI.dll ok scanned
16/02/2009 14:26:23 File: C:\WINDOWS\system32\SHLWAPI.dll ok scanned
16/02/2009 14:26:24 Running module: firefox.exe\ole32.dll ok scanned
16/02/2009 14:26:24 File: C:\WINDOWS\system32\ole32.dll ok scanned
16/02/2009 14:26:24 Running module: firefox.exe\VERSION.dll ok scanned
16/02/2009 14:26:24 File: C:\WINDOWS\system32\VERSION.dll ok scanned
16/02/2009 14:26:25 Running module: firefox.exe\WINSPOOL.DRV ok scanned
16/02/2009 14:26:25 File: C:\WINDOWS\system32\WINSPOOL.DRV ok scanned
16/02/2009 14:26:27 Running module: firefox.exe\COMDLG32.dll ok scanned
16/02/2009 14:26:30 File: C:\WINDOWS\system32\COMDLG32.dll ok scanned
16/02/2009 14:26:31 Running module: firefox.exe\COMCTL32.dll ok scanned
16/02/2009 14:26:31 File: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.dll ok scanned
16/02/2009 14:26:31 Running module: firefox.exe\IMM32.dll ok scanned
16/02/2009 14:26:31 File: C:\WINDOWS\system32\IMM32.dll ok scanned
16/02/2009 14:26:32 Running module: firefox.exe\MSIMG32.dll ok scanned
16/02/2009 14:26:32 File: C:\WINDOWS\system32\MSIMG32.dll ok scanned
16/02/2009 14:26:32 Running module: firefox.exe\USP10.dll ok scanned
16/02/2009 14:26:32 File: C:\WINDOWS\system32\USP10.dll ok scanned
16/02/2009 14:26:33 Running module: firefox.exe\OLEAUT32.dll ok scanned
16/02/2009 14:26:33 File: C:\WINDOWS\system32\OLEAUT32.dll ok scanned
16/02/2009 14:26:33 Running module: firefox.exe\xpcom.dll ok scanned
16/02/2009 14:26:33 File: C:\Program Files\Mozilla Firefox\xpcom.dll ok scanned
16/02/2009 14:26:33 Running module: firefox.exe\LPK.DLL ok scanned
16/02/2009 14:26:33 File: C:\WINDOWS\system32\LPK.DLL ok scanned
16/02/2009 14:26:34 Running module: firefox.exe\adialhk.dll ok scanned
16/02/2009 14:26:34 File: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll ok scanned
16/02/2009 14:26:34 Running module: firefox.exe\miscr3.dll ok scanned
16/02/2009 14:26:35 File: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll ok scanned
16/02/2009 14:26:35 Running module: firefox.exe\fssync.dll ok scanned
16/02/2009 14:26:35 File: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll ok scanned
16/02/2009 14:26:36 Running module: firefox.exe\MSVCR80.dll ok scanned
16/02/2009 14:26:36 File: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll ok scanned
16/02/2009 14:26:36 Running module: firefox.exe\dbghelp.dll ok scanned
16/02/2009 14:26:37 File: C:\WINDOWS\system32\dbghelp.dll ok scanned
16/02/2009 14:26:37 Running module: firefox.exe\uxtheme.dll ok scanned
16/02/2009 14:26:37 File: C:\WINDOWS\system32\uxtheme.dll ok scanned
16/02/2009 14:26:38 Running module: firefox.exe\MSCTF.dll ok scanned
16/02/2009 14:26:38 File: C:\WINDOWS\system32\MSCTF.dll ok scanned
16/02/2009 14:26:38 Running module: firefox.exe\SynTPFcs.dll ok scanned
16/02/2009 14:26:38 File: C:\WINDOWS\system32\SynTPFcs.dll ok scanned
16/02/2009 14:26:38 Running module: firefox.exe\gia1.tmp ok scanned
16/02/2009 14:26:39 File: C:\WINDOWS\TEMP\gia1.tmp packed file UPX
16/02/2009 14:26:39 File: C:\WINDOWS\TEMP\gia1.tmp//UPX detected virus 'Virus.Win32.Parite.b'
16/02/2009 14:26:41 File: C:\WINDOWS\TEMP\gia1.tmp skipped processing stopped

Statistics
----------
Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------

Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Disinfect, delete if disinfection fails
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE objects All
Skip if object is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes

Quarantine
----------
Status Object Size Added
------ ------ ---- -----

Backup
------
Status Object Size
------ ------ ----
Infected: virus Virus.Win32.Parite.b C:\Documents and Settings\Admin\Bureau\Virus Removal Tool1\is-R5VAD\is-R5VAD.exe 385,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ahead\nero\nero.exe 13,6 MB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\excel.exe 9,8 MB
Infected: virus Virus.Win32.Parite.b c:\program files\microsoft office\office11\mstore.exe 296,0 KB
Infected: virus Virus.Win32.Parite.b c:\documents and settings\admin\bureau\virus removal tool\is-qdka3\is-qdka3.exe 385,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\real\realone player\realplay.exe 377,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ahead\coverdesigner\coverdes.exe 2,3 MB
Infected: virus Virus.Win32.Parite.b c:\program files\fichiers communs\real\update_ob\rnxproc.exe 225,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\fichiers communs\microsoft shared\office11\msoxmled.exe 228,0 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ulead systems\ulead mediastudio pro 6.0 trial\aeditor.exe 469,5 KB
Infected: virus Virus.Win32.Parite.b C:\WINDOWS\TEMP\gia1.tmp 172 KB
Infected: virus Virus.Win32.Parite.b c:\program files\illustrate\dbpoweramp\getpopupinfo.exe 193,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ahead\nero\nero.exe 13,6 MB
Infected: virus Virus.Win32.Parite.b c:\program files\microsoft office\office11\winword.exe 11,6 MB
Infected: virus Virus.Win32.Parite.b c:\documents and settings\admin\mes documents\downloads\programs\hijackthis.exe 566,0 KB
Infected: virus Virus.Win32.Parite.b c:\documents and settings\admin\bureau\virus removal tool\is-qdka3\is-qdka3.exe 385,5 KB
Infected: virus Virus.Win32.Parite.b C:\WINDOWS\SOUNDMAN.EXE 237,0 KB
Infected: virus Virus.Win32.Parite.b c:\windows\system32\bcmwltry.exe 397,5 KB
Infected: virus Virus.Win32.Parite.b c:\windows\system32\ati2evxx.exe 561,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\windows nt\hypertrm.exe 201,0 KB
Infected: virus Virus.Win32.Parite.b c:\program files\microsoft office\office11\mstore.exe 296,0 KB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\outlook.exe 365,5 KB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\powerpnt.exe 6 MB
Infected: virus Virus.Win32.Parite.b c:\progra~1\fichie~1\micros~1\modi\11.0\mspview.exe 530,0 KB
Infected: virus Virus.Win32.Parite.b c:\program files\illustrate\dbpoweramp\getpopupinfo.exe 193,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\winrar\winrar.exe 1 MB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\outlook.exe 365,5 KB
Infected: virus Virus.Win32.Parite.b c:\windows\system32\wltrysvc.exe 217,5 KB
Infected: virus Virus.Win32.Parite.b c:\documents and settings\admin\bureau\virus removal tool\is-qdka3\startup.exe 237,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ahead\wmpburn\wmpburn.exe 1,4 MB
Infected: virus Virus.Win32.Parite.b C:\Program Files\ASUS\WLAN Card Utilities\Center.exe 1,7 MB
Infected: virus Virus.Win32.Parite.b c:\program files\microsoft office\office11\excel.exe 9,8 MB
Infected: virus Virus.Win32.Parite.b c:\program files\msn messenger\usnsvc.exe 268,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\messenger\msmsgs.exe 1,8 MB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\winword.exe 11,6 MB
Infected: virus Virus.Win32.Parite.b c:\program files\messenger\msmsgs.exe 1,8 MB
Infected: virus Virus.Win32.Parite.b c:\program files\microsoft office\office11\msaccess.exe 6,5 MB
Infected: virus Virus.Win32.Parite.b D:\cours S5-S6\BackStreetS's boys Version\mirc.exe 2,9 MB
Infected: virus Virus.Win32.Parite.b c:\windows\system32\nerocheck.exe 325,5 KB
Infected: virus Virus.Win32.Parite.b c:\documents and settings\admin\bureau\virus removal tool1\is-r5vad\startup.exe 237,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\microsoft office\office11\finder.exe 187,0 KB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\mspub.exe 5,6 MB
Infected: virus Virus.Win32.Parite.b c:\program files\fichiers communs\microsoft shared\source engine\ose.exe 261,0 KB
Infected: virus Virus.Win32.Parite.b C:\Program Files\MSN Messenger\MsnMsgr.Exe 5,6 MB
Infected: virus Virus.Win32.Parite.b c:\program files\adobe\reader 8.0\reader\acrord32.exe 509,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\illustrate\dbpoweramp\cdgrab.exe 401,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ahead\wmpburn\wmpburn.exe 1,4 MB
Infected: virus Virus.Win32.Parite.b c:\program files\illustrate\dbpoweramp\cdgrab.exe 401,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\fichiers communs\microsoft shared\office11\msoxmled.exe 228,0 KB
Infected: virus Virus.Win32.Parite.b c:\program files\fichiers communs\real\update_ob\rnxproc.exe 225,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ahead\coverdesigner\coverdes.exe 2,3 MB
Infected: virus Virus.Win32.Parite.b c:\program files\fichiers communs\microsoft shared\source engine\ose.exe 261,0 KB
Infected: virus Virus.Win32.Parite.b c:\program files\adobe\reader 8.0\reader\acrord32.exe 685,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\adobe\reader 8.0\reader\reader_sl.exe 212,5 KB
Infected: virus Virus.Win32.Parite.b C:\Program Files\Launch Manager\HotkeyApp.exe 217,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\microsoft office\office11\powerpnt.exe 6 MB
Infected: virus Virus.Win32.Parite.b c:\progra~1\fichie~1\micros~1\modi\11.0\mspview.exe 530,0 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ahead\nero startsmart\nerostartsmart.exe 2,7 MB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\msaccess.exe 6,5 MB
Infected: virus Virus.Win32.Parite.b c:\program files\illustrate\dbpoweramp\musicconverter.exe 397,5 KB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\ois.exe 451,0 KB
Infected: virus Virus.Win32.Parite.b c:\program files\k-lite codec pack\media player classic\mplayerc.exe 4,2 MB
Infected: virus Virus.Win32.Parite.b c:\program files\msn messenger\usnsvc.exe 268,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\microsoft office\office11\infopath.exe 4,8 MB
Infected: virus Virus.Win32.Parite.b c:\program files\k-lite codec pack\media player classic\mplayerc.exe 4,2 MB
Infected: virus Virus.Win32.Parite.b c:\windows\system32\ati2mdxx.exe 201,5 KB
Infected: virus Virus.Win32.Parite.b c:\progra~1\micros~2\office11\msaccess.exe 6,5 MB
Infected: virus Virus.Win32.Parite.b c:\documents and settings\admin\mes documents\downloads\programs\hijackthis.exe 566,0 KB
Infected: virus Virus.Win32.Parite.b c:\program files\illustrate\dbpoweramp\musicconverter.exe 397,5 KB
Infected: virus Virus.Win32.Parite.b c:\documents and settings\admin\bureau\virus removal tool\is-qdka3\startup.exe 237,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\real\realone player\realplay.exe 377,5 KB
Infected: virus Virus.Win32.Parite.b c:\program files\ahead\nero startsmart\nerostartsmart.exe 2,7 MB
​

 

[صمت السكوت]

تم حذف الفايروس اخي اعمل تقرير هايجاك جديد

 

[Noni]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:01:53, on 16/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\system32\wltrysvc.exe
C:\WINDOWS\system32\bcmwltry.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Launch Manager\LaunchAp.exe
C:\Program Files\Launch Manager\PowerKey.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\CtrlVol.exe
C:\Program Files\Launch Manager\OSDCtrl.exe
C:\Program Files\Launch Manager\Wbutton.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe
C:\Program Files\Fichiers communs\Real\Update_OB\rnathchk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
D:\cours S5-S6\BackStreetS's boys Version\mirc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Admin\Mes documents\Downloads\Programs\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Program Files\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [LMgrOSD] C:\Program Files\Launch Manager\OSDCtrl.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [UMService] C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: is-QDKA3.lnk = C:\Documents and Settings\Admin\Bureau\Virus Removal Tool\is-QDKA3\startup.exe
O4 - Startup: is-R5VAD.lnk = C:\Documents and Settings\Admin\Bureau\Virus Removal Tool1\is-R5VAD\startup.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\system32\wltrysvc.exe
--
End of file - 6753 bytes
​

 

[صمت السكوت]

احذف التالي

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O4 - HKCU\..\Run: [UMService] C:\Program Files\LG Electronics\Modem USB LG Electronics\UMAService.exe

طريقة الحذف للاكس بي​

​

​

​

استخدم هذه الاداة للتنظيف

​

​

​

​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

​

​

​

​

وبعد الانتهاء اعمل تقرير هايجاك جديد اذا تكرمت​

​

​

​

​

​

 

[Noni]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:35:50, on 16/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\system32\wltrysvc.exe
C:\WINDOWS\system32\bcmwltry.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Launch Manager\LaunchAp.exe
C:\Program Files\Launch Manager\PowerKey.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\CtrlVol.exe
C:\Program Files\Launch Manager\OSDCtrl.exe
C:\Program Files\Launch Manager\Wbutton.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Real\Update_OB\rnathchk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
D:\cours S5-S6\BackStreetS's boys Version\mirc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Admin\Mes documents\Downloads\Programs\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Program Files\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [LMgrOSD] C:\Program Files\Launch Manager\OSDCtrl.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: is-QDKA3.lnk = C:\Documents and Settings\Admin\Bureau\Virus Removal Tool\is-QDKA3\startup.exe
O4 - Startup: is-R5VAD.lnk = C:\Documents and Settings\Admin\Bureau\Virus Removal Tool1\is-R5VAD\startup.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\system32\wltrysvc.exe
--
End of file - 6503 bytes

مع الشكر​

 

[صمت السكوت]

بخصوص التقرير اخوي الفاضل باذن المولى عزوجل ممتاز

نصيحه اخي الفاضل احذف الكاسبر الي عندك وركب اخر اصدار متطور اكثر والسابع يعتبر قديم والخيار لك اخي الفاضل

اذا احببت اجيبلك رابط اخر اصدار مع المفاتيح والاعدادات فأمر امر

وبتوفيق المولى عزوجل

 

[Noni]

مشكورة اختي ان كان بالمكان رابط مع المفتاح
شكرا اختي على المساعدة

 

[صمت السكوت]

بالبدايه اخوي الفاضل احذف الاصدار القديم بالاداه التاليه

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

بعد ذلك



حمل أحدث نسخة للكاسبر سكاي 2009

صدرت بتاريخ 13/11/2008

مع هذا المفتاح

وهذه الإعدادات الزيزومية

ولن تحدث أي مشاكل

الكاسبر سكاي إنترنت سيكيوريتي 8.0.0.506

رابط سريع و مباشر من الشركة يدعم الإستكمال

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

المفتاح

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

وبعد ذلك ركب

الإعدادات الزيزومية للكاسبر انترنت سيكورتي 8.0.0.506 للحصول على أقصى حماية مع أقل استهلاك لموارد الجهاز .

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

او من هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

طريقة تركيب الإعدادات

شرح التركيب

تعريب الأستاذ عوض الغامدي

أيصاً من الغالي larbi2

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

:: هنا روابط تحميل التعريب للاستاذ عوض الغامدي ::

تعريب Kaspersky Internet Security 2009 8.0.0.506 Final

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

أو هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

التعريب موضوع الغالي HaMuDi​

 

[Noni]

شكرا على المجهود بارك الله فيك
تم التحميل بنجاح
سلمت يداكk:

 

[صمت السكوت]

تحت امرك يالغالي وبتوفيق الله عزوجل