اداة لكشف وتعطيل الفيروسات الخطره والصعبة الحذف ( 2982 فيروس )

شكرا اخي جاري التحميل
 

اخي في مشكلة ظهرت عندي ايش الحل

ArbShaRe-17321458.JPG


وهذه بعد ماظغت موافق

ArbShaRe-1350570.JPG
 
تسلم تركي
 
توقيع : $$العاشق$$
Juve Guard قال:
اخو شمى
الترند مطلعين أداة بالقوه هذي ؟ <= ما بعد صدق
لا هنت عليها وسم رابط على الميديا فاير
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
أنقر للتوسيع...

مااعلاااااك زوود يالصيرمي <<<<<<< جرررررها :noskjiuyweat:

فديتك حبيب قلبي ,, والشركه ماعليها
لكن مشكلتهم مشكله برامجهم حمولتها دايم ثقيلهاا :noskjiuyweat:
 
أدعو الله أن يتقبل دعائكم ... وأن يجمعنا وإياكم ووالدي ووالديكم في جنات النعيم ..

آمــــــــين يارب العالـــمـــين ..
هلا والله وغلا فيكم
مشكور لمروركم المميز والرائــــع

يعطيكم العافيه جميعا
 
نوووف قال:
اخي في مشكلة ظهرت عندي ايش الحل

ArbShaRe-17321458.JPG


وهذه بعد ماظغت موافق

ArbShaRe-1350570.JPG
أنقر للتوسيع...


طيب اعمل تقرير هايجاك
حمل هذا الملف وشغله ,, لحظات يظهر لك تقرير
انسخه والصقه بردك القادم

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
تفضل اخي:



.
--------------------------\\\ Start Report Of HijackThis ---------------
.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:53:38 م, on 02/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\zyzoom.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\CS\cs.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Popup Blocker\PKMaster.exe
C:\WINDOWS\system32\wuauclt.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bntoz\runn.exe
C:\WINDOWS\system32\cmd.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bntoz\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O2 - BHO: SysShield IE Popup Blocker - {9A23B8A4-C6C9-4A68-8FA6-5F905DC8FF80} - C:\Program Files\Popup Blocker\PKExt.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\zyzoom.exe" /minimized
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Remind me to clean computer every few days.lnk = C:\Program Files\CS\cleaner.exe
O4 - Startup: Run Clean Space tray icon.lnk = C:\Program Files\CS\cs.exe
O4 - Startup: Tray icon for cleaner.lnk = C:\Program Files\CS\cleaner.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: تحميل الكل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: تخصيص القائمه -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: حفظ النماذج -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: شريط ادوات روبوفورم -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: ملئ النماذج -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: املأ النماذج - {320AF880-6646-11D3-ABEE-C5DBF3571F46} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: ملئ النماذج - {320AF880-6646-11D3-ABEE-C5DBF3571F46} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: حفظ - {320AF880-6646-11D3-ABEE-C5DBF3571F49} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: حفظ النماذج - {320AF880-6646-11D3-ABEE-C5DBF3571F49} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: روبوفورم - {724d43aa-0d85-11d4-9908-00400523e39a} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: شريط ادوات روبوفورم - {724d43aa-0d85-11d4-9908-00400523e39a} -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {6924091F-CD97-41E1-B1D4-D9079409D413} (IMCv1 Control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {B7FDB0C3-4724-46D2-B8DB-6FA1DC63F7CA} (ReadUid.UserControlMacEntry) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O20 - Winlogon Notify: Antiwpa - C:\WINDOWS\SYSTEM32\antiwpa.dll
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
--
End of file - 6217 bytes
.
.
--------------------------\\\ End Report Of Of HijackThis ---------------
.
.
.
.
--------------------------\\\ Start Report Of Running Processes ---------------
.
==================================================
Process Name : smss.exe
ProcessID : 556
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Windows NT Session Manager
Company : Microsoft Corporation
Window Title :
File Size : 50,688
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\System32\smss.exe
Base Address : 0x48580000
Created On : 25/01/1429 09:50:42 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 384 K
Mem Usage Peak : 392 K
Page Faults : 190
Pagefile Usage : 164 K
Pagefile Peak Usage : 1672 K
File Attributes : A
==================================================
==================================================
Process Name : csrss.exe
ProcessID : 704
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Client Server Runtime Process
Company : Microsoft Corporation
Window Title :
File Size : 6,144
File Created Date : 17/06/1425 09:56:50 م
File Modified Date : 17/06/1425 09:56:50 م
Filename : C:\WINDOWS\system32\csrss.exe
Base Address : 0x4A680000
Created On : 25/01/1429 09:50:46 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 4480 K
Mem Usage Peak : 4492 K
Page Faults : 4171
Pagefile Usage : 2056 K
Pagefile Peak Usage : 3028 K
File Attributes : A
==================================================
==================================================
Process Name : winlogon.exe
ProcessID : 728
Priority : High
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Windows NT Logon Application
Company : Microsoft Corporation
Window Title :
File Size : 502,272
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\system32\winlogon.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:47 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 4568 K
Mem Usage Peak : 15216 K
Page Faults : 7529
Pagefile Usage : 12200 K
Pagefile Peak Usage : 35196 K
File Attributes : A
==================================================
==================================================
Process Name : services.exe
ProcessID : 772
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Services and Controller app
Company : Microsoft Corporation
Window Title :
File Size : 108,032
File Created Date : 17/06/1425 09:56:56 م
File Modified Date : 17/06/1425 09:56:56 م
Filename : C:\WINDOWS\system32\services.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:47 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 6396 K
Mem Usage Peak : 6616 K
Page Faults : 2054
Pagefile Usage : 4328 K
Pagefile Peak Usage : 33892 K
File Attributes : A
==================================================
==================================================
Process Name : lsass.exe
ProcessID : 784
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : LSA Shell (Export Version)
Company : Microsoft Corporation
Window Title :
File Size : 13,312
File Created Date : 17/06/1425 09:56:52 م
File Modified Date : 17/06/1425 09:56:52 م
Filename : C:\WINDOWS\system32\lsass.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:48 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 8260 K
Mem Usage Peak : 8268 K
Page Faults : 2225
Pagefile Usage : 6612 K
Pagefile Peak Usage : 33996 K
File Attributes : A
==================================================
==================================================
Process Name : svchost.exe
ProcessID : 948
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Generic Host Process for Win32 Services
Company : Microsoft Corporation
Window Title :
File Size : 14,336
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\system32\svchost.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:48 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 7124 K
Mem Usage Peak : 7172 K
Page Faults : 1893
Pagefile Usage : 8700 K
Pagefile Peak Usage : 33784 K
File Attributes : A
==================================================
==================================================
Process Name : svchost.exe
ProcessID : 996
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Generic Host Process for Win32 Services
Company : Microsoft Corporation
Window Title :
File Size : 14,336
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\system32\svchost.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:48 م
Visible Windows : 0
Hidden Windows : 0
User Name :
Mem Usage : 6604 K
Mem Usage Peak : 6604 K
Page Faults : 1785
Pagefile Usage : 7376 K
Pagefile Peak Usage : 33784 K
File Attributes : A
==================================================
==================================================
Process Name : svchost.exe
ProcessID : 1140
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Generic Host Process for Win32 Services
Company : Microsoft Corporation
Window Title :
File Size : 14,336
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\System32\svchost.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:49 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 26456 K
Mem Usage Peak : 30272 K
Page Faults : 11071
Pagefile Usage : 23720 K
Pagefile Peak Usage : 33784 K
File Attributes : A
==================================================
==================================================
Process Name : svchost.exe
ProcessID : 1188
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Generic Host Process for Win32 Services
Company : Microsoft Corporation
Window Title :
File Size : 14,336
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\system32\svchost.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:49 م
Visible Windows : 0
Hidden Windows : 0
User Name :
Mem Usage : 5600 K
Mem Usage Peak : 5600 K
Page Faults : 1455
Pagefile Usage : 3500 K
Pagefile Peak Usage : 33784 K
File Attributes : A
==================================================
==================================================
Process Name : svchost.exe
ProcessID : 1236
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Generic Host Process for Win32 Services
Company : Microsoft Corporation
Window Title :
File Size : 14,336
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\system32\svchost.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:49 م
Visible Windows : 0
Hidden Windows : 0
User Name :
Mem Usage : 6628 K
Mem Usage Peak : 6644 K
Page Faults : 1714
Pagefile Usage : 6692 K
Pagefile Peak Usage : 33784 K
File Attributes : A
==================================================
==================================================
Process Name : Explorer.EXE
ProcessID : 1636
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)
Description : Windows Explorer
Company : Microsoft Corporation
Window Title : Program Manager
File Size : 1,385,472
File Created Date : 17/06/1425 09:56:50 م
File Modified Date : 28/05/1428 10:23:07 ص
Filename : C:\WINDOWS\Explorer.EXE
Base Address : 0x01000000
Created On : 25/01/1429 09:50:51 م
Visible Windows : 2
Hidden Windows : 25
User Name : JET9\Administrator
Mem Usage : 35764 K
Mem Usage Peak : 35768 K
Page Faults : 11392
Pagefile Usage : 35244 K
Pagefile Peak Usage : 35452 K
File Attributes : A
==================================================
==================================================
Process Name : spoolsv.exe
ProcessID : 1740
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
Description : Spooler SubSystem App
Company : Microsoft Corporation
Window Title :
File Size : 57,856
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 04/05/1426 11:53:32 م
Filename : C:\WINDOWS\system32\spoolsv.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:50:51 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 7000 K
Mem Usage Peak : 7004 K
Page Faults : 1901
Pagefile Usage : 8660 K
Pagefile Peak Usage : 33804 K
File Attributes : A
==================================================
==================================================
Process Name : zyzoom.exe
ProcessID : 1964
Priority : Normal
Product Name : AVG Anti-Spyware
Version : 7, 5, 1, 43
Description : AVG Anti-Spyware
Company : GRISOFT s.r.o.
Window Title :
File Size : 6,731,312
File Created Date : 21/01/1429 01:15:08 ص
File Modified Date : 23/10/1428 01:50:41 ص
Filename : C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\zyzoom.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:50:59 م
Visible Windows : 0
Hidden Windows : 25
User Name : JET9\Administrator
Mem Usage : 10156 K
Mem Usage Peak : 52148 K
Page Faults : 30426
Pagefile Usage : 47084 K
Pagefile Peak Usage : 63620 K
File Attributes : A
==================================================
==================================================
Process Name : avp.exe
ProcessID : 1972
Priority : Normal
Product Name : Kaspersky Anti-Virus
Version : 7.0.1.321
Description : Kaspersky Anti-Virus
Company : Kaspersky Lab
Window Title :
File Size : 227,856
File Created Date : 08/12/1428 09:43:32 م
File Modified Date : 08/12/1428 09:43:32 م
Filename : C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:50:59 م
Visible Windows : 0
Hidden Windows : 5
User Name : JET9\Administrator
Mem Usage : 4992 K
Mem Usage Peak : 11464 K
Page Faults : 4759
Pagefile Usage : 9468 K
Pagefile Peak Usage : 33604 K
File Attributes : A
==================================================
==================================================
Process Name : IDMan.exe
ProcessID : 1980
Priority : Normal
Product Name : Internet Download Manager (IDM)
Version : 5.12.6.0
Description : Internet Download Manager (IDM)
Company : Tonec Inc.
Window Title :
File Size : 2,577,840
File Created Date : 15/01/1429 01:06:25 م
File Modified Date : 21/01/1429 01:24:41 ص
Filename : C:\Program Files\Internet Download Manager\IDMan.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:50:59 م
Visible Windows : 0
Hidden Windows : 7
User Name : JET9\Administrator
Mem Usage : 13768 K
Mem Usage Peak : 14120 K
Page Faults : 5036
Pagefile Usage : 10476 K
Pagefile Peak Usage : 33752 K
File Attributes : A
==================================================
==================================================
Process Name : cs.exe
ProcessID : 2020
Priority : Normal
Product Name : CS_Ultimate
Version : 12.08
Description :
Company :
Window Title : Clean Space Ultimate
File Size : 643,576
File Created Date : 25/01/1429 08:42:04 ص
File Modified Date : 14/01/1429 11:30:08 ص
Filename : C:\Program Files\CS\cs.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:50:59 م
Visible Windows : 2
Hidden Windows : 3
User Name : JET9\Administrator
Mem Usage : 8464 K
Mem Usage Peak : 8532 K
Page Faults : 2357
Pagefile Usage : 4120 K
Pagefile Peak Usage : 34516 K
File Attributes : A
==================================================
==================================================
Process Name : guard.exe
ProcessID : 184
Priority : Normal
Product Name : AVG Anti-Spyware
Version : 7, 5, 1, 22
Description : AVG Anti-Spyware guard
Company : GRISOFT s.r.o.
Window Title :
File Size : 312,880
File Created Date : 14/05/1428 12:31:10 م
File Modified Date : 14/05/1428 12:31:10 م
Filename : C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:51:00 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 16804 K
Mem Usage Peak : 49528 K
Page Faults : 70219
Pagefile Usage : 33972 K
Pagefile Peak Usage : 49616 K
File Attributes : A
==================================================
==================================================
Process Name : avp.exe
ProcessID : 212
Priority : Normal
Product Name : Kaspersky Anti-Virus
Version : 7.0.1.321
Description : Kaspersky Anti-Virus
Company : Kaspersky Lab
Window Title :
File Size : 227,856
File Created Date : 08/12/1428 09:43:32 م
File Modified Date : 08/12/1428 09:43:32 م
Filename : C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:51:00 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 15388 K
Mem Usage Peak : 45152 K
Page Faults : 22981
Pagefile Usage : 39040 K
Pagefile Peak Usage : 39524 K
File Attributes : A
==================================================
==================================================
Process Name : svchost.exe
ProcessID : 232
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Generic Host Process for Win32 Services
Company : Microsoft Corporation
Window Title :
File Size : 14,336
File Created Date : 17/06/1425 09:56:58 م
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\system32\svchost.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:51:00 م
Visible Windows : 0
Hidden Windows : 0
User Name :
Mem Usage : 5492 K
Mem Usage Peak : 5504 K
Page Faults : 1425
Pagefile Usage : 4808 K
Pagefile Peak Usage : 33784 K
File Attributes : A
==================================================
==================================================
Process Name : mscorsvw.exe
ProcessID : 244
Priority : Normal
Product Name : Microsoft® .NET Framework
Version : 2.0.50727.42 (RTM.050727-4200)
Description : .NET Runtime Optimization Service
Company : Microsoft Corporation
Window Title :
File Size : 66,240
File Created Date : 20/08/1426 04:28:56 ص
File Modified Date : 20/08/1426 04:28:56 ص
Filename : C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:51:00 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 2752 K
Mem Usage Peak : 2752 K
Page Faults : 689
Pagefile Usage : 824 K
Pagefile Peak Usage : 824 K
File Attributes : A
==================================================
==================================================
Process Name : alg.exe
ProcessID : 208
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Application Layer Gateway Service
Company : Microsoft Corporation
Window Title :
File Size : 44,544
File Created Date : 17/06/1425 09:56:48 م
File Modified Date : 17/06/1425 09:56:48 م
Filename : C:\WINDOWS\System32\alg.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:51:33 م
Visible Windows : 0
Hidden Windows : 0
User Name :
Mem Usage : 5824 K
Mem Usage Peak : 5824 K
Page Faults : 1490
Pagefile Usage : 6152 K
Pagefile Peak Usage : 33824 K
File Attributes : A
==================================================
==================================================
Process Name : IEMonitor.exe
ProcessID : 2228
Priority : Normal
Product Name : IEMonitor Application
Version : 3, 0, 0, 1
Description : Internet Download Manager agent for click monitoring in IE-based browsers
Company : Tonec Inc.
Window Title :
File Size : 251,576
File Created Date : 15/01/1429 01:06:20 م
File Modified Date : 02/02/1428 02:53:52 م
Filename : C:\Program Files\Internet Download Manager\IEMonitor.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:51:40 م
Visible Windows : 0
Hidden Windows : 3
User Name : JET9\Administrator
Mem Usage : 7724 K
Mem Usage Peak : 7732 K
Page Faults : 2076
Pagefile Usage : 8396 K
Pagefile Peak Usage : 33596 K
File Attributes : A
==================================================
==================================================
Process Name : iexplore.exe
ProcessID : 2384
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Description : Internet Explorer
Company : Microsoft Corporation
Window Title : زيزوووم للأمن والحمايه - الرد على المشاركة - Microsoft Internet Explorer
File Size : 192,512
File Created Date : 21/01/1429 12:50:51 ص
File Modified Date : 17/06/1425 09:56:52 م
Filename : C:\Program Files\Internet Explorer\iexplore.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:51:47 م
Visible Windows : 3
Hidden Windows : 70
User Name : JET9\Administrator
Mem Usage : 44128 K
Mem Usage Peak : 45812 K
Page Faults : 18967
Pagefile Usage : 35632 K
Pagefile Peak Usage : 37500 K
File Attributes : A
==================================================
==================================================
Process Name : PKMaster.exe
ProcessID : 2452
Priority : Normal
Product Name : AbsoluteShield IE Popup Blocker
Version : 1, 4, 0, 0
Description : AbsoluteShield IE Popup Blocker
Company : SysShield Consulting, Inc.
Window Title : Internet Utility - Popup Blocker
File Size : 162,816
File Created Date : 21/01/1429 04:45:50 ص
File Modified Date : 04/04/1424 07:08:34 م
Filename : C:\Program Files\Popup Blocker\PKMaster.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:51:51 م
Visible Windows : 1
Hidden Windows : 5
User Name : JET9\Administrator
Mem Usage : 5796 K
Mem Usage Peak : 5796 K
Page Faults : 1582
Pagefile Usage : 3744 K
Pagefile Peak Usage : 33976 K
File Attributes : A
==================================================
==================================================
Process Name : wuauclt.exe
ProcessID : 2820
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 7.0.6000.381 (winmain(wmbla).070730-1740)
Description : Windows Update Automatic Updates
Company : Microsoft Corporation
Window Title :
File Size : 53,080
File Created Date : 21/01/1429 12:51:26 ص
File Modified Date : 16/07/1428 04:19:16 م
Filename : C:\WINDOWS\system32\wuauclt.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:52:07 م
Visible Windows : 0
Hidden Windows : 0
User Name : NT AUTHORITY\SYSTEM
Mem Usage : 9456 K
Mem Usage Peak : 9476 K
Page Faults : 2599
Pagefile Usage : 11492 K
Pagefile Peak Usage : 33784 K
File Attributes : A
==================================================
==================================================
Process Name : runn.exe
ProcessID : 1848
Priority : Normal
Product Name :
Version :
Description :
Company :
Window Title :
File Size : 71,680
File Created Date : 25/01/1429 06:53:30 م
File Modified Date : 23/01/1429 10:24:25 م
Filename : C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bntoz\runn.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:53:30 م
Visible Windows : 0
Hidden Windows : 0
User Name : JET9\Administrator
Mem Usage : 2276 K
Mem Usage Peak : 4228 K
Page Faults : 1166
Pagefile Usage : 912 K
Pagefile Peak Usage : 33868 K
File Attributes : A
==================================================
==================================================
Process Name : cmd.exe
ProcessID : 2152
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : Windows Command Processor
Company : Microsoft Corporation
Window Title :
File Size : 390,144
File Created Date : 17/06/1425 09:56:50 م
File Modified Date : 17/06/1425 09:56:50 م
Filename : C:\WINDOWS\system32\cmd.exe
Base Address : 0x4AD00000
Created On : 25/01/1429 09:53:31 م
Visible Windows : 0
Hidden Windows : 1
User Name : JET9\Administrator
Mem Usage : 5316 K
Mem Usage Peak : 5384 K
Page Faults : 1429
Pagefile Usage : 4164 K
Pagefile Peak Usage : 34904 K
File Attributes : A
==================================================
==================================================
Process Name : wmiprvse.exe
ProcessID : 2276
Priority : Normal
Product Name : Microsoft® Windows® Operating System
Version : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
Description : WMI
Company : Microsoft Corporation
Window Title :
File Size : 218,112
File Created Date : 21/01/1429 12:48:40 ص
File Modified Date : 17/06/1425 09:56:58 م
Filename : C:\WINDOWS\system32\wbem\wmiprvse.exe
Base Address : 0x01000000
Created On : 25/01/1429 09:53:33 م
Visible Windows : 0
Hidden Windows : 0
User Name :
Mem Usage : 7952 K
Mem Usage Peak : 7952 K
Page Faults : 2023
Pagefile Usage : 8412 K
Pagefile Peak Usage : 34004 K
File Attributes : A
==================================================
==================================================
Process Name : CProcess.exe
ProcessID : 2380
Priority : Normal
Product Name : CurrProcess
Version : 1.11
Description : CurrProcess
Company : NirSoft
Window Title :
File Size : 35,840
File Created Date : 25/01/1429 06:53:30 م
File Modified Date : 08/06/1426 04:46:34 ص
Filename : C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bntoz\CProcess.exe
Base Address : 0x00400000
Created On : 25/01/1429 09:53:38 م
Visible Windows : 0
Hidden Windows : 0
User Name : JET9\Administrator
Mem Usage : 4364 K
Mem Usage Peak : 4420 K
Page Faults : 1380
Pagefile Usage : 2936 K
Pagefile Peak Usage : 33656 K
File Attributes : A
==================================================
.
.
--------------------------\\\ End Report Of Running Processes ---------------
.
.
.
.
--------------------------\\\ Windows XP Startup List ---------------
.
HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute
autocheck autochk *
autocheck autochk *
Auto Check Utility
Microsoft Corporation
5.01.2600.2180
c:\windows\system32\autochk.exe
HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms
rdpclip
rdpclip
RDP Clip Monitor
Microsoft Corporation
5.01.2600.2180
c:\windows\system32\rdpclip.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\system32\userinit.exe
Userinit Logon Application
Microsoft Corporation
5.01.2600.2180
c:\windows\system32\userinit.exe
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
Explorer.exe
Explorer.exe
Windows Explorer
Microsoft Corporation
6.00.2900.3156
c:\windows\explorer.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
explorer.exe
explorer.exe
Windows Explorer
Microsoft Corporation
6.00.2900.3156
c:\windows\explorer.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
!AVG Anti-Spyware
"C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\zyzoom.exe" /minimized
AVG Anti-Spyware
GRISOFT s.r.o.
7.05.0001.0043
c:\program files\grisoft\avg anti-spyware 7.5\zyzoom.exe
AVP
"C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
Kaspersky Anti-Virus
Kaspersky Lab
7.00.0001.0321
c:\program files\kaspersky lab\kaspersky internet security 7.0\avp.exe
C:\Documents and Settings\Administrator\Start Menu\Programs\Startup
Remind me to clean computer every few days.lnk
C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Remind me to clean computer every few days.lnk
Cleaner
11.00.0000.1604
c:\program files\cs\cleaner.exe
Run Clean Space tray icon.lnk
C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Run Clean Space tray icon.lnk
12.08.0000.0000
c:\program files\cs\cs.exe
Tray icon for cleaner.lnk
C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Tray icon for cleaner.lnk
Cleaner
11.00.0000.1604
c:\program files\cs\cleaner.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
IDMan
C:\Program Files\Internet Download Manager\IDMan.exe /onboot
Internet Download Manager (IDM)
Tonec Inc.
5.12.0006.0000
c:\program files\internet download manager\idman.exe
Task Scheduler
1-Click Maintenance.job
C:\Program Files\TuneUp Utilities 2008\OneClick.exe /schedulestart
TuneUp 1-Click Maintenance
TuneUp Software GmbH
7.00.7992.0228
c:\program files\tuneup utilities 2008\oneclick.exe
.
.
----------- End Report ---------------
 
نوووف قال:
تفضل اخي:
أنقر للتوسيع...
نوووف قال:
-​
أنقر للتوسيع...


يعطيك العافيه اختي الغاليه
عندك قيم تحتاج تعديل ,, وما اعتقد انها السبب بظهر الرساله​

قفل متصفح الانترنت
وباستخدام البرنامج Hijack This اللي عملت فيه التقرير
اعمل فحص جديد واشر على هذه القيم >>> واضغط على Fix Checked


O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present


O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present


O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present


O16 - DPF: {B7FDB0C3-4724-46D2-B8DB-6FA1DC63F7CA} (ReadUid.UserControlMacEntry) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي



وهذا شرح للعمليه (( القيم غير حقيقيه اللهم للشرح ))
wh_28637394.png



========================​



وياليت تجربين الاداة بالوضع الآمن للويندوز
 
يعطيك العافية اخي تم حذفهما

لكن الأداة لاأستطيع استخدمها نفس السابق
 
الف شكر يا غالي
جزاك الله الف خير ورحم والديك واسكنهم فسيح جناته
 
طيب ,, استخدمي هذا التحديث للويندوز

" للويندوز الانكليزية" (( متعددة لغات ))
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


" للويندوز العربيه بالكامل"
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


بعد تشغيله ,, اعيدي تشغيل جهازك
وجربي الاداة تشتغل معك او لااا
 
badr1960 قال:
الف شكر يا غالي
جزاك الله الف خير ورحم والديك واسكنهم فسيح جناته
أنقر للتوسيع...
ووالديك وجميع المسلمين

هلااا بك يالغلااا وتسلم لحضورك
 
الله يجزاك ألف خير أخوي زيزوم

بس حبيت أسأل.....أقفل الكاسبر والـavg قبل أشغل الأداة ؟؟؟...وهل يلزم إني أكون متصل بالنت ؟؟؟؟
 
اخي بارك الله فيك نزلت التحديث متعدد اللغات لكن نفس المشكلة




ArbShaRe-5378721.JPG


عموووما اخي سامحني اخذت من وقتك الثمين:smile:
 
وعليكم السلام ورحمة الله تعالى وبركاته

الف شكر ياملك الذووق والابداع
 
توقيع : أمي اليمن
بارك الله فيك
طله حلوه بحركات احلى
انا بس اناظر سما :rolleyes:
 
ساعي البريد قال:
الله يجزاك ألف خير أخوي زيزوم

بس حبيت أسأل.....أقفل الكاسبر والـavg قبل أشغل الأداة ؟؟؟...وهل يلزم إني أكون متصل بالنت ؟؟؟؟
أنقر للتوسيع...

ويجزاك خير ويبارك فيك

نعم اهم شئ قفل الــ AVG له يومين موصاحي :noskjiuyweat:
 
نوووف قال:
اخي بارك الله فيك نزلت التحديث متعدد اللغات لكن نفس المشكلة






عموووما اخي سامحني اخذت من وقتك الثمين:smile:
أنقر للتوسيع...

عادي اختي ,, ووش ورانا :biggrin:
 
أمي اليمن قال:
وعليكم السلام ورحمة الله تعالى وبركاته



الف شكر ياملك الذووق والابداع
أنقر للتوسيع...


:blusnuphing::blusnuphing:

يسلموو وبارك الله فيك يالغلااا​
 
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى