انقطاع النت بعد الاستخدام بفترة قصيرة

ا

الخاMلدي

زيزوومي نشيط
إنضم
4 مارس 2009
المشاركات
142
مستوى التفاعل
0
النقاط
170
غير متصل
تقرير جهازي وطالب فزعتكم ياخذ شوي ويفصل النت
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:40:34 م, on 05/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
C:\WINDOWS\sm56hlpr.exe
C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\IRIS Desktop Search\IRISDesktopSearch.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\WINDOWS\system32\wuauclt.exe
D:\Zyzoom_HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll
O3 - Toolbar: I.R.I.S. Desktop Search - {577EBCA9-8ED3-45FC-A514-55B3817D4BCF} - C:\Program Files\IRIS Desktop Search\IRISDesktopSearchIntegration910.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe"
O4 - HKLM\..\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [I.R.I.S. Desktop Search] "C:\Program Files\IRIS Desktop Search\IRISDesktopSearch.exe" /tray
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: &تصدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\ie_banner_deny.htm
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\SCIEPlgn.dll
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0FO\adialhk.dll
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Kaspersky Network Agent (klnagent) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
--
End of file - 5748 bytes
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
up​
 
تأييد 0
مافيه عباقره​
 
تأييد 0
أخي الكريم الخالدي التقرير سليم ما هي المشاكل التي لديك
أخوكم
 
توقيع : البتال
تأييد 0
السلام عليكم

لاتحتاج لعبقري يا الحبيب
تقريرك سليم ولايوجد مايضره

واشرح أكثر لو ممكن عن المشكلة
 
توقيع : PrinceOfPersia
تأييد 0
تسلمو يالغالين
هو لمن اتصل بالنت اجلس كذا نصف ساعة اكثر ثمن يقطع احاول اتصل مره ثانية مايرضاء
الا اسوي اعادة تشغيل وعلى فكره مسوي له فرمته من اسبوع تقريبا​
 
تأييد 0
عذرا بتعديل العنوان
وممكن المشكلة من المودم
 
تأييد 0
نزل هذه الاداة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
 بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
 انتظر حتى يظهر لك تقرير ،، وبذلك يكون الفحص انتهى الصق التقرير بردك القادم
 
توقيع : السّاجد لله
تأييد 0
والله اخوي ممكن لاني قبل يومين حذفته وبعدين دخت الين جبته وعرفته
 
تأييد 0
معليش على التاخير

ComboFix 09-04-04.01 - الخاMلدي 04/05/2009 22:45:18.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.1.1025.18.1015.619 [GMT 3:00]
Running from: F:\ComboFix.exe
AV: Kaspersky Anti-Virus *On-access scanning disabled* (Updated)
FW: Kaspersky Anti-Virus *disabled*
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((( Files Created from 2009-03-05 to 2009-04-05 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-05 19:46 63,264 --sha-w c:\windows\system32\drivers\fidbox2.dat
2009-04-05 19:46 40,724 --sha-w c:\windows\system32\drivers\fidbox.idx
2009-04-05 19:46 2,347,552 --sha-w c:\windows\system32\drivers\fidbox.dat
2009-04-05 19:46 11,840 --sha-w c:\windows\system32\drivers\fidbox2.idx
2009-04-05 19:43 --------- d-----w c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-04-05 18:51 --------- d-----w c:\program files\Common Files\xing shared
2009-04-05 18:50 499,712 ----a-w c:\windows\system32\msvcp71.dll
2009-04-05 18:50 348,160 ----a-w c:\windows\system32\msvcr71.dll
2009-04-05 18:50 --------- d-----w c:\program files\Real
2009-04-05 18:50 --------- d-----w c:\program files\Common Files\Real
2009-04-03 13:48 --------- d-----w c:\program files\Allok Video Converter
2009-04-03 10:48 --------- d-----w c:\documents and settings\الخاMلدي\Application Data\ACD Systems
2009-04-03 10:46 --------- d-----w c:\program files\Common Files\ACD Systems
2009-04-03 10:46 --------- d-----w c:\program files\ACD Systems
2009-04-03 10:46 --------- d-----w c:\documents and settings\All Users\Application Data\ACD Systems
2009-04-03 02:20 --------- d-----w c:\documents and settings\الخاMلدي\Application Data\CyberScrub
2009-04-03 02:19 --------- d-----w c:\documents and settings\الخاMلدي\Application Data\cleaner
2009-04-02 17:31 --------- d-----w c:\documents and settings\الخاMلدي\Application Data\Hewlett-Packard
2009-04-02 17:12 82,380 ----a-w c:\windows\system32\drivers\AFS2K.SYS
2009-04-02 17:12 --------- d-----w c:\program files\Hewlett-Packard
2009-04-02 17:10 --------- d-----w c:\program files\Common Files\Hewlett-Packard
2009-04-02 14:54 --------- d-----w c:\documents and settings\الخاMلدي\Application Data\Ahead
2009-04-02 12:14 89,601 ----a-w c:\windows\system32\drivers\klick.dat
2009-04-02 12:14 112,144 ----a-w c:\windows\system32\drivers\kl1.sys
2009-04-02 12:14 101,287 ----a-w c:\windows\system32\drivers\klin.dat
2009-04-01 23:53 --------- d-----w c:\program files\AskTBar
2009-04-01 20:10 --------- d-----w c:\program files\IRIS Desktop Search
2009-04-01 20:09 --------- d-----w c:\program files\Readiris Pro 11 HP
2009-04-01 20:03 --------- d-----w c:\program files\viewsonic
2009-04-01 20:00 --------- d--h--w c:\program files\InstallShield Installation Information
2009-04-01 20:00 --------- d-----w c:\program files\Common Files\InstallShield
2009-04-01 20:00 --------- d-----w c:\program files\Common Files\Adobe
2009-04-01 19:58 45,244 ----a-w c:\windows\system32\pdfmon.dll
2009-04-01 19:58 110,642 ----a-w c:\windows\system32\pdfmona.dll
2009-04-01 19:54 --------- d-----w c:\program files\MSN Messenger
2009-04-01 19:52 --------- d-----w c:\program files\Common Files\Ahead
2009-04-01 19:52 --------- d-----w c:\documents and settings\All Users\Application Data\Ahead
2009-04-01 19:50 --------- d-----w c:\program files\Nero
2009-04-01 19:50 --------- d-----w c:\documents and settings\All Users\Application Data\Nero
2009-04-01 19:28 --------- d-----w c:\program files\Microsoft.NET
2009-04-01 17:36 --------- d-----w c:\program files\Kaspersky Lab
2009-04-01 17:35 --------- d-----w c:\program files\Common Files\Kaspersky Lab
2009-04-01 17:35 --------- d-----w c:\program files\Common Files\Cisco Systems
2009-04-01 17:24 --------- d-----w c:\program files\Realtek
2009-04-01 17:24 --------- d-----w c:\documents and settings\الخاMلدي\Application Data\InstallShield
2009-04-01 17:21 315,392 ----a-w c:\windows\HideWin.exe
2009-04-01 17:18 --------- d-----w c:\program files\Yahoo!
2009-04-01 17:18 --------- d-----w c:\program files\Intel
2009-04-01 17:11 --------- d-----w c:\program files\microsoft frontpage
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [08/04/2004 01:56 AM 15360]
"MsnMsgr"="c:\program files\MSN Messenger\MsnMsgr.Exe" [01/19/2007 12:55 PM 5674352]
"I.R.I.S. Desktop Search"="c:\program files\IRIS Desktop Search\IRISDesktopSearch.exe" [01/11/2006 04:37 PM 5193512]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [06/27/2007 07:03 PM 152872]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [08/04/2004 01:09 AM 1667584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="c:\windows\system32\igfxtray.exe" [11/28/2005 08:55 AM 98304]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [11/28/2005 08:52 AM 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [11/28/2005 08:55 AM 118784]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [03/01/2007 03:57 PM 153136]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [04/05/2009 09:50 PM 185896]
"BluetoothAuthenticationAgent"="bthprops.cpl" [08/04/2004 01:56 AM 110592 c:\windows\system32\bthprops.cpl]
"RTHDCPL"="RTHDCPL.EXE" [07/05/2007 11:08 AM 16380416 c:\windows\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [06/15/2007 11:45 AM 1826816 c:\windows\SkyTel.exe]
"SMSERIAL"="sm56hlpr.exe" [10/21/2004 05:19 PM 585728 c:\windows\sm56hlpr.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [08/04/2004 01:56 AM 15360]
c:\documents and settings\All Users\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
hp psc 1000 series.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2003-04-06 147456]
hpoddt01.exe.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-04-06 28672]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.ACDV"= ACDV.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
R2 klnagent;Kaspersky Network Agent;c:\program files\Kaspersky Lab\NetworkAgent\klnagent.exe [2007-03-09 91265]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2007-02-02 24344]
.
Contents of the 'Scheduled Tasks' folder
2009-04-02 c:\windows\Tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1238693437.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [04/06/2003 12:52 AM]
.
- - - - ORPHANS REMOVED - - - -
HKLM-Run-Device Detector - DevDetect.exe

.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
mStart Page = hxxp://www.yahoo.com
IE: &تصدير إلى Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
.
**************************************************************************
catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-04-05 22:48:47
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(732)
c:\windows\system32\klogon.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\fxssvc.exe
c:\windows\system32\rundll32.exe
c:\program files\Common Files\ACD Systems\EN\DevDetect.exe
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\program files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
c:\program files\Hewlett-Packard\Digital Imaging\bin\hposts08.exe
.
**************************************************************************
.
Completion time: 04/05/2009 22:51:38 - machine was rebooted
ComboFix-quarantined-files.txt 2009-04-05 19:51:34
Pre-Run: 36,519,587,840 bytes free
Post-Run: 36,493,324,288 bytes free
152
 
تأييد 0
انا طالع
تصبح على خير​
 
تأييد 0
التقرير سليم
 
تأييد 0
يا اخي الكريم


هذه المشكله ليست من عندك انما من شركة الاتصلات في بعض المقسمات

انا مثلك بالضبط اعاني بمثل ما تعاااااااااني
 
توقيع : الأصالة
تأييد 0
الله يسلم الجميع ومشكورين على الردود واسف على التاخير​
 
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى