[تم حل المشكلة]████ بطء في التشغيل + firefox + تقرير الهيجاك ████

الحالة
مغلق و غير مفتوح للمزيد من الردود.
م

(مجرد انسان)

زيزوومى محترف
إنضم
14 نوفمبر 2008
المشاركات
2,025
مستوى التفاعل
28
النقاط
730
الإقامة
ALKHARJ City ^^
غير متصل
i10612_Untitled6.jpg



:king: كيف حالكم اخواني الزيزوووومييين :king:

أدخل في الموضوع :q:


أنا في هالأيام لاحظت ان جهازي بطيء :cr:

يحتاج وقت كثير اذا شغلته
يحتاج حوالي 4 دقائق حتى يظهر سطح المكتب

واذا ظهر سطح المكتب يحتاج له 5 دقائق ..

اذا استعمله بعد دقيقتين من ظهور سطح المكتب يعلق :cr:

وأحتاج الى إعادة التشغيل :er:


وأيضاً أحس الـfire fox يواجه بطء ليس في التصفح :no: اذا مثلا ضغطت ع العلامات يعلق



وهذا تقرير الهيجاك




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:30:33 م, on 13/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Linksys\Compact Wireless-G USB Adapter Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys\Compact Wireless-G USB Adapter Wireless Network Monitor\WUSB54GC.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Documents and Settings\الشبكه\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe
C:\Documents and Settings\الشبكه\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 9\SnagItBHO.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 9\SnagItIEAddin.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [UVS12 Preload] C:\Program Files\Corel\Corel VideoStudio 12\uvPL.exe
O4 - HKLM\..\Run: [avp] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\الشبكه\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: WUSB54GCSVC - GEMTEKS - C:\Program Files\Linksys\Compact Wireless-G USB Adapter Wireless Network Monitor\WLService.exe

--
End of file - 8105 bytes


أرجو أن تكون وصلت المعلومة :q:


والله يعطيكم 10000 ع ـافية






متابع للموضوع أول بأول :y:



ملـ ح ـو ظة : الويندوز xp




وشكراً





:smile:


 

توقيع : (مجرد انسان)
ترتيب حسب التاريخ ترتيب حسب الأصوات

وعليكم السلام

....

عطل برامج الحماية وشغل الأداة


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي




عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes



اثناء الفحص ممكن يعاد تشغيل الجهاز



وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ،، وبذلك يكون الفحص انتهى


 
توقيع : ابـــو عــبــد الــلــه
تأييد 0
جزاك الله خيرا


يتم الآن التحميل
 
توقيع : (مجرد انسان)
تأييد 0
وأخيراً ظهر التقرير


ComboFix 09-06-13.02 - الشبكه 06/13/2009 13:06.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1256.966.1033.18.2037.1370 [GMT -7:00]
Running from: c:\documents and settings\الشبكه\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\kakle.dll
c:\windows\system32\Ultra.dll

.
((((((((((((((((((((((((( Files Created from 2009-05-13 to 2009-06-13 )))))))))))))))))))))))))))))))
.

2009-06-13 17:04 . 2009-05-15 20:15 781287 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\firedownload@mozilla.org\Download.dll
2009-06-13 17:04 . 2009-05-07 19:49 22528 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\firedownload@mozilla.org\components\firedownload.dll
2009-06-13 16:59 . 2009-06-13 16:59 -------- d--h--w- c:\windows\system32\GroupPolicy
2009-06-13 09:12 . 2008-06-27 03:56 11776 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\{3aaa6ede-0f45-43da-8b81-608a1d8108a2}\components\FFAlert.dll
2009-06-13 09:12 . 2008-06-27 03:56 114688 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\{3aaa6ede-0f45-43da-8b81-608a1d8108a2}\components\npmozax.dll
2009-06-13 07:32 . 2009-06-13 07:32 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Mozilla
2009-06-12 21:31 . 2009-06-12 21:31 552 ----a-w- c:\windows\system32\d3d8caps.dat
2009-06-12 20:46 . 2009-06-12 20:46 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Google
2009-06-12 18:48 . 2009-06-13 18:15 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-06-12 15:42 . 2009-06-12 16:05 -------- d-----w- c:\documents and settings\الشبكه\Local Settings\Application Data\Google
2009-06-07 15:18 . 2008-12-04 08:25 120832 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}\plugins\npietab.dll
2009-06-02 15:25 . 2009-06-02 15:26 -------- d-----w- c:\program files\Bug Doctor
2009-06-02 15:15 . 2009-06-02 15:15 -------- d-----w- c:\documents and settings\الشبكه\Local Settings\Application Data\Thinstall
2009-06-01 15:07 . 2009-06-01 15:07 -------- d-----w- c:\program files\XP Codec Pack
2009-05-31 18:31 . 2009-05-31 18:31 932368 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\profiles-1-6.dll
2009-05-31 18:31 . 2009-05-31 18:31 678416 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\content_interpreter-1-1.dll
2009-05-31 18:31 . 2009-05-31 18:31 604688 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\gsg-3-9.dll
2009-05-31 18:31 . 2009-05-31 18:31 522768 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\database-1-5.dll
2009-05-31 18:31 . 2009-05-31 18:31 1096208 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\filtration-4-6.dll
2009-05-31 18:25 . 2009-05-31 18:25 604140 --sha-w- c:\windows\system32\drivers\ISwift3.dat
2009-05-30 13:44 . 2009-05-30 13:44 -------- d-sh--w- c:\windows\Folder Settings
2009-05-30 12:34 . 2009-06-11 12:17 -------- d-----w- C:\firefox
2009-05-28 07:11 . 2009-05-28 07:11 -------- d-----w- c:\program files\ImageShack Corp
2009-05-27 17:01 . 2009-05-30 16:34 -------- d-----w- c:\windows\system32\Adobe
2009-05-26 19:03 . 2009-05-26 19:03 -------- d-----w- c:\documents and settings\الشبكه\Application Data\HiYo
2009-05-25 15:33 . 2009-05-31 16:09 -------- d-----w- c:\program files\SWiSH Max2
2009-05-25 12:21 . 2009-05-25 12:21 219664 ----a-w- c:\windows\system32\klogon.dll
2009-05-25 12:18 . 2009-05-25 12:18 27507 ----a-w- c:\windows\system32\drivers\klopp.dat
2009-05-25 01:41 . 2009-05-25 01:41 59992 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2010 9.0.0.459\English\setup.exe
2009-05-24 22:30 . 2009-05-24 22:30 128016 ----a-w- c:\windows\system32\drivers\kl1.sys
2009-05-17 22:21 . 2009-05-17 22:17 24368104 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{7169FA93-66C2-43BD-86E0-CD332A686B29}\NokiaSoftwareUpdaterSetup_1.6.11AR.exe
2009-05-17 22:21 . 2009-05-17 22:21 3351812 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{7169FA93-66C2-43BD-86E0-CD332A686B29}\Installer\CommonCustomActions\msxml6Exec.exe
2009-05-17 22:21 . 2009-05-17 22:21 36864 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{7169FA93-66C2-43BD-86E0-CD332A686B29}\Installer\CommonCustomActions\Sleep.exe
2009-05-17 22:21 . 2009-05-17 22:21 3181612 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{7169FA93-66C2-43BD-86E0-CD332A686B29}\Installer\CommonCustomActions\vcredistExec.exe
2009-05-17 03:59 . 2009-05-17 03:59 19472 ----a-w- c:\windows\system32\drivers\klmouflt.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-13 20:11 . 2009-01-29 18:59 -------- d-----w- c:\documents and settings\الشبكه\Application Data\DMCache
2009-06-13 19:20 . 2009-02-02 02:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-06-13 18:32 . 2009-01-28 05:54 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-06-07 17:16 . 2009-01-29 18:59 -------- d-----w- c:\documents and settings\الشبكه\Application Data\IDM
2009-06-04 12:29 . 2009-06-08 04:18 159532 ----a-w- c:\windows\pchealth\helpctr\Config\Cache\Professional_32_1025.dat
2009-06-02 19:03 . 2009-04-04 18:45 -------- d-----w- c:\documents and settings\الشبكه\Application Data\Vso
2009-06-02 15:15 . 2009-05-11 16:13 -------- d-----w- c:\documents and settings\الشبكه\Application Data\Thinstall
2009-05-31 18:15 . 2009-02-02 02:27 786464 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-05-31 18:15 . 2009-02-02 02:27 4816 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-05-31 18:15 . 2009-02-02 02:27 3239968 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-05-31 18:15 . 2009-02-02 02:27 28488 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-05-31 18:14 . 2009-01-28 06:18 -------- d-----w- c:\program files\Kaspersky Lab
2009-05-31 18:10 . 2009-01-28 06:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2009-05-29 13:18 . 2009-01-28 05:29 149488 ----a-w- c:\documents and settings\الشبكه\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-05-20 14:25 . 2009-02-02 02:28 94643 ----a-w- c:\windows\system32\drivers\klick.dat
2009-05-20 14:25 . 2009-02-02 02:28 105395 ----a-w- c:\windows\system32\drivers\klin.dat
2009-05-17 22:22 . 2009-01-29 14:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations
2009-05-17 22:21 . 2009-02-15 16:15 -------- d-----w- c:\program files\Common Files\Nokia
2009-05-17 22:21 . 2009-01-29 14:25 -------- d-----w- c:\program files\Nokia
2009-05-14 00:46 . 2008-05-01 01:06 31760 ----a-w- c:\windows\system32\drivers\klim5.sys
2009-05-13 12:32 . 2009-01-29 14:26 -------- d-----w- c:\documents and settings\الشبكه\Application Data\Nokia
2009-05-11 16:15 . 2009-05-11 16:15 -------- d-----w- c:\program files\AmitySource
2009-05-08 20:15 . 2009-03-22 09:03 -------- d-----w- c:\program files\AVI-GIF
2009-05-07 15:32 . 2004-08-03 21:56 345600 ----a-w- c:\windows\system32\localspl.dll
2009-05-04 18:52 . 2009-05-04 18:52 -------- d-----w- c:\documents and settings\الشبكه\Application Data\Xilisoft Corporation
2009-05-01 00:17 . 2009-01-28 06:08 -------- d-----w- c:\program files\Circle Developement
2009-04-30 16:56 . 2009-04-30 16:56 -------- d-----w- c:\program files\Trend Micro
2009-04-29 04:46 . 2004-08-03 21:56 666624 ----a-w- c:\windows\system32\wininet.dll
2009-04-29 04:46 . 2004-08-03 21:56 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-04-26 15:50 . 2009-04-26 09:36 -------- d-----w- c:\documents and settings\الشبكه\Application Data\Ulead Systems
2009-04-26 11:14 . 2009-01-29 14:25 -------- d-----w- c:\documents and settings\الشبكه\Application Data\PC Suite
2009-04-26 09:36 . 2009-04-26 09:23 -------- d-----w- c:\documents and settings\All Users\Application Data\Ulead Systems
2009-04-26 09:25 . 2009-04-26 09:25 -------- d-----w- c:\documents and settings\All Users\Application Data\InterVideo
2009-04-26 09:25 . 2009-01-28 05:41 -------- d-----w- c:\program files\Common Files\InstallShield
2009-04-26 09:25 . 2009-01-28 05:39 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-04-26 09:24 . 2009-04-26 09:24 -------- d-----w- c:\program files\Windows Media Components
2009-04-26 09:24 . 2009-04-26 09:23 -------- d-----w- c:\program files\Common Files\Ulead Systems
2009-04-26 09:23 . 2009-04-26 09:19 -------- d-----w- c:\program files\Corel
2009-04-25 13:16 . 2009-04-25 13:16 -------- d-----w- c:\program files\Common Files\PCSuite
2009-04-25 13:15 . 2009-04-25 13:15 -------- d-----w- c:\program files\PC Connectivity Solution
2009-04-25 13:14 . 2009-04-25 13:14 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstCCD.exe
2009-04-25 13:14 . 2009-04-25 13:14 61440 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2009-04-25 13:14 . 2009-04-25 13:14 10240 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstPCS.exe
2009-04-25 12:53 . 2009-04-25 13:14 34649904 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Nokia_PC_Suite_7_1_26_0_ara.exe
2009-04-24 14:09 . 2009-01-29 18:59 -------- d-----w- c:\program files\Internet Download Manager
2009-04-24 12:55 . 2009-04-24 12:55 1161626 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\piclens@cooliris.com\libs\avcodec-51.dll
2009-04-24 12:55 . 2009-04-24 12:55 103424 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\piclens@cooliris.com\libs\pixomatic.dll
2009-04-24 12:55 . 2009-04-24 12:55 65536 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\piclens@cooliris.com\components\coolirisstub.dll
2009-04-24 12:55 . 2009-04-24 12:55 4579328 ----a-w- c:\documents and settings\الشبكه\Application Data\Mozilla\Firefox\Profiles\kvkuets8.default\extensions\piclens@cooliris.com\libs\cooliris18.dll
2009-04-17 15:00 . 2009-04-17 15:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Nokia
2009-04-17 12:26 . 2004-08-03 20:17 1847168 ----a-w- c:\windows\system32\win32k.sys
2009-04-17 11:07 . 2009-04-17 11:07 -------- d-----w- c:\documents and settings\الشبكه\Application Data\IndigoRose
2009-04-17 11:06 . 2009-04-17 11:06 -------- d-----w- c:\program files\AutoPlay Media Studio 7.0
2009-04-17 11:06 . 2009-04-17 11:06 -------- d-----w- c:\documents and settings\All Users\Application Data\IndigoRose
2009-04-17 11:05 . 2009-04-17 11:05 -------- d-----w- c:\documents and settings\الشبكه\Application Data\Downloaded Installations
2009-04-15 14:51 . 2004-08-03 21:56 585216 ----a-w- c:\windows\system32\rpcrt4.dll
2009-03-26 15:35 . 2009-04-02 11:18 210352 ----a-w- c:\windows\system32\idmmbc.dll
2009-03-19 20:48 . 2009-04-25 13:15 136704 ----a-w- c:\windows\system32\drivers\nmwcdnsu.sys
2009-03-19 20:48 . 2009-04-25 13:15 8320 ----a-w- c:\windows\system32\drivers\nmwcdnsuc.sys
2009-03-18 14:34 . 2009-03-18 14:35 410984 ----a-w- c:\windows\system32\deploytk.dll
2009-03-18 14:11 . 2009-03-18 14:11 152576 ----a-w- c:\documents and settings\الشبكه\Application Data\Sun\Java\jre1.6.0_11\lzma.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-04-23 2794928]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-03-20 1312256]
"Google Update"="c:\documents and settings\الشبكه\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-06-12 133104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-07-11 131072]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-07-11 155648]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-07-11 131072]
"USB Antivirus"="c:\program files\USB Disk Security\USBGuard.exe" [2008-06-21 798720]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-02-11 185872]
"UVS12 Preload"="c:\program files\Corel\Corel VideoStudio 12\uvPL.exe" [2008-06-09 397456]
"avp"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe" [2009-05-25 303376]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"RunNarrator"="Narrator.exe" - c:\windows\system32\narrator.exe [2008-04-14 55808]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Exif Launcher S.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Exif Launcher S.lnk
backup=c:\windows\pss\Exif Launcher S.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^SnagIt 9.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\SnagIt 9.lnk
backup=c:\windows\pss\SnagIt 9.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^الشبكه^Start Menu^Programs^Startup^IDMan.exe.lnk]
path=c:\documents and settings\الشبكه\Start Menu\Programs\Startup\IDMan.exe.lnk
backup=c:\windows\pss\IDMan.exe.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^الشبكه^Start Menu^Programs^Startup^RocketDock.lnk]
path=c:\documents and settings\الشبكه\Start Menu\Programs\Startup\RocketDock.lnk
backup=c:\windows\pss\RocketDock.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^الشبكه^Start Menu^Programs^Startup^TransBar.lnk]
path=c:\documents and settings\الشبكه\Start Menu\Programs\Startup\TransBar.lnk
backup=c:\windows\pss\TransBar.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify"=dword:00000001
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\helpctr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [29/01/2008 06:29 م 33808]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [30/04/2008 06:06 م 31760]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [16/05/2009 08:59 م 19472]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [25/04/2009 06:15 ص 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [25/04/2009 06:15 ص 8320]
.
Contents of the 'Scheduled Tasks' folder

2009-06-11 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 20:34]

2009-06-13 c:\windows\Tasks\OGADaily.job
- c:\windows\system32\OGAVerify.exe [2009-01-01 00:04]

2009-06-13 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAVerify.exe [2009-01-01 00:04]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
mStart Page = about:blank
IE: ت&صدير إلى Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
IE: {{CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
FF - ProfilePath -
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-06-13 13:10
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...


c:\docume~1\CA17~1\LOCALS~1\Temp\~DF7721.tmp 16384 bytes

scan completed successfully
hidden files: 1

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-746137067-963894560-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*c*t*t* \OpenWithList]
@Class="Shell"
"a"="msnmsgr.exe"
"MRUList"="a"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{36a08edf-18bb-4d10-894e-78d505cbd85d}]
@Denied: (Full) (Everyone)
"Model"=dword:00000075
"Therad"=dword:00000015
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,98,07,ff,fc,5d,
df,1c,2f,3b,8a,0a,32,11,89,01,b5,8d,bb,f2,53,59,e3,c8,cb,79,0a,9e,4a,31,c6,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{3af545be-cb5b-4677-a51c-293290fe72b3}]
@Denied: (Full) (Everyone)
"Model"=dword:00000070
"Therad"=dword:0000001d

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):d1,a9,7e,8d,cc,6e,46,0e,de,3f,a3,16,f0,7f,93,c7,9c,b2,4f,86,56,
df,ac,2b,68,d3,6a,12,a0,d7,7d,b5,c7,0a,46,5e,a7,a7,64,32,00,00,00,00,00,00,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):d6,b7,aa,db,a4,9d,e2,c0,5c,cd,38,8c,07,cf,bc,97,44,c5,18,15,54,
f1,86,63,f5,71,04,99,01,9a,46,34,0e,29,0b,97,ea,6b,e0,aa,00,00,00,00,00,00,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(4040)
c:\windows\system32\ntshrui.dll
c:\windows\system32\NETSHELL.dll
c:\windows\system32\credui.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_ara.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\Internet Download Manager\idmmkb.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\program files\Linksys\Compact Wireless-G USB Adapter Wireless Network Monitor\WLService.exe
c:\program files\Linksys\Compact Wireless-G USB Adapter Wireless Network Monitor\WUSB54GC.exe
c:\windows\system32\CF1872.exe
c:\windows\system32\igfxsrvc.exe
c:\documents and settings\c:\windows\system32\svchost.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files\Mozilla Firefox\firefox.exe
c:\program files\TechSmith\SnagIt 9\SnagIt32.exe
c:\program files\TechSmith\SnagIt 9\TscHelp.exe
c:\program files\TechSmith\SnagIt 9\SnagPriv.exe
c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtblfs.exe
c:\program files\TechSmith\SnagIt 9\SnagItEditor.exe
.
**************************************************************************
.
Completion time: 2009-06-13 13:14 - machine was rebooted
ComboFix-quarantined-files.txt 2009-06-13 20:14

Pre-Run: 13,081,546,752 bytes free
Post-Run: 13,080,276,992 bytes free

280 --- E O F --- 2009-06-13 18:32

 
توقيع : (مجرد انسان)
تأييد 0
حمل هذه الاداة من هنا
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
او

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي





بعد تنزيل الاداة دبل كلك ستظهر لديك مثل هذه النافذة خذ صورة لها وارفقها بردك القادم

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

 
التعديل الأخير بواسطة المشرف:
توقيع : ابـــو عــبــد الــلــه
تأييد 0
تفضل

i17230_.jpg

 
توقيع : (مجرد انسان)
تأييد 0
حمل اخر اصدار من المتصفح​

...​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


...​

نزل هذه الاداة واتبع الشرح التالي​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

التوافق : ويندوز اكسبيفقط

شرح الاستخدام ,,,,,,
عند تشغيل ملف الاداة تظهر لك هذه الشاشه ,, انتظر ( وتابع مع الصور )

000.png

001.png

وعند ظهور هذه الشاشه ,, اضغط على Close ليتم اعادة تشغيل جهازك (( لتكملة عملية التنظيف ))

002.png
 
توقيع : ابـــو عــبــد الــلــه
تأييد 0
//
شاكر تجاوبك السريع يالغالي

جاري تجربة جميع الحلول
//
 
توقيع : (مجرد انسان)
تأييد 0
الله يعطيكـ 100000 ع ـافية أبو ريما ..

ويجعلها في ميزان حسناتكـ..


[تم حل المشكلة]
 
توقيع : (مجرد انسان)
تأييد 0
الحالة
مغلق و غير مفتوح للمزيد من الردود.
عودة
أعلى