[تم حل المشكله]الكاسبر ما يتثبت !

  • بادئ الموضوع بادئ الموضوع الحربي
  • تاريخ البدء تاريخ البدء
  • المشاهدات 1,199
الحالة
مغلق و غير مفتوح للمزيد من الردود.
ا

الحربي

زيزوومي جديد
إنضم
7 سبتمبر 2007
المشاركات
62
مستوى التفاعل
0
النقاط
80
الإقامة
ksa
غير متصل
الـسلام عليكم ورحمة الله وبركاته

اخواني انا عندي مشكله هي ان الكاسبر مو راضي ينثبت

كذا مره حاولت وجربت وحملت نسخه لـعام 2010

حقت موضوع اخوي ززيوم الاخير

ولاا هي راضيه تنثبت تثبيت تلقائي مدري وش المشكله

مو معقوله كل ما تواجهني مشكله اجيب اسطوانه الاكس بي وافرمت ههههه

ابي حل يا جماعة الخير.
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
عذرا بنقل الموضوع الى الركن المناسب
 
تأييد 0
حمل هذا البرنامج
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات .. ويظهر لك تقرير ==> انسخه والصقه بردك القادم


 
التعديل الأخير بواسطة المشرف:
توقيع : البارون
تأييد 0
طيب وضح كيف ما يتثبت !!

يعني تظهر لك رسالة خطأ أو ماذا بالظبط !!

الرجاء التوضيح أكثر ولو كانت صورة ياليت تصورها وتدرجها هنآ​
 
توقيع : Corporation
تأييد 0
اخوي البارون ثبت البرنامج وهذا هو التقرير الي طلع لي

logfile of trend micro hijackthis v2.0.2
scan saved at 01:14:21 ص, on 12/07/2009
platform: Windows xp sp2 (winnt 5.01.2600)
msie: Internet explorer v6.00 sp2 (6.00.2900.2180)
boot mode: Normal
running processes:
C:\windows\system32\smss.exe
c:\windows\system32\winlogon.exe
c:\windows\system32\services.exe
c:\windows\system32\lsass.exe
c:\windows\system32\svchost.exe
c:\windows\system32\svchost.exe
c:\program files\widcomm\bluetooth software\bin\btwdins.exe
c:\windows\system32\spoolsv.exe
c:\windows\explorer.exe
c:\windows\rthdcpl.exe
c:\windows\system32\igfxtray.exe
c:\windows\system32\hkcmd.exe
c:\windows\system32\igfxpers.exe
c:\program files\cyberlink\powerdvd\pdvdserv.exe
c:\program files\common files\real\update_ob\realsched.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\clocx\clocx.exe
c:\windows\system32\xp-bfc39513.exe
c:\documents and settings\a9z\application data\microsoft\cryptneturlcache\metadata\internet explorer\data\iexplore\explorer.pif
c:\windows\system32\ctfmon.exe
c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe
c:\program files\msn messenger\msnmsgr.exe
c:\program files\widcomm\bluetooth software\bttray.exe
c:\program files\paltalk messenger\paltalk.exe
c:\program files\cyberlink\shared files\richvideo.exe
c:\windows\system32\svchost.exe
c:\program files\mobily connect card\mobily connect card.exe
c:\windows\system32\wuauclt.exe
c:\windows\system32\hv-78424.exe
c:\program files\msn messenger\usnsvc.exe
c:\windows\system32\notepad.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\internet explorer\iexplore.exe
c:\program files\real\realplayer\realplay.exe
c:\docume~1\a9z\locals~1\temp\temporary internet files\content.ie5\w7o94j8t\hijackthis[1].exe
r3 - urlsearchhook: Defaultsearchhook class - {c94e154b-1459-4a47-966b-4b843befc7db} - c:\program files\asksearch\bin\defaultsearch.dll
r3 - urlsearchhook: Isohunt toolbar - {a6e4a4eb-d169-4e99-8988-250fcbafe767} - c:\program files\isohunt\tbiso1.dll
r3 - urlsearchhook: Bs player toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - c:\program files\bs_player\tbbs_1.dll
o2 - bho: Askbar bho - {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askbar.dll
o2 - bho: Realplayer download and record plugin for internet explorer - {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
o2 - bho: (no name) - {7e853d72-626a-48ec-a868-ba8d5e23e045} - (no file)
o2 - bho: مساعد تسجيل الدخول إلى windows live - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: Isohunt toolbar - {a6e4a4eb-d169-4e99-8988-250fcbafe767} - c:\program files\isohunt\tbiso1.dll
o2 - bho: Google toolbar helper - {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\googletoolbar.dll
o2 - bho: Google toolbar notifier bho - {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.3572\swg.dll
o2 - bho: Google dictionary compression sdch - {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_a8904fb862bd9564.dll
o2 - bho: Bs player toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - c:\program files\bs_player\tbbs_1.dll
o3 - toolbar: Google toolbar - {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\googletoolbar.dll
o3 - toolbar: Foxit toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askbar.dll
o3 - toolbar: Isohunt toolbar - {a6e4a4eb-d169-4e99-8988-250fcbafe767} - c:\program files\isohunt\tbiso1.dll
o3 - toolbar: Bs player toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - c:\program files\bs_player\tbbs_1.dll
o4 - hklm\..\run: [rthdcpl] rthdcpl.exe
o4 - hklm\..\run: [alcmtr] alcmtr.exe
o4 - hklm\..\run: [igfxtray] c:\windows\system32\igfxtray.exe
o4 - hklm\..\run: [hotkeyscmds] c:\windows\system32\hkcmd.exe
o4 - hklm\..\run: [persistence] c:\windows\system32\igfxpers.exe
o4 - hklm\..\run: [remotecontrol] "c:\program files\cyberlink\powerdvd\pdvdserv.exe"
o4 - hklm\..\run: [languageshortcut] "c:\program files\cyberlink\powerdvd\language\language.exe"
o4 - hklm\..\run: [tkbellexe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
o4 - hklm\..\run: [clocx] c:\program files\clocx\clocx.exe
o4 - hklm\..\run: [xp-bfc39513] c:\windows\system32\xp-bfc39513.exe
o4 - hklm\..\run: [winxpservice] c:\documents and settings\a9z\application data\microsoft\cryptneturlcache\metadata\internet explorer\data\iexplore\explorer.pif
o4 - hklm\..\run: [kernelfaultcheck] %systemroot%\system32\dumprep 0 -k
o4 - hkcu\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe
o4 - hkcu\..\run: [cdoosoft] c:\docume~1\a9z\locals~1\temp\olhrwef.exe
o4 - hkcu\..\run: [swg] c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe
o4 - hkcu\..\run: [msnmsgr] "c:\program files\msn messenger\msnmsgr.exe" /background
o4 - hkus\s-1-5-19\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'local service')
o4 - hkus\s-1-5-20\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'network service')
o4 - hkus\s-1-5-18\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'system')
o4 - hkus\.default\..\run: [ctfmon.exe] c:\windows\system32\ctfmon.exe (user 'default user')
o4 - startup: ،،،،،،.lnk = c:\windows\system32\xp-bfc39513.exe
o4 - global startup: Adobe gamma loader.lnk = c:\program files\common files\adobe\calibration\adobe gamma loader.exe
o4 - global startup: Bluetooth.lnk = ?
O4 - global startup: Paltalk.lnk = c:\program files\paltalk messenger\paltalk.exe
o8 - extra context menu item: E&xport to microsoft excel - res://c:\progra~1\micros~2\office11\excel.exe/3000
o8 - extra context menu item: Send to &bluetooth device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
o8 - extra context menu item: Send to bluetooth - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
o8 - extra context menu item: أضافة إلى مانع الأعلانات - c:\program files\kaspersky lab\kaspersky internet security 2010\ie_banner_deny.htm
o9 - extra button: Paltalk - {4eafef58-eefa-4116-983d-03b49bcbfffe} - c:\program files\paltalk messenger\paltalk.exe
o9 - extra button: Research - {92780b25-18cc-41c8-b9be-3c9c571a8263} - c:\progra~1\micros~2\office11\refiebar.dll
o9 - extra button: @btrez.dll,-4015 - {cca281ca-c863-46ef-9331-5c8d4460577f} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
o9 - extra 'tools' menuitem: @btrez.dll,-12650 - {cca281ca-c863-46ef-9331-5c8d4460577f} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
o9 - extra button: Messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o9 - extra 'tools' menuitem: Windows messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - c:\program files\messenger\msmsgs.exe
o16 - dpf: {6414512b-b978-451d-a0d8-fcfdf33e833c} (wuwebcontrol class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

o16 - dpf: {6924091f-cd97-41e1-b1d4-d9079409d413} (imcv1 control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

o16 - dpf: {7253a666-804a-1107-a4dc-00e04c504781} (bmc control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

o16 - dpf: {b7fdb0c3-4724-46d2-b8db-6fa1dc63f7ca} (readuid.usercontrolmacentry) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

o17 - hklm\system\ccs\services\tcpip\..\{650cbf33-1b34-49e2-90e8-fee803796705}: Nameserver = 84.23.102.172 84.23.101.84
o18 - filter: X-sdch - {b1759355-3eec-4c1e-b0f1-b719fe26e377} - c:\program files\google\google toolbar\component\fastsearch_a8904fb862bd9564.dll
o23 - service: Bluetooth service (btwdins) - broadcom corporation. - c:\program files\widcomm\bluetooth software\bin\btwdins.exe
o23 - service: Google software updater (gusvc) - google - c:\program files\google\common\google updater\googleupdaterservice.exe
o23 - service: Cyberlink richvideo service(crvs) (richvideo) - unknown owner - c:\program files\cyberlink\shared files\richvideo.exe
--
end of file - 8188 bytes
أنقر للتوسيع...
 
تأييد 0
اخوي كومب

اشوف الشرح احمل البرنامج

اشغله يقول البرنامج راح يشتغل تلقائي بعد خمس دقايق

انتظر خمس دقايق ربع ساعه مايسير شئ ولا يسير رستارت للجهاز

يعني خربان حملت كذا برنامج ومسحتها فى الاداه الخاصه لحذف برنامج الكاسبر

وللحين نفس المشكله من زمان هذه عندي
 
تأييد 0
عطل برامج الحماية عن العمل
ثم
حمل الاداة التالية واحفظها على سطح المكتب
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
لا تقم بتشغيل اي برنامج ،، ومهما طالت عملية الفحص انتظر حتى تنتهي
انتظر حتى يظهر لك تقرير ،،انسخه والصقه بمشاركتك القادمة
 
توقيع : البارون
تأييد 0
اخي اعد لصق تقرير الهايجاك بدون اقتباس
 
تأييد 0
ComboFix 09-07-09.08 - a9z 07/12/2009 1:38.1.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.966.1025.18.1979.1531 [GMT 3:00]
Running from: c:\documents and settings\a9z\سطح المكتب\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\2a.exe
C:\autorun.inf
c:\config\S-1-5-21-1482476501-1644491937-682003330-1013
c:\config\S-1-5-21-1482476501-1644491937-682003330-1013\ConfDriver.exe
c:\config\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini
c:\docume~1\a9z\LOCALS~1\Temp\00006C85_Rar\XP-BFC39513.EXE
c:\docume~1\a9z\LOCALS~1\Temp\E_4
c:\docume~1\a9z\LOCALS~1\Temp\E_4\com.run
c:\docume~1\a9z\LOCALS~1\Temp\E_4\dp1.fne
c:\docume~1\a9z\LOCALS~1\Temp\E_4\eAPI.fne
c:\docume~1\a9z\LOCALS~1\Temp\E_4\internet.fne
c:\docume~1\a9z\LOCALS~1\Temp\E_4\krnln.fnr
c:\docume~1\a9z\LOCALS~1\Temp\E_4\RegEx.fnr
c:\docume~1\a9z\LOCALS~1\Temp\E_4\shell.fne
c:\docume~1\a9z\LOCALS~1\Temp\E_4\spec.fne
c:\documents and settings\a9z\قائمة ابدأ\البرامج\بدء التشغيل\،،،،،،.lnk
c:\documents and settings\a9z\Local Settings\Temp\00006C85_Rar\XP-BFC39513.EXE
c:\documents and settings\a9z\Local Settings\Temp\E_4\com.run
c:\documents and settings\a9z\Local Settings\Temp\E_4\dp1.fne
c:\documents and settings\a9z\Local Settings\Temp\E_4\eAPI.fne
c:\documents and settings\a9z\Local Settings\Temp\E_4\internet.fne
c:\documents and settings\a9z\Local Settings\Temp\E_4\krnln.fnr
c:\documents and settings\a9z\Local Settings\Temp\E_4\RegEx.fnr
c:\documents and settings\a9z\Local Settings\Temp\E_4\shell.fne
c:\documents and settings\a9z\Local Settings\Temp\E_4\spec.fne
C:\fsaht.cmd
C:\gclwpivc.cmd
C:\icxpa.cmd
C:\lad.bat
c:\program files\AskSearch\bin\DefaultSearch.dll
C:\q9.cmd
C:\sm.exe
C:\ukvr.bat
C:\upx.bat
c:\windows\AhnRpta.exe
c:\windows\system32\com.run
c:\windows\system32\dp1.fne
c:\windows\system32\e8main0.dll
c:\windows\system32\e8main1.dll
c:\windows\system32\eAPI.fne
c:\windows\system32\internet.fne
c:\windows\system32\kakle.dll
c:\windows\system32\krnln.fnr
c:\windows\system32\nmdfgds0.dll
c:\windows\system32\nmdfgds1.dll
c:\windows\system32\nmdfgds2.dll
c:\windows\system32\og.dll
c:\windows\system32\og.edt
c:\windows\system32\olhrwef.exe
c:\windows\system32\RegEx.fnr
c:\windows\system32\shell.fne
c:\windows\system32\spec.fne
c:\windows\system32\ul.dll
c:\windows\system32\XP-BFC39513.EXE
C:\xh319r9b.bat
C:\yhh.bat
D:\autorun.inf
D:\fsaht.cmd
D:\gclwpivc.cmd
D:\icxpa.cmd
D:\lad.bat
D:\q9.cmd
D:\ukvr.bat
D:\upx.bat
D:\xh319r9b.bat
D:\yhh.bat
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_ASC3360PR
-------\Service_asc3360pr
-------\Service_AVPsys

((((((((((((((((((((((((( Files Created from 2009-06-11 to 2009-07-11 )))))))))))))))))))))))))))))))
.
2009-07-10 21:41 . 2009-07-10 21:45 5944904 ----a-w- c:\documents and settings\a9z\Application Data\IDM\DwnlData\a9z\Zyzoom_kis2010_9.0.0.463AR_95\Zyzoom_kis2010_9.0.0.463AR.exe
2009-07-10 21:24 . 2009-07-10 21:34 16388655 ----a-w- c:\documents and settings\a9z\Application Data\IDM\DwnlData\a9z\Zyzoom_kis2010_9.0.0.463AR_92\Zyzoom_kis2010_9.0.0.463AR.exe
2009-07-09 14:30 . 2009-07-09 14:35 1030808 ----a-w- C:\installin.exe
2009-07-09 14:27 . 2004-12-26 00:23 652800 ----a-w- c:\documents and settings\a9z\Application Data\Microsoft\CryptnetUrlCache\MetaData\Internet Explorer\Data\iexplore\Explorer.pif
2009-07-08 07:23 . 2009-07-11 20:15 20480 ----a-w- c:\windows\system32\HV-78424.EXE
2009-07-08 07:23 . 2009-07-08 07:23 20480 --sh--w- c:\windows\system32\vt-7626.exe
2009-06-14 12:44 . 2009-07-10 21:46 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-06-14 12:44 . 2009-07-10 21:46 -------- d-----w- c:\program files\Common Files\PC Tools
2009-06-14 12:44 . 2009-07-10 21:46 -------- d-----w- c:\program files\Spyware Doctor
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-11 22:43 . 2009-05-12 18:36 2834 ----a-w- c:\documents and settings\a9z\Application Data\Microsoft\CryptnetUrlCache\MetaData\Internet Explorer\Data\iexplore\ms32.sys
2009-07-11 20:14 . 2001-09-19 12:00 40316 ----a-w- c:\windows\system32\perfc001.dat
2009-07-11 20:14 . 2001-09-19 12:00 251946 ----a-w- c:\windows\system32\perfh001.dat
2009-07-11 19:49 . 2009-05-08 19:09 -------- d-----w- c:\documents and settings\a9z\Application Data\uTorrent
2009-07-10 23:31 . 2009-05-09 18:39 -------- d-----w- c:\program files\Kaspersky Lab
2009-07-10 23:31 . 2009-05-04 05:41 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-07-10 22:37 . 2009-05-09 18:37 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2009-07-10 22:13 . 2009-05-02 05:16 -------- d-----w- c:\documents and settings\a9z\Application Data\IDM
2009-07-10 22:13 . 2009-05-02 05:15 -------- d-----w- c:\program files\Internet Download Manager
2009-07-10 22:11 . 2009-05-02 05:16 -------- d-----w- c:\documents and settings\a9z\Application Data\DMCache
2009-07-10 21:54 . 2009-06-11 21:28 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2009-07-08 22:29 . 2009-05-19 20:07 -------- d-----w- c:\documents and settings\a9z\Application Data\BSplayer
2009-07-08 06:53 . 2009-05-20 14:06 102400 ----a-w- c:\documents and settings\a9z\Application Data\IDM\DwnlData\a9z\Nero-6.6.1.15a_61\Nero-6.6.1.15a.exe
2009-07-06 20:06 . 2009-05-07 20:31 -------- d-----w- c:\documents and settings\a9z\Application Data\U3
2009-07-02 05:19 . 2009-05-18 11:14 -------- d-----w- c:\program files\Paltalk Messenger
2009-07-02 05:19 . 2009-05-18 11:14 -------- d-----w- c:\program files\ClocX
2009-06-11 21:28 . 2009-06-11 21:28 -------- d-----w- c:\program files\Avira
2009-06-11 10:48 . 2009-05-19 20:07 -------- d-----w- c:\program files\BS_Player
2009-06-03 14:47 . 2009-06-03 14:47 0 ----a-w- c:\windows\nsreg.dat
2009-06-02 23:06 . 2009-05-12 22:42 -------- d-----w- c:\program files\isoHunt
2009-06-01 21:34 . 2009-05-18 11:14 -------- d-----w- c:\documents and settings\a9z\Application Data\Paltalk
2009-05-28 11:34 . 2009-05-28 11:34 472584 ----a-w- c:\documents and settings\a9z\Application Data\Real\RealPlayer\Update\RealPlayer11.exe
2009-05-25 16:23 . 2009-05-01 09:10 92632 ----a-w- c:\documents and settings\a9z\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-05-25 13:00 . 2009-05-25 12:55 -------- d-----w- c:\program files\Common Files\Adobe
2009-05-25 12:55 . 2009-05-01 09:04 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-05-22 11:20 . 2009-05-22 11:20 -------- d-----w- c:\program files\Microsoft.NET
2009-05-22 11:20 . 2009-05-22 11:20 -------- d-----w- c:\program files\Microsoft ActiveSync
2009-05-20 18:40 . 2009-05-20 18:39 -------- d-----w- c:\program files\ALJAWAL 3.5G HSDPA DATA CARD
2009-05-20 14:26 . 2009-05-20 14:26 -------- d-----w- c:\documents and settings\a9z\Application Data\Nero
2009-05-20 14:14 . 2009-05-20 14:14 -------- d-----w- c:\program files\Common Files\Ahead
2009-05-20 14:14 . 2009-05-20 14:14 -------- d-----w- c:\program files\Nero
2009-05-19 20:07 . 2009-05-04 06:11 -------- d-----w- c:\documents and settings\a9z\Application Data\BSplayer PRO
2009-05-19 20:07 . 2009-05-04 06:11 -------- d-----w- c:\program files\Webteh
2009-05-18 21:54 . 2009-05-18 21:54 -------- d-----w- c:\documents and settings\a9z\Application Data\CyberLink
2009-05-18 11:32 . 2009-05-18 11:32 -------- d-----w- c:\documents and settings\a9z\Application Data\Media Player Classic
2009-05-18 11:31 . 2009-05-18 11:00 -------- d-----w- c:\program files\K-Lite Codec Pack
2009-05-18 11:18 . 2009-05-18 11:18 -------- d-----w- c:\program files\MSECache
2009-05-18 11:10 . 2009-05-18 11:10 -------- d-----w- c:\documents and settings\All Users\Application Data\CyberLink
2009-05-18 11:08 . 2009-05-18 11:08 -------- d-----w- c:\program files\Common Files\xing shared
2009-05-18 11:08 . 2009-05-02 23:05 -------- d-----w- c:\program files\Common Files\Real
2009-05-18 11:08 . 2009-05-18 11:08 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-05-18 11:08 . 2009-05-18 11:08 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-05-10 12:14 . 2009-05-10 12:14 1986560 ----a-w- c:\windows\system32\akll.dll
2009-05-10 12:14 . 2009-05-10 12:14 196608 ----a-w- c:\windows\system32\maag.dll
2009-05-10 12:14 . 2009-05-10 12:14 1245184 ----a-w- c:\windows\system32\bkll.dll
2009-05-10 12:14 . 2009-05-10 12:14 1212416 ----a-w- c:\windows\system32\ckll.dll
2009-05-10 12:14 . 2009-05-10 12:14 2535424 ----a-w- c:\windows\system32\agsaamj.dll
2009-05-10 12:14 . 2009-05-10 12:14 90112 ----a-w- c:\windows\system32\agsaami.dll
2009-05-10 12:14 . 2009-05-10 12:14 610304 ----a-w- c:\windows\system32\agsaamg.dll
2009-05-10 12:14 . 2009-05-10 12:14 372736 ----a-w- c:\windows\system32\agsaamc.dll
2009-05-07 15:42 . 2004-08-03 21:55 344064 ----a-w- c:\windows\system32\localspl.dll
2009-05-05 16:05 . 2009-05-03 19:02 172032 ------w- c:\windows\Setup1.exe
2009-05-05 16:05 . 2009-05-03 19:02 73216 ----a-w- c:\windows\ST6UNST.EXE
2009-05-02 11:26 . 2009-05-01 08:51 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-05-02 06:30 . 2009-05-02 06:30 2232 ----a-w- c:\windows\java\Packages\Data\ZB5ZJ5N1.DAT
2009-05-02 06:30 . 2009-05-02 06:30 155995 ----a-w- c:\windows\java\Packages\FDBRDFHJ.ZIP
2009-05-02 06:30 . 2009-05-02 06:30 2678 ----a-w- c:\windows\java\Packages\Data\K9J9VRTR.DAT
2009-05-02 06:30 . 2009-05-02 06:30 2678 ----a-w- c:\windows\java\Packages\Data\OH35R5NR.DAT
2009-05-02 06:30 . 2009-05-02 06:30 2678 ----a-w- c:\windows\java\Packages\Data\V5FZR7JB.DAT
2009-05-02 06:30 . 2009-05-02 06:30 2678 ----a-w- c:\windows\java\Packages\Data\TVHFZRZH.DAT
2009-05-02 06:30 . 2009-05-02 06:30 2678 ----a-w- c:\windows\java\Packages\Data\NN7B3VZ9.DAT
2009-05-01 09:04 . 2009-05-01 09:04 319488 ----a-w- c:\windows\HideWin.exe
2009-05-01 08:48 . 2009-05-01 08:48 22144 ----a-w- c:\windows\system32\emptyregdb.dat
2009-04-29 04:51 . 2004-08-03 21:55 657920 ----a-w- c:\windows\system32\wininet.dll
2009-04-29 04:51 . 2004-08-03 21:55 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-04-19 20:08 . 2004-08-03 21:46 1846528 ----a-w- c:\windows\system32\win32k.sys
2009-04-15 15:12 . 2004-08-03 21:55 584192 ----a-w- c:\windows\system32\rpcrt4.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-11-18 09:58 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{a6e4a4eb-d169-4e99-8988-250fcbafe767}]
2009-06-02 23:07 2094616 ----a-w- c:\program files\isoHunt\tbiso1.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
2009-06-11 10:48 2094616 ----a-w- c:\program files\BS_Player\tbBS_1.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-02 39408]
"msnmsgr"="c:\program files\MSN Messenger\MsnMsgr.Exe" [2007-01-19 5748080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-07-01 219672]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-07-01 272920]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-07-01 141848]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-02-07 71216]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-02-07 136752]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-05-18 185896]
"ClocX"="c:\program files\ClocX\ClocX.exe" [2004-04-13 181760]
"WinXPService"="c:\documents and settings\a9z\Application Data\Microsoft\CryptnetUrlCache\MetaData\Internet Explorer\Data\iexplore\Explorer.pif" [2004-12-26 652800]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2008-08-26 16851456]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
c:\documents and settings\All Users\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2009-5-25 187392]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-12-20 576104]
PalTalk.lnk - c:\program files\Paltalk Messenger\paltalk.exe [2009-4-25 11131392]
SafeBoot registry key needs repairs. This machine cannot enter Safe Mode.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
@="Driver Group"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
@="DiskDrive"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
@="Hdc"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
@="Keyboard"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
@="Mouse"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
@="System"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
@="Volume"
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"= c:\\Program Files\\MSN Messenger\\MsnMsgr.Exe
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"c:\\Documents and Settings\\a9z\\Application Data\\Microsoft\\CryptnetUrlCache\\MetaData\\Internet Explorer\\Data\\iexplore\\Explorer.pif"=
"c:\\Program Files\\ALJAWAL 3.5G HSDPA DATA CARD\\ALJAWAL 3.5G HSDPA DATA CARD.exe"=
"c:\\Program Files\\Paltalk Messenger\\paltalk.exe"=
"c:\\WINDOWS\\ALCMTR.EXE"=
"c:\\Program Files\\CyberLink\\PowerDVD\\Language\\Language.exe"=
"c:\\WINDOWS\\RTHDCPL.EXE"=
"c:\\Program Files\\ClocX\\ClocX.exe"=
"c:\\Program Files\\Mobily Connect Card\\Mobily Connect Card.exe"=
"c:\\Program Files\\MSN Messenger\\usnsvc.exe"=
"c:\\WINDOWS\\system32\\igfxpers.exe"=
"c:\\WINDOWS\\system32\\igfxtray.exe"=
"c:\\WINDOWS\\system32\\WgaTray.exe"=
"c:\\WINDOWS\\system32\\CF1777.exe"=
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [04/05/2009 04:47 م 110080]
R3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RTS5121.sys [01/05/2009 12:17 م 156160]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [24/01/2009 08:12 ص 625024]
--- Other Services/Drivers In Memory ---
*NewlyCreated* - ASC3360PR
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{67EFG7H6-8IJL-56YT-KLH4-76WE2D3RAM87}]
c:\config\S-1-5-21-1482476501-1644491937-682003330-1013\ConfDriver.exe
.
- - - - ORPHANS REMOVED - - - -
HKLM-Run-XP-BFC39513 - c:\windows\system32\XP-BFC39513.EXE

.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send To Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: أضافة إلى مانع الأعلانات - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
DPF: Microsoft XML Parser for Java -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

DPF: {7253A666-804A-1107-A4DC-00E04C504781} - hxxp://66.228.123.202/bmc.cab
DPF: {B7FDB0C3-4724-46D2-B8DB-6FA1DC63F7CA} - hxxp://98.126.41.66:1999/ReadUid.CAB
FF - ProfilePath - c:\documents and settings\a9z\Application Data\Mozilla\Firefox\Profiles\aev9dnw6.default\
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-07-12 01:42
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{95808DC4-FA4A-4c74-92FE-5B863F82066B}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{16cce327-2ff6-46a5-9c9e-e816f33fed3b}]
@Denied: (Full) (Everyone)
"Model"=dword:000000be
"Therad"=dword:00000001
"MData"=hex(0):cb,9b,ad,ef,27,7d,29,69,f5,02,f0,76,aa,4a,f1,7c,d3,d9,67,7f,6a,
4b,7b,ad,04,7a,b1,b5,76,9b,27,47,90,88,3e,08,b1,ce,42,20,13,b1,15,3c,46,79,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5351eb9a-6b70-45f2-929d-ce1ea2e0a8b4}]
@Denied: (Full) (Everyone)
"Model"=dword:00000096
"Therad"=dword:0000001e
"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,
38,95,44,85,b1,12,f9,90,dd,23,a1,49,8c,bf,1a,9d,fe,41,71,cb,3f,46,a4,7c,ab,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):f9,02,b4,86,6a,71,4a,f8,c5,d5,f2,d0,b5,e7,4a,9d,ab,ef,71,76,dc,
14,fd,68,dc,7b,32,6e,56,4c,dc,c7,27,b5,24,e7,9b,ba,89,01,00,00,00,00,00,00,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):ae,82,16,15,e6,98,39,6d,86,e1,fb,9b,86,36,3d,ba,55,09,3d,48,fd,
3e,cd,4d,a0,1c,dd,1a,4a,c8,eb,2b,94,75,3c,97,0e,4b,97,b2,00,00,00,00,00,00,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'explorer.exe'(3876)
c:\windows\system32\browselc.dll
c:\windows\system32\msi.dll
c:\windows\system32\btmmhook.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\windows\system32\wdfmgr.exe
c:\program files\Mobily Connect Card\Mobily Connect Card.exe
c:\program files\MSN Messenger\usnsvc.exe
c:\program files\Internet Explorer\IEXPLORE.EXE
.
**************************************************************************
.
Completion time: 2009-07-11 1:45 - machine was rebooted
ComboFix-quarantined-files.txt 2009-07-11 22:45
Pre-Run: 28,983,869,440 bytes free
Post-Run: 29,621,325,824 bytes free
317 --- E O F --- 2009-06-11 00:02
 
تأييد 0
هذا التقرير الاول بعد ما حملت الاداه

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:54:14 ص, on 12/07/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Documents and Settings\a9z\Application Data\Microsoft\CryptnetUrlCache\MetaData\Internet Explorer\Data\iexplore\Explorer.pif
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Paltalk Messenger\paltalk.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mobily Connect Card\Mobily Connect Card.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\a9z\Local Settings\Temporary Internet Files\Content.IE5\YPKLGV8J\HiJackThis[1].exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R3 - URLSearchHook: isoHunt Toolbar - {a6e4a4eb-d169-4e99-8988-250fcbafe767} - C:\Program Files\isoHunt\tbiso1.dll
R3 - URLSearchHook: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: isoHunt Toolbar - {a6e4a4eb-d169-4e99-8988-250fcbafe767} - C:\Program Files\isoHunt\tbiso1.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: isoHunt Toolbar - {a6e4a4eb-d169-4e99-8988-250fcbafe767} - C:\Program Files\isoHunt\tbiso1.dll
O3 - Toolbar: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ClocX] C:\Program Files\ClocX\ClocX.exe
O4 - HKLM\..\Run: [WinXPService] C:\Documents and Settings\a9z\Application Data\Microsoft\CryptnetUrlCache\MetaData\Internet Explorer\Data\iexplore\Explorer.pif
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: أضافة إلى مانع الأعلانات - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {6924091F-CD97-41E1-B1D4-D9079409D413} (IMCv1 Control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {7253A666-804A-1107-A4DC-00E04C504781} (BMC Control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {B7FDB0C3-4724-46D2-B8DB-6FA1DC63F7CA} (ReadUid.UserControlMacEntry) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
--
End of file - 7679 bytes
 
تأييد 0
حمل هذا البرنامج

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


ثبته على الجهاز ،، ثم شغله واعمل كما الشرح التالي لفحص الجهاز وعمل تقرير

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


وبعد انتهاء الفحص اعمل التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


انسخ ما بداخل التقرير والصقه بمشاركتك القادمة

اعمل تحديث قبل الفحص
 
تأييد 0
الحمد الله تم حل المشكله
 
تأييد 0
الحالة
مغلق و غير مفتوح للمزيد من الردود.
عودة
أعلى