تم حل المشكلة [تم حل المشكلة]تهنيق بالمتصفح وعند اغلاق صفحة تعلق الصفحات الاخرى

  • بادئ الموضوع بادئ الموضوع turkey
  • تاريخ البدء تاريخ البدء
الحالة
مغلق و غير مفتوح للمزيد من الردود.
T

turkey

زيزوومى مميز
إنضم
24 أغسطس 2009
المشاركات
398
مستوى التفاعل
31
النقاط
480
الإقامة
السعوديه
غير متصل
السلام عليكم ورحمة الله وبركاته
اسعد الله صبحاكم بكل خير احبتي
الموضوع واضح يا اخوان مشكلتي بالاكسبلورر
االجهاز مسوي له فورمات قبل اسبوع ومن يوم
حدثت الجهاز من التحديثات وهكذا
والمتصفح عندي يعلق بقولكم كيف مثلا انا
فتحت اكثر من صفحه بلياردو منتدى شات زي كذا
نفرض قفلت صفحة الشات مثلا
تعلق الصفحات الاخرى لا استطيع الوصول اليها الا عن
طريق ادارة المهام واقوم باغلاقها من هناك
رغم انه كان المتصفح انترنت اكسبلورر7
سويت له ترقيه من التحديثات الى 8 ونفس المشكله
الان حذفت 8 ورجعت على 7 بانتظار فزعتكم ياخوان انا وقف مخي
بصراحه مادري وش اسوي معه التقارير موجوده
وهذا تقرير للكمبو فيكس قبل يومين سويت فحص
هذه الملفات التي حذفت والمشكله لاتزال​

c:\docume~1\Owner\LOCALS~1\Temp\IadHide4.dll
c:\docume~1\Owner\LOCALS~1\Temp\install_flash_player.exe
c:\documents and settings\Owner\Local Settings\Temp\IadHide4.dll
c:\documents and settings\Owner\My Documents\cc_20091223_063239.reg
c:\windows\system32\Data
------------------------------------------------------------------------------------------------
هنا الهايجاك يا اخوان
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:26:00 ص, on 04/01/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16945)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Creative\SB Live! 24-bit\EAX\EAX.exe
C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\SurMixer.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Documents and Settings\Owner\سطح المكتب\Holder F9.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min /nosplash
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &تصدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6924091F-CD97-41E1-B1D4-D9079409D413} (IMCv1 Control) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
--
End of file - 7234 bytes​

--------------------------------
رابط الرن سكانر احبتي​

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

 

توقيع : turkey
ترتيب حسب التاريخ ترتيب حسب الأصوات
للغة العربية

افتح الاكسبلورر
ادوات >>>> خيارات الانترنت >>>> ثم اعمل كما الصورة

wh_40105661.jpg


للغة الانجليزية

tools >>>>internet options

wh_71269606.png
 
توقيع : عـاشـق وهـم
تأييد 0
الله يعطيك العافيه ياعاشق كفيت ووفيت ياغالي سويت الي قلت عليه والحمدلله فيه تغير ملحوظ بس كان ثقيل الموقع والصفحات ثقيله عند الفتح عملت فحص بالكمبو فيكس وابشرك الحين تمام
يعني برايك فيه شي اسويه على تقاريرري الي عندك ولا كذا كفايه لاني اشوف انه ضبط الحين مايهنق يالغالي وهذا تقريري وشاكر واسف على تاخيري بالرد
ComboFix 10-01-03.03 - Owner 01/04/2010 3:58.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1256.966.1025.18.503.116 [GMT 3:00]
Running from: c:\documents and settings\Owner\سطح المكتب\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {C19476D9-52BC-4E93-8AF3-CCF59F7AE8FE}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\docume~1\Owner\LOCALS~1\Temp\IadHide4.dll
c:\documents and settings\Owner\Local Settings\temp\IadHide4.dll
.
((((((((((((((((((((((((( Files Created from 2009-12-04 to 2010-01-04 )))))))))))))))))))))))))))))))
.
2010-01-02 03:56 . 2009-12-30 11:55 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-02 03:56 . 2010-01-02 03:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-02 03:56 . 2009-12-30 11:54 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-01-01 21:05 . 2010-01-01 21:05 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Threat Expert
2009-12-31 03:28 . 2009-12-31 03:28 -------- d-----w- c:\documents and settings\LocalService\سطح المكتب
2009-12-31 03:27 . 2009-12-31 03:27 -------- d-----w- c:\documents and settings\LocalService\Application Data\TuneUp Software
2009-12-31 02:53 . 2009-12-31 02:56 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Temp
2009-12-31 02:53 . 2009-12-31 02:56 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Google
2009-12-30 20:02 . 2009-12-30 20:02 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2
2009-12-29 14:17 . 2009-12-17 21:14 30536 ----a-w- c:\windows\system32\TURegOpt.exe
2009-12-29 14:17 . 2009-12-17 21:08 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2009-12-29 14:17 . 2009-12-29 14:17 -------- d-----w- c:\documents and settings\Owner\Application Data\TuneUp Software
2009-12-29 14:17 . 2009-12-29 14:17 -------- d-----w- c:\program files\TuneUp Utilities 2010
2009-12-29 14:17 . 2009-12-29 14:17 -------- d-----w- c:\documents and settings\All Users\Application Data\TuneUp Software
2009-12-29 14:16 . 2009-12-29 14:16 -------- d-sh--w- c:\documents and settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2009-12-29 14:05 . 2009-12-29 14:05 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Logitech-LS
2009-12-29 14:03 . 2008-04-13 21:09 5504 -c--a-w- c:\windows\system32\dllcache\mstee.sys
2009-12-29 14:03 . 2008-04-13 21:09 5504 ----a-w- c:\windows\system32\drivers\MSTEE.sys
2009-12-29 13:58 . 2009-12-29 13:58 -------- d-----w- c:\documents and settings\Owner\Application Data\FotoWire
2009-12-29 13:58 . 2009-12-29 13:58 -------- d-----w- c:\program files\Common Files\FotoWire
2009-12-29 13:57 . 2004-10-08 09:46 53248 ----a-r- c:\windows\system32\InstMed.exe
2009-12-29 13:57 . 2004-10-08 11:57 22016 ----a-w- c:\windows\system32\drivers\LVUSBSta.sys
2009-12-29 13:57 . 2004-10-08 11:52 106496 ----a-w- c:\windows\system32\lvcoinst.dll
2009-12-29 13:57 . 2004-10-08 12:00 372736 ----a-w- c:\windows\system32\LVUI2RC.dll
2009-12-29 13:57 . 2004-10-08 11:59 326656 ----a-w- c:\windows\system32\drivers\Camdrl.sys
2009-12-29 13:57 . 2004-10-08 11:58 139264 ----a-w- c:\windows\system\CamExL20.dll
2009-12-29 13:57 . 2004-10-08 11:56 204800 ----a-w- c:\windows\system32\LVUI2.dll
2009-12-29 13:57 . 2004-10-08 11:55 204800 ----a-w- c:\windows\system32\lvcodec2.dll
2009-12-29 13:57 . 2004-10-08 11:54 1206272 ----a-w- c:\windows\system32\drivers\LVSVF2.sys
2009-12-29 13:57 . 2003-02-21 04:42 348160 ----a-w- c:\windows\system\msvcr71.dll
2009-12-29 13:55 . 2009-12-29 13:55 81920 ------r- c:\windows\bwUnin-6.1.4.68-8876480L.exe
2009-12-29 13:55 . 2009-12-29 13:58 -------- d-----w- c:\program files\Logitech
2009-12-28 16:29 . 2009-12-28 16:29 -------- d-----w- c:\program files\Real Alternative
2009-12-28 16:29 . 2009-12-28 16:29 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Real
2009-12-28 16:29 . 2009-12-28 22:48 -------- d-----w- c:\program files\AviSynth 2.5
2009-12-28 09:00 . 2009-12-28 09:00 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-12-28 09:00 . 2009-12-28 23:02 -------- d-----w- c:\documents and settings\Owner\Application Data\skypePM
2009-12-28 08:58 . 2009-12-28 23:05 -------- d-----w- c:\documents and settings\Owner\Application Data\Skype
2009-12-28 08:58 . 2009-12-28 08:58 -------- d-----w- c:\program files\Common Files\Skype
2009-12-28 08:58 . 2009-12-28 08:58 -------- d-----r- c:\program files\Skype
2009-12-28 08:57 . 2009-12-28 08:58 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2009-12-27 08:38 . 2009-12-27 08:38 -------- d-----w- c:\program files\CCleaner
2009-12-25 22:39 . 2008-04-13 21:15 60032 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2009-12-25 22:39 . 2008-04-13 21:15 60032 ----a-w- c:\windows\system32\drivers\USBAUDIO.sys
2009-12-25 22:38 . 2008-04-13 21:15 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2009-12-25 22:38 . 2008-04-13 21:15 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2009-12-25 21:59 . 2009-12-25 22:13 -------- d-----w- c:\documents and settings\Owner\Application Data\TeamViewer
2009-12-25 21:58 . 2009-12-25 21:58 -------- d-----w- c:\documents and settings\Owner\temp
2009-12-24 21:23 . 2009-12-24 21:23 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Adobe
2009-12-24 20:30 . 2009-12-24 20:31 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\ACD Systems
2009-12-24 20:30 . 2009-12-24 20:30 -------- d-----w- c:\documents and settings\Owner\Application Data\ACD Systems
2009-12-24 20:29 . 2009-12-24 21:20 -------- d-----w- c:\program files\Common Files\ACD Systems
2009-12-24 20:26 . 2009-12-24 20:26 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Downloaded Installations
2009-12-24 19:58 . 2009-12-24 19:58 23558 ----a-r- c:\documents and settings\Owner\Application Data\Microsoft\Installer\{57430A5A-0F17-49B9-B192-C6301260E93C}\_294823.exe
2009-12-24 19:58 . 2009-12-24 19:58 23558 ----a-r- c:\documents and settings\Owner\Application Data\Microsoft\Installer\{57430A5A-0F17-49B9-B192-C6301260E93C}\_18be6784.exe
2009-12-24 19:58 . 2009-12-24 19:58 -------- d-----w- c:\program files\الحاسبة المتطورة لـ Microsoft
2009-12-24 19:56 . 2009-12-24 19:56 -------- d-sh--w- c:\documents and settings\Owner\IECompatCache
2009-12-24 19:55 . 2009-12-24 19:55 -------- d-sh--w- c:\documents and settings\Owner\PrivacIE
2009-12-24 19:55 . 2009-12-24 19:55 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2009-12-24 19:52 . 2009-12-24 19:52 -------- d-sh--w- c:\documents and settings\Owner\IETldCache
2009-12-24 19:46 . 2009-10-29 07:40 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-12-24 19:46 . 2009-10-29 07:40 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-12-24 19:46 . 2010-01-02 22:23 -------- d-----w- c:\windows\ie8updates
2009-12-24 19:46 . 2009-10-02 04:44 92160 -c----w- c:\windows\system32\dllcache\iecompat.dll
2009-12-24 19:44 . 2009-10-29 07:41 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-12-24 19:44 . 2009-10-29 07:41 78336 ----a-w- c:\windows\system32\dllcache\ieencode.dll
2009-12-24 16:29 . 2009-06-21 21:44 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2009-12-24 16:28 . 2009-04-15 14:52 585216 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2009-12-23 23:00 . 2009-12-23 23:00 -------- d-----w- c:\documents and settings\Owner\Application Data\Avira
2009-12-23 21:47 . 2009-12-23 21:47 -------- d-----w- c:\program files\LtUcx
2009-12-23 21:30 . 2009-12-31 22:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Messenger Plus!
2009-12-23 20:21 . 2009-12-23 20:21 -------- d-----w- c:\program files\Microsoft
2009-12-23 20:20 . 2009-12-23 20:20 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-12-23 19:40 . 2008-04-14 18:29 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2009-12-23 17:46 . 2009-08-06 16:23 274288 ----a-w- c:\windows\system32\mucltui.dll
2009-12-23 17:28 . 2009-12-23 17:28 -------- d-----w- c:\documents and settings\Owner\Application Data\Media Player Classic
2009-12-23 17:21 . 2009-12-23 17:21 -------- d-----w- c:\program files\Common Files\xing shared
2009-12-23 17:18 . 2009-01-07 15:20 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2009-12-23 17:16 . 2009-12-23 17:16 -------- d-----w- c:\documents and settings\Owner\Application Data\IObit
2009-12-23 17:16 . 2009-12-23 17:16 -------- d-----w- c:\program files\IObit
2009-12-23 16:43 . 2010-01-02 22:19 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-12-23 16:43 . 2009-12-23 16:46 -------- d-----w- c:\program files\Your Uninstaller
2009-12-23 16:37 . 2009-12-23 16:37 -------- d-----w- c:\windows\system32\wbem\Repository
2009-12-23 16:36 . 2009-12-23 20:21 -------- d-----w- c:\program files\Windows Live
2009-12-23 16:35 . 2009-12-23 20:24 -------- d-----w- c:\program files\Messenger Plus! Live
2009-12-23 03:28 . 2010-01-03 23:37 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Runscanner.net
2009-12-23 02:50 . 2009-12-23 16:34 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Adobe(2)
2009-12-23 02:38 . 2009-12-23 02:38 -------- d-----w- c:\program files\Common Files\Logitech
2009-12-23 01:33 . 2009-12-23 16:34 -------- d-----w- c:\windows\system32\Filt
2009-12-23 01:33 . 2009-12-23 01:33 -------- d-----w- c:\program files\Agnitum
2009-12-23 01:32 . 2009-12-23 01:32 -------- d-----w- c:\documents and settings\All Users\Application Data\Agnitum
2009-12-23 01:30 . 2009-12-23 17:21 -------- d-----w- c:\program files\Common Files\Real
2009-12-23 01:24 . 2009-12-23 01:24 -------- d-----w- c:\program files\Java
2009-12-23 01:20 . 2009-12-23 01:20 -------- d-----w- c:\program files\Common Files\Adobe AIR
2009-12-23 01:19 . 2009-12-24 21:22 -------- d-----w- c:\program files\Common Files\Adobe
2009-12-23 01:15 . 2009-12-23 01:16 -------- d-----w- c:\program files\Real
2009-12-23 00:08 . 2009-12-23 00:08 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\IsolatedStorage
2009-12-23 00:07 . 2009-12-23 00:07 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\HP
2009-12-23 00:07 . 2009-12-23 16:34 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\ApplicationHistory
2009-12-23 00:07 . 2009-12-23 00:07 128 ----a-w- c:\documents and settings\Owner\Local Settings\Application Data\fusioncache.dat
2009-12-22 23:40 . 2009-12-23 16:35 -------- d-----w- c:\windows\system32\URTTemp
2009-12-22 23:30 . 2009-12-23 16:35 -------- d-----w- c:\program files\HP
2009-12-22 23:18 . 2010-01-02 22:25 -------- d-----w- c:\windows\system32\ar-sa
2009-12-22 23:14 . 2009-10-29 07:41 380928 -c--a-w- c:\windows\system32\dllcache\ieapfltr.dll
2009-12-22 23:14 . 2009-10-28 14:36 13824 -c----w- c:\windows\system32\dllcache\ieudinit.exe
2009-12-22 23:14 . 2009-06-29 08:33 2452872 -c--a-w- c:\windows\system32\dllcache\ieapfltr.dat
2009-12-22 23:14 . 2009-10-29 07:41 52224 -c--a-w- c:\windows\system32\dllcache\msfeedsbs.dll
2009-12-22 23:14 . 2009-10-29 07:41 268288 -c--a-w- c:\windows\system32\dllcache\iertutil.dll
2009-12-22 23:14 . 2009-10-29 07:41 63488 -c--a-w- c:\windows\system32\dllcache\icardie.dll
2009-12-22 23:14 . 2009-10-29 07:41 6067200 -c--a-w- c:\windows\system32\dllcache\ieframe.dll
2009-12-22 23:14 . 2009-10-29 07:41 459264 -c--a-w- c:\windows\system32\dllcache\msfeeds.dll
2009-12-22 22:47 . 2009-12-22 22:47 -------- d-----w- c:\documents and settings\All Users\Application Data\Messenger Plus!(2)
2009-12-22 22:47 . 2009-12-23 16:35 -------- d-----w- c:\program files\Messenger Plus! Live(2)
2009-12-22 22:46 . 2010-01-03 21:55 -------- d-----w- c:\documents and settings\Owner\Tracing
2009-12-22 22:44 . 2009-12-23 16:35 -------- d-----w- c:\program files\Windows Live(2)
2009-12-22 22:30 . 2009-12-22 22:30 -------- d-----w- c:\program files\Common Files\Windows Live
2009-12-22 22:21 . 2009-12-23 19:40 -------- d-----w- c:\windows\ServicePackFiles
2009-12-22 22:17 . 2009-12-22 22:17 -------- d-----w- c:\documents and settings\Owner\Application Data\CyberScrub
2009-12-22 22:17 . 2009-12-23 16:36 -------- d-----w- c:\documents and settings\Owner\Application Data\zyzcleaner
2009-12-22 21:01 . 2009-12-22 21:01 -------- d-----w- c:\documents and settings\Owner\Application Data\Malwarebytes
2009-12-22 21:01 . 2009-12-22 21:01 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-12-22 21:00 . 2009-12-22 21:00 -------- d-----w- c:\documents and settings\Owner\Application Data\URSoft
2009-12-22 21:00 . 2009-12-23 16:36 -------- d-----w- c:\program files\Your Uninstaller 2010
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-04 01:09 . 2009-12-22 20:02 -------- d-----w- c:\documents and settings\Owner\Application Data\DMCache
2009-12-29 13:56 . 2009-12-22 18:27 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-12-29 13:54 . 2009-12-22 18:27 -------- d-----w- c:\program files\Common Files\InstallShield
2009-12-28 16:29 . 2009-12-23 17:14 -------- d-----w- c:\program files\K-Lite Codec Pack
2009-12-28 16:28 . 2009-12-28 16:28 -------- d-----w- c:\program files\OZOMEDIA9
2009-12-25 21:41 . 2001-09-19 12:00 52860 ----a-w- c:\windows\system32\perfc001.dat
2009-12-25 21:41 . 2001-09-19 12:00 318640 ----a-w- c:\windows\system32\perfh001.dat
2009-12-24 01:10 . 2009-12-22 20:02 -------- d-----w- c:\documents and settings\Owner\Application Data\IDM
2009-12-23 20:22 . 2009-12-22 18:01 73792 ----a-w- c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-23 03:38 . 2009-12-22 20:02 -------- d-----w- c:\program files\Internet Download Manager
2009-12-23 03:35 . 2009-12-22 20:03 -------- d-----w- c:\documents and settings\Owner\Application Data\BSplayer PRO
2009-12-22 20:30 . 2009-12-22 20:08 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2009-12-22 20:14 . 2009-12-22 20:14 -------- d-----w- c:\program files\Avira
2009-12-22 20:14 . 2009-12-22 20:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2009-12-22 20:06 . 2009-12-22 20:06 -------- d-----w- c:\program files\Trend Micro
2009-12-22 20:03 . 2009-12-22 20:03 -------- d-----w- c:\program files\Webteh
2009-12-22 20:02 . 2009-12-22 20:02 198064 ----a-w- c:\documents and settings\Owner\Application Data\IDM\idmmzcc3\components\idmmzcc.dll
2009-12-22 20:01 . 2009-12-22 20:01 -------- d-----w- c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-12-22 19:57 . 2009-12-22 19:56 -------- d-----w- c:\program files\Creative
2009-12-22 18:53 . 2009-12-22 17:56 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-12-22 18:32 . 2009-12-22 18:32 -------- d-----w- c:\program files\Microsoft.NET
2009-12-22 18:27 . 2009-12-22 18:27 -------- d-----w- c:\program files\Intel
2009-12-22 17:57 . 2009-12-22 17:57 -------- d-----w- c:\program files\microsoft frontpage
2009-12-22 17:53 . 2009-12-22 17:53 22144 ----a-w- c:\windows\system32\emptyregdb.dat
2009-10-29 07:41 . 2004-08-03 21:55 832512 ----a-w- c:\windows\system32\wininet.dll
2009-10-29 07:41 . 2004-08-03 21:55 17408 ----a-w- c:\windows\system32\corpol.dll
2009-10-29 05:44 . 2004-08-03 21:55 660480 ----a-w- c:\windows\system32\wininet(3).dll
2009-10-29 05:44 . 2004-08-03 21:55 623616 ----a-w- c:\windows\system32\urlmon(3).dll
2009-10-21 05:38 . 2004-08-03 21:55 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-21 05:38 . 2004-08-03 21:55 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-20 16:20 . 2004-08-03 20:00 265728 ----a-w- c:\windows\system32\drivers\http.sys
2009-10-13 10:33 . 2004-08-03 21:55 270336 ----a-w- c:\windows\system32\oakley.dll
2009-10-12 13:38 . 2004-08-03 21:55 149504 ----a-w- c:\windows\system32\rastls.dll
2009-10-12 13:38 . 2004-08-03 21:55 79872 ----a-w- c:\windows\system32\raschap.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LogitechSoftwareUpdate"="c:\program files\Logitech\Video\ManifestEngine.exe" [2004-10-08 196608]
"Google Update"="c:\documents and settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-12-31 135664]
"LDM"="c:\program files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe" [2009-12-29 20480]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-09-17 3118512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-01-13 131072]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-01-13 163840]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-01-13 135168]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"LVCOMSX"="c:\windows\system32\LVCOMSX.EXE" [2004-10-08 221184]
"LogitechVideoRepair"="c:\program files\Logitech\Video\ISStart.exe" [2004-10-08 458752]
"LogitechVideoTray"="c:\program files\Logitech\Video\LogiTray.exe" [2004-10-08 217088]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2009-12-30 429392]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2009-12-29 450560]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"LDM"=c:\program files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
"ctfmon.exe"=c:\windows\system32\ctfmon.exe
"IDMan"=c:\program files\Internet Download Manager\IDMan.exe /onboot
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" /background
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
R2 AntiVirMailService;Avira AntiVir MailGuard;c:\program files\Avira\AntiVir Desktop\avmailc.exe [22/12/2009 11:15 م 194817]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [22/12/2009 11:15 م 108289]
R2 AntiVirWebService;Avira AntiVir WebGuard;c:\program files\Avira\AntiVir Desktop\avwebgrd.exe [22/12/2009 11:15 م 434945]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [02/01/2010 06:56 ص 235344]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [18/12/2009 12:12 ص 1044808]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [02/01/2010 06:56 ص 19160]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14/10/2009 07:24 ص 10064]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder
2010-01-04 c:\windows\Tasks\Automatic troubleshooting.job
- c:\program files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-12-17 21:18]
2010-01-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1844237615-1647877149-682003330-1003Core.job
- c:\documents and settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-12-31 02:53]
2010-01-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1844237615-1647877149-682003330-1003UA.job
- c:\documents and settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-12-31 02:53]
2010-01-03 c:\windows\Tasks\Malwarebytes' Scheduled Update for Owner.job
- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [2010-01-02 11:55]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
uInternet Settings,ProxyOverride = localhost
IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى FLV بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetVL.htm
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


Rootkit scan 2010-01-04 04:08
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'explorer.exe'(1600)
c:\windows\system32\WININET.dll
c:\docume~1\Owner\LOCALS~1\Temp\IadHide4.dll
c:\program files\Internet Download Manager\idmmkb.dll
c:\windows\system32\ieframe.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\CTsvcCDA.exe
c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
c:\program files\Logitech\Video\FxSvr2.exe
c:\program files\Internet Download Manager\IEMonitor.exe
.
**************************************************************************
.
Completion time: 2010-01-04 04:12:16 - machine was rebooted
ComboFix-quarantined-files.txt 2010-01-04 01:12
ComboFix2.txt 2010-01-01 03:52
Pre-Run: 14,808,813,568 bytes free
Post-Run: 14,778,535,936 bytes free
- - End Of File - - 4756627A5F53D0F7C23C71F2E0D26C84
 
توقيع : turkey
تأييد 0
هل من مجيب يا اخواني !!!
الموضوع باختصار لاهنتم
الفحص الي قبل الرد هذا كان قبل الفجر
وسويت فحص قبل اذان المغرب اليوم يا احبتي ونفس الملفات
رجعت وحصلت الجهاز عامل ري ستارت

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\docume~1\Owner\LOCALS~1\Temp\IadHide4.dll
c:\documents and settings\Owner\Local Settings\temp\IadHide4.dll

وش الرأي اخواني
كيف اتجنب مخاطرها
اتمنى منكم الافاده هل اغير الحمايه عندي
لان ماعندي جدار ناري للمعلوميه
بصراحه ابي حل يالربع ولكم مني كل الشكر والموده​
 
توقيع : turkey
تأييد 0
ابشر يا استاذي
 
توقيع : turkey
تأييد 0
تم العمل استاذي ماكس
في البدايه لم تعمل الاداه بسبب برنامج ملاور مايبات
وقمت بحذفه وعملت الاداه
والي انحذف مجموعه 12 ميقا
بعدها ضغطت على اكزت وبعدها عملت ري ستارت
ولم تاتي نافذه تطلب ري ستارت
بانتظارك استاذي​
 
توقيع : turkey
تأييد 0
الله يعافيك يالغلا

واعتذر عن ردي المتأخر


.

بعد التنظيف


كيف الجهاز والمتصفح
.
 
توقيع : عـاشـق وهـم
تأييد 0
هلابك اخوي الغالي لا عادي مقدرين اوضاعكم لكثرة المشاكل
الجهاز وضعه سليم الان يعني مافيه تهنيق ولا تعليق مثل قبل
هل يحتاج شي اعمله بالنسبه لتقرير رن سكانر ؟ يوجد ملفات بقائمة no file بالاحمر
هل اعمل لها حذف بالطريقه المعتاده او اخليها ؟
وهل تأيدني اقوم بترقية المتصفح الى انترنت اكسبلور8
او اخليه على المتصفح 7
شاكر لك جهودك اخوي انت واستاذي ماكس​
 
توقيع : turkey
تأييد 0
حمل هالملف

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي




وبالماوس دبل كلك على الملف ... بعدها راح يفتح لك واجهة الاداة


اعمل كما بالشرح ...


i17686_000.png



i17687_001.png



i17688_002.png



بعدها اعد تشغيل جهازك
 
توقيع : عـاشـق وهـم
تأييد 0
والله انا مانى مركب الثامن

وناس كثير تشتكي منه ومن تعليق ومشاكله


..

بالتوفيق لنا ولك

.
 
توقيع : عـاشـق وهـم
تأييد 0
الله يعطيك العافيه يالغالي
وانا مثلك ماراح اركبه
وعلى كذا انتهينا وشاكر لكم هالجهد
يعطيكم العافيه​
 
توقيع : turkey
تأييد 0
الله يعطيكم العافية
 
تأييد 0
الحالة
مغلق و غير مفتوح للمزيد من الردود.
عودة
أعلى