فيروس في الجهاز يمنع تثبيت البرامج

  • بادئ الموضوع بادئ الموضوع ALA39000
  • تاريخ البدء تاريخ البدء
  • المشاهدات 7,734
A

ALA39000

زيزوومى مميز
إنضم
28 يناير 2008
المشاركات
590
مستوى التفاعل
10
النقاط
530
الإقامة
الجزائر
الموقع الالكتروني
www.salemi-ala.tk
غير متصل
بسم الله الرحمان الرحيم​
السلام عليم
قبل حوالي شهر ظرب جهازي فايروس و قضي عن قرص صلب كامل - القرص اللي يحتوي علي النضام - فقمتبربط القرص الصلب بجهاز اخر و استرجعت الملفات ببرنامج الإسترجاع
و اعدت تثبيت الونداوز
بس المشكل ان الفايروس لم يختفي فبعد تثبيت الونداوز كل شئ عادي لكن بعد يومين اصبح الجهاز ما يقبل تثبيت البرامج و ادارة المهام لا تفتح
وهاذي التقارير

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


مع العلم ان موقع البيتديفاندر ما حب يطلع
 

توقيع : ALA39000
ترتيب حسب التاريخ ترتيب حسب الأصوات
Start >> Run

الآن نقوم بكتابة هذا الأمر في خانة المشغل اللي فتحناه فوق :

gpedit.msc

يعد ذلك ستفتح لنا نافذة نهج المجموعة .... ونتبع الخطوات التالية :

1- تكوين المستخدم
2- قوالب الإدارة

3- النظام

4- خيارات alt + ctrl + delete و

5- إزالة إدارة المهام

6- دابل كليك بزر الماوس الأيسر على ( إزالة إدارة المهام )
أو الضغط بزر الماوس الأيمن واختيار خصائص من القائمة...

بعد ذلك ستفتح لنا قائمة خصائص ( إزالة أدارة المهام ) فنلاحظ أن الإختيار على (ممكّن ) ...

الآن نقوم بتبديل الخيار ووضعه إلى ( معطّل ) ...

وبعد الضغط على ( موافق ) ... مبرووووك ...قد أنجزنا المهمة بنجاح...

وللتأكد من ذلك نضغط علىalt + ctrl + del وستفتح لنا نافذه إدارة المهام ....

ويمكن فحص
أفحص جهازك عن البرامج الخبيثه
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
توقيع : الوريد99
تأييد 0
بالنسبة للأخ الوريد99 عملت ما قلت عليه من قبل تشتغل ادارة المهام 3 ثواني و ترجع تقفل من جديد حتي اني جربت هالأمر REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 0 /f نفس المشكل يشتغل شوي و يرجع يتعطل اما بالنسبة ل MR.AZOZ شغلت ملاويربيت تطلع مسجين من هالنوع
i69121_untitled.jpg
وبعدين يبدأ المسح و راح انتضر يكتمل و ارفعلك التقرير و اي تقارير ثانية انا في الخدمة
 
توقيع : ALA39000
تأييد 0
حمل هذا البرنامج
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

بعدها اغلق جميع البرامج وخصوصا الانترنت اكسبلورر والماسنجر
شغل البرنامج ==> واضغط على
Do a system scan and save log
لحظات .. ويظهر لك تقرير داخل المفكرة==> انسخه والصقه بردك القادم
 
التعديل الأخير بواسطة المشرف:
توقيع : KoNaMi
تأييد 0
وايضا

حمل الاداة التالية

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


شغلها واعمل كما الشرح

zyzoom-c58c4476a3.png


zyzoom-c3a429056c.png


بعدها اعد تشغيل الجهاز
 
توقيع : KoNaMi
تأييد 0
تقرير الهايجاك

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:49:47, on 25-04-2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\USB Disk Security\USBGuard.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
D:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
d:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\The KMPlayer\KMPlayer.exe
C:\DOCUME~1\S.ALA\LOCALS~1\Temp\wincroks.exe
C:\WINDOWS\system32\cmd.exe
C:\DOCUME~1\S.ALA\LOCALS~1\Temp\************\mbam.exe
C:\WINDOWS\system32\svchost.exe
C:\DOCUME~1\S.ALA\LOCALS~1\Temp\w2bca73.exe
J:\HBCD\WinTools\Autorun.exe
J:\HBCD\WinTools\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R3 - URLSearchHook: zyzoom Toolbar - {3aaa6ede-0f45-43da-8b81-608a1d8108a2} - C:\Program Files\zyzoom\tbzyzo.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: zyzoom Toolbar - {3aaa6ede-0f45-43da-8b81-608a1d8108a2} - C:\Program Files\zyzoom\tbzyzo.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: zyzoom Toolbar - {3aaa6ede-0f45-43da-8b81-608a1d8108a2} - C:\Program Files\zyzoom\tbzyzo.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [Everything] "D:\Program Files\Everything\Everything.exe" -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [RocketDock] "D:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 7859 bytes


تقرير ملاويربيت


************' Anti-Malware 1.40
Database version: 2712
Windows 5.1.2600 Service Pack 3
25-04-2010 13:58:25
mbam-log-2010-04-25 (13-58-25).txt
Scan type: Quick Scan
Objects scanned: 93538
Time elapsed: 2 minute(s), 20 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 5
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools (Hijack.Regedit) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr (Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\Temp\NOD1.tmp (Spyware.OnlineGames) -> Quarantined and deleted successfully.
 
توقيع : ALA39000
تأييد 0
احذف التالي من تقرير الهاجيك

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1

طريقة الحذف



i66488_mg-20-3-.png


i66489_mg-20-4-.png



بعدها اذهب الى اضافة وازالة البرامج واحذف التولبار الموجود عندك (toolbar)>> ممكن ما يكون موجود
ثم نظف جهازك بهذه الاداة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


بعدين استخدم ها الاداة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


وبلغنا اخر النتائج
 
التعديل الأخير بواسطة المشرف:
توقيع : KoNaMi
تأييد 0
مشكورين ايها الزيزوميون عالمتابعة - وهذا مو غريب عنكم -
المشكلة خفت شوي بس ما زال مدير المهام يعمل لثواني ثم يرجع يقفل
وكمان فيه مشكل الريستارت ضهر جديد يعني الجهاز ينطفي و يشتغل لوحده
و فيه مشكل التهنيج يعني الجهاز يتجمد و يصدر ازيز مزعج

و موقع البتديفاندر فتح معاي و راح استناه يكمل و ارفع تقريره
 
توقيع : ALA39000
تأييد 0
QuickScan Beta 32-bit v0.9.9.18
-------------------------------

Scan date: Fri Apr 30 12:54:01 2010
Machine ID: C4A36ECB



Found 2 infected files!
-----------------------

C:\WINDOWS\Network Diagnostic\xpnetdiag.exe --> Win32.Sality.OG
--> HKLM\Software\Microsoft\Internet Explorer\Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583}\"Exec"

C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe --> Win32.Sality.OG
--> C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk



Processes
---------
<unsigned> Everything 752 C:\Program Files\Everything\Everything.exe
<unsigned> InstallShield Update Service 736 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
<unsigned> Java(TM) Platform SE Auto Updater 2 0 760 C:\Program Files\Common Files\Java\Java Update\jusched.exe
<unsigned> RocketDock.exe 832 D:\Program Files\RocketDock\RocketDock.exe
<unsigned> The KMPlayer 3976 D:\Program Files\The KMPlayer\KMPlayer.exe
<unsigned> USBGuard Application 2016 C:\Program Files\USB Disk Security\USBGuard.exe
<unsigned> Windows Live Messenger 980 C:\Program Files\Windows Live\Messenger\msnmsgr.exe

<verified> ESET Smart Security 776 C:\Program Files\ESET\ESET Smart Security\egui.exe
<verified> ESET Smart Security 288 C:\Program Files\ESET\ESET Smart Security\ekrn.exe
<verified> Firefox 132 D:\Program Files\Mozilla Firefox\firefox.exe
<verified> Java(TM) Platform SE 6 U20 320 C:\Program Files\Java\jre6\bin\jqs.exe
<verified> Microsoft® Windows® Operating System 1568 C:\WINDOWS\Explorer.EXE
<verified> Microsoft® Windows® Operating System 1288 C:\WINDOWS\system32\csrss.exe
<verified> Microsoft® Windows® Operating System 956 C:\WINDOWS\system32\ctfmon.exe
<verified> Microsoft® Windows® Operating System 1396 C:\WINDOWS\system32\lsass.exe
<verified> Microsoft® Windows® Operating System 700 C:\WINDOWS\system32\RUNDLL32.EXE
<verified> Microsoft® Windows® Operating System 1388 C:\WINDOWS\system32\savedump.exe
<verified> Microsoft® Windows® Operating System 1360 C:\WINDOWS\system32\services.exe
<verified> Microsoft® Windows® Operating System 648 C:\WINDOWS\System32\smss.exe
<verified> Microsoft® Windows® Operating System 164 C:\WINDOWS\system32\spoolsv.exe
<verified> Microsoft® Windows® Operating System 1560 C:\WINDOWS\system32\svchost.exe
<verified> Microsoft® Windows® Operating System 1608 C:\WINDOWS\system32\svchost.exe
<verified> Microsoft® Windows® Operating System 1804 C:\WINDOWS\System32\svchost.exe
<verified> Microsoft® Windows® Operating System 1864 C:\WINDOWS\system32\svchost.exe
<verified> Microsoft® Windows® Operating System 1948 C:\WINDOWS\system32\svchost.exe
<verified> Microsoft® Windows® Operating System 1316 C:\WINDOWS\system32\winlogon.exe
<verified> NVIDIA Driver Helper Service, Version 1 500 C:\WINDOWS\system32\nvsvc32.exe
<verified> Realtek HD Audio Sound Effect Manager 2024 C:\WINDOWS\RTHDCPL.EXE
<verified> Yahoo! AutoUpdater 620 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe


Network activity
----------------
Process ekrn.exe (288) connected on port 80 (HTTP) --> 91.199.104.31
Process ekrn.exe (288) connected on port 80 (HTTP) --> 74.125.77.101
Process ekrn.exe (288) connected on port 80 (HTTP) --> 91.199.104.31
Process ekrn.exe (288) connected on port 80 (HTTP) --> 69.175.77.124
Process ekrn.exe (288) connected on port 80 (HTTP) --> 91.199.104.31
Process ekrn.exe (288) connected on port 80 (HTTP) --> 69.175.77.124
Process ekrn.exe (288) connected on port 80 (HTTP) --> 91.199.104.31
Process ekrn.exe (288) connected on port 80 (HTTP) --> 91.199.104.31
Process ekrn.exe (288) connected on port 80 (HTTP) --> 87.248.217.253
Process ekrn.exe (288) connected on port 80 (HTTP) --> 91.199.104.31
Process ekrn.exe (288) connected on port 80 (HTTP) --> 69.175.77.124
Process ekrn.exe (288) connected on port 80 (HTTP) --> 69.175.77.124
Process ekrn.exe (288) connected on port 80 (HTTP) --> 92.123.176.20
Process ekrn.exe (288) connected on port 80 (HTTP) --> 69.175.77.124
Process ekrn.exe (288) connected on port 80 (HTTP) --> 69.175.77.124
Process ekrn.exe (288) connected on port 80 (HTTP) --> 91.199.104.31

Process svchost.exe (1608) listens on ports: 135 (RPC)


Autoruns and critical files
---------------------------
<unsigned> Adobe Systems, Inc. Adobe Gamma Loader C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
<unsigned> Everything C:\Program Files\Everything\Everything.exe
<unsigned> InstallShield Update Service C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
<unsigned> Java(TM) Platform SE Auto Updater 2 0 C:\Program Files\Common Files\Java\Java Update\jusched.exe
<unsigned> Kaspersky Anti-Virus C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
<unsigned> RocketDock.exe D:\Program Files\RocketDock\RocketDock.exe
<unsigned> USBGuard Application C:\Program Files\USB Disk Security\USBGuard.exe
<unsigned> Windows Live Messenger C:\Program Files\Windows Live\Messenger\msnmsgr.exe

<verified> ESET Smart Security C:\Program Files\ESET\ESET Smart Security\egui.exe
<verified> ImScInst.exe C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe
<verified> Kaspersky Anti-Virus c:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\adialhk.dll
<verified> Kaspersky Anti-Virus c:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\kloehk.dll
<verified> Kaspersky Anti-Virus c:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\mzvkbd.dll
<verified> Kaspersky Anti-Virus c:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\mzvkbd3.dll
<verified> Kaspersky Anti-Virus C:\WINDOWS\system32\klogon.dll
<verified> Microsoft IME 2002 C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\browseui.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\crypt32.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\cryptnet.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\cscdll.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\ctfmon.exe
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\dimsntfy.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\logonui.exe
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\sclgntfy.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\shell32.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\stobject.dll
<verified> Microsoft® Windows® Operating System c:\windows\system32\userinit.exe
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\wlnotify.dll
<verified> Microsoft® Windows® Operating System J:\setup.exe
<verified> NVIDIA Compatible Windows 2000 Display C:\WINDOWS\system32\NvCpl.dll
<verified> NVIDIA Media Center Library C:\WINDOWS\system32\nvmctray.dll
<verified> Realtek HD Audio Sound Effect Manager C:\WINDOWS\RTHDCPL.EXE
<verified> Windows® Internet Explorer C:\WINDOWS\system32\msfeedssync.exe
<verified> Windows® Internet Explorer C:\WINDOWS\system32\webcheck.dll
<verified> 新注音 C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE


Browser plugins
---------------
<unsigned> Adobe Acrobat d:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
<unsigned> Conduit Toolbar c:\program files\zyzoom\tbzyzo.dll
<unsigned> InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.dll
<unsigned> InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.exe
<unsigned> InstallShield Update Service C:\WINDOWS\Downloaded Program Files\isusweb.dll
<unsigned> Messenger C:\Program Files\Messenger\msmsgs.exe
<unsigned> Microsoft® Windows® Operating System C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
<unsigned> QuickTime Plug-in 7.6.5 d:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
<unsigned> QuickTime Plug-in 7.6.5 d:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
<unsigned> QuickTime Plug-in 7.6.5 d:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
<unsigned> QuickTime Plug-in 7.6.5 d:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
<unsigned> QuickTime Plug-in 7.6.5 d:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
<unsigned> RealJukebox NS Plugin d:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
<unsigned> RealPlayer Version Plugin d:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll

<verified> BitDefender QuickScan C:\Documents and Settings\S.ALA\Application Data\Mozilla\Firefox\Profiles\9qa8hh3l.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll
<verified> BitDefender QuickScan C:\Documents and Settings\S.ALA\Application Data\Mozilla\Firefox\Profiles\9qa8hh3l.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
<verified> Internet Download Manager Module c:\program files\internet download manager\idmiecc.dll
<verified> Java Deployment Toolkit 6.0.200.2 d:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
<verified> Java(TM) Platform SE 6 U20 c:\program files\java\jre6\bin\jp2ssv.dll
<verified> Java(TM) Platform SE 6 U20 c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
<verified> Kaspersky Anti-Virus c:\program files\kaspersky lab\kaspersky internet security 2009\ievkbd.dll
<verified> Microsoft® Windows Live Login Helper c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\mswsock.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\rsvpsp.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\winrnr.dll
<verified> Mozilla Default Plug-in d:\Program Files\Mozilla Firefox\plugins\npnul32.dll
<verified> npclntax_HotbarSA.dll d:\Program Files\Mozilla Firefox\plugins\npclntax_HotbarSA.dll
<verified> NPSWF32.dll C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
<verified> Picasa D:\Program Files\Google\Picasa3\npPicasa3.dll
<verified> RealPlayer(tm) G2 LiveConnect-Enabled P d:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
<verified> Skype add-on for IE c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
<verified> Windows® Internet Explorer C:\WINDOWS\system32\ieframe.dll
<verified> Yahoo! Single Instance for Mail c:\program files\yahoo!\companion\installs\cpn\ytsingleinstance.dll


Missing files
-------------
File not found: C1\WINDOWS\system32\wuauserv.dll
referenced in: HKLM\System\ControlSet001\services\wuauserv\Parameters\"ServiceDll"

File not found: C:\Program Files\Internet Download Manager\IDMan.exe /onboot
referenced in: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\"IDMan"

File not found: C:\WINDOWS\System32\hidserv.dll
referenced in: HKLM\System\ControlSet001\services\HidServ\Parameters\"ServiceDll"

File not found: C:\WINDOWS\infocard.exe
referenced in: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\"Firewall Administrating"
referenced in: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\"Firewall Administrating"


Scan
----
<unsigned> MD5: 9c34f1e10fb3773b8c9fa233e285fa52 C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
<unsigned> MD5: 118a26f35f6685ef8dc28ee0b44f1689 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
<unsigned> MD5: 0ae1f03d81e2e071f1b0365db4f9c394 C:\Program Files\Common Files\Java\Java Update\jusched.exe
<unsigned> MD5: 686b224b4987c22b153fbb545fee9657 C:\Program Files\ESET\ESET Smart Security\mfc80u.dll
<unsigned> MD5: 4dab37e8beda1f286f0c40b8aab0d65c C:\Program Files\Everything\Everything.exe
<unsigned> MD5: ff296c67312300cfef8ae1eec9c2ac5c C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
<unsigned> MD5: 86f1895ae8c5e8b17d99ece768a70732 C:\Program Files\Java\jre6\bin\msvcr71.dll
<unsigned> MD5: b1165a69bbcd7e51b47dec366e1086d8 C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
<unsigned> MD5: 6256684495c499b22dcdba266e4f2494 C:\Program Files\Messenger Plus! Live\Detoured.dll
<unsigned> MD5: 7b39225095842bd2a1829c26c72d8f47 C:\Program Files\Messenger Plus! Live\MPSkins.dll
<unsigned> MD5: 8155637f31f633c8e337e1b70c3efdeb C:\Program Files\Messenger Plus! Live\MsgPlusLiveRes.dll
<unsigned> MD5: c512db963cf86c5f85cd29a4291e1efb C:\Program Files\Messenger\msmsgs.exe
<unsigned> MD5: 186b302f2c4ef5aedaeccecd9aa78890 C:\Program Files\USB Disk Security\USBGuard.exe
<unsigned> MD5: 8aec449b4bc0c7cbe168c6cae93a5f30 C:\Program Files\Windows Live\Messenger\msgslang.14.0.8089.0726.dll
<unsigned> MD5: def44b9ec54e0df6d98676101d339f30 C:\Program Files\Windows Live\Messenger\msgsres.dll
<unsigned> MD5: 26f17f8fd3a420b864c45ed2d31abcbf C:\Program Files\Windows Live\Messenger\msidcrl40.dll
<unsigned> MD5: 9ff45f704d514f8ffbf002e640dcfbe2 C:\Program Files\Windows Live\Messenger\msimg32.dll
<unsigned> MD5: 2c741c0d2a0feac177c312b801fda565 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
<unsigned> MD5: 57b36b398d9742a8382bcee3e2e5decb c:\program files\zyzoom\tbzyzo.dll
<unsigned> MD5: 3fea9d2edf23b0283c7a66c8dea380bd C:\WINDOWS\Downloaded Program Files\dwusplay.dll
<unsigned> MD5: cdbe35ea59bc9223e4f800bd1db82d27 C:\WINDOWS\Downloaded Program Files\dwusplay.exe
<unsigned> MD5: 6f88f1de97b7ba6e2be4dc29aeeacf0d C:\WINDOWS\Downloaded Program Files\isusweb.dll
<unsigned> MD5: 77feb92a63c6af3f12e324dc0838424b C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
<unsigned> MD5: d7010580bf4e45d5e793a1fe75758c69 C:\WINDOWS\system32\drivers\MDC8021X.sys
<unsigned> MD5: c7c361a04742ab187e10583bbf4fa975 C:\WINDOWS\system32\DRIVERS\splitcam.sys
<unsigned> MD5: 524d8d450622db4a7875b111c299a76b C:\WINDOWS\system32\drivers\UTK3NJM0.sys
<unsigned> MD5: e4fece18310e23b1d8fee993e35e7a6f C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
<unsigned> MD5: 26b018758226a5dc06de45496c394d40 D:\Program Files\Mozilla Firefox\freebl3.dll
<unsigned> MD5: 9dfb30f203999a3ae0f258a33fa598f9 D:\Program Files\Mozilla Firefox\nssdbm3.dll
<unsigned> MD5: 8f5927706ae17cd50541f5c417248ea8 d:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
<unsigned> MD5: da548872c3126b09d7832b4abeb54116 d:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
<unsigned> MD5: da548872c3126b09d7832b4abeb54116 d:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
<unsigned> MD5: da548872c3126b09d7832b4abeb54116 d:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
<unsigned> MD5: da548872c3126b09d7832b4abeb54116 d:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
<unsigned> MD5: da548872c3126b09d7832b4abeb54116 d:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
<unsigned> MD5: e6c4ccb36196e164cd20afb619322aaa d:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
<unsigned> MD5: adffb486824a3939eb07b17b0e9537e8 d:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
<unsigned> MD5: 1fd6c03c0001a5e1eaf61596c2502f0c D:\Program Files\Mozilla Firefox\softokn3.dll
<unsigned> MD5: 4a2a05b25df4385f5aec6f07b1c1e93d D:\Program Files\RocketDock\RocketDock.dll
<unsigned> MD5: 23d7ea9e9696424a557cc95f44917cdd D:\Program Files\RocketDock\RocketDock.exe
<unsigned> MD5: 048e4659465b2f39511cf2e81a7e5a3b D:\Program Files\The KMPlayer\bass.dll
<unsigned> MD5: 0d85f9f1dc127e3cee1951cf978aecda D:\Program Files\The KMPlayer\bass_alac.dll
<unsigned> MD5: 033281beeea948b5e6b20a83b7ee80ec D:\Program Files\The KMPlayer\bass_ape.dll
<unsigned> MD5: b129251791231afd12d6227bae33f51b D:\Program Files\The KMPlayer\bass_flac.dll
<unsigned> MD5: 3bad800b4c7c369beaea5b1c570abb94 D:\Program Files\The KMPlayer\bass_mpc.dll
<unsigned> MD5: 2160ee76a713cf2971bc1d4be84a5501 D:\Program Files\The KMPlayer\bass_tta.dll
<unsigned> MD5: 3e73cf8d80e00e4eb832052beef78b2a D:\Program Files\The KMPlayer\bass_wv.dll
<unsigned> MD5: 4a6d12065991d534bec9cbef5ceaa255 D:\Program Files\The KMPlayer\KMPlayer.exe
<unsigned> MD5: d6819e1da3ef61aff44c674d3b944905 D:\Program Files\The KMPlayer\libdts.dll
<unsigned> MD5: 9605c2a966b8719af27d07879706be64 D:\Program Files\The KMPlayer\PlugIns\gen_hotkeys.dll
<unsigned> MD5: 7d3d75c88f50fbb59ab00c97ab240f09 D:\Program Files\The KMPlayer\PlugIns\gen_ml.dll
<unsigned> MD5: f7e1f50ff594e7d9f99399965f7bb073 D:\Program Files\The KMPlayer\PlugIns\IN_MP3.DLL
<unsigned> MD5: d49d3840464b811b32b38944948c063b D:\Program Files\The KMPlayer\PlugIns\in_mp4.dll
<unsigned> MD5: 9997666dc5cc286a055e77e2860ce73a D:\Program Files\The KMPlayer\PlugIns\in_nsv.dll
<unsigned> MD5: a24760f38bb3cdd7ba80dff1c2b38de9 D:\Program Files\The KMPlayer\PlugIns\in_vorbis.dll
<unsigned> MD5: 9385b8614d9e6e5d34547776dde93a19 D:\Program Files\The KMPlayer\PlugIns\in_wm.dll
<unsigned> MD5: 382f62101995463209775554265a03c6 D:\Program Files\The KMPlayer\PProcDLL.DLL

The following file(s) must be uploaded for server-side scanning:
C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

Upload started - 3 file(s)
Adobe Gamma Loader.exe (195584)
xpnetdiag.exe (635904)
USBGuard.exe (798720)
Upload speed - 3 KB/s
Upload finished - 3 uploaded, 0 failed

Scan finished - communication took 549 sec
Total traffic - 1.61 MB sent, 2.74 KB recvd
Scanned 994 files and modules - 748 seconds
 
توقيع : ALA39000
تأييد 0
ثبتت البرنامج و بحثت في الأنترنت و جدت انه برنامج يعطيك معلومات عن جاهزك
و الآن وش اسوي اعطيك هالمعلومات و اذا نعم فل لي كيف اعمل كذا
 
توقيع : ALA39000
تأييد 0
المشكل ما زال متواصل
 
توقيع : ALA39000
تأييد 0
بالنسبة للبرنامج المعطى لك لأتاكد هل الجهاز يقبل تثبيت اي برنامج او لا

اذكر لي البرامج التي لا تثبت لا هنت ..

واعمل التالي :

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
توقيع : إكس زيرو
تأييد 0
اعتقد ان المشكل اختفي - واي تطور يحصل راح اخبركم -
مشكورين
ما قصرتو اخواني ربي يبارك فيكم و يجازيكم كل خير
 
توقيع : ALA39000
تأييد 0
السلام عليكم
اعيد اثارة مشكلتي لأن الونداوز لا يفتح مدير المهام task manager ولا محرر الريجستري regedit . و يقول تم تعطيل ادارة المهام من قبل المدير .
بحثت في الأنترنت ووجدت طريقة التخلص من المشكلتين لكن المشكل تحل لثواني فقط بعد فتح مدير المهام و محرر الريجستري يعمل ثواني و يرجع ينغلق مرة اخري
و مشكورين علي سعة صدوركم
 
توقيع : ALA39000
تأييد 0
توقيع : Rayg
تأييد 0
Runscanner logfile
* = signed file
- = file not found
General info
------------
Computer name : SALEMI-ALA
Creation time : 11-05-2010 0:48:49
Hosts <> 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 8.0.6001.18702
OS : Microsoft Windows XP
OS Build : 2600
OS SP : Service Pack 3
RunScanner Version : 1.9.0.9
User Language : Arabic (Algeria)
User rights : Administrator
Windows folder : C:\WINDOWS
Running processes
-----------------
D:\Program Files\uTorrent\utorrent.exe (BitTorrent, Inc.)
D:\Program Files\USB Disk Security\USBGuard.exe (Zbshareware Lab)
* C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
* C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe (ALWIL Software)
* C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software)
* C:\WINDOWS\system32\csrss.exe (Microsoft Corporation)
* C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
* C:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
* C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
* C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
* C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
* C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
C:\DOCUME~1\S.ALA\LOCALS~1\Temp\kextr.exe
* C:\WINDOWS\system32\lsass.exe (Microsoft Corporation)
* C:\WINDOWS\system32\NOTEPAD.EXE (Microsoft Corporation)
D:\Program Files\RocketDock\RocketDock.exe
* C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation)
* C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation)
* D:\My Documents\Downloads\Programs\runscanner.exe (Runscanner.net)
* C:\WINDOWS\system32\services.exe (Microsoft Corporation)
* C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
C:\Program Files\Skype\Plugin Manager\skypePM.exe (Skype Technologies)
* C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation)
C:\DOCUME~1\S.ALA\LOCALS~1\Temp\wa50c80.exe
* C:\WINDOWS\explorer.exe (Microsoft Corporation)
* C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
* C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
* C:\WINDOWS\system32\winlogon.exe (Microsoft Corporation)
* c:\windows\System32\smss.exe (Microsoft Corporation)
* C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
C:\Documents and Settings\S.ALA\Desktop\wineyes 1.1.exe
C:\Documents and Settings\S.ALA\Local Settings\Application Data\Yahoo!\Messenger for Vista\Yahoo.Messenger.YmApp.exe (Yahoo! Inc.)
Unrated items
-------------
002 * C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe (ALWIL Software)
002 C:\WINDOWS\system32\NvCpl.dll (NVIDIA Corporation)
002 d:\Program Files\USB Disk Security\USBGuard.exe (Zbshareware Lab)
010 * C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Antivirus)
010 * C:\Program Files\Alwil Software\Avast5\afwServ.exe (avast! Firewall)
010 * C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Mail Scanner)
010 * C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Web Scanner)
010 C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Display Driver Service)
010 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Windows CardSpace)
010 * C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Updater)
011 C:\WINDOWS\system32\DRIVERS\mdc8021x.sys (AEGIS Protocol (IEEE 802.1x) v2.3.1.9)
011 C:\WINDOWS\system32\drivers\Ambfilt.sys (Ambfilt)
011 * C:\WINDOWS\system32\drivers\aswFsBlk.sys (aswFsBlk)
011 * C:\WINDOWS\system32\drivers\aswRdr.sys (aswRdr)
011 * C:\WINDOWS\system32\drivers\aswSnx.sys (aswSnx)
011 * C:\WINDOWS\system32\drivers\aswSP.sys (aswSP)
011 * C:\WINDOWS\system32\drivers\Aavmker4.sys (avast! Asynchronous Virus Monitor)
011 * C:\WINDOWS\system32\drivers\aswNdis2.sys (avast! Firewall Core Firewall Service)
011 * C:\WINDOWS\system32\DRIVERS\aswNdis.sys (avast! Firewall NDIS Filter Service)
011 * C:\WINDOWS\system32\drivers\aswTdi.sys (avast! Network Shield Support)
011 * C:\WINDOWS\system32\drivers\aswMon2.sys (avast! Standard Shield Support)
011 * C:\WINDOWS\system32\drivers\aswFW.sys (avast! TDI Firewall driver)
011 C:\WINDOWS\system32\Drivers\utk3njm0.sys (AVZ Kernel Driver)
011 C:\WINDOWS\system32\DRIVERS\mcdevice.sys (mcdevice)
011 C:\WINDOWS\system32\drivers\Monfilt.sys (Monfilt)
011 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys (nv)
011 * C:\WINDOWS\System32\Drivers\PxHelp20.sys (PxHelp20)
011 C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys (Realtek 10/100/1000 PCI NIC Family NDIS XP Driver)
011 C:\WINDOWS\system32\drivers\RtkHDAud.sys (Service for Realtek HD Audio (WDM))
011 C:\WINDOWS\system32\DRIVERS\splitcam.sys (Splitcam, WDM Camera Stream Splitter)
030 C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
030 C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
030 C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF42-A96B-11d1-9C6B-0000F875AC61}
031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF42-A96B-11d1-9C6B-0000F875AC61}
031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF40-A96B-11d1-9C6B-0000F875AC61}
035 C:\WINDOWS\system32\mscories.dll (Microsoft Corporation) {89B4C1CD-B018-4511-B0A1-5476DBF70820}
041 C:\Program Files\zyzoom\tbzyzo.dll (Conduit Ltd.) {3aaa6ede-0f45-43da-8b81-608a1d8108a2}
045 C:\Program Files\zyzoom\tbzyzo.dll (Conduit Ltd.) {3AAA6EDE-0F45-43DA-8B81-608A1D8108A2}
052 GUID / CLSID not found {02478D38-C3F9-4efb-9B51-7695ECA05670}
052 C:\Program Files\zyzoom\tbzyzo.dll (Conduit Ltd.) {3aaa6ede-0f45-43da-8b81-608a1d8108a2}
052 * D:\Program Files\Internet Download Manager\IDMIECC.dll (Tonec Inc.) {0055C089-8582-441B-A0BF-17B458C2A3A8}
061 * C:\Program Files\Alwil Software\Avast5\ashShell.dll (ALWIL Software) {472083B0-C522-11CF-8763-00608CC02F24}
061 C:\WINDOWS\system32\nvshell.dll {1CDB2949-8F65-4355-8456-263E7C208A5D}
061 C:\WINDOWS\system32\nvshell.dll {1E9B04FB-F9E5-4718-997B-B8DA88302A47}
061 C:\WINDOWS\system32\nvcpl.dll (NVIDIA Corporation) {A70C977A-BF00-412C-90B7-034C51DA2439}
061 C:\WINDOWS\system32\nvshell.dll {1E9B04FB-F9E5-4718-997B-B8DA88302A48}
061 C:\WINDOWS\system32\nvcpl.dll (NVIDIA Corporation) {FFB699E0-306A-11d3-8BD1-00104B6F7516}
061 C:\Program Files\Sonic\RecordNow Deluxe\RecordNow! Deluxe\shlext.dll {DEE12703-6333-4D4E-8F34-738C4DCC2E04}
061 C:\WINDOWS\system32\dfshim.dll (Microsoft Corporation) {E37E2028-CE1A-4f42-AF05-6CEABC4E5D75}
061 C:\WINDOWS\system32\dfshim.dll (Microsoft Corporation) {e82a2d71-5b2f-43a0-97b8-81be15854de8}
061 * C:\Program Files\Alwil Software\Avast5\snxPlugins.dll (ALWIL Software) {F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}
061 C:\Program Files\TeraCopy\TeraCopy.dll {A7005AF0-D6E8-48AF-8DFA-023B1CF660A7}
061 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
105 تحميل الكل بواسطة Internet Download Manager : C:\Program Files\Internet Download Manager\IEGetAll.htm
105 تحميل بواسطة Internet Download Manager : C:\Program Files\Internet Download Manager\IEExt.htm
105 تحميل محتوى FLV بواسطة Internet Download Manager : C:\Program Files\Internet Download Manager\IEGetVL.htm
160 DisableRegistryTools : 1
160 DisableTaskMgr : 1
173 GUID / CLSID not found
173 GUID / CLSID not found
173 * C:\Program Files\Alwil Software\Avast5\ashShell.dll (ALWIL Software) {472083B0-C522-11CF-8763-00608CC02F24}
173 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
221 GUID / CLSID not found
221 GUID / CLSID not found
221 * C:\Program Files\Alwil Software\Avast5\ashShell.dll (ALWIL Software) {472083B0-C522-11CF-8763-00608CC02F24}
221 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
223 GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225 GUID / CLSID not found
225 GUID / CLSID not found
225 GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225 GUID / CLSID not found {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
225 * C:\Program Files\Alwil Software\Avast5\ashShell.dll (ALWIL Software) {472083B0-C522-11CF-8763-00608CC02F24}
225 * C:\Program Files\Alwil Software\Avast5\ashShell.dll (ALWIL Software) {472083B0-C522-11CF-8763-00608CC02F24}
225 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
227 GUID / CLSID not found
227 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
229 C:\WINDOWS\system32\nvshell.dll {1E9B04FB-F9E5-4718-997B-B8DA88302A48}
229 C:\WINDOWS\system32\nvcpl.dll (NVIDIA Corporation) {A70C977A-BF00-412C-90B7-034C51DA2439}
241 * C:\Program Files\Alwil Software\Avast5\snxPlugins.dll (ALWIL Software) {F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}
251 C:\Program Files\TeraCopy\TeraCopy.dll {A7005AF0-D6E8-48AF-8DFA-023B1CF660A7}
251 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
Missing files
-------------
002 nwiz.exe
011 C:\WINDOWS\system32\drivers\Abiosdsk.sys
011 C:\WINDOWS\system32\drivers\mtgomn.sys
011 C:\WINDOWS\system32\drivers\abp480n5.sys
011 C:\WINDOWS\system32\drivers\adpu160m.sys
011 C:\WINDOWS\system32\drivers\Aha154x.sys
011 C:\WINDOWS\system32\drivers\aic78u2.sys
011 C:\WINDOWS\system32\drivers\aic78xx.sys
011 C:\WINDOWS\system32\drivers\AliIde.sys
011 C:\WINDOWS\system32\drivers\amsint.sys
011 C:\WINDOWS\system32\drivers\asc.sys
011 C:\WINDOWS\system32\drivers\asc3350p.sys
011 C:\WINDOWS\system32\drivers\asc3550.sys
011 C:\WINDOWS\system32\drivers\Atdisk.sys
011 C:\Program Files\Common Files\Softwin\BitDefender Firewall\bdftdif.sys
011 C:\DOCUME~1\S.ALA\LOCALS~1\Temp\catchme.sys
011 C:\WINDOWS\system32\drivers\cd20xrnt.sys
011 C:\WINDOWS\system32\drivers\Changer.sys
011 C:\WINDOWS\system32\drivers\CmdIde.sys
011 C:\WINDOWS\system32\drivers\Cpqarray.sys
011 C:\WINDOWS\system32\drivers\dac2w2k.sys
011 C:\WINDOWS\system32\drivers\dac960nt.sys
011 C:\WINDOWS\system32\drivers\dpti2o.sys
011 C:\WINDOWS\system32\drivers\hpn.sys
011 C:\WINDOWS\system32\drivers\i2omgmt.sys
011 C:\WINDOWS\system32\drivers\i2omp.sys
011 C:\WINDOWS\system32\drivers\ini910u.sys
011 C:\WINDOWS\system32\drivers\IntelIde.sys
011 C:\WINDOWS\system32\drivers\lbrtfdc.sys
011 C:\WINDOWS\system32\drivers\mraid35x.sys
011 C:\WINDOWS\system32\drivers\PCIDump.sys
011 C:\WINDOWS\system32\drivers\PDCOMP.sys
011 C:\WINDOWS\system32\drivers\PDFRAME.sys
011 C:\WINDOWS\system32\drivers\PDRELI.sys
011 C:\WINDOWS\system32\drivers\PDRFRAME.sys
011 C:\WINDOWS\system32\drivers\perc2.sys
011 C:\WINDOWS\system32\drivers\perc2hib.sys
011 C:\WINDOWS\system32\drivers\ql1080.sys
011 C:\WINDOWS\system32\drivers\Ql10wnt.sys
011 C:\WINDOWS\system32\drivers\ql12160.sys
011 C:\WINDOWS\system32\drivers\ql1240.sys
011 C:\WINDOWS\system32\drivers\ql1280.sys
011 C:\WINDOWS\system32\drivers\Simbad.sys
011 C:\WINDOWS\system32\drivers\Sparrow.sys
011 C:\WINDOWS\system32\drivers\sym_hi.sys
011 C:\WINDOWS\system32\drivers\sym_u3.sys
011 C:\WINDOWS\system32\drivers\symc810.sys
011 C:\WINDOWS\system32\drivers\symc8xx.sys
011 C:\WINDOWS\system32\drivers\TosIde.sys
011 C:\WINDOWS\system32\drivers\ultra.sys
011 C:\WINDOWS\system32\drivers\ViaIde.sys
011 C:\WINDOWS\system32\drivers\WDICA.sys
061 deskpan.dll
073 C:\Program Files\Ask.com\UpdateTask.exe
191 C:\WINDOWS\infocard.exe
 
توقيع : ALA39000
تأييد 0
وينكم
 
توقيع : ALA39000
تأييد 0
آختي اعملي تقرير runScanner كما في الشرح بالضبط ..

تقرير runscanner
 
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى