توجد لدي مشاكل في الاب توب !!

[one_smile]

السلام عليكم
كل عام و أنتم بخير ،،

أنا عضوة جديدة ،، حبيت تساعدوني في حل مشكلة لاب توبي:b:

لاب توبي نوعه : sony vaio { vgn-cr354}

هو توه جديد ماله الا شهر تقريبا ،،

تقريبا بعد أسبوع أو أسبوعين بدأت المشكلة ..، :f:
كان بنفصل سلك الاب توب والبطارية مو موجودة فيه وتكرر تقريبا خلال الشهر 8 مرات

وصار يطلع لي أول ما أفتحوه شاشة سوداء ومكتوب كلام بالانجليزي ويبدأ يعد ...
أنا على طول أضغط انتر ^^:q:
وخلاص يفتح ..،
بس بعدين صار يطلع لي لما يفتح بالكامل تجي شاشة سوداء
>>> شوفوها

ماخلصنا << حشاا قصة ><
المهم
وقام يجي كلام أحيانا بعد ما أفتح أي برنامج و أحيانا لا
vcm intelligent analyzing manager stopped working and was closed
Aproblem caused the application to stop working correctly
Windows will notify you if a solution is available

وشو يعني ؟؟
وربي أزعجني:er:
أتمنى تحلوا مشكلتي ..^.^..

وشكرا جزيلا :b:
كم سامّيدا n___n

 

[dяăģôŋ]

اعمل تقرير للهايجاك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات ويظهر لك تقرير ,, انسخه والصقه بردك القادم​

 

[one_smile]

أهليين

سويت اللي قلته وطلع لي كلام بالانجليزي ومكتوب error
For some reason your system denied write access the hosts file
If any hijacked domains are in this file
hijack this may not be able to fix this.
If that happens you need to edit the file your self .to do this click start run tybe.
notepad c:\ windows\ system32\ drivers \ets \hosts.
and press enter find the line (s) hijack this reports and delete them save the file as "hosts"
(with quotes) and reboot)
بعدين أنا ضغطت أوك وجاني كلام مرة ثانية
هذا الكلام
An unexpected error has occurred at procedure mod main chek other1 iem error #75 path / file access error
please maile me at merijn@spywareinfo.com
reporting the following:

what you were trying to fix when the error occurred ,if applicable
how you can reproduce the error
Acomplete hijack this scan log if possible

windows version: windows NT6:00.1904
msie version : 7.0.6000.16711
Hijack this version : 1.99.1

this message hes been copied to your clipboard click ok to continue the rest of the scan

وأنا ضغطت أوك بعدين جاني التقرير اللي قلت عنه


Logfile of HijackThis v1.99.1
Scan saved at 07:31:11 م, on 03/09/08
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Sony\VCM Manager Setting\VcmMgrNotification.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Users\Duha\AppData\Local\Temp\Rar$EX00.652\HijackThis.exe
c:\program files\google\googletoolbar1user.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [elsecake] "C:\ProgramData\Biasamenamen.j4um4i"
O4 - HKCU\..\Run: [Grey pop cake audio] "C:\ProgramData\pile user axis.0ctuu"
O4 - Startup: CCC.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: igfxcui - igfxdev.dll (file missing)
O20 - Winlogon Notify: VESWinlogon - C:\Windows\SYSTEM32\VESWinlogon.dll
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Image Converter SCSI Service (ICScsiSV) - Sony Corporation - C:\Program Files\Sony\Image Converter 3\ICScsiSV.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 3\IcVzMon.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: SQL Server (MSSMLBIZ) (MSSQL$MSSMLBIZ) - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ (file missing)
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP (file missing)
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)
O23 - Service: VAIO Media Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
O23 - Service: VAIO Media Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-UCLS-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\UCLS\HTTP (file missing)
O23 - Service: VAIO Media Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO data Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO data XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe


صح ؟؟
طيب لما جا التقرير جاني كلام وجنبه مربعات تحط صح إيش سوي ؟
أضغط scan or fix checked ؟؟

وميرسي أوي ..^.^..​

 

[dяăģôŋ]

عطل برامج الحمايه

حمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

.................................................

وسولى تقرير هيجاك ثانى

بنتظارك​

 

[one_smile]

مرحبا سويت اللي قلتوه

ComboFix 08-09-01.05 - Duha 09/03/2008 21:58:50.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1256.1.1033.18.1130 [GMT 3:00]
Running from: C:\Users\Duha\Documents\Downloads\Programs\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Users\Duha\AppData\Roaming\macromedia\Flash Player\#Shareds\J67KLZ76\iforex.com
C:\Users\Duha\AppData\Roaming\macromedia\Flash Player\#Shareds\J67KLZ76\iforex.com\Emerp\Events\flash_.swf\user_data.sol
C:\Users\Duha\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com
C:\Users\Duha\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com\settings.sol
C:\Windows\system32\x64
.
((((((((((((((((((((((((( Files Created from 2008-08-03 to 2008-09-03 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-03 19:01 --------- d-----w C:\Users\Duha\AppData\Roaming\DMCache
2008-09-03 19:00 --------- d-----w C:\Users\Duha\AppData\Roaming\uTorrent
2008-09-02 16:20 --------- d-----w C:\ProgramData\Part Hide Grey Pop
2008-09-02 16:20 --------- d-----w C:\ProgramData\heckpopkind
2008-09-02 16:18 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-08-20 13:43 --------- d-----w C:\Program Files\BitComet
2008-08-18 15:38 --------- d-----w C:\Program Files\uTorrent
2008-08-14 00:08 --------- d-----w C:\Program Files\Windows Mail
2008-08-14 00:03 --------- d-----w C:\ProgramData\Microsoft Help
2008-07-31 00:29 --------- d-----w C:\ProgramData\Messenger Plus!
2008-07-19 21:38 --------- d-----w C:\Program Files\Common Files\Adobe
2008-07-19 05:10 53,448 ----a-w C:\Windows\System32\wuauclt.exe
2008-07-19 05:10 45,768 ----a-w C:\Windows\System32\wups2.dll
2008-07-19 05:09 1,811,656 ----a-w C:\Windows\System32\wuaueng.dll
2008-07-19 03:44 1,524,736 ----a-w C:\Windows\System32\wucltux.dll
2008-07-18 19:08 163,904 ----a-w C:\Windows\System32\wuwebv.dll
2008-07-18 17:44 31,232 ----a-w C:\Windows\System32\wuapp.exe
2008-07-17 23:31 --------- d-----w C:\Program Files\Microsoft SQL Server
2008-07-17 16:24 --------- d-----w C:\Users\Duha\AppData\Roaming\Talkback
2008-07-17 16:21 --------- d-----w C:\Program Files\Real
2008-07-17 16:21 --------- d-----w C:\Program Files\Common Files\xing shared
2008-07-17 16:21 --------- d-----w C:\Program Files\Common Files\Real
2008-07-15 23:48 2,048 ----a-w C:\Windows\System32\tzres.dll
2008-07-15 22:09 --------- d-----w C:\ProgramData\Sony Corporation
2008-07-15 07:40 174 --sha-w C:\Program Files\desktop.ini
2008-07-15 07:36 --------- d-----w C:\Program Files\Windows Sidebar
2008-07-14 21:49 --------- d-----w C:\Program Files\Circle Developement
2008-07-14 21:22 --------- d-----w C:\Users\Duha\AppData\Roaming\IDM
2008-07-14 21:06 --------- d-----w C:\Users\Duha\AppData\Roaming\InterVideo
2008-07-14 21:01 --------- d-----w C:\Program Files\VistaCodecPack
2008-07-14 20:59 --------- d-----w C:\ProgramData\VistaCodecs
2008-07-14 20:58 704,000 ----a-w C:\Windows\System32\PhotoScreensaver.scr
2008-07-14 20:58 258,232 ----a-w C:\Windows\system32\drivers\acpi.sys
2008-07-14 20:58 24,064 ----a-w C:\Windows\System32\wtsapi32.dll
2008-07-14 20:58 20,920 ----a-w C:\Windows\system32\drivers\compbatt.sys
2008-07-14 20:58 14,208 ----a-w C:\Windows\system32\drivers\CmBatt.sys
2008-07-14 20:57 67,584 ----a-w C:\Windows\System32\wlanhlp.dll
2008-07-14 20:57 542,720 ----a-w C:\Windows\System32\sysmain.dll
2008-07-14 20:57 502,784 ----a-w C:\Windows\System32\wlansvc.dll
2008-07-14 20:57 47,104 ----a-w C:\Windows\System32\wlanapi.dll
2008-07-14 20:57 297,984 ----a-w C:\Windows\System32\wlansec.dll
2008-07-14 20:57 290,816 ----a-w C:\Windows\System32\wlanmsm.dll
2008-07-14 20:57 28,344 ----a-w C:\Windows\system32\drivers\battc.sys
2008-07-14 20:57 2,923,520 ----a-w C:\Windows\explorer.exe
2008-07-14 20:57 194,560 ----a-w C:\Windows\System32\WebClnt.dll
2008-07-14 20:57 110,080 ----a-w C:\Windows\system32\drivers\mrxdav.sys
2008-07-14 20:55 45,112 ----a-w C:\Windows\system32\drivers\pciidex.sys
2008-07-14 20:55 41,984 ----a-w C:\Windows\system32\drivers\monitor.sys
2008-07-14 20:55 3,504,696 ----a-w C:\Windows\System32\ntkrnlpa.exe
2008-07-14 20:55 3,470,392 ----a-w C:\Windows\System32\ntoskrnl.exe
2008-07-14 20:55 211,000 ----a-w C:\Windows\system32\drivers\volsnap.sys
2008-07-14 20:55 21,560 ----a-w C:\Windows\system32\drivers\atapi.sys
2008-07-14 20:55 17,464 ----a-w C:\Windows\system32\drivers\intelide.sys
2008-07-14 20:55 109,624 ----a-w C:\Windows\system32\drivers\ataport.sys
2008-07-14 20:55 1,060,920 ----a-w C:\Windows\system32\drivers\ntfs.sys
2008-07-14 20:54 803,328 ----a-w C:\Windows\system32\drivers\tcpip.sys
2008-07-14 20:54 29,184 ----a-w C:\Windows\system32\drivers\BTHUSB.SYS
2008-07-14 20:54 24,064 ----a-w C:\Windows\System32\netcfg.exe
2008-07-14 20:54 220,160 ----a-w C:\Windows\system32\drivers\bthport.sys
2008-07-14 20:54 22,016 ----a-w C:\Windows\System32\netiougc.exe
2008-07-14 20:54 216,632 ----a-w C:\Windows\system32\drivers\netio.sys
2008-07-14 20:54 19,456 ----a-w C:\Windows\system32\drivers\bthenum.sys
2008-07-14 20:54 181,760 ----a-w C:\Windows\System32\fsquirt.exe
2008-07-14 20:54 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2008-07-14 20:54 154,624 ----a-w C:\Windows\system32\drivers\nwifi.sys
2008-07-14 20:53 9,728 ----a-w C:\Windows\System32\LAPRXY.DLL
2008-07-14 20:53 223,232 ----a-w C:\Windows\System32\WMASF.DLL
2008-07-14 20:53 2,048 ----a-w C:\Windows\System32\asferror.dll
2008-07-14 20:53 2,027,008 ----a-w C:\Windows\System32\win32k.sys
2008-07-14 20:52 57,856 ----a-w C:\Windows\System32\SLUINotify.dll
2008-07-14 20:52 566,784 ----a-w C:\Windows\System32\SLCommDlg.dll
2008-07-14 20:52 39,936 ----a-w C:\Windows\System32\slcinst.dll
2008-07-14 20:52 351,232 ----a-w C:\Windows\System32\SLUI.exe
2008-07-14 20:52 33,280 ----a-w C:\Windows\System32\slwmi.dll
2008-07-14 20:52 296,448 ----a-w C:\Windows\System32\gdi32.dll
2008-07-14 20:52 268,288 ----a-w C:\Windows\System32\mcbuilder.exe
2008-07-14 20:52 223,232 ----a-w C:\Windows\System32\SLC.dll
2008-07-14 20:52 2,605,568 ----a-w C:\Windows\System32\SLsvc.exe
2008-07-14 20:52 186,368 ----a-w C:\Windows\System32\SLLUA.exe
2008-07-14 20:51 14,848 ----a-w C:\Windows\System32\wshrm.dll
2008-07-14 20:51 113,664 ----a-w C:\Windows\system32\drivers\rmcast.sys
2008-07-14 20:51 11,776 ----a-w C:\Windows\System32\sbunattend.exe
2008-07-14 20:50 83,968 ----a-w C:\Windows\System32\dnsrslvr.dll
2008-07-14 20:50 449,536 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
2008-07-14 20:50 4,247,552 ----a-w C:\Windows\System32\GameUXLegacyGDFs.dll
2008-07-14 20:50 24,576 ----a-w C:\Windows\System32\dnscacheugc.exe
2008-07-14 20:50 2,144,256 ----a-w C:\Windows\AppPatch\AcGenral.dll
2008-07-14 20:50 1,686,528 ----a-w C:\Windows\System32\gameux.dll
2008-07-14 20:49 84,992 ----a-w C:\Windows\system32\drivers\srvnet.sys
2008-07-14 20:49 58,368 ----a-w C:\Windows\system32\drivers\mrxsmb20.sys
2008-07-14 20:49 148,992 ----a-w C:\Windows\system32\drivers\ks.sys
2008-07-14 20:49 130,048 ----a-w C:\Windows\system32\drivers\srv2.sys
2008-07-14 20:49 101,888 ----a-w C:\Windows\system32\drivers\mrxsmb.sys
2008-07-14 20:49 1,327,104 ----a-w C:\Windows\System32\quartz.dll
2008-07-14 20:48 428,032 ----a-w C:\Windows\System32\EncDec.dll
2008-07-14 20:48 292,352 ----a-w C:\Windows\System32\psisdecd.dll
2008-07-14 20:48 1,244,672 ----a-w C:\Windows\System32\mcmde.dll
2008-07-14 20:22 --------- d-----w C:\Users\Duha\AppData\Roaming\GRETECH
2008-07-14 20:09 --------- d-----w C:\Users\Duha\AppData\Roaming\ArcSoft
2008-07-14 19:58 --------- dcsh--w C:\Program Files\Common Files\WindowsLiveInstaller
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"elsecake"="C:\ProgramData\Biasamenamen.j4um4i" [X]
"Grey pop cake audio"="C:\ProgramData\pile user axis.0ctuu" [X]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [07/14/2008 11:51 PM 1232896]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [10/01/2007 09:45 PM 840704]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [10/18/2007 11:34 AM 5724184]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [03/10/2007 04:58 AM 835584]
"ISBMgr.exe"="C:\Program Files\Sony\ISB Utility\ISBMgr.exe" [09/19/2007 10:09 PM 311296]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [11/10/2006 10:35 PM 90112]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [07/17/2008 07:21 PM 185896]
"Windows Mobile-based device management"="C:\Windows\WindowsMobile\wmdSync.exe" [11/02/2006 12:45 PM 215552]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [01/11/2008 10:16 PM 39792]
"RtHDVCpl"="RtHDVCpl.exe" [04/08/2007 05:33 AM 4423680 C:\Windows\RtHDVCpl.exe]
C:\Users\Duha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CCC.lnk - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [2007-06-01 49152]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-10-30 748072]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
08/15/2007 07:05 AM 98304 C:\Windows\System32\VESWinlogon.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.dvsd"= C:\Program Files\Common Files\Sony Shared\VideoLib\sonydv.dll
"msacm.divxa32"= divxa32.acm
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 01/11/2008 10:16 PM 39792 C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{BB4DFF28-A498-4C33-B68D-41BF947F773F}"= TCP:6004|C:\Program Files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{807AE289-BCA4-40C0-865C-CB0457B20847}"= Disabled:UDP:C:\Program Files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
"{210BAE52-A4DE-4BAC-9C26-B0BAC1BEBED3}"= Disabled:TCP:C:\Program Files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
"{C29466D5-B2B4-4399-94CF-CB1881B56509}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{A7B57211-F367-4B11-918B-7BCFAA8A0DC2}"= UDP:990:LocalSubnet:LocalSubnet|IF={EB03CA72-56A2-49A5-9816-9D11007A720A}|%SystemRoot%\system32\svchost.exe|Svc=rapimgr%systemroot%\WindowsMobile\wmdSync.exe,-4001
"{628CB001-13D7-483A-8941-35142B41F781}"= UDP:C:\Program Files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{AF1FAC16-79C1-4237-85E1-2F731D54F79E}"= TCP:C:\Program Files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"TCP Query User{1BBAC704-A447-4970-AB27-042651DAF799}C:\\users\\duha\\desktop\\utorrent.exe"= UDP:C:\users\duha\desktop\utorrent.exe:utorrent.exe
"UDP Query User{31D4B78B-5466-4AEB-B0B2-433D710CF365}C:\\users\\duha\\desktop\\utorrent.exe"= TCP:C:\users\duha\desktop\utorrent.exe:utorrent.exe
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
"DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|
R2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service;C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [01/11/2008 05:50 PM 30312]
R2 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ);C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [02/10/2007 05:29 AM 29178224]
R2 regi;regi;C:\Windows\system32\drivers\regi.sys [04/18/2007 06:09 AM 11032]
R2 uCamMonitor;CamMonitor;C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe [10/31/2007 07:40 PM 125440]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [10/30/2007 05:30 AM 17920]
R3 atikmdag;atikmdag;C:\Windows\system32\DRIVERS\atikmdag.sys [10/19/2007 03:22 AM 2930176]
R3 btwaudio;Bluetooth Audio Device Service;C:\Windows\system32\drivers\btwaudio.sys [11/15/2007 03:02 AM 81448]
R3 btwavdt;Bluetooth AVDT Service;C:\Windows\system32\drivers\btwavdt.sys [11/15/2007 03:02 AM 99880]
R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys [11/15/2007 03:01 AM 28464]
R3 btwrchid;btwrchid;C:\Windows\system32\DRIVERS\btwrchid.sys [11/15/2007 03:02 AM 17448]
R3 R5U870FLx86;R5U870 UVC Lower Filter ;C:\Windows\system32\Drivers\R5U870FLx86.sys [10/17/2007 03:01 AM 73472]
R3 R5U870FUx86;R5U870 UVC Upper Filter ;C:\Windows\system32\Drivers\R5U870FUx86.sys [10/17/2007 03:01 AM 43904]
R3 SFEP;Sony Firmware Extension Parser;C:\Windows\system32\DRIVERS\SFEP.sys [08/29/2007 04:58 AM 9344]
R3 ti21sony;ti21sony;C:\Windows\system32\drivers\ti21sony.sys [11/16/2007 03:29 AM 818688]
S2 VcmIAlzMgr;VAIO data Intelligent Analyzing Manager;C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [09/29/2007 07:11 AM 292128]
S3 ICScsiSV;Image Converter SCSI Service;C:\Program Files\Sony\Image Converter 3\ICScsiSV.exe [06/15/2007 05:07 AM 75952]
S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment;C:\Program Files\Sony\Image Converter 3\IcVzMon.exe [06/15/2007 05:07 AM 59568]
S3 VAIOMediaPlatform-UCLS-AppServer;VAIO Media Collection;C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe [01/11/2007 02:51 AM 745472]
S3 VAIOMediaPlatform-UCLS-HTTP;VAIO Media Collection (HTTP);C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [08/09/2007 10:51 AM 397312]
S3 VAIOMediaPlatform-UCLS-UPnP;VAIO Media Collection (UPnP);C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [08/09/2007 10:51 AM 1089536]
S3 VcmXmlIfHelper;VAIO data XML Interface;C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [09/21/2007 04:52 AM 79136]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0ce3ecf0-6084-11dd-bb7e-001e3da1f6be}]
\shell\AutoRun\command - G:\qxbx9blb.com
\shell\explore\Command - G:\qxbx9blb.com
\shell\open\Command - G:\qxbx9blb.com
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7caf4e56-5241-11dd-a707-001e3da1f6be}]
\shell\AutoRun\command - G:\knupkb.com
\shell\explore\Command - G:\knupkb.com
\shell\open\Command - G:\knupkb.com
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b32782fc-6ba1-11dd-9ff2-001e3da1f6be}]
\shell\AutoRun\command - G:\mnl6on3.com
\shell\explore\Command - G:\mnl6on3.com
\shell\open\Command - G:\mnl6on3.com
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b32782fe-6ba1-11dd-9ff2-001e3da1f6be}]
\shell\AutoRun\command - H:\mnl6on3.com
\shell\explore\Command - H:\mnl6on3.com
\shell\open\Command - H:\mnl6on3.com
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ebf9b71e-60d8-11dd-b6f6-001e3da1f6be}]
\shell\AutoRun\command - G:\xqf.com
\shell\explore\Command - G:\xqf.com
\shell\open\Command - G:\xqf.com
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fe6ba52c-51d9-11dd-be9c-001e3da1f6be}]
\shell\AutoRun\command - G:\bwpncb6.com
\shell\explore\Command - G:\bwpncb6.com
\shell\open\Command - G:\bwpncb6.com
*Newly Created Service* - CATCHME
*Newly Created Service* - PROCEXP90
.
- - - - ORPHANS REMOVED - - - -
HKLM-Run-IgfxTray - C:\Windows\system32\igfxtray.exe
HKLM-Run-HotKeysCmds - C:\Windows\system32\hkcmd.exe
HKLM-Run-Persistence - C:\Windows\system32\igfxpers.exe

.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Users\Duha\AppData\Roaming\Mozilla\Firefox\Profiles\eti43smj.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://en-us.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-USfficial
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2008-09-03 22:01:30
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 09/03/2008 22:03:32
ComboFix-quarantined-files.txt 2008-09-03 19:02:47
Pre-Run: The system cannot find message text for message number 0x2379 in the message file for Application.
Post-Run: 167,360,585,728 bytes free
240 --- E O F --- 2008-09-03 00:02:01


هذا التقرير
أريغااتو
n__n

 

[dяăģôŋ]

بالنسبه لاداة الهايجاك>>لمستخدمى الفيستا
رايت كلك على اداة الهايجاك >>اختر تشغيل كادمن
وعملى تقرير جديد​

 

[الليث الضارب]

اهلاً بك اخي بمنتديات زيزووم للأمن والحماية
عذراً بتعديل عنوان الموضوع لينم عن فحواه ,,
بالتوفيق ,,,

 

[one_smile]

بالنسبه لاداة الهايجاك>>لمستخدمى الفيستا

رايت كلك على اداة الهايجاك >>اختر تشغيل كادمن

وعملى تقرير جديد​

كييف يعني ما فهمت ؟:b:
أختار البرنامج الي عطيتني اياه :q:

آآسفة بس ممكن توضح :er:

شكرا
n___n

 

[dяăģôŋ]

كييف يعني ما فهمت ؟:b:
أختار البرنامج الي عطيتني اياه :q:

آآسفة بس ممكن توضح :er:

شكرا
n___n

اعمل تقرير للهايجاك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات ويظهر لك تقرير ,, انسخه والصقه بردك القادم​

 

[one_smile]

آآسفة أزعجتك ><"
هذا التقرير
An unexpected error has occurred at procedure: modMain_CheckOther1Item()
Error #75 - Path/File access error
Please email me at merijn@spywareinfo.com, reporting the following:
* What you were trying to fix when the error occurred, if applicable
* How you can reproduce the error
* A complete HijackThis scan log, if possible
Windows version: Windows NT 6.00.1904
MSIE version: 7.0.6000.16711
HijackThis version: 1.99.1
This message has been copied to your clipboard.
Click OK to continue the rest of the scan.

ولا هذا التقرير ؟؟:q:
Logfile of HijackThis v1.99.1
Scan saved at 03:54:39 ص, on 04/09/08
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Running processes:
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Sony\VCM Manager Setting\VcmMgrNotification.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Users\Duha\AppData\Local\Temp\Rar$EX38.026\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [elsecake] "C:\ProgramData\Biasamenamen.j4um4i"
O4 - HKCU\..\Run: [Grey pop cake audio] "C:\ProgramData\pile user axis.0ctuu"
O4 - Startup: CCC.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: igfxcui - igfxdev.dll (file missing)
O20 - Winlogon Notify: VESWinlogon - C:\Windows\SYSTEM32\VESWinlogon.dll
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Image Converter SCSI Service (ICScsiSV) - Sony Corporation - C:\Program Files\Sony\Image Converter 3\ICScsiSV.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 3\IcVzMon.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: SQL Server (MSSMLBIZ) (MSSQL$MSSMLBIZ) - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ (file missing)
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP (file missing)
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)
O23 - Service: VAIO Media Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
O23 - Service: VAIO Media Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-UCLS-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\UCLS\HTTP (file missing)
O23 - Service: VAIO Media Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO data Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO data XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

بس ما قلت لي إيش فيه جهازي ×__×
يعني هو يحتاج فورمات ولا لا ؟

وميرسي أوي
n____n

 

[dяăģôŋ]

اخوى انا مانى شايف برامج حمايه بتقريرك

حدد التالى

O1 - Hosts: ::1 localhost

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O4 - HKCU\..\Run: [elsecake] "C:\ProgramData\Biasamenamen.j4um4i"

O4 - HKCU\..\Run: [Grey pop cake audio] "C:\ProgramData\pile user axis.0ctuu"

O11 - Options group: [INTERNATIONAL] International*

O13 - Gopher Prefix:

O20 - Winlogon Notify: igfxcui - igfxdev.dll (file missing)

O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)

O23 - Service: VAIO Media Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe

O23 - Service: VAIO data Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

O23 - Service: VAIO data XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

طريقة الحذف

وتقرير ثانى لاهنت​

 

[dollar989]

السلام عليكم
اخي الكريم من كلامك يعني أن الجهاز ليس به فيروسات

كل ما في الأمر أن الجهاز فقد بعض الملفات الاساسية أي تم اعطابها بسبب الانطفاء المفاجئ

اعمل التالي لاستعادة الملفات المعطوبة عندك (لابد من وجود سيدي الويندوز )

اذهب أبدأ ثم تشغيل ثم اكتب التالي

sfc /scannow
ولاحظ انه بعد sfc هناك مسافة واحدة

يطلب منك ادخال السيدي أدخله

 

[one_smile]

اخوى انا مانى شايف برامج حمايه بتقريرك​

حدد التالى​

O1 - Hosts: ::1 localhost​

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)​

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll​

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll​

O4 - HKCU\..\Run: [elsecake] "C:\ProgramData\Biasamenamen.j4um4i"​

O4 - HKCU\..\Run: [Grey pop cake audio] "C:\ProgramData\pile user axis.0ctuu"​

O11 - Options group: [INTERNATIONAL] International*​

O13 - Gopher Prefix:​

O20 - Winlogon Notify: igfxcui - igfxdev.dll (file missing)​

O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)​

O23 - Service: VAIO Media Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe​

O23 - Service: VAIO data Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe​

O23 - Service: VAIO data XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe​

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe​

طريقة الحذف​

​

​

وتقرير ثانى لاهنت​

آآآسفة أزعجتك
أنا يطلع لي زي صورتك اللي أحط إشارة ع المربع ..
بس أحط على إيش كلهم ؟؟:q:
أنا قلت لك لما أول مرة قلت لي
بس أنت ما رديت علي ...:er:

أريغاتو

 

[dяăģôŋ]

آآآسفة أزعجتك
أنا يطلع لي زي صورتك اللي أحط إشارة ع المربع ..
بس أحط على إيش كلهم ؟؟:q:
أنا قلت لك لما أول مرة قلت لي
بس أنت ما رديت علي ...:er:

أريغاتو

اخوى ابحث عن القيم هذى بالرقم والاسم والمسار لانه هنالك ارقام تتشابه والفرق بالاسم وحط بالمربع الصغير صح زى شرح الصور

O1 - Hosts: ::1 localhost

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O4 - HKCU\..\Run: [elsecake] "C:\ProgramData\Biasamenamen.j4um4i"

O4 - HKCU\..\Run: [Grey pop cake audio] "C:\ProgramData\pile user axis.0ctuu"

O11 - Options group: [INTERNATIONAL] International*

O13 - Gopher Prefix:

O20 - Winlogon Notify: igfxcui - igfxdev.dll (file missing)

O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)

O23 - Service: VAIO Media Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe

O23 - Service: VAIO data Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

O23 - Service: VAIO data XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe​

 

[one_smile]

بصييييييييييييييييييييييييييح

سويت اللي قلت لي ،،
وحطيت علامة صح ع المربع
بعدين قالي اعادة تشغيل الجهاز قلت أوك
وبعدين جاني شاشة زرقاء مكتوب كلام بالانجليزي

واشغل الجهاز بس طلع لي كلام مكتوب خطأ وقام يعد وجا شااشة سودا ماادري ايش كاتب
بعدييين طول على بال ما يشتغل صار شاشة سوداء مدة طويلة ثم اشتغل طبيعي

وجاني كلام مكتوب
windows has recovered from unexpected shutdown
windows can check online for a solution to the problem
وجاني خيارين

check for solution or cancel

ياااربي بصيييح ايش أسوي الحيييين ؟؟><

بليييز ممكن ترد بسرررعة

بانتظارك

 

[one_smile]

السلام عليكم
اخي الكريم من كلامك يعني أن الجهاز ليس به فيروسات

كل ما في الأمر أن الجهاز فقد بعض الملفات الاساسية أي تم اعطابها بسبب الانطفاء المفاجئ

اعمل التالي لاستعادة الملفات المعطوبة عندك (لابد من وجود سيدي الويندوز )

اذهب أبدأ ثم تشغيل ثم اكتب التالي

sfc /scannow
ولاحظ انه بعد sfc هناك مسافة واحدة

يطلب منك ادخال السيدي أدخله

هلا خيوو
مااعندي cd أنا وش الحل ؟
ما عطوني لما شريته

وميرسي ع المساعدة

 

[dяăģôŋ]

بصييييييييييييييييييييييييييح

سويت اللي قلت لي ،،
وحطيت علامة صح ع المربع
بعدين قالي اعادة تشغيل الجهاز قلت أوك
وبعدين جاني شاشة زرقاء مكتوب كلام بالانجليزي

واشغل الجهاز بس طلع لي كلام مكتوب خطأ وقام يعد وجا شااشة سودا ماادري ايش كاتب
بعدييين طول على بال ما يشتغل صار شاشة سوداء مدة طويلة ثم اشتغل طبيعي

وجاني كلام مكتوب
windows has recovered from unexpected shutdown
windows can check online for a solution to the problem
وجاني خيارين

check for solution or cancel

ياااربي بصيييح ايش أسوي الحيييين ؟؟><

بليييز ممكن ترد بسرررعة

بانتظارك

اعمل تقرير للهايجاك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات ويظهر لك تقرير ,, انسخه والصقه بردك القادم​

 

[one_smile]

أقولك مااطلع تقرير
ايش أسوي

لازم هالتقرير ؟؟
طيب ايش معنى الكلام اللي أنا كتبته ؟؟

 

[one_smile]

Logfile of HijackThis v1.99.1
Scan saved at 10:52:36 م, on 04/09/08
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Windows\System32\mobsync.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Users\Duha\AppData\Local\Temp\Rar$EX00.701\HijackThis.exe
c:\program files\google\googletoolbar1user.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Grey pop cake audio] "C:\ProgramData\pile user axis.0ctuu"
O4 - HKCU\..\Run: [elsecake] "C:\ProgramData\Biasamenamen.cgot1d"
O4 - Startup: CCC.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: igfxcui - igfxdev.dll (file missing)
O20 - Winlogon Notify: VESWinlogon - C:\Windows\SYSTEM32\VESWinlogon.dll
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Image Converter SCSI Service (ICScsiSV) - Sony Corporation - C:\Program Files\Sony\Image Converter 3\ICScsiSV.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 3\IcVzMon.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: SQL Server (MSSMLBIZ) (MSSQL$MSSMLBIZ) - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ (file missing)
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP (file missing)
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)
O23 - Service: VAIO Media Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
O23 - Service: VAIO Media Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-UCLS-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\UCLS\HTTP (file missing)
O23 - Service: VAIO Media Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO data Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO data XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

هذا التقرير اللي تبيه ؟؟
طيب ممكن تفهمني ايش يقووول
ايش السالفة ؟.

 

[keen]

الله يعينك اختي
بس انتي هدي اعصااااااابك ..


ولازم مع الجهاز سيديااات ....


فيها الملفات وازحمه اللي يحتاجها جهازك
دوريه بهداوه وبتلقينه.....



​