حل مشكلة تجمد سطح المكتب وشريط المهام :شرح بالصور ‘‘‘

[عـاشـق وهـم]

يعطيك العافيه اخوي

وجزاك الله كل خير

​

 

[عاشق العرب]

بارك الله فيك وعليك​

 

[boob77]

العفو اخواني بارك الله فيكم

 

[aily120]

مشكور
مشكورمشكور
مشكورمشكورمشكور
مشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكورمشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكورمشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكورمشكور
مشكورمشكورمشكورمشكور
مشكورمشكورمشكور
مشكورمشكور
مشكور ​

 

[alidayoub]

الف شكر لك اخي الغالي​

 

[مرسم]

يعطيك ربي الف الف عافيـــــــــه
مشكور وجزاك الله عنا ألف خير

 

[it-]

بـآرك الله فيـك

 

[محمد الزامل]

معلومة رائعة وفي وقتها

الله يرحم والديك

 

[naldnini]

بارك الله فيك ... تحيتي واحترامي

 

[boob77]

العفو اخواني بارك الله فيكم

وتسلمون على لطف ردكم ومروركم الغالي

كل الود والتقدير

،،،
،،
،

 

[DCJ_99]

بارك الله فيك

 

[سعود الشامان]

اخوي بوب لم اجد ولا مفتاح
واذا اردت ان اعمل مفتاح
اجد الخيارات معطله

ومشكلتي الاساسيه اذا ضغطت كلك يمين على اي ملف يعلق الجهاز

جهازي ويندز مكتبي ايسر

 

[boob77]

بارك الله فيك

وفيك بارك الله

اخوي بوب لم اجد ولا مفتاح
واذا اردت ان اعمل مفتاح
اجد الخيارات معطله

ومشكلتي الاساسيه اذا ضغطت كلك يمين على اي ملف يعلق الجهاز

جهازي ويندز مكتبي ايسر


​

حمل هذه الاداة واحفظها على سطح المكتب
http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات ويظهر لك تقرير ,, انسخه والصقه بردك القادم

 

[سعود الشامان]

مشكوووووووور بوب



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:18:56, on 29/09/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\S3trayp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\PixArt\PAC7302\Monitor.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TechSmith\Snagit 9\Snagit32.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TechSmith\Snagit 9\TSCHelp.exe
C:\Program Files\TechSmith\Snagit 9\SnagPriv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\TechSmith\Snagit 9\snagiteditor.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Windows Live Messenger Khalid Edition v5.5 Arabic\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\GetSmile\getsmile.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [S3Trayp] S3trayp.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE -a
O4 - HKLM\..\Run: [TrayServer] C:\Program Files\MAGIX\Movie_Edit_Pro_15_Plus_Download_version\TrayServer.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Snagit 9.lnk = C:\Program Files\TechSmith\Snagit 9\Snagit32.exe
O8 - Extra context menu item: &تصدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O14 - IERESET.INF: START_PAGE_URL=http://www.google.com.sa
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1254053111718
O16 - DPF: {6924091F-CD97-41E1-B1D4-D9079409D413} (IMCv1 Control) - http://67.228.235.175:1999/talk.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
--
End of file - 6692 bytes
​

 

[boob77]

مشكوووووووور بوب


Files\RichVideo.exe
--
End of file - 6692 bytes
​

احذف جوجل تول بار وطبق التالي

حمل هذه الاداة واحفظها على سطح المكتب
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes

انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

يجب ان تكون جميع النوافذ مغلقة تماما

 

[سعود الشامان]

هذا التقرير


ComboFix 09-09-28.01 - Almaher 09/30/2009 2:37.2.2 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.2.1256.966.1033.18.1918.1482 [GMT 3:00]
Running from: c:\documents and settings\Almaher\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1335 [VPS 090929-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\404Fix.exe
c:\windows\system32\Agent.OMZ.Fix.exe
c:\windows\system32\dumphive.exe
c:\windows\system32\IEDFix.C.exe
c:\windows\system32\IEDFix.exe
c:\windows\system32\o4Patch.exe
c:\windows\system32\Process.exe
c:\windows\system32\SrchSTS.exe
c:\windows\system32\tmp.reg
c:\windows\system32\VACFix.exe
c:\windows\system32\VCCLSID.exe
c:\windows\system32\WS2Fix.exe
.
((((((((((((((((((((((((( Files Created from 2009-08-28 to 2009-09-29 )))))))))))))))))))))))))))))))
.
2009-09-29 15:24 . 2009-09-29 15:24 -------- d-----w- c:\documents and settings\Almaher\Application Data\Faces
2009-09-29 11:21 . 2009-09-29 11:21 -------- d-----w- c:\program files\GlobFX
2009-09-28 15:22 . 2009-09-28 15:22 -------- d-----w- c:\documents and settings\All Users\Application Data\SWiSHMax2WorkFolder
2009-09-28 15:08 . 2009-09-28 15:08 -------- d-----w- c:\documents and settings\Almaher\Local Settings\Application Data\Thinstall
2009-09-28 15:07 . 2009-09-28 15:07 -------- d-----w- c:\program files\Common Files\SWiSHzone.com
2009-09-28 15:07 . 2004-03-29 12:23 90112 ----a-w- c:\windows\unvise32.exe
2009-09-28 15:07 . 2009-09-28 15:07 -------- d-----w- c:\program files\SWiSH Max2
2009-09-28 13:13 . 2009-09-28 13:13 -------- d-----w- C:\FOUND.004
2009-09-26 15:59 . 2009-09-26 15:59 -------- d-----w- c:\program files\Ask Search Assistant
2009-09-26 12:06 . 2007-10-04 14:42 48128 ----a-w- c:\windows\system32\Remove.exe
2009-09-26 12:06 . 2007-11-08 07:29 458752 ----a-w- c:\windows\system32\drivers\PAC7302.SYS
2009-09-26 12:06 . 2007-11-02 08:07 6656 ----a-w- c:\windows\system32\CoInst_071029.dll
2009-09-26 12:06 . 2009-09-26 12:06 -------- d-----w- c:\program files\ANC
2009-09-26 12:06 . 2006-10-12 08:57 14336 ----a-w- c:\windows\system32\P7302USD.dll
2009-09-26 12:06 . 2009-09-26 12:06 -------- d-----w- c:\windows\PixArt
2009-09-26 12:06 . 2009-09-26 12:06 -------- d-----w- c:\program files\Common Files\PAC7302
2009-09-26 10:21 . 2009-09-26 10:21 -------- d-----w- c:\program files\Noel Danjou
2009-09-26 08:56 . 2009-09-26 08:56 -------- d-----w- c:\documents and settings\Almaher\Application Data\Malwarebytes
2009-09-26 08:56 . 2009-09-10 11:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-26 08:56 . 2009-09-10 11:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-26 08:56 . 2009-09-26 08:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-09-26 08:56 . 2009-09-26 08:56 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-09-25 05:53 . 2009-09-25 05:53 -------- d-----w- c:\documents and settings\Almaher\Application Data\EmailNotifier
2009-09-25 05:12 . 2009-09-25 05:12 -------- d-----w- c:\documents and settings\Almaher\Application Data\ooVoo Details
2009-09-25 05:12 . 2009-09-25 05:12 -------- d-----w- c:\program files\oovootb
2009-09-25 05:12 . 2009-09-25 05:12 -------- d-----w- c:\documents and settings\Almaher\Application Data\oovootb
2009-09-25 05:12 . 2009-09-25 05:12 -------- d-----w- c:\documents and settings\All Users\Application Data\EmailNotifier
2009-09-25 05:12 . 2009-09-25 05:12 -------- d-----w- c:\program files\ooVoo
2009-09-24 17:55 . 2009-09-24 17:55 -------- d-----w- c:\documents and settings\Almaher\Local Settings\Application Data\Adobe
2009-09-24 08:17 . 2009-09-24 08:17 -------- d-----w- c:\program files\MSN Font Color Editor
2009-09-24 07:35 . 2009-09-24 07:35 -------- d-----w- c:\program files\Easiestutils
2009-09-24 05:49 . 2009-09-24 05:49 -------- d-----w- C:\FOUND.003
2009-09-24 03:47 . 2009-09-24 03:47 24 ----a-w- c:\windows\system32\msdrvn.drv
2009-09-24 03:47 . 2009-09-24 03:47 -------- d-----w- c:\program files\Xvideo
2009-09-19 04:52 . 2004-08-03 20:07 59264 ----a-w- c:\windows\system32\drivers\USBAUDIO.sys
2009-09-19 04:52 . 2004-08-03 20:07 59264 ----a-w- c:\windows\system32\dllcache\usbaudio.sys
2009-09-19 04:51 . 2004-08-03 20:08 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2009-09-19 04:51 . 2004-08-03 20:08 31616 ----a-w- c:\windows\system32\dllcache\usbccgp.sys
2009-09-18 06:09 . 2009-09-18 06:09 -------- d-----w- c:\documents and settings\Almaher\Application Data\CyberScrub
2009-09-18 06:09 . 2009-09-18 06:09 -------- d-----w- c:\documents and settings\Almaher\Application Data\cleaner
2009-09-18 05:20 . 2009-09-18 05:20 -------- d--h--w- c:\windows\PIF
2009-09-18 05:17 . 2009-09-18 05:18 -------- d-----w- c:\windows\system32\CatRoot2
2009-09-17 21:44 . 2009-09-17 21:44 -------- d-----w- c:\documents and settings\Almaher\Application Data\COWON
2009-09-17 20:15 . 2009-09-17 20:15 -------- d-----w- C:\Downloads
2009-09-17 20:09 . 2009-09-17 20:09 -------- d-----w- c:\documents and settings\Almaher\Application Data\Software Informer
2009-09-17 20:09 . 2009-09-17 20:09 -------- d-----w- c:\program files\Software Informer
2009-09-17 20:09 . 2009-09-17 20:09 -------- d-----w- c:\program files\Free Download Manager
2009-09-17 20:05 . 2009-09-17 20:05 -------- d-----w- c:\program files\Total Video Converter
2009-09-17 19:51 . 2009-09-17 19:51 -------- d-----w- c:\program files\4Easysoft Studio
2009-09-17 15:45 . 2009-09-17 15:45 -------- d-----w- C:\FOUND.002
2009-09-17 15:35 . 2009-09-17 15:35 -------- d-----w- C:\zPharaoh.dat
2009-09-17 15:35 . 2009-09-17 15:35 -------- d-----w- C:\tazebama.log
2009-09-17 15:35 . 2009-09-17 15:35 -------- d-----w- c:\documents and settings\tazebama.dll
2009-09-17 15:35 . 2009-09-17 15:35 -------- d-----w- c:\documents and settings\tazebama.dl_
2009-09-17 15:35 . 2009-09-17 15:35 -------- d-----w- c:\documents and settings\hook.dl_
2009-09-17 04:15 . 2009-09-17 06:17 32 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-09-14 07:40 . 2009-09-14 07:40 -------- d-----w- c:\documents and settings\Almaher\Application Data\MAGIX
2009-09-14 07:40 . 2009-09-14 07:40 -------- d-----w- c:\documents and settings\Almaher\Local Settings\Application Data\Xara
2009-09-14 07:39 . 2009-09-14 07:39 -------- d-----w- c:\program files\Common Files\xara
2009-09-14 07:39 . 2009-09-14 07:39 -------- d-----w- c:\program files\Common Files\MAGIX Shared
2009-09-14 07:37 . 2009-09-14 07:37 -------- d-----w- c:\program files\MAGIX
2009-09-14 07:37 . 2007-04-27 06:43 120200 ----a-w- c:\windows\system32\DLLDEV32i.dll
2009-09-14 07:37 . 2009-09-14 07:37 -------- d-----w- c:\windows\system32\MAGIX
2009-09-14 07:37 . 2008-04-15 12:14 700416 ----a-w- c:\windows\system32\mgxoschk.dll
2009-09-13 22:34 . 2009-09-13 22:34 -------- d-----w- c:\documents and settings\Almaher\Local Settings\Application Data\Google
2009-09-13 17:22 . 2004-08-03 20:08 26496 ----a-w- c:\windows\system32\dllcache\usbstor.sys
2009-09-13 16:42 . 2009-09-13 16:42 -------- d-----w- C:\FOUND.001
2009-09-12 17:45 . 2009-09-12 17:45 -------- d--h--w- c:\documents and settings\All Users\Application Data\{6CF41A80-289A-4651-96E0-C4829485C662}
2009-09-12 04:02 . 2009-09-12 04:02 -------- d-----w- c:\documents and settings\Almaher\Application Data\Individual Software
2009-09-12 04:01 . 2009-09-12 04:01 -------- d-----w- c:\documents and settings\All Users\Application Data\Protexis
2009-09-12 03:58 . 2009-09-12 03:59 -------- d-----w- c:\documents and settings\All Users\Application Data\Individual Software
2009-09-12 03:58 . 2009-09-12 03:58 -------- d-----w- c:\program files\Common Files\Individual Software
2009-09-12 03:58 . 2009-09-12 03:58 -------- d-----w- c:\program files\Individual Software
2009-09-10 10:52 . 2009-09-10 10:52 -------- d-----w- c:\program files\Windows Live Messenger Khalid Edition v5.5 Arabic
2009-09-09 13:52 . 2009-09-09 13:52 -------- d--h--w- c:\windows\system32\GroupPolicy
2009-09-09 09:27 . 2009-09-09 09:27 -------- d-----w- C:\FOUND.000
2009-09-09 03:33 . 2009-09-09 03:33 -------- d-----w- c:\documents and settings\Almaher\Local Settings\Application Data\WMTools Downloaded Files
2009-09-08 00:13 . 2009-09-08 00:13 -------- d-----w- c:\documents and settings\Almaher\Local Settings\Application Data\ACD Systems
2009-09-08 00:13 . 2009-09-08 00:13 -------- d-----w- c:\documents and settings\Almaher\Application Data\ACD Systems
2009-09-07 23:58 . 2009-09-07 23:58 -------- d-----w- c:\documents and settings\Almaher\Application Data\Thinstall
2009-09-07 14:43 . 2009-02-05 21:06 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-09-07 14:43 . 2009-02-05 21:06 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-09-07 14:43 . 2009-02-05 21:08 93296 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-09-07 14:43 . 2009-02-05 21:08 94032 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2009-09-07 14:43 . 2009-02-05 21:07 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-09-07 14:43 . 2009-02-05 21:07 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-09-07 14:43 . 2009-02-05 21:05 26944 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-09-07 14:43 . 2009-02-05 21:04 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-09-07 14:43 . 2009-02-05 21:11 1256296 ----a-w- c:\windows\system32\aswBoot.exe
2009-09-07 14:43 . 2009-09-07 14:43 -------- d-----w- c:\program files\Alwil Software
2009-09-07 05:13 . 2009-09-07 05:13 -------- d-----w- c:\program files\LtUcx
2009-09-06 16:36 . 2009-09-06 16:36 -------- d-----w- c:\program files\Trend Micro
2009-09-05 18:52 . 2009-09-05 18:52 -------- d-----w- c:\documents and settings\All Users\Application Data\TechSmith
2009-09-05 18:52 . 2009-09-05 18:52 -------- d-----w- c:\program files\TechSmith
2009-09-05 18:52 . 2009-09-05 18:52 -------- d-----w- c:\documents and settings\Almaher\Local Settings\Application Data\TechSmith
2009-09-05 18:47 . 2009-09-05 18:47 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-09-05 17:31 . 2009-09-05 17:31 -------- d-----w- c:\documents and settings\Almaher\Application Data\vlc
2009-09-05 17:17 . 2009-09-05 17:17 -------- d-----w- c:\documents and settings\Almaher\Application Data\dvdcss
2009-09-05 16:34 . 2009-09-05 16:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Messenger Plus!
2009-09-05 14:52 . 2009-09-05 14:52 -------- d-----w- c:\documents and settings\Almaher\Application Data\Sofrayt
2009-09-05 14:52 . 2009-09-05 14:52 -------- d-----w- c:\program files\GetSmile
2009-09-05 14:31 . 2009-09-05 14:31 -------- d-----w- c:\documents and settings\Almaher\Application Data\Media Player Classic
2009-09-05 14:28 . 2009-09-05 14:28 -------- d-----w- c:\documents and settings\Almaher\Contacts
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-17 20:19 . 2009-08-08 15:02 97752 ----a-w- c:\documents and settings\Almaher\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-09-17 06:17 . 2009-09-17 04:15 32 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-09-14 07:38 . 2009-09-14 07:38 -------- d-----w- c:\documents and settings\All Users\Application Data\MAGIX
2009-08-08 16:31 . 2009-08-08 16:16 55656 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2009-08-08 16:07 . 2009-08-08 16:07 -------- d-----w- c:\documents and settings\Almaher\Application Data\Skype
2009-08-08 16:07 . 2009-08-08 16:07 -------- d-----w- c:\program files\Common Files\Skype
2009-08-08 16:07 . 2009-08-08 16:07 -------- d-----r- c:\program files\Skype
2009-08-08 16:06 . 2009-08-08 16:06 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2009-08-08 16:02 . 2009-08-08 16:02 -------- d-----w- c:\program files\Typing Arabic
2009-08-08 16:00 . 2009-08-08 16:00 -------- d-----w- c:\program files\Nero
2009-08-08 16:00 . 2009-08-08 16:00 -------- d-----w- c:\program files\Common Files\Ahead
2009-08-08 15:59 . 2009-08-08 15:59 -------- d-----w- c:\program files\VideoLAN
2009-08-08 15:59 . 2009-08-08 15:59 47104 ------w- c:\windows\AKDeInstall.exe
2009-08-08 15:59 . 2009-08-08 15:59 -------- d-----w- c:\program files\mpegable
2009-08-08 15:58 . 2009-08-08 15:58 -------- d-----w- c:\program files\K-Lite Codec Pack
2009-08-08 15:57 . 2009-08-08 15:57 -------- d-----w- c:\program files\JetAudio
2009-08-08 15:57 . 2009-08-08 15:57 -------- d-----w- c:\program files\Common Files\COWON
2009-08-08 15:57 . 2009-08-08 15:57 -------- d-----w- c:\documents and settings\Almaher\Application Data\InstallShield
2009-08-08 15:55 . 2009-08-08 15:55 81920 ----a-w- c:\documents and settings\Almaher\Application Data\ezpinst.exe
2009-08-08 15:55 . 2009-08-08 15:55 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2009-08-08 15:55 . 2009-08-08 15:55 47360 ----a-w- c:\documents and settings\Almaher\Application Data\pcouffin.sys
2009-08-08 15:55 . 2009-08-08 15:55 -------- d-----w- c:\documents and settings\Almaher\Application Data\Vso
2009-08-08 15:55 . 2009-08-08 15:55 -------- d-----w- c:\program files\Video Convert Master
2009-08-08 15:55 . 2009-08-08 15:55 -------- d-----w- c:\program files\Common Files\xing shared
2009-08-08 15:54 . 2009-08-08 15:53 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-08-08 15:54 . 2009-08-08 15:53 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-08-08 15:54 . 2009-08-08 15:54 -------- d-----w- c:\program files\Common Files\Real
2009-08-08 15:54 . 2009-08-08 15:54 -------- d-----w- c:\program files\Real
2009-08-08 15:54 . 2009-08-08 15:54 -------- d-----w- c:\documents and settings\All Users\Application Data\CyberLink
2009-08-08 15:53 . 2009-08-08 15:53 -------- d-----w- c:\program files\CyberLink
2009-08-08 15:51 . 2009-08-08 15:34 286720 ------w- c:\windows\Setup1.exe
2009-08-08 15:51 . 2009-08-08 15:51 -------- d-----w- c:\program files\Quranzu1
2009-08-08 15:48 . 2009-08-08 15:47 -------- d-----w- c:\documents and settings\Almaher\Application Data\Paltalk
2009-08-08 15:47 . 2009-08-08 15:47 -------- d-----w- c:\program files\Paltalk Messenger
2009-08-08 15:47 . 2009-08-08 15:47 -------- d-----w- c:\documents and settings\All Users\Application Data\Yahoo!
2009-08-08 15:47 . 2009-08-08 15:47 -------- d-----w- c:\program files\Yahoo!
2009-08-08 15:46 . 2009-08-08 15:46 -------- d-----w- c:\program files\Windows Live
2009-08-08 15:46 . 2009-08-08 15:46 -------- d-----w- c:\program files\Messenger Plus! Live
2009-08-08 15:45 . 2009-08-08 15:45 -------- d-----w- c:\program files\MSN Messenger
2009-08-08 15:43 . 2009-08-08 15:43 -------- d-----w- c:\documents and settings\Almaher\Application Data\IDM
2009-08-08 15:43 . 2009-08-08 15:43 -------- d-----w- c:\documents and settings\Almaher\Application Data\DMCache
2009-08-08 15:43 . 2009-08-08 15:43 -------- d-----w- c:\program files\Internet Download Manager
2009-08-08 15:42 . 2009-08-08 15:42 -------- d-----w- c:\program files\Google
2009-08-08 15:42 . 2009-08-08 15:42 -------- d-----w- c:\program files\مشغل الفلاش العربي
2009-08-08 15:41 . 2009-08-08 15:41 -------- d-----w- c:\program files\Common Files\Adobe AIR
2009-08-08 15:37 . 2009-08-08 15:37 -------- d-----w- c:\documents and settings\All Users\Application Data\ACD Systems
2009-08-08 15:37 . 2009-08-08 15:37 -------- d-----w- c:\program files\Common Files\ACD Systems
2009-08-08 15:37 . 2009-08-08 15:37 -------- d-----w- c:\program files\ACD Systems
2009-08-08 15:34 . 2009-08-08 15:34 -------- d-----w- c:\program files\Golden Al-Wafi Translator
2009-08-08 15:34 . 2009-08-08 15:34 73216 ------w- c:\windows\ST6UNST.EXE
2009-08-08 15:29 . 2009-08-08 15:29 -------- d-----w- c:\program files\Common Files\Adobe
2009-08-08 15:26 . 2009-08-08 15:25 -------- d-----w- c:\program files\Microsoft.NET
2009-08-08 15:25 . 2009-08-08 15:25 -------- d-----w- c:\program files\Microsoft Works
2009-08-08 15:20 . 2009-08-08 15:20 -------- d-----w- c:\program files\Motorola
2009-08-08 15:14 . 2009-08-08 15:14 -------- d-----w- c:\program files\Realtek
2009-08-08 15:14 . 2009-08-08 15:14 315392 ----a-w- c:\windows\HideWin.exe
2009-08-08 15:09 . 2009-08-08 15:09 -------- d-----w- c:\program files\S3
2009-08-08 15:09 . 2009-08-08 15:09 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-08-08 15:08 . 2009-08-08 15:08 -------- d-----w- c:\program files\VIA
2009-08-08 15:08 . 2009-08-08 15:08 -------- d-----w- c:\program files\Common Files\InstallShield
2009-08-08 14:55 . 2009-08-08 14:55 -------- d-----w- c:\program files\microsoft frontpage
2009-08-08 14:51 . 2009-08-08 14:51 21640 ----a-w- c:\windows\system32\emptyregdb.dat
.
------- Sigcheck -------
[-] 2008-06-26 . 6E266AAF4168B3569A330C61AB01F6B4 . 1580544 . . [5.1.2600.2180] . . c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-09-26_07.52.16 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-09-28 09:26 . 2009-09-28 09:26 16384 c:\windows\Temp\Perflib_Perfdata_55c.dat
+ 2009-09-26 12:08 . 2004-08-03 21:56 53760 c:\windows\system32\vfwwdm32.dll
- 2004-08-03 21:56 . 2004-08-03 15:05 17408 c:\windows\system32\msyuv.dll
+ 2004-08-03 21:56 . 2004-08-03 21:56 17408 c:\windows\system32\msyuv.dll
- 2004-08-03 21:56 . 2004-08-03 15:05 47616 c:\windows\system32\iyuv_32.dll
+ 2004-08-03 21:56 . 2004-08-03 21:56 47616 c:\windows\system32\iyuv_32.dll
+ 2009-09-26 12:08 . 2004-08-03 20:10 19328 c:\windows\system32\drivers\WSTCODEC.SYS
+ 2009-09-26 12:08 . 2004-08-03 20:10 15360 c:\windows\system32\drivers\StreamIP.sys
+ 2009-09-26 12:08 . 2004-08-03 20:10 11136 c:\windows\system32\drivers\SLIP.sys
+ 2009-09-26 12:08 . 2004-08-03 20:10 10880 c:\windows\system32\drivers\NdisIP.sys
+ 2009-09-26 12:08 . 2004-08-03 20:10 85376 c:\windows\system32\drivers\NABTSFEC.sys
+ 2009-09-26 12:08 . 2004-08-03 20:10 17024 c:\windows\system32\drivers\CCDECODE.sys
+ 2009-09-26 12:08 . 2004-08-03 20:10 19328 c:\windows\system32\dllcache\wstcodec.sys
+ 2009-09-26 12:08 . 2004-08-03 21:56 53760 c:\windows\system32\dllcache\vfwwdm32.dll
+ 2009-09-26 12:08 . 2004-08-03 20:10 15360 c:\windows\system32\dllcache\streamip.sys
+ 2009-09-26 12:08 . 2004-08-03 20:10 11136 c:\windows\system32\dllcache\slip.sys
+ 2009-09-26 12:08 . 2004-08-03 20:10 10880 c:\windows\system32\dllcache\ndisip.sys
+ 2009-09-26 12:08 . 2004-08-03 20:10 85376 c:\windows\system32\dllcache\nabtsfec.sys
+ 2004-08-03 21:56 . 2004-08-03 21:56 17408 c:\windows\system32\dllcache\msyuv.dll
+ 2004-08-03 21:56 . 2004-08-03 21:56 47616 c:\windows\system32\dllcache\iyuv_32.dll
+ 2009-09-26 12:08 . 2004-08-03 20:10 17024 c:\windows\system32\dllcache\ccdecode.sys
+ 2001-08-17 19:36 . 2001-08-17 19:36 8192 c:\windows\system32\tsbyuv.dll
- 2001-08-17 19:36 . 2001-08-23 06:00 8192 c:\windows\system32\tsbyuv.dll
+ 2009-09-26 12:08 . 2004-08-03 19:58 5504 c:\windows\system32\drivers\MSTEE.sys
+ 2001-08-17 19:36 . 2001-08-17 19:36 8192 c:\windows\system32\dllcache\tsbyuv.dll
+ 2009-09-26 12:08 . 2004-08-03 19:58 5504 c:\windows\system32\dllcache\mstee.sys
+ 2009-08-08 14:52 . 2008-10-16 11:12 202776 c:\windows\system32\wuweb.dll
- 2004-08-03 21:56 . 2004-08-03 15:05 294912 c:\windows\system32\msh263.drv
+ 2004-08-03 21:56 . 2004-08-03 21:56 294912 c:\windows\system32\msh263.drv
+ 2004-08-03 20:15 . 2004-08-03 20:15 140928 c:\windows\system32\drivers\ks.sys
- 2004-08-03 20:15 . 2004-08-03 15:05 140928 c:\windows\system32\drivers\ks.sys
+ 2009-08-08 14:52 . 2008-10-16 11:12 202776 c:\windows\system32\dllcache\wuweb.dll
+ 2004-08-03 20:15 . 2004-08-03 20:15 140928 c:\windows\system32\dllcache\ks.sys
+ 2009-09-26 12:06 . 2007-08-09 14:47 458752 c:\windows\PixArt\PAC7302\PASnap.exe
+ 2009-09-26 12:06 . 2006-11-03 08:01 319488 c:\windows\PixArt\PAC7302\Monitor.exe
+ 2009-09-26 12:06 . 2007-10-30 11:04 159744 c:\windows\PixArt\PAC7302\AmCap.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-05-27 2815408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-09-14 577536]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-19 198160]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"DWPersistentQueuedReporting"="c:\program files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE" [2005-04-25 36040]
"TrayServer"="c:\program files\MAGIX\Movie_Edit_Pro_15_Plus_Download_version\TrayServer.exe" [2008-11-13 90112]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"PAC7302_Monitor"="c:\windows\PixArt\PAC7302\Monitor.exe" [2006-11-03 319488]
"VTTimer"="VTTimer.exe" - c:\windows\system32\VTTimer.exe [2006-09-21 53248]
"S3Trayp"="S3trayp.exe" - c:\windows\system32\S3Trayp.exe [2007-06-11 176128]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2007-10-16 16855552]
"SkyTel"="SkyTel.EXE" - c:\windows\SkyTel.exe [2007-10-11 1826816]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Snagit 9.lnk - c:\program files\TechSmith\Snagit 9\Snagit32.exe [2009-4-17 7226184]
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^PalTalk.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\PalTalk.lnk
backup=c:\windows\pss\PalTalk.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\Windows Live Messenger Khalid Edition v5.5 Arabic\\MSNMSGR.EXE"=
"c:\\Program Files\\ooVoo\\ooVoo.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*isabledxpsp2res.dll,-22009
"443:TCP"= 443:TCPoVoo TCP المنفذ 443
"443:UDP"= 443:UDPoVoo UDP المنفذ 443
"37674:TCP"= 37674:TCPoVoo TCP المنفذ 37674
"37674:UDP"= 37674:UDPoVoo UDP المنفذ 37674
"37675:UDP"= 37675:UDPoVoo UDP المنفذ 37675
R0 ViBus;ViBus;c:\windows\system32\drivers\ViBus.sys [08/08/2009 06:09 م 16896]
R0 ViPrt;VIA SATA IDE Device Driver;c:\windows\system32\drivers\ViPrt.sys [08/08/2009 06:09 م 52224]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [07/09/2009 05:43 م 114768]
R1 BIOS;BIOS;c:\windows\system32\drivers\BIOS.sys [08/08/2009 06:07 م 13696]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [07/09/2009 05:43 م 20560]
R3 PAC7302;USB PC CAMERA;c:\windows\system32\drivers\PAC7302.SYS [26/09/2009 03:06 م 458752]
R3 S3GIGP;S3GIGP;c:\windows\system32\drivers\S3gIGPm.sys [11/07/2007 01:08 م 714240]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{FAAD2EFA-8172-F74F-1BBF-9B364E2BCC88}]
c:\docume~1\Almaher\LOCALS~1\Temp\IXP000.TMP\Data.exe
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
IE: &تصدير إلى Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى FLV بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetVL.htm
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-30 02:40
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2009-09-29 2:41
ComboFix-quarantined-files.txt 2009-09-29 23:41
ComboFix2.txt 2009-09-26 07:53
Pre-Run: 23,017,357,312 bytes free
Post-Run: 25,074,499,584 bytes free
318




اخوي بوب تظهر لي هذي الرساله
هل هي المطالبه بتحديث الويندز ؟ وما العمل ؟

وعندي الوقت نظام 24 ساعه
لو تكرمت كيف اخليه نظام 12 ساعه​

 

[boob77]

بالنسبة للرسالة الي جنب الساعة شوف هالموضوع

http://www.zyzoom.org/vb/showthread.php?t=23283

وعشان الوقت نزل هالشرح

http://www.zshare.net/download/66353961e15969a2/

 

[اسوري]

جزيت الجنان وطاعة الرحمن
مشكور

 

[boob77]

جزيت الجنان وطاعة الرحمن
مشكور

آآمين . وياك يالغالي


​

 

[هتـلر]

مشكوووووووووور وتسلم اياديك