بسم الله الرحمن الرحيم

كل عام وانتم بخير برجاء مساعدتى فى جهازى كما فعلتم من قبل

1-- المشاكل
ا- ثقل بالجهاز
ب- نتشة او تقطيع عام فى الميديا والالعاب والتصفح
ج-وجود صفحة الجوجل مفتوحة دائما وبدون اتصال
د-المشكلة الاكبر
مافيش اى انتى فيروس عاوز يتسطب ولو اتسطب يتبخر
ولو دخلت على مواقع الفحص تختفى صفحة الانترنت

اختفاء بعض البرامج الاساسية لتشغيل المديا وضغط الملفات حتى بعد الويندوز

2 التقارير
طبعا البيتدفندر لايعمل عندى

--------------
تقرير الهايجاك
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 05:58:13 م, on 14/12/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\HyperTechnologies\Deep Freeze\DfServEx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HyperTechnologies\Deep Freeze\_$Df\FrzState.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\TVR\RecSche.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\TEMP\uvt3fg5.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\TEMP\yv3fgvw2i.exe
C:\WINDOWS\Temp\wpv911284198104.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Administrator\Desktop\New Folder\Zyzoom_HijackThis.exe
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Cooliris Plug-In for Internet Explorer - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - C:\Program Files\PicLensIE\cooliris.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [RecSche] "C:\TVR\RecSche.exe"
O4 - HKLM\..\Run: [userini] C:\WINDOWS\system32\userini.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [userini] C:\WINDOWS\system32\userini.exe
O4 - HKLM\..\Policies\Explorer\Run: [w37e3] C:\WINDOWS\TEMP\uvt3fg5.exe
O4 - HKLM\..\Policies\Explorer\Run: [userini] C:\WINDOWS\system32\userini.exe
O4 - HKCU\..\Policies\Explorer\Run: [userini] C:\WINDOWS\system32\userini.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Launch Cooliris - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files\PicLensIE\cooliris.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{7738DB05-A595-458D-8529-1BDF39974F9B}: NameServer = 163.121.128.134,163.121.128.135
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: DfLogon - C:\WINDOWS\SYSTEM32\LogonDll.dll
O23 - Service: DFServEx - Hyper Technologies Inc. - C:\Program Files\HyperTechnologies\Deep Freeze\DfServEx.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
--
End of file - 5295 bytes
------------------------------------------------
تقرير الرين سكنر
Runscanner logfile
* = signed file
- = file not found
General info
------------
Computer name : VOLXPPRO-F93DFA
Creation time : 14/12/2009 05:59:23 م
Hosts 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 6.0.2900.2180
OS : Microsoft Windows XP
OS Build : 2600
OS SP : Service Pack 2
RunScanner Version : 1.9.0.9
User Language : Arabic (Egypt)
User rights : Administrator
Windows folder : C:\WINDOWS
Running processes
-----------------
* C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe (Microsoft Corporation)
* C:\WINDOWS\system32\CSRSS.EXE (Microsoft Corporation)
C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
C:\Program Files\HyperTechnologies\Deep Freeze\DfServEx.exe (Hyper Technologies Inc.)
C:\Program Files\HyperTechnologies\Deep Freeze\_$Df\FrzState.exe (Hyper Technologies Inc.)
* C:\WINDOWS\system32\SVCHOST.EXE (Microsoft Corporation)
* C:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\SVCHOST.EXE (Microsoft Corporation)
* C:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* C:\WINDOWS\system32\SVCHOST.EXE (Microsoft Corporation)
C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
* C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
* C:\Program Files\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
* C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
* C:\WINDOWS\system32\lsass.exe (Microsoft Corporation)
C:\WINDOWS\system32\NOTEPAD.EXE (Microsoft Corporation)
C:\TVR\RecSche.exe
* C:\Documents and Settings\Administrator\Desktop\New Folder\runscanner.exe (Runscanner.net)
* C:\WINDOWS\system32\services.exe (Microsoft Corporation)
* C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe (Skype Technologies S.A.)
C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation)
C:\WINDOWS\TEMP\uvt3fg5.exe
C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
* C:\WINDOWS\system32\winlogon.exe (Microsoft Corporation)
* c:\windows\System32\smss.exe (Microsoft Corporation)
C:\WINDOWS\System32\Wbem\wmiprvse.exe (Microsoft Corporation)
C:\WINDOWS\Temp\wpv911284198104.exe
C:\WINDOWS\TEMP\yv3fgvw2i.exe
Unrated items
-------------
002 C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
002 C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
002 C:\TVR\RecSche.exe
002 C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
002 C:\WINDOWS\system32\userini.exe
003 C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
003 * C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
003 C:\WINDOWS\system32\userini.exe
008 C:\WINDOWS\system32\CTFMON.EXE (Microsoft Corporation)
009 C:\WINDOWS\system32\CTFMON.EXE (Microsoft Corporation)
010 C:\WINDOWS\system32\dllhost.exe (COM+ System Application)
010 C:\Program Files\HyperTechnologies\Deep Freeze\DfServEx.exe (DFServEx)
010 C:\WINDOWS\system32\msdtc.exe (Distributed Transaction Coordinator)
010 C:\WINDOWS\system32\imapi.exe (IMAPI CD-Burning COM Service)
010 C:\WINDOWS\System32\dmadmin.exe (Logical Disk Manager Administrative Service)
010 C:\WINDOWS\system32\dllhost.exe (MS Software Shadow Copy Provider)
010 C:\WINDOWS\system32\mnmsrvc.exe (NetMeeting Remote Desktop Sharing)
010 C:\WINDOWS\system32\smlogsvc.exe (Performance Logs and Alerts)
010 C:\WINDOWS\system32\spoolsv.exe (Print Spooler)
010 C:\WINDOWS\system32\rsvp.exe (QoS RSVP)
010 C:\WINDOWS\system32\sessmgr.exe (Remote Desktop Help Session Manager)
010 C:\Program Files\WinPcap\rpcapd.exe (Remote Packet Capture Protocol v.0 (experimental))
010 C:\WINDOWS\system32\locator.exe (Remote Procedure Call (RPC) Locator)
010 C:\WINDOWS\System32\SCardSvr.exe (Smart Card)
010 C:\WINDOWS\System32\ups.exe (Uninterruptible Power Supply)
010 C:\WINDOWS\System32\vssvc.exe (Volume Shadow Copy)
010 C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Windows CardSpace)
010 C:\WINDOWS\system32\msiexec.exe (Windows Installer)
010 C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\Presen tationFontCache.exe (Windows Presentation Foundation Font Cache 3.0.0.0)
010 C:\WINDOWS\system32\wbem\wmiapsrv.exe (WMI Performance Adapter)
011 C:\WINDOWS\system32\drivers\CXTUNER.sys (CxTuner, WDM TvTuner)
011 C:\WINDOWS\system32\drivers\cxvcap.sys (CxVCap, WDM Video Capture)
011 C:\WINDOWS\system32\drivers\CXXBAR.sys (CxXBar, WDM Crossbar)
011 C:\WINDOWS\system32\drivers\DepFrzHi.sys (DepFrzHi)
011 C:\WINDOWS\system32\drivers\DepFrzLo.sys (DepFrzLo)
011 C:\WINDOWS\system32\drivers\npf.sys (NetGroup Packet Filter Driver)
011 C:\WINDOWS\System32\drivers\protect.sys (protect)
011 * C:\WINDOWS\System32\Drivers\PxHelp20.sys (PxHelp20)
011 C:\WINDOWS\system32\drivers\vinyl97.sys (Vinyl AC'97 Audio Controller (WDM))
031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF42-A96B-11d1-9C6B-0000F875AC61}
031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF42-A96B-11d1-9C6B-0000F875AC61}
031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF40-A96B-11d1-9C6B-0000F875AC61}
032 C:\WINDOWS\system32\rdpclip.exe (Microsoft Corporation)
033 C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
034 C:\WINDOWS\Explorer.exe (Microsoft Corporation)
035 C:\Program Files\Outlook Express\setup50.exe (Microsoft Corporation) {7790769C-0471-11d2-AF11-00C04FA35D02}
035 C:\WINDOWS\System32\rundll32.exe (Microsoft Corporation) {4b218e3e-bc98-4770-93d3-2731b9329278}
035 C:\WINDOWS\system32\shmgrate.exe (Microsoft Corporation) >{26923b43-4d38-484f-9b9e-de460746276c}
035 C:\WINDOWS\system32\ie4uinit.exe (Microsoft Corporation) {89820200-ECBD-11cf-8B85-00AA005B4383}
035 C:\Program Files\Outlook Express\setup50.exe (Microsoft Corporation) {44BBA840-CC51-11CF-AAFA-00AA00B6015C}
035 C:\WINDOWS\inf\unregmp2.exe (Microsoft Corporation) >{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
035 C:\WINDOWS\system32\shmgrate.exe (Microsoft Corporation) >{881dd1c5-3dcf-431b-b061-f3f88e8be88a}
035 C:\WINDOWS\system32\regsvr32.exe (Microsoft Corporation) {2C7339CF-2B09-4501-B3F3-F3508C9228ED}
035 C:\WINDOWS\system32\regsvr32.exe (Microsoft Corporation) {89820200-ECBD-11cf-8B85-00AA005B4340}
042 C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) {FB5F1910-F110-11d2-BB9E-00C04F795683}
052 C:\Program Files\PicLensIE\cooliris.dll (Cooliris Inc.) {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA}
052 * C:\Program Files\Internet Download Manager\IDMIECC.dll (Tonec Inc.) {0055C089-8582-441B-A0BF-17B458C2A3A8}
052 C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) {DBC80044-A445-435b-BC74-9C25C1C588A9}
052 C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) {E7E6F031-17CE-4C07-BC86-EABFE594F69C}
061 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
066 C:\WINDOWS\system32\logonui.exe (Microsoft Corporation)
067 C:\WINDOWS\system32\LogonDll.dll
100 Start Page HKCU : http://www.google.com.eg/
105 Download with IDM : C:\Program Files\Internet Download Manager\IEExt.htm
105 تحميل الكل بواسطة Internet Download Manager : C:\Program Files\Internet Download Manager\IEGetAll.htm
105 تحميل بواسطة Internet Download Manager : C:\Program Files\Internet Download Manager\IEExt.htm
105 تحميل محتوى FLV بواسطة Internet Download Manager : C:\Program Files\Internet Download Manager\IEGetVL.htm
120 NameServer {7738DB05-A595-458D-8529-1BDF39974F9B} : 163.121.128.134,163.121.128.135
148 C:\WINDOWS\system32\ntvdm.exe (Microsoft Corporation)
166 C:\WINDOWS\system32\userini.exe
167 C:\WINDOWS\system32\userini.exe
167 C:\WINDOWS\TEMP\uvt3fg5.exe
171 C:\WINDOWS\System32\logon.scr (Microsoft Corporation)
173 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
176 C:\WINDOWS\system32\drwtsn32.exe (Microsoft Corporation)
210 C:\WINDOWS\system32\ntbackup.exe (Microsoft Corporation)
211 C:\WINDOWS\system32\cleanmgr.exe (Microsoft Corporation)
213 C:\WINDOWS\system32\Magnify.exe (Microsoft Corporation)
214 C:\WINDOWS\system32\Narrator.exe (Microsoft Corporation)
215 C:\WINDOWS\system32\osk.exe (Microsoft Corporation)
221 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
227 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
251 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
Missing files
-------------
011 C:\WINDOWS\system32\drivers\Abiosdsk.sys
011 C:\WINDOWS\system32\drivers\abp480n5.sys
011 C:\WINDOWS\system32\drivers\adpu160m.sys
011 C:\WINDOWS\system32\drivers\Aha154x.sys
011 C:\WINDOWS\system32\drivers\aic78u2.sys
011 C:\WINDOWS\system32\drivers\aic78xx.sys
011 C:\WINDOWS\system32\drivers\AliIde.sys
011 C:\WINDOWS\system32\drivers\amsint.sys
011 C:\WINDOWS\system32\drivers\asc.sys
011 C:\WINDOWS\system32\drivers\asc3350p.sys
011 C:\WINDOWS\system32\drivers\asc3550.sys
011 C:\WINDOWS\system32\drivers\Atdisk.sys
011 C:\WINDOWS\system32\drivers\cd20xrnt.sys
011 C:\WINDOWS\system32\drivers\CmdIde.sys
011 C:\WINDOWS\system32\drivers\Cpqarray.sys
011 C:\WINDOWS\system32\drivers\dac2w2k.sys
011 C:\WINDOWS\system32\drivers\dac960nt.sys
011 C:\WINDOWS\system32\drivers\dpti2o.sys
011 C:\WINDOWS\system32\drivers\hpn.sys
011 C:\WINDOWS\system32\drivers\i2omp.sys
011 C:\WINDOWS\system32\drivers\ini910u.sys
011 C:\WINDOWS\system32\drivers\mraid35x.sys
011 C:\WINDOWS\system32\drivers\perc2.sys
011 C:\WINDOWS\system32\drivers\perc2hib.sys
011 C:\WINDOWS\system32\drivers\ql1080.sys
011 C:\WINDOWS\system32\drivers\Ql10wnt.sys
011 C:\WINDOWS\system32\drivers\ql12160.sys
011 C:\WINDOWS\system32\drivers\ql1240.sys
011 C:\WINDOWS\system32\drivers\ql1280.sys
011 C:\WINDOWS\system32\drivers\Simbad.sys
011 C:\WINDOWS\system32\drivers\Sparrow.sys
011 C:\WINDOWS\system32\drivers\sym_hi.sys
011 C:\WINDOWS\system32\drivers\sym_u3.sys
011 C:\WINDOWS\system32\drivers\symc810.sys
011 C:\WINDOWS\system32\drivers\symc8xx.sys
011 C:\WINDOWS\system32\drivers\TosIde.sys
011 C:\WINDOWS\system32\drivers\ultra.sys
011 C:\WINDOWS\system32\drivers\ViaIde.sys
-------------------------------------------------------------------

ومقما الف شكر لكم جميعا








أكثر...