الجهاز يعيد تشغيله

#1 10-26-2010

السلام عليكم

جهازي فجاه اذا شغلته تطلع لي شاشه زرقاء مع ككلام انجليزي ويعيد تشغيله وبسرعه تروح الشاشه الزرقاء

وش السالفه ماادري

والحين انا دخلت على ساف مود وسويت استعاده مافيه الارقم يستعيده ويقول لي لايمكن

وهذا التقريرمن السوف مود اذا يصلح ماادري

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:45:50 ص, on 26/10/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Temp\wpv691288003773.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.live.com/.../ProtectLinksVb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.live.com/.../ProtectLinksVb
R3 - URLSearchHook: (no name) - {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - (no file)
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,,c:\prog ram files\microsoft\desktoplayer.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrow serrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [BlackBerryAutoUpdate] C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [ptiyqyva¦] C:\WINDOWS\System32\ptiyqyva¦.exe
O4 - HKLM\..\Run: [ptiyqyva{] C:\WINDOWS\System32\ptiyqyva{.exe
O4 - HKLM\..\Run: [ptiyqyva؟] C:\WINDOWS\System32\ptiyqyva؟.exe
O4 - HKLM\..\Run: [ptiyqyva^] C:\WINDOWS\System32\ptiyqyva^.exe
O4 - HKLM\..\Run: [ptiyqyvaب] C:\WINDOWS\System32\ptiyqyvaب.exe
O4 - HKLM\..\Run: [ptiyqyvaJ] C:\WINDOWS\System32\ptiyqyvaJ.exe
O4 - HKLM\..\Run: [smwcore] C:\WINDOWS\system32\advpack.exe
O4 - HKLM\..\Run: [ptiyqyvaœ] C:\WINDOWS\System32\ptiyqyvaœ.exe
O4 - HKLM\..\Run: [ptiyqyvah] C:\WINDOWS\System32\ptiyqyvah.exe
O4 - HKLM\..\Run: [ptiyqyvaé] C:\WINDOWS\System32\ptiyqyvaé.exe
O4 - HKLM\..\Run: [userini] C:\WINDOWS\system32\userini.exe
O4 - HKLM\..\Run: [wuaucldt] c:\windows\system32\wuaucldt.exe
O4 - HKLM\..\Run: [ptiyqyvaG] C:\WINDOWS\System32\ptiyqyvaG.exe
O4 - HKLM\..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe
O4 - HKLM\..\Run: [ptiyqyvaë] C:\WINDOWS\System32\ptiyqyvaë.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [ptiyqyva؟] C:\Documents and Settings\Free User\ptiyqyva؟.exe
O4 - HKCU\..\Run: [ptiyqyva^] C:\Documents and Settings\Free User\ptiyqyva^.exe
O4 - HKCU\..\Run: [ptiyqyva{] C:\Documents and Settings\Free User\ptiyqyva{.exe
O4 - HKCU\..\Run: [ptiyqyvaœ] C:\Documents and Settings\Free User\ptiyqyvaœ.exe
O4 - HKCU\..\Run: [ptiyqyvah] C:\Documents and Settings\Free User\ptiyqyvah.exe
O4 - HKCU\..\Run: [ptiyqyvaé] C:\Documents and Settings\Free User\ptiyqyvaé.exe
O4 - HKCU\..\Run: [userini] C:\WINDOWS\system32\userini.exe
O4 - HKCU\..\Run: [ptiyqyvas] C:\Documents and Settings\Free User\ptiyqyvas.exe
O4 - HKCU\..\Run: [ptiyqyvav] C:\Documents and Settings\Free User\ptiyqyvav.exe
O4 - HKCU\..\Run: [ptiyqyva¥] C:\Documents and Settings\Free User\ptiyqyva¥.exe
O4 - HKCU\..\Run: [ptiyqyvae] C:\Documents and Settings\Free User\ptiyqyvae.exe
O4 - HKCU\..\Run: [ptiyqyva4] C:\Documents and Settings\Free User\ptiyqyva4.exe
O4 - HKCU\..\Run: [ptiyqyvan] C:\Documents and Settings\Free User\ptiyqyvan.exe
O4 - HKCU\..\Run: [ptiyqyvay] C:\Documents and Settings\Free User\ptiyqyvay.exe
O4 - HKCU\..\Run: [ptiyqyvac] C:\Documents and Settings\Free User\ptiyqyvac.exe
O4 - HKCU\..\Run: [ptiyqyva·] C:\Documents and Settings\Free User\ptiyqyva·.exe
O4 - HKCU\..\Run: [ptiyqyvaى] C:\Documents and Settings\Free User\ptiyqyvaى.exe
O4 - HKCU\..\Run: [ptiyqyvaغ] C:\Documents and Settings\Free User\ptiyqyvaغ.exe
O4 - HKCU\..\Run: [ptiyqyva'] C:\Documents and Settings\Free User\ptiyqyva'.exe
O4 - HKCU\..\Run: [ptiyqyvaڈ] C:\Documents and Settings\Free User\ptiyqyvaڈ.exe
O4 - HKCU\..\Run: [ptiyqyva#] C:\Documents and Settings\Free User\ptiyqyva#.exe
O4 - HKCU\..\Run: [ptiyqyvaک] C:\Documents and Settings\Free User\ptiyqyvaک.exe
O4 - HKCU\..\Run: [ptiyqyvaه] C:\Documents and Settings\Free User\ptiyqyvaه.exe
O4 - HKCU\..\Run: [ptiyqyvaڑ] C:\Documents and Settings\Free User\ptiyqyvaڑ.exe
O4 - HKCU\..\Run: [ptiyqyva~] C:\Documents and Settings\Free User\ptiyqyva~.exe
O4 - HKCU\..\Run: [ptiyqyvaf] C:\Documents and Settings\Free User\ptiyqyvaf.exe
O4 - HKCU\..\Run: [ptiyqyvad] C:\Documents and Settings\Free User\ptiyqyvaD.exe
O4 - HKCU\..\Run: [ptiyqyva»] C:\Documents and Settings\Free User\ptiyqyva».exe
O4 - HKCU\..\Run: [ptiyqyva)] C:\Documents and Settings\Free User\ptiyqyva).exe
O4 - HKCU\..\Run: [ptiyqyva$] C:\Documents and Settings\Free User\ptiyqyva$.exe
O4 - HKLM\..\Policies\Explorer\Run: [4bsr] C:\DOCUME~1\FREEUS~1\LOCALS~1\Temp\0did.exe
O4 - HKLM\..\Policies\Explorer\Run: [cnen0m] C:\WINDOWS\TEMP\4ikzhd.exe
O4 - HKLM\..\Policies\Explorer\Run: [userini] C:\WINDOWS\system32\userini.exe
O4 - HKCU\..\Policies\Explorer\Run: [userini] C:\WINDOWS\system32\userini.exe
O4 - HKUS\S-1-5-18\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [ptiyqyva¦] C:\Documents and Settings\Free User\ptiyqyva¦.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [ptiyqyva{] C:\Documents and Settings\Free User\ptiyqyva{.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [ptiyqyvaب] C:\Documents and Settings\Free User\ptiyqyvaب.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [ptiyqyvaJ] C:\Documents and Settings\Free User\ptiyqyvaJ.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [wuaucldt] c:\documents and settings\free user\wuaucldt.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [ptiyqyvaG] C:\WINDOWS\system32\config\systemprofile\ptiyqyvaG .exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [ptiyqyvaë] C:\Documents and Settings\Free User\ptiyqyvaë.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - S-1-5-18 Startup: WinUpdate.lnk = C:\Documents and Settings\Free User\Application Data\Spiritsoft\uplwindrv54\msftstp.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: WinUpdate.lnk = C:\Documents and Settings\Free User\Application Data\Spiritsoft\uplwindrv54\msftstp.exe (User 'Default user')
O4 - Startup: WinUpdate.lnk = C:\Documents and Settings\Free User\Application Data\Spiritsoft\uplwindrv54\msftstp.exe
O4 - Global Startup: Desktop Manager.lnk = C:\Program Files\Research In Motion\BlackBerry\DesktopMgr.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: إرسال إلى &جهاز Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: إرسال إلى Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: إضافة إلى حاجب إعلان الشعار - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: تدوين هذا في المدونة - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &تدوين هذا في Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/.../ProtectLinksVb
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: Video***********Service - Unknown owner - C:\PROGRA~1\SPEEDB~1\Video***********Service.exe (file missing)

--
End of file - 12852 bytes

أكثر...

المواضيع المتشابهه
الموضوع	كاتب الموضوع	المنتدى	مشاركات	آخر مشاركة
الجهاز يعيد التشغيل لوحدة ..!!	RSS	Arabic Rss	0	10-01-2010 05:54 PM
الجهاز بعد تشغيله بدقائق يبدأ بالبطء	RSS	Arabic Rss	0	09-27-2010 01:45 AM
الجهاز رفض يشتغل يعيد التشغيل على طول	RSS	Arabic Rss	0	06-16-2010 02:44 AM
صباح الخيرات -- جهازي يعيد تشغيله على كيفه	RSS	Arabic Rss	0	06-15-2010 08:28 AM
الجهاز يعيد التشغيل بروحه	RSS	Arabic Rss	0	06-12-2010 07:44 PM

الجهاز يعيد تشغيله

Arabic Rss