السلامـ عليكمـ
هذا تقرير نتيجة فحص الكمبيوتر ببرنامج Avira
=============================================
Avira AntiVir Personal
Report file date: Sunday, December 18, 2011 06:54
Scanning for 3585463 virus strains and unwanted programs.
The program is running as an unrestricted full version.
Online services are available:
Licensee : Avira AntiVir Personal - Free Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows XP
Windows version : (Service Pack 2) [5.1.2600]
Boot mode : Normally booted
Username : SYSTEM
Computer name : LALA-3AD81613E2
Version information:
BUILD.DAT : 10.2.0.704 35934 Bytes 28/09/2011 13:34:00
AVSCAN.EXE : 10.3.0.7 484008 Bytes 21/07/2011 03:27:06
AVSCAN.DLL : 10.0.5.0 47464 Bytes 21/07/2011 03:27:06
LUKE.DLL : 10.3.0.5 45416 Bytes 21/07/2011 03:27:08
LUKERES.DLL : 10.0.0.1 12648 Bytes 11/02/2010 07:40:49
AVSCPLR.DLL : 10.3.0.7 119656 Bytes 21/07/2011 03:27:08
AVREG.DLL : 10.3.0.9 88833 Bytes 21/07/2011 03:27:08
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 17:05:36
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 22:23:50
VBASE002.VDF : 7.11.3.0 1950720 Bytes 09/02/2011 08:27:11
VBASE003.VDF : 7.11.5.225 1980416 Bytes 07/04/2011 15:21:40
VBASE004.VDF : 7.11.8.178 2354176 Bytes 31/05/2011 03:27:04
VBASE005.VDF : 7.11.10.251 1788416 Bytes 07/07/2011 03:27:05
VBASE006.VDF : 7.11.13.60 6411776 Bytes 16/08/2011 17:31:00
VBASE007.VDF : 7.11.15.106 2389504 Bytes 05/10/2011 15:33:16
VBASE008.VDF : 7.11.18.32 2132992 Bytes 24/11/2011 03:02:08
VBASE009.VDF : 7.11.18.33 2048 Bytes 24/11/2011 03:02:09
VBASE010.VDF : 7.11.18.34 2048 Bytes 24/11/2011 03:02:09
VBASE011.VDF : 7.11.18.35 2048 Bytes 24/11/2011 03:02:10
VBASE012.VDF : 7.11.18.36 2048 Bytes 24/11/2011 03:02:10
VBASE013.VDF : 7.11.18.89 204800 Bytes 28/11/2011 03:02:22
VBASE014.VDF : 7.11.18.145 143872 Bytes 01/12/2011 03:02:28
VBASE015.VDF : 7.11.18.180 173056 Bytes 02/12/2011 03:02:32
VBASE016.VDF : 7.11.18.208 164864 Bytes 05/12/2011 03:02:37
VBASE017.VDF : 7.11.18.239 177152 Bytes 06/12/2011 03:02:41
VBASE018.VDF : 7.11.19.36 171520 Bytes 09/12/2011 03:02:44
VBASE019.VDF : 7.11.19.77 144896 Bytes 13/12/2011 03:02:48
VBASE020.VDF : 7.11.19.115 177664 Bytes 15/12/2011 14:48:28
VBASE021.VDF : 7.11.19.137 139776 Bytes 16/12/2011 14:48:31
VBASE022.VDF : 7.11.19.138 2048 Bytes 16/12/2011 14:48:31
VBASE023.VDF : 7.11.19.139 2048 Bytes 16/12/2011 14:48:31
VBASE024.VDF : 7.11.19.140 2048 Bytes 16/12/2011 14:48:31
VBASE025.VDF : 7.11.19.141 2048 Bytes 16/12/2011 14:48:32
VBASE026.VDF : 7.11.19.142 2048 Bytes 16/12/2011 14:48:32
VBASE027.VDF : 7.11.19.143 2048 Bytes 16/12/2011 14:48:32
VBASE028.VDF : 7.11.19.144 2048 Bytes 16/12/2011 14:48:32
VBASE029.VDF : 7.11.19.145 2048 Bytes 16/12/2011 14:48:32
VBASE030.VDF : 7.11.19.146 2048 Bytes 16/12/2011 14:48:32
VBASE031.VDF : 7.11.19.153 23552 Bytes 16/12/2011 14:48:33
Engineversion : 8.2.8.8
AEVDF.DLL : 8.1.2.2 106868 Bytes 08/11/2011 15:35:18
AESCRIPT.DLL : 8.1.3.92 495996 Bytes 18/12/2011 14:50:21
AESCN.DLL : 8.1.7.2 127349 Bytes 10/01/2011 22:23:26
AESBX.DLL : 8.2.4.5 434549 Bytes 14/12/2011 03:04:25
AERDL.DLL : 8.1.9.15 639348 Bytes 15/09/2011 02:44:12
AEPACK.DLL : 8.2.15.1 770423 Bytes 14/12/2011 03:04:13
AEOFFICE.DLL : 8.1.2.24 201084 Bytes 18/12/2011 14:50:17
AEHEUR.DLL : 8.1.3.8 4231543 Bytes 18/12/2011 14:50:14
AEHELP.DLL : 8.1.18.0 254327 Bytes 08/11/2011 15:34:16
AEGEN.DLL : 8.1.5.17 405877 Bytes 14/12/2011 03:03:27
AEEMU.DLL : 8.1.3.0 393589 Bytes 10/01/2011 22:23:18
AECORE.DLL : 8.1.24.2 201080 Bytes 18/12/2011 14:48:36
AEBB.DLL : 8.1.1.0 53618 Bytes 10/01/2011 22:23:18
AVWINLL.DLL : 10.0.0.0 19304 Bytes 10/01/2011 22:23:32
AVPREF.DLL : 10.0.3.2 44904 Bytes 21/07/2011 03:27:06
AVREP.DLL : 10.0.0.10 174120 Bytes 21/05/2011 10:51:15
AVARKT.DLL : 10.0.26.1 255336 Bytes 21/07/2011 03:27:06
AVEVTLOG.DLL : 10.0.0.9 203112 Bytes 21/07/2011 03:27:06
SQLITE3.DLL : 3.6.19.0 355688 Bytes 17/06/2010 22:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 10/01/2011 22:23:31
NETNT.DLL : 10.0.0.0 11624 Bytes 17/06/2010 22:27:21
RCIMAGE.DLL : 10.0.0.35 2589544 Bytes 21/07/2011 03:27:04
RCTEXT.DLL : 10.0.64.0 97640 Bytes 21/07/2011 03:27:04
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: D:\Program Files\Avira\AntiVir Desktop\sysscan.avp
Logging.............................: Default
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:, E:, F:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: Advanced
Start of the scan: Sunday, December 18, 2011 06:54
Starting search for hidden objects.
An ARK library instance is already running.
The scan of running processes will be started
Scan process 'avscan.exe' - '64' Module(s) have been scanned
Scan process 'avscan.exe' - '63' Module(s) have been scanned
Scan process 'avcenter.exe' - '105' Module(s) have been scanned
Scan process 'iexplore.exe' - '126' Module(s) have been scanned
Scan process 'iexplore.exe' - '147' Module(s) have been scanned
Scan process 'iexplore.exe' - '133' Module(s) have been scanned
Scan process 'iexplore.exe' - '76' Module(s) have been scanned
Scan process 'alg.exe' - '35' Module(s) have been scanned
Scan process 'wscntfy.exe' - '21' Module(s) have been scanned
Scan process 'BsHelpCS.exe' - '21' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '58' Module(s) have been scanned
Scan process 'flux.exe' - '50' Module(s) have been scanned
Scan process 'ctfmon.exe' - '28' Module(s) have been scanned
Scan process 'IDMan.exe' - '64' Module(s) have been scanned
Scan process 'BtTray.exe' - '87' Module(s) have been scanned
Scan process 'UnlockerAssistant.exe' - '22' Module(s) have been scanned
Scan process 'GrooveMonitor.exe' - '42' Module(s) have been scanned
Scan process 'ScsiAccess.exe' - '6' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '40' Module(s) have been scanned
Scan process 'McciCMService.exe' - '29' Module(s) have been scanned
Scan process 'CTsvcCDA.exe' - '12' Module(s) have been scanned
Scan process 'BsMobileCS.exe' - '32' Module(s) have been scanned
Scan process 'avshadow.exe' - '22' Module(s) have been scanned
Scan process 'BlueSoleilCS.exe' - '83' Module(s) have been scanned
Scan process 'avguard.exe' - '54' Module(s) have been scanned
Scan process 'svchost.exe' - '36' Module(s) have been scanned
Scan process 'Explorer.EXE' - '97' Module(s) have been scanned
Scan process 'sched.exe' - '45' Module(s) have been scanned
Scan process 'spoolsv.exe' - '65' Module(s) have been scanned
Scan process 'svchost.exe' - '40' Module(s) have been scanned
Scan process 'svchost.exe' - '34' Module(s) have been scanned
Scan process 'svchost.exe' - '153' Module(s) have been scanned
Scan process 'svchost.exe' - '40' Module(s) have been scanned
Scan process 'svchost.exe' - '55' Module(s) have been scanned
Scan process 'lsass.exe' - '60' Module(s) have been scanned
Scan process 'services.exe' - '38' Module(s) have been scanned
Scan process 'winlogon.exe' - '67' Module(s) have been scanned
Scan process 'csrss.exe' - '15' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!
Boot sector 'E:\'
[INFO] No virus was found!
Boot sector 'F:\'
[INFO] No virus was found!
Starting to scan executable files (registry).
The registry was scanned ( '482' files ).
Starting the file scan:
Begin scan in 'C:\' <إسلاميات>
Begin scan in 'D:\'
Begin scan in 'E:\' <AFLAM>
Begin scan in 'F:\' <GAMES>
End of the scan: Sunday, December 18, 2011 09:19
Used time: 2:24:55 Hour(s)
The scan has been done completely.
9472 Scanned directories
727469 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
727469 Files not concerned
9404 Archives were scanned
0 Warnings
0 Notes
وهذا تقرير ببرنامج hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:35:45 AM, on 12/18/2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Avira\AntiVir Desktop\sched.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Avira\AntiVir Desktop\avguard.exe
D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
D:\Program Files\Avira\AntiVir Desktop\avshadow.exe
D:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
D:\WINDOWS\system32\CTsvcCDA.exe
D:\Program Files\Common Files\Motive\McciCMService.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
D:\Program Files\Unlocker\UnlockerAssistant.exe
D:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
D:\Program Files\Internet Download Manager\IDMan.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Documents and Settings\lala\Local Settings\Apps\F.lux\flux.exe
D:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
D:\WINDOWS\system32\wscntfy.exe
D:\Program Files\Avira\AntiVir Desktop\avscan.exe
D:\WINDOWS\system32\dllhost.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Internet Explorer\iexplore.exe
F:\porogram1\hijackthis\Alshhb_HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
R3 - URLSearchHook: (no name) - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - (no file)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Effective Measure - {13E3AF0A-2C78-40B7-B226-C8BF07FD2BE3} - D:\Program Files\Effective Measure\embho.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O3 - Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - (no file)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "D:\Program Files\Unlocker\UnlockerAssistant.exe" -H
O4 - HKLM\..\Run: [BtTray] "D:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKCU\..\Run: [IDMan] D:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [F.lux] "D:\Documents and Settings\lala\Local Settings\Apps\F.lux\flux.exe" /noshow
O4 - HKCU\..\Run: [PcSync] D:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe /NoDialog
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Download All using 4shared Desktop - D:\Program Files\4shared Desktop\down_all.htm
O8 - Extra context menu item: Download all links with IDM - D:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - D:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - D:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Send by Bluetooth - D:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Send via &Message... - D:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://E:\Office12\EXCEL.EXE/3000
O9 - Extra button: ???C? ??? OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: ??&?C? ??? OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (BitDefender QuickScan Control) - http://quickscan.bitdefender.com/qsax/qsax.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://download.bitdefender.com/reso...an8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1294864468203
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pu...sh/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8C16DFCE-C39F-4F4F-B070-33114D8A7292}: NameServer = 213.131.65.20,213.131.65.138
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\WINDOWS\system32\skype4com.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - D:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - D:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: BlueSoleilCS - Unknown owner - D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: Boonty Games - BOONTY - D:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: BsHelpCS - Unknown owner - D:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: BsMobileCS - Unknown owner - D:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - D:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - D:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: McciCMService - Alcatel-Lucent - D:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ScsiAccess - Unknown owner - D:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
--
End of file - 8255 bytes
ارجو توضيح مابهما لان الكمبيوتر بيعلق كتير
الروابط المفضلة