برنامج الافيرا مش عايز يفتح علشان اسطبه
نتيجة مالوير بايت
************' Anti-Malware 1.50.1.1100
Database version: 6628
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512
23/05/2011 05:01:38 ص
mbam-log-2011-05-23 (05-01-38).txt
Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|)
Objects scanned: 217703
Time elapsed: 16 minute(s), 4 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 2
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 22
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
c:\WINDOWS\system32\wmdrtc32.dll (Virus.Sality) -> Delete on reboot.
c:\WINDOWS\thumbs .db (Backdoor.Senna) -> Delete on reboot.
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (PUM.Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\scrfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: (%1) Good: ("%1" /S) -> Quarantined and deleted successfully.
Folders Infected:
(No malicious items detected)
Files Infected:
c:\WINDOWS\system32\wmdrtc32.dll (Virus.Sality) -> Delete on reboot.
c:\WINDOWS\thumbs .db (Backdoor.Senna) -> Delete on reboot.
c:\thumbs .db (Backdoor.Senna) -> Quarantined and deleted successfully.
c:\system volume information\_restore{70c22b0e-cfe0-4507-9454-cff387dfee7a}\RP1\A0001276.dll (Virus.Sality) -> Quarantined and deleted successfully.
c:\system volume information\_restore{70c22b0e-cfe0-4507-9454-cff387dfee7a}\RP1\A0001277.dll (Virus.Sality) -> Quarantined and deleted successfully.
d:\thumbs .db (Backdoor.Senna) -> Quarantined and deleted successfully.
e:\thumbs .db (Backdoor.Senna) -> Quarantined and deleted successfully.
e:\system volume information\_restore{e4514fa6-d9b3-4dc4-8de8-d8b4ae3e1b78}\RP14\A0006981.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
e:\system volume information\_restore{e4514fa6-d9b3-4dc4-8de8-d8b4ae3e1b78}\RP14\A0007006.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
f:\thumbs .db (Backdoor.Senna) -> Quarantined and deleted successfully.
g:\thumbs .db (Backdoor.Senna) -> Quarantined and deleted successfully.
g:\system volume information\_restore{e4514fa6-d9b3-4dc4-8de8-d8b4ae3e1b78}\RP14\A0006985.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
g:\system volume information\_restore{e4514fa6-d9b3-4dc4-8de8-d8b4ae3e1b78}\RP14\A0007010.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
h:\thumbs .db (Backdoor.Senna) -> Quarantined and deleted successfully.
h:\برامج\اسطوانة هامة\الأخوات الأسيرات\AutoPlay\Docs\christ\halimo.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
h:\برامج\برامج\dm_proteus_7_4_sp3\dm_proteus_7_4_sp3\proteus_7.4_sp3_beta_4.1_sonsivri.com.exe (PUP.Hacktool.Patcher) -> Not selected for removal.
h:\system volume information\_restore{0f7fa4aa-8ea5-40b6-a7d2-0a77b497e1e3}\RP4\A0001595.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
h:\system volume information\_restore{0f7fa4aa-8ea5-40b6-a7d2-0a77b497e1e3}\RP4\A0001807.exe (PUP.Hacktool.Patcher) -> Not selected for removal.
h:\system volume information\_restore{70c22b0e-cfe0-4507-9454-cff387dfee7a}\RP1\A0000557.exe (Spyware.AdaEbook) -> Quarantined and deleted successfully.
h:\system volume information\_restore{e4514fa6-d9b3-4dc4-8de8-d8b4ae3e1b78}\RP14\A0006987.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
h:\system volume information\_restore{e4514fa6-d9b3-4dc4-8de8-d8b4ae3e1b78}\RP14\A0007012.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\wmdrtc32.dl_ (Virus.Sality) -> Quarantined and deleted successfully.
