مشكلة اليوتيوب

[Techno 3]

عندي مشكلة باليوتيوب

و هي اني ادخل الفيديو يحمل كم ثانية منه بعدين الخط يطلعلي انه تحمل كامل فجاة

لاكن لما اشغل الفيديو اشوفه اشوف هالكم ثانية اللي تنزلوا و بعدين الفيديو كانه خلص

اتمنى حل سريع

:_( حتى الداونلود منجر الفيديو مثلا حجمه 100 ميجا يحمل منه 20 ميجا مثلا و بس

اخخ يدنيا

هه

تقرير هايجاك


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:01:53, on 6/14/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\BitTorrent\BitTorrent.exe
C:\Windows\8 Skin Pack\Aura\Aura.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Windows\8 Skin Pack\TaskbarUserTile\UserTile.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Riad-7\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Zyzoom_Forum_Tools\zyzoom.exe
D:\Zyzoom_Forum_Tools\zHijak.com
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F3 - REG:win.ini: load=C:\Users\Riad-7\LOCALS~1\Temp\fecaedff00009a89.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) - {EF8AD16D-24D1-D8E5-BD22-AD8C7D63437C} - c:\windows\system32\oyucumxm.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Users\Riad-7\AppData\Local\Temp\zxq2\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [BlackBerryAutoUpdate] C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background
O4 - HKCU\..\Run: [DriverCure] C:\Program Files\ParetoLogic\DriverCure\DriverCure.exe -scan
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Google Update] "C:\Users\Riad-7\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Dxtory Update Checker 2.0] C:\Program Files\Dxtory Software\Dxtory2.0\UpdateChecker.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\BitTorrent.exe" /MINIMIZED
O4 - HKLM\..\Policies\Explorer\Run: [53829] C:\PROGRA~2\LOCALS~1\Temp\1077e9ff0077c40b.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe -update activex (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe -update activex (User 'Default user')
O4 - Global Startup: Aura.lnk = C:\Windows\8 Skin Pack\Aura\Aura.exe
O4 - Global Startup: BetterExplorer.lnk = C:\Windows\8 Skin Pack\BetterExplorer\BetterExplorer.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O4 - Global Startup: Newgen.lnk = C:\Windows\8 Skin Pack\Newgen\Newgen.exe
O4 - Global Startup: TaskbarUserTile.lnk = C:\Windows\8 Skin Pack\TaskbarUserTile\UserTile.exe
O4 - Global Startup: Update ESET's license.lnk = C:\Program Files\ESET\MiNODLogin\MiNODLogin.exe
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 7083 bytes


برامج مثبته



====== ??????? ???? ??????? ======

X86 WIN_7 7601 Service Pack 1


====== ????? ??????? ??????? ======

µTorrent
32 Bit HP CIO Components Installer
8 Skin Pack 10-X86
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
BitTorrent
BlackBerry Desktop Software 5.0.1
BlackBerry Desktop Software 5.0.1
BlackBerry Device Software v5.0.0 for the BlackBerry 9300 smartphone
BufferChm
Call of Duty(R) 4 - Modern Warfare(TM)
Call of Duty(R) 4 - Modern Warfare(TM)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
Camtasia Studio 7
Copy
Coupon Printer for Windows
Destinations
DeviceDiscovery
DJ_AIO_06_F2400_SW_Min
Dxtory 2.0.108
ESET Antivirus License Finder (MiNODLogin)
ESET Smart Security
F2400
FIFA 12 version 1.0
Free Video to DVD Converter version 5.0.4.1228
Garena Classic 2011
Garena Plus
GPBaseService2
HiJackThis
HP Customer Participation Program 14.0
HP Deskjet F2400 All-in-One Driver Software 14.0 Rel. 6
HP Imaging Device Functions 14.0
HP Photo Creations
HP Smart Web Printing 4.60
HP Solution Center 14.0
HP Update
HPPhotoGadget
HPProductAssistant
HPSSupply
Intel(R) Processor Graphics
Java Auto Updater
Java(TM) 6 Update 29
JDownloader 0.9
MarketResearch
McAfee Security Scan Plus
Media Player Classic - Home Cinema 1.5.3.3996
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft .NET Framework 4 Extended
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Minecraft Gift Codes
Mozilla Firefox 9.0.1 (x86 en-US)
MSVCRT Redists
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NetDog
ParetoLogic DriverCure
Realtek High Definition Audio Driver
Scan
Scratch
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Shop for HP Supplies
SmartWebPrinting
SolutionCenter
Status
Steam
Toolbox
TrayApp
Trojan Killer 2.1
UltraISO Premium V9.3
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Vegas Pro 10.0
VLC media player 1.2.0-pre3
vShare.tv plugin 1.3
WebReg
Windows Driver Package - Intel (e1kexpress) Net (09/23/2009 11.2.19.0)
WinRAR 4.10 beta 2 (32-bit)
Xfire (remove only)






و انا عندي ويندوزين الاثنين نفس المشكلة

 

[kaerm]

السلام عليكم ورحمة الله وبركاته

احذف القيم التاليه اخى الكريم

_________________________________________________________________________
F3 - REG:win.ini: load=C:\Users\Riad-7\LOCALS~1\Temp\fecaedff00009a89.exe
_________________________________________________________________________
O2 - BHO: (no name) - {EF8AD16D-24D1-D8E5-BD22-AD8C7D63437C} - c:\windows\system32\oyucumxm.dll
_________________________________________________________________________
O4 - HKLM\..\Policies\Explorer\Run: [53829] C:\PROGRA~2\LOCALS~1\Temp\1077e9ff0077c40b.exe
_________________________________________________________________________
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil11c_Ac tiveX.exe -update activex (User 'SYSTEM')
_________________________________________________________________________
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil11c_Ac tiveX.exe -update activex (User 'Default user')
_________________________________________________________________________
O4 - Global Startup: BetterExplorer.lnk = C:\Windows\8 Skin Pack\BetterExplorer\BetterExplorer.exe
_________________________________________________________________________
O4 - Global Startup: Newgen.lnk = C:\Windows\8 Skin Pack\Newgen\Newgen.exe
_________________________________________________________________________
O4 - Global Startup: TaskbarUserTile.lnk = C:\Windows\8 Skin
Pack\TaskbarUserTile\UserTile.exe
_________________________________________________________________________
واحمل بي ادات

[تنظيف الجهاز]​

هذا الخيار يقوم بتشغيل اداة TFC الخاصة بتنظيف مخلفات التصفح وملفات TEMP
بعد تشغيلها تظهر هذه الواجهة​

اضغط على START وانتظر حتى تخرج هذه الرسالة​

وا فحص بي اي برنامج حمايه لانك عندك ESET افحص بيه
والشكر الخاص لي استاذناMAAX على جهده في كل الموضوع والادوات​

 

[البارون]

حمل هذا البرنامج


رابط مباشر ،، محمول وبدون تثبيت
محدث

8 \ 4 \ 2012


ينصح بإغلاق برنامج الحماية قبل تحميل البرنامج
مستخدمي وندوز فيستا وسفن >>> كلك يمين وتشغيل كمسؤل

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شغله واعمل كما الشرح التالي لفحص الجهاز وعمل تقرير

انسخ ما بداخل التقرير والصقه بمشاركتك القادمة​

 

[Techno 3]

^^

جاري الفحص

و تم عمل خطوات اخي kaerm لكن لا اظن انها نفعت و فيه

F3 - REG:win.ini: load=C:\Users\Riad-7\LOCALS~1\Temp\fecaedff00009a89.ex

O4 - HKLM\..\Policies\Explorer\Run: [53829] C:\PROGRA~2\LOCALS~1\Temp\1077e9ff0077c40b.e

لا تحذف

 

[Techno 3]

Malwarebytes' Anti-Malware 1.51.2.1300

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Database version: 7622

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

12/31/2011 01:27:20
mbam-log-2011-12-31 (01-27-20).txt

Scan type: Full scan (C:\|)
Objects scanned: 289736
Time elapsed: 1 hour(s), 14 minute(s), 44 second(s)

Memory Processes Infected: 4
Memory Modules Infected: 1
Registry Keys Infected: 24
Registry Values Infected: 15
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 148

Memory Processes Infected:
c:\Windows\System32\javaupl.exe (Trojan.Proxyier) -> 464 -> Unloaded process successfully.
c:\Windows\System32\drivers\svclocks.exe (Trojan.Ransom) -> 3320 -> Unloaded process successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT9942.tmp (Trojan.Dropper) -> 4656 -> Unloaded process successfully.
c:\Windows\System32\config\systemprofile\AppData\Local\nvidia corporation\Update\daemonupd.exe (Trojan.Agent) -> 2672 -> Unloaded process successfully.

Memory Modules Infected:
c:\Windows\System32\oyucumxm.dll (IPH.GenericBHO) -> Delete on reboot.

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\JavaQuickUpload (Trojan.Proxyier) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\svclocks (Trojan.Ransom) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{EF8AD16D-24D1-D8E5-BD22-AD8C7D63437C} (IPH.GenericBHO) -> Delete on reboot.
HKEY_CLASSES_ROOT\Kcyuzyna (IPH.GenericBHO) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF8AD16D-24D1-D8E5-BD22-AD8C7D63437C} (IPH.GenericBHO) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF8AD16D-24D1-D8E5-BD22-AD8C7D63437C} (IPH.GenericBHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CSC (Spyware.Password) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{D7FFD784-5276-42D1-887B-00267870A4C7} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{BB7256DD-EBA9-480B-8441-A00388C2BEC3} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncherBHO.1 (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncherBHO (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncher.1 (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MyNewsBarLauncher.IE5BarLauncher (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ONETWO (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\53829 (Trojan.Dropper) -> Value: 53829 -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\SysRun (Trojan.Agent) -> Value: SysRun -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Value: {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Value: {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Value: {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} (PUP.VShareRedir) -> Value: {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\RegistryWm (Trojan.Agent) -> Value: RegistryWm -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WinRAR (Trojan.Agent) -> Value: WinRAR -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Research In Motion (Trojan.Agent) -> Value: Research In Motion -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MozillaPlugins (Trojan.Agent) -> Value: MozillaPlugins -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ParetoLogic (Trojan.Agent) -> Value: ParetoLogic -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\JavaQuickUpload\ImagePath (Trojan.Proxyier) -> Value: ImagePath -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ONETWO\ImagePath (Trojan.Agent) -> Value: ImagePath -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ONETWO\Description (Trojan.Agent) -> Value: Description -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\svclocks\ImagePath (Trojan.Agent) -> Value: ImagePath -> Quarantined and deleted successfully.

Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Load (Trojan.Dropper) -> Bad: (C:\Users\Riad-7\LOCALS~1\Temp\fecaedff00009a89.exe) Good: () -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page (Hijack.StartPage) -> Bad: (

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

) Good: (

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Windows\System32\javaupl.exe (Trojan.Proxyier) -> Quarantined and deleted successfully.
c:\Windows\System32\drivers\svclocks.exe (Trojan.Ransom) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT9942.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Windows\System32\oyucumxm.dll (IPH.GenericBHO) -> Delete on reboot.
c:\programdata\local settings\Temp\1077e9ff0077c40b.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\local settings\Temp\fecaedff00009a89.exe (Trojan.Dropper) -> Delete on reboot.
c:\Windows\System32\drivers\csc.sys (Spyware.Password) -> Quarantined and deleted successfully.
c:\Windows\System32\svshost.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\program files\vshare.tv plugin\BarLcher.dll (PUP.VShareRedir) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\47LJGLJZ\rvdojqpje[1].htm (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\47LJGLJZ\zdlfahcaip[1].htm (Trojan.Email) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\7W5RFPDL\arzgbzhf[1].htm (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\7W5RFPDL\evpxez[1].htm (Trojan.Email) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\RE1ZJPB3\imgbidoje[1].htm (Trojan.LVBP) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\XZUSH0Y2\ubsnltn[2].htm (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\XZUSH0Y2\wqtkipkiqk[1].htm (Backdoor.Syrutrk) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT10F6.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT13BF.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT14AA.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT14C8.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT1527.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT1A06.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT1B7D.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT1F25.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT22DC.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT2B68.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT2CE9.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT2F2A.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT2F3A.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT33DE.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT39A6.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT3BE7.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT45C6.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT47DB.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT4816.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\msimg32.dll (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT7580.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT75BC.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT7668.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT78D7.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT7926.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT7A5E.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT7AD.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT7B2D.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT7C50.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT7D89.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT8172.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT8222.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT89C9.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT8A55.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT8E5.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT8E98.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT8EF7.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT905.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT94C0.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT99F0.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT9B83.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTA1BB.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTA3A2.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTA62D.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTA67C.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTABC0.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTB33A.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTB7BA.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTBA39.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTBA5B.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTBC2F.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTBCEB.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTBE9F.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTBF49.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTC168.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTC216.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\fecaedff00009a89.exe (Trojan.Dropper) -> Delete on reboot.
c:\Users\Riad-7\AppData\Local\Temp\wcbgvghn.exe (Trojan.LVBP) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTC6E7.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTC740.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTC9F2.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTCB99.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTCC34.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTCD0E.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTCDDC.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTCE95.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTCED5.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTCEF1.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTD20F.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTD326.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTD3AB.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTD77A.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTD7C7.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTD875.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTDE11.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTE0AD.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTE0DC.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTEA10.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTEA7E.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTEB28.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTEEC2.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTF1BE.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTF2D6.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTF47E.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTF840.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTF9EA.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTFA84.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTFC14.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTFE8A.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTFFC2.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\{06198541-7511-8630-7497-430064306740}.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT4CFB.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT74D3.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTC32F.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRTFFC5.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT5273.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT5449.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT56E6.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT5800.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT582D.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT5917.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT5957.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT5978.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT60D.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT626D.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT6613.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT6A94.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT6B21.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT6B40.tmp (Trojan.Scar) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT6B57.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT6C4.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT6E1E.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Local\Temp\VRT71D5.tmp (Trojan.Inject) -> Quarantined and deleted successfully.
c:\Users\Riad-7\AppData\Roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\hijackthis.exe (PWS.Fignotok) -> Quarantined and deleted successfully.
c:\Users\Riad-7\Desktop\ultraiso premium edition v9.3.0.2612 + keygen\keygen.exe (Trojan.Dropper.PGen) -> Quarantined and deleted successfully.
c:\Users\Riad-7\downloads\Patch.exe (PUP.Hacktool.Patcher) -> Not selected for removal.
c:\3DP\Net\1109\Ralink\RT2460\CCS24.exe (Adware.Agent) -> Quarantined and deleted successfully.
c:\Windows\System32\svdhalp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Windows\System32\svdhalp.exe.ini (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Windows\System32\svdhalp.exe.ini169 (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Windows\System32\svdhalp.exe235 (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Windows\System32\wininet.exe (Backdoor.Syrutrk) -> Quarantined and deleted successfully.
c:\Windows\Temp\0077d200.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Windows\Temp\00782982.tmp (Trojan.Ramagedos) -> Quarantined and deleted successfully.
c:\Windows\Temp\nhtdha\setup.exe (Backdoor.Syrutrk) -> Quarantined and deleted successfully.
c:\Windows\Temp\vwjvvc\setup.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Windows\winsxs\x86_microsoft-windows-offlinefiles-core_31bf3856ad364e35_6.1.7601.17514_none_a04fb2d2ba296321\csc.sys (Spyware.Password) -> Quarantined and deleted successfully.
c:\programdata\common.data (Malware.Trace) -> Quarantined and deleted successfully.
c:\Windows\System32\config\systemprofile\AppData\Roaming\microsoft\Windows\start menu\Programs\Startup\winupdate.lnk (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\System32\config\systemprofile\AppData\Local\nvidia corporation\Update\daemonupd.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Windows\syskey2i.drv (Trojan.Spybot) -> Quarantined and deleted successfully.
c:\Windows\Temp\Startup\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.

 

[format]

ملغم جهازك مشاء الله

حمل اداة الدكتور ويب من الرابط التالي​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

واتبع الشرح لتنظيف جهازك وحفظ التقرير
شغل الاداة بدبل كلك ثم​

قم بضغط التقارير >>>

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

وارفع الملف هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

​

 

[Techno 3]

اما

جاري الفحص

 

[Techno 3]

افففففففففففففففففففففف نسييييت اخر خطوة -.- لازمة هي؟