مساهعدة : الفيروسات دمرت الجهاز

م

محمود المخلص

زيزوومي جديد
إنضم
7 سبتمبر 2008
المشاركات
44
مستوى التفاعل
0
النقاط
40
غير متصل
مساعدة : الفيروسات دمرت الجهاز

بسم الله الرحمن الرحيم
============

الفيروسات دمرت جهازي و انا كل منازل انتي فيرس مشيتغلش

رجاء انا عايز الكاسبر سكاي 2009 و مفتاح شغال ليه و حكون شاكر

و شكرا
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
ديمو ,,, لاهنت يا قلبي تابع معه على ماادور رابط ثاني للكاسبر
 

توقيع : AbOdy
تأييد 0
ابشر عبودي عيوني والله

اخ محمود اعمل الخطوه التاليه لاهنت


عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
اخي اثناء الفحص في المره الاولى بيقف و مبيتحركش و لازم ارستر الجهاز
 
تأييد 0
التعديل الأخير بواسطة المشرف:
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
اخي انا عملت حكاية السيف مود ديه و الويندوز وقع و انا لسه منزل ويندوز جديد دلوقتي فياريت ايميل اي حد فيكم
 
تأييد 0

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


اخوي يا ليت تتكلم بالفصحى
لأن لهجتك بالمصري قويه وما نقدر بفهم بعضها :q:
وضح أكثر
كيف الويندوز وقع ؟
وما معنى دلوقتي ؟
تراي ماش ما عاد صرت اجمع :q:
 
توقيع : Juve Guard
تأييد 0
المهم انا شغلت برنامج الcombofix و ده التقرير

ComboFix 08-09-05.09 - BVX-Messi 09/08/2008 18:00:39.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1256.20.1033.18.1326 [GMT 3:00]
Running from: C:\Documents and Settings\BVX-Messi\Desktop\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\system32\21db7b.exe
C:\WINDOWS\system32\21e2ce.exe
C:\WINDOWS\system32\21eb69.exe
C:\WINDOWS\system32\21f3c5.exe
C:\WINDOWS\system32\21fc12.exe
C:\WINDOWS\system32\36ed76.exe
C:\WINDOWS\system32\36f7e6.exe
C:\WINDOWS\system32\370033.exe
C:\WINDOWS\system32\370880.exe
C:\WINDOWS\system32\3710cd.exe
C:\WINDOWS\system32\4beb0f.exe
C:\WINDOWS\system32\4bf290.exe
C:\WINDOWS\system32\4bfadd.exe
C:\WINDOWS\system32\4c0369.exe
C:\WINDOWS\system32\4c0b58.exe
C:\WINDOWS\system32\cdedc.exe
C:\WINDOWS\system32\ce67d.exe
C:\WINDOWS\system32\cee6c.exe
C:\WINDOWS\system32\cf6aa.exe
C:\WINDOWS\system32\cff54.exe
C:\WINDOWS\system32\wmdrtc32.dl_
C:\WINDOWS\system32\wmdrtc32.dll
.
((((((((((((((((((((((((( Files Created from 2008-08-08 to 2008-09-08 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-08 15:02 40,960 ----a-w C:\WINDOWS\system32\wmdrtc32.dll
2008-09-08 15:02 --------- d-----w C:\Program Files\microsoft frontpage
2008-09-08 15:01 5,477 ----a-w C:\WINDOWS\system32\drivers\llkgkn.sys
2008-09-08 15:00 --------- d-----w C:\Documents and Settings\BVX-Messi\Application Data\DMCache
2008-09-08 14:59 --------- d-----w C:\Documents and Settings\BVX-Messi\Application Data\Hamachi
2008-09-08 14:53 7,680 ----a-w C:\WINDOWS\system32\4be3ea.exe
2008-09-08 14:30 7,680 ----a-w C:\WINDOWS\system32\36e4bc.exe
2008-09-08 14:29 --------- d-----w C:\Program Files\EA Sports
2008-09-08 14:07 7,680 ----a-w C:\WINDOWS\system32\21d32e.exe
2008-09-08 13:59 --------- d-----w C:\Program Files\TeamViewer3
2008-09-08 13:59 --------- d-----w C:\Documents and Settings\BVX-Messi\Application Data\TeamViewer
2008-09-08 13:58 --------- d-----w C:\Documents and Settings\BVX-Messi\Application Data\IDM
2008-09-08 13:51 25,280 ----a-w C:\WINDOWS\system32\drivers\hamachi.sys
2008-09-08 13:44 7,680 ----a-w C:\WINDOWS\system32\cd2b7.exe
2008-09-08 13:43 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2008-09-08 13:43 --------- d--h--r C:\Documents and Settings\BVX-Messi\Application Data\SecuROM
2008-09-08 13:42 --------- d-----w C:\Program Files\Hamachi
2008-09-08 13:40 --------- d-----w C:\Program Files\Athan
2008-09-08 13:39 765,952 ----a-w C:\WINDOWS\iun6002.exe
2008-09-08 13:36 --------- d-----w C:\Program Files\MSN Messenger
2008-09-08 13:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\Yahoo!
2008-09-08 13:26 --------- d-----w C:\Documents and Settings\BVX-Messi\Application Data\InstallShield
2008-09-08 13:25 --------- d-----w C:\Program Files\InstallShield Installation Information
2008-09-08 13:24 --------- d-----w C:\Program Files\VIA
2008-09-08 13:23 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-09-08 13:17 --------- d-----w C:\Program Files\Yahoo!
2008-09-08 13:17 --------- d-----w C:\Program Files\VisualTaskTips
2008-09-08 13:17 --------- d-----w C:\Program Files\ViStart
2008-09-08 13:17 --------- d-----w C:\Documents and Settings\BVX-Messi\Application Data\ViStart
2008-09-08 13:15 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-09-08 13:14 --------- d-----w C:\Program Files\Winamp
2008-09-08 13:14 --------- d-----w C:\Program Files\Real Alternative
2008-09-08 13:14 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-09-08 13:13 --------- d-----w C:\Program Files\Java
2008-09-08 13:13 --------- d-----w C:\Program Files\Common Files\Java
.
------- Sigcheck -------
05/30/2008 10:57 AM 2298880 434f783f70124a321c2fcba11f45d8ec C:\WINDOWS\system32\ntoskrnl.exe
01/27/2008 05:04 PM 1524224 e24cd37d23a71dbb9a484a50eb255462 C:\WINDOWS\explorer.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [10/04/2007 12:14 PM 8491008]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [04/14/2008 08:42 PM 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nlsf"="move" [X]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.YV12"= yv12vfw.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"C:\\WINDOWS\\system32\\cd2b7.exe"=
"C:\\WINDOWS\\system32\\21d32e.exe"=
"C:\\WINDOWS\\system32\\36e4bc.exe"=
"C:\\WINDOWS\\system32\\4be3ea.exe"=
R4 NdisFileServices32;NdisFileServices32;C:\WINDOWS\system32\drivers\llkgkn.sys [09/08/2008 06:03 PM 5477]
.
- - - - ORPHANS REMOVED - - - -
HKU-Default-RunOnce-tscuninstall - C:\WINDOWS\system32\tscupgrd.exe

.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://google.com/
O8 -: Download All Links with IDM - F:\برامج\Internet download manger 5.3\IEGetAll.htm
O8 -: Download with IDM - F:\برامج\Internet download manger 5.3\IEExt.htm
O17 -: HKLM\CCS\Interface\{3B7976C7-ADF8-41B2-9805-95584B40D615}: NameServer = 62.240.110.197,62.240.110.198
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


Rootkit scan 2008-09-08 18:02:43
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\rundll32.exe
.
**************************************************************************
.
Completion time: 09/08/2008 18:03:51 - machine was rebooted
ComboFix-quarantined-files.txt 2008-09-08 15:03:47
Pre-Run: 13,306,163,200 bytes free
Post-Run: 13,332,467,712 bytes free
135

او حملوه من هنا

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

 
تأييد 0
و ده تقرير الهايجاك ذي مطبتوا

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 06:28:17 م, on 08/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\BVX-Messi\Desktop\Zyzoom_HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user')
O8 - Extra context menu item: Download All Links with IDM - F:\برامج\Internet download manger 5.3\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - F:\برامج\Internet download manger 5.3\IEExt.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{3B7976C7-ADF8-41B2-9805-95584B40D615}: NameServer = 62.240.110.197,62.240.110.198
O17 - HKLM\System\CS1\Services\Tcpip\..\{3B7976C7-ADF8-41B2-9805-95584B40D615}: NameServer = 62.240.110.197,62.240.110.198
O17 - HKLM\System\CS2\Services\Tcpip\..\{3B7976C7-ADF8-41B2-9805-95584B40D615}: NameServer = 62.240.110.197,62.240.110.198
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 3900 bytes


او حملوه من هنا

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



 
تأييد 0
حمل اداة الكاسبر من الرابط التالي

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



او


من هنا


يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي




بعد التحميل ،، دبل كلك وسيتم استخراج ملف الاداة الى مجلد بسطح المكتب لحظات وتبدأ الاداة بالعمل

تابع الشرح لفحص الجهاز وتنظيفه وارفاق التقرير

zyzoom-3d6517b067.png


zyzoom-7717063ed7.png


zyzoom-cda271da05.png


zyzoom-26888dbf15.png


zyzoom-3f4576c288.png


ثم قم بضغط التقرير ورفعه هنا>>>>

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

 
توقيع : AbOdy
تأييد 0

تفضل اخي التقرير

Scan
----
Scanned: 162076
Detected: 291
Untreated: 2
Start time: 08/09/2008 08:03:24 م
Duration: 00:38:47
Finish time: 08/09/2008 08:42:11 م

Detected
--------
Status
------ ------
will be deleted when the computer is restarted: virus Virus.Win32.Sality.s File: C:\WINDOWS\system32\wmdrtc32.dll
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\WINDOWS\system32\notepad.exe
deleted: virus P2P-Worm.Win32.Polip.a File: c:\windows\regedit.exe
deleted: virus P2P-Worm.Win32.Polip.a File: c:\program files\windows media player\wmplayer.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\outlook express\wab.exe
disinfected: virus Virus.Win32.Sality.s File: c:\windows\hh.exe
disinfected: virus Virus.Win32.Sality.s File: c:\windows\winhlp32.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\windows nt\hypertrm.exe
will be disinfected when the computer is restarted: virus P2P-Worm.Win32.Polip.a File: c:\program files\internet explorer\iexplore.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\java\jre1.6.0_02\bin\javaw.exe
deleted: virus P2P-Worm.Win32.Polip.a File: c:\program files\java\jre1.6.0_02\bin\javaws.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\windows nt\accessories\wordpad.exe
disinfected: virus Virus.Win32.Sality.s File: c:\windows\notepad.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\WINDOWS\system32\msiexec.exe
detected: virus Virus.Win32.Sality.s File: c:\windows\system32\drivers\llkgkn.sys
will be disinfected when the computer is restarted: virus P2P-Worm.Win32.Polip.a File: C:\WINDOWS\system32\nvsvc32.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\windows media player\wmpnetwk.exe
disinfected: virus Virus.Win32.Sality.s File: c:\windows\inf\unregmp2.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: c:\windows\system32\ie4uinit.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\outlook express\setup50.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: c:\windows\system32\logon.scr
disinfected: virus Virus.Win32.Sality.s File: c:\program files\msn gaming zone\windows\bckgzm.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\msn gaming zone\windows\chkrzm.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\netmeeting\conf.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\windows nt\dialer.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: c:\windows\system32\dxdiag.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\ea sports\fifa 08\fifa08.exe
disinfected: virus Virus.Win32.Sality.s File: c:\windows\pchealth\helpctr\binaries\helpctr.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\msn gaming zone\windows\hrtzzm.exe
deleted: virus P2P-Worm.Win32.Polip.a File: c:\program files\internet explorer\connection wizard\icwconn1.exe
deleted: virus P2P-Worm.Win32.Polip.a File: c:\program files\internet explorer\connection wizard\icwconn2.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\internet explorer\connection wizard\inetwiz.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\internet explorer\connection wizard\isignup.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\movie maker\moviemk.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\windows media player\mplayer2.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\real alternative\media player classic\mplayerc.exe
disinfected: virus Virus.Win32.Sality.s File: c:\windows\pchealth\helpctr\binaries\msconfig.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\Program Files\outlook express\msimn.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\common files\microsoft shared\msinfo\msinfo32.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\messenger\msmsgs.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\WINDOWS\system32\mspaint.exe
deleted: virus P2P-Worm.Win32.Polip.a File: c:\program files\windows nt\pinball\pinball.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\msn gaming zone\windows\rvsezm.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\msn gaming zone\windows\shvlzm.exe
deleted: virus P2P-Worm.Win32.Polip.a File: c:\program files\visualtasktips\visualtasktips.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\outlook express\wabmig.exe
disinfected: virus Virus.Win32.Sality.s File: c:\program files\winrar\winrar.exe
deleted: malware HackTool.MSIL.KKFinder.n File: C:\Documents and Settings\BVX-Messi\Desktop\Kaspersky-Anti-Virus-8.0.0.454-Final.exe/Kaspersky-Anti-Virus-8.0.0.454-Final\Kaspersky Key Finder.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Documents and Settings\BVX-Messi\Desktop\PadPatcher.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\Documents and Settings\BVX-Messi\Desktop\setup_7.0.0.223_21.08.2008_13-26.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\Documents and Settings\BVX-Messi\Desktop\ABOUT-SEXXX.COM_AAA_Logo_1.20\ABOUT-SEXXX.COM_AAA_Logo_1.20\AAA_Logo_1.20.+.Serial\AAA.Logo.v1.2.exe
deleted: malware HackTool.MSIL.KKFinder.n File: C:\Documents and Settings\BVX-Messi\Desktop\Kaspersky-Anti-Virus-8.0.0.454-Final\Kaspersky Key Finder.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\Documents and Settings\BVX-Messi\Desktop\Kaspersky-Anti-Virus-8.0.0.454-Final\kav8.0.0.454.exe
will be deleted when the computer is restarted: Trojan program Trojan.Win32.DNSChanger.czu File: C:\Documents and Settings\BVX-Messi\Local Settings\temp\winslha.exe//PE_Patch.UPX//UPX
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\Program Files\Athan\Athan.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Common Files\InstallShield\Driver\7\Intel 32\IDriver.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Common Files\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_02.b05\zipper.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Common Files\Microsoft Shared\Speech\sapisvr.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Internet Explorer\iedw.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Internet Explorer\Connection Wizard\icwrmind.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Internet Explorer\Connection Wizard\icwtutor.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\java-rmi.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\java.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\javacpl.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\keytool.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\kinit.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\klist.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\ktab.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\orbd.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\pack200.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\policytool.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\rmid.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\rmiregistry.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\servertool.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\tnameserv.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Java\jre1.6.0_02\bin\unpack200.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Filters\ac3config.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Filters\Haali\gdsmux.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Media Player Classic\mplayerc.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Real\Update_OB\upgrdhlp.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Tools\graphedit.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Tools\mediainfo.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Tools\StatsReader.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Tools\VobSubStrip.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\K-Lite Codec Pack\Tools\gspot\gspot.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\MSN Gaming Zone\Windows\zClientm.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\NetMeeting\cb32.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\NetMeeting\wb32.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Outlook Express\oemig50.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\TeamViewer3\install.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\ViStart\ViStart.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\VisualTaskTips\uninst.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Winamp\winamp.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Winamp\winampa.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Connect 2\wmccds.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Connect 2\WMCCFG.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Player\migrate.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Player\setup_wm.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Player\wmdbexport.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Player\wmlaunch.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Player\wmpenc.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Player\wmpnscfg.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Player\wmpshare.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Windows Media Player\wmsetsdk.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\WinRAR\Rar.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\WinRAR\RarExtLoader.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\WinRAR\Uninstall.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\WinRAR\UnRAR.exe
disinfected: virus Virus.Win32.Sality.s File: C:\Program Files\Yahoo!\Messenger\UNWISE.EXE
deleted: virus Virus.Win32.Sality.s File: C:\QooBox\Quarantine\C\WINDOWS\system32\wmdrtc32.dll.vir
deleted: virus Virus.Win32.Sality.s File: C:\QooBox\Quarantine\C\WINDOWS\system32\wmdrtc32.dl_.vir
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\fdsv.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\grep.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\iun6002.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Nircmd.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\PSEXESVC.EXE
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\sed.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\swreg.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\swsc.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\swxcacls.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\TASKMAN.EXE
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\twunk_32.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\VFind.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\zip.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\$NtUninstallWMFDist11$\logagent.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\$NtUninstallwmp11$\setup_wm.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\$NtUninstallwmp11$\unregmp2.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\$NtUninstallwmp11$\wmplayer.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\ie7\ie4uinit.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\ie7\iedw.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\ie7\iexplore.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\ie7\mshta.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\ie7\spuninst\ieResetIcons.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Installer\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\NETFXSBS10.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\jsc.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\msagent\agentsvr.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\mui\muisetup.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\pchealth\helpctr\binaries\HelpHost.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\pchealth\helpctr\binaries\HelpSvc.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\pchealth\helpctr\binaries\HscUpd.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\pchealth\helpctr\binaries\notiflag.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\pchealth\UploadLB\Binaries\UploadM.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dplaysvr.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnsvr.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpvsetup.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdiag.exe
disinfected: virus Virus.Win32.Sality.s File: C:\WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdllreg.exe
deleted: riskware not-a-virus:RiskTool.Win32.HideWindows File: C:\WINDOWS\system32\cmdow.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\WINDOWS\system32\mshearts.exe
deleted: virus Virus.Win32.Sality.s File: C:\WINDOWS\system32\wmdrtc32.dl_
disinfected: virus P2P-Worm.Win32.Polip.a File: C:\WINDOWS\system32\Restore\rstrui.exe
deleted: riskware not-a-virus:RiskTool.Win32.Reboot.j File: C:\WINDOWS\system32\Tools\Restart.exe
will be disinfected when the computer is restarted: virus P2P-Worm.Win32.Polip.a File: C:\WINDOWS\system32\wbem\wmiprvse.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: D:\cs16patch_full_V23B.exe
disinfected: virus Virus.Win32.Sality.s File: D:\CSN\phykpb.exe
disinfected: virus Virus.Win32.Sality.s File: D:\CSN\CSNv6.1\CSN.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\age of empires 3\age3.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\age of empires 3\chktrust.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\age of empires 3\filecrc.exe
deleted: virus P2P-Worm.Win32.Polip.a File: D:\العاب\age of empires 3\instapup.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\AOM\aom.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: D:\العاب\AOM\ar505enu.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\AOM\autopatcher.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\AOM\chktrust.exe
deleted: virus P2P-Worm.Win32.Polip.a File: D:\العاب\AOM\gfxinfo.exe
deleted: virus P2P-Worm.Win32.Polip.a File: D:\العاب\AOM\instapup.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\AOM\movieplayer.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\AOM\UNINSTAL.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\BY TRoY - Devil May Cry 3 Special Edition RIP\BY TRoY - Devil May Cry 3 Special Edition RIP\Mini-Image\asr.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\cs\hl.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\cs\hlds.exe
deleted: virus P2P-Worm.Win32.Polip.a File: D:\العاب\cs\hltv.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\cs\CSNv6.1\CSN.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\MaxPayen\IC_mptrnplus5.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\MaxPayen\MaxPayne.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\game.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\inject.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\Keygen.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\MPH.EXE
disinfected: virus P2P-Worm.Win32.Polip.a File: D:\العاب\ra2\ra2 p1\ra2-101.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\Ra2.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: D:\العاب\ra2\ra2 p1\RA21006EN.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\ra2_10.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\RegSetup.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\Uninst.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\UNINSTLL.EXE
disinfected: virus P2P-Worm.Win32.Polip.a File: D:\العاب\ra2\ra2 p1\unpack.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\wolapi\REGISTER.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\wolapi\UninstAP.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\ra2\ra2 p1\wolapi\UNSTLLAP.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\CM-RA2TR.EXE
disinfected: virus P2P-Worm.Win32.Polip.a File: D:\العاب\red alert storm\FA2YR101.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\FinalAlert2YR.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\GAME.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\INJECT.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\MPH.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\mphmd.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\MYTHXPAK.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\RA2.EXE
disinfected: virus P2P-Worm.Win32.Polip.a File: D:\العاب\red alert storm\RA21006EN update.EXE
disinfected: virus P2P-Worm.Win32.Polip.a File: D:\العاب\red alert storm\RA21006EN.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\RA2v1006crk.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\Register.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\RegSetup.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\SETUP.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\SetupReg.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\smuninstall.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\STARTW.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\UHCLS.EXE
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\Uninstal2.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\red alert storm\FinalAlert 2 Yuri's Revenge\FinalAlert2YR.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad\Loader.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad\MediaPatcher.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad\Miniloader.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad\Remove.Exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad\replacer.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad\Silkroad.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad\sro_client.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad1\Loader.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad1\Miniloader.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad1\Remove.Exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad1\replacer.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad1\Silkroad.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad1\sro_client.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\Silkroad1\Amr_Mando_Silkroad4arab\Loader.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\The.Return.of.King_PF\ROTK.exe
deleted: virus P2P-Worm.Win32.Polip.a File: D:\العاب\The.Return.of.King_PF\trainer.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\The.Return.of.King_PF\Support\LOTR The Return of the King tm_code.exe
disinfected: virus Virus.Win32.Sality.s File: D:\العاب\vb3rb.com-Total Overdose\TotalOverdose.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\anti autorun.rar/anti autorun\autorun\f48c643ae2.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\anti autorun.rar/anti autorun\fix after autorun virus\775a2ca50d.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\AthanBasic3.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\Firefox Setup 3.0.1.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\klcodec400f.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\megamanager.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\msgr8us.exe
deleted: riskware not-a-virus:NetTool.Win32.Netcut.a File: F:\برامج\netcut.exe
deleted: riskware not-a-virus:NetTool.Win32.Netcut.a File: F:\برامج\netcut.exe//data0002
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\PadPatcher.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\PadPatcher2.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\PadPatcher2.rar/PadPatcher2.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\uiso7_me.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\اخذ مقاطع فيديوr.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\AAA.Logo.2008.v2.10_Upload_by_NAMK\AAA.Logo.2008.v2.10_Upload_by_NAMK\setup\aaalogo2.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Adobe Photosop CS3 Extended ME\Adobe Photosop CS3 Extended ME\redist\WindowsInstaller-KB893803-v2-x86.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Adobe Photosop CS3 Extended ME\Adobe Photosop CS3 Extended ME\redist\WindowsServer2003-KB898715-ia64-enu.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Adobe Photosop CS3 Extended ME\Adobe Photosop CS3 Extended ME\redist\WindowsServer2003-KB898715-x64-enu.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Adobe Photosop CS3 Extended ME\Adobe Photosop CS3 Extended ME\redist\WindowsServer2003-KB898715-x86-enu.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Adobe Photosop CS3 Extended ME\Adobe Photosop CS3 Extended ME\redist\WindowsXP-KB898715-x64-enu.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Adobe-Photoshop-CSAR-ABICFULL\Adobe Photoshop CS ARABIC FULL\setup.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\anti autorun\autorun\f48c643ae2.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\anti autorun\fix after autorun virus\775a2ca50d.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\esy2write\esy2write.EXE
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\ip2\IP2.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\nordic\nordic.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\nordic\nordic.rar/nordic.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Package1[1].6.5v8.no_map\agBot.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Package1[1].6.5v8.no_map\MediaPatcher.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Package1[1].6.5v8.no_map\nuConnector Config.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\Package1[1].6.5v8.no_map\nuConnector68.exe
disinfected: virus Virus.Win32.Sality.s File: F:\برامج\XFire\xfencoder.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\برامج\تصغير احجام الفيديو\ermp.fullV1.94.

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\red alert xp.rar/minira2\inet\register.exe
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\red alert xp.rar/minira2\Ra95.exe
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\red alert xp.rar/minira2\RAMM.EXE
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\red alert xp.rar/minira2\RASETUP.EXE
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\red alert xp.rar/minira2\REGISTER.EXE
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\red alert xp.rar/minira2\uninstall.exe
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\red alert xp.rar/minira2\XWISC.exe
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\fifa2008.iso\Crack\FIFA08.exe
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\fifa2008.iso\DirectX\dxsetup.exe
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\fifa2008.iso\Fairlight\FIFA08.exe
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\fifa2008.iso\learn\learn\FIFA08.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\ملفات تحميل العاب\fifa2008.iso\Player\install_flash_player_active_x.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: F:\ملفات تحميل العاب\fifa2008.iso\Player\sw_lic_full_installer.exe
disinfected: virus Virus.Win32.Sality.s File: F:\ملفات تحميل العاب\fifa2008.iso\Xifa_2008_Crack_By_alfarolex\Crack\FIFA08.exe
detected: riskware not-a-virus:RiskTool.Win32.HideWindows File: G:\BramjneT VX.IMESSI.PRINCEK77\BramjneT VX.IMESSI.PRINCEK77.iso//$OEM$/$$/System32/cmdow.exe
disinfected: virus Virus.Win32.Sality.s File: G:\desktopp\PadPatcher.exe
disinfected: virus P2P-Worm.Win32.Polip.a File: G:\desktopp\ABOUT-SEXXX.COM_AAA_Logo_1.20\ABOUT-SEXXX.COM_AAA_Logo_1.20\AAA_Logo_1.20.+.Serial\AAA.Logo.v1.2.exe

Events
------
Time Name Status Reason
---- ---- ------ ------

Statistics
----------
Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------

Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Disinfect, delete if disinfection fails
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE s All
Skip if is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes

Quarantine
----------
Status Size Added
------ ------ ---- -----

Backup
------
Status Size
------ ------ ----


او حمله من هنا

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي

 
تأييد 0
اخي و اثناء الscan اصبح سطح المكتب كالاتي

untitl2222222ed.JPG



و القائمه كالاتي

untitled1111111111111111.JPG

 
تأييد 0
يا جماعه حد يرد عليه
 
تأييد 0
ثم عطل نقطة استعادة النظام حسب الشرح التالي

dis_sys_xp.jpg


واعمل هذي الخطوه من جديد
وان شاء الله ياعزيزي محنا طالعين الى لما يكون جهازك فل


عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم


 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
المشكله اني لما بدوس كليك يمين و خصائص مش بتظهر
 
تأييد 0
خلاص اخي عرفت اعملها اعمل ايه تاني؟؟؟
 
تأييد 0
اخوي يوجد في جهازك فايروس الاكس بي

جرب احد هالادوات

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



او

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



او

اداة الاخ ابراهيم تك

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي




يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي




وبعدين بعد ماتخلص فحص عطنا تقرير
 
توقيع : البارون
تأييد 0
حط تقرير الاداه الي عملتوو واعمل هذا الان


حمل هذه الاداة ,,
واتبع الشرح التالي ,, لتنظيف جهازك من الفيروسات
و عمل تقرير بالعمليه حتى ترفقه بردك القادم ,,

رابط الاداة

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي




شرح الاستخدام ,,,,,,

000.png



ولحفظ التقرير اعمل التالي ,,


001.png



002.png



بعدهاا ارفع التقرير على هذا الموقع

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي



,, وارفق الرابط بردك القادم


 
توقيع : Demo-dashDemo-dash is verified member.
تأييد 0
طيب اخوي بعد عمل الفحص وحطيت التقرير

اعد تشغيل الجهاز

وشوف لنا مشكلة سطح المكتب .. هل لازالت موجود ؟؟
 
توقيع : AbOdy
تأييد 0
وعلى فكرة اداة الكاسبر حذفت 291 فايروس
 
توقيع : AbOdy
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى