[تم حل المشكلة]لايمكن تشغيل إدارة المهام .. Task Manager .. وش الحل .. : (

  • بادئ الموضوع بادئ الموضوع نـوآفـ
  • تاريخ البدء تاريخ البدء
  • المشاهدات 3,932
الحالة
مغلق و غير مفتوح للمزيد من الردود.
ن

نـوآفـ

زيزوومى فعال
إنضم
21 أكتوبر 2007
المشاركات
205
مستوى التفاعل
4
النقاط
250
الإقامة
Riyadh
غير متصل
السلام عليكم ..

يالله حي الزيزوميين :d:

أخباركو أيه ؟

يا أخوان والله إن عندي مشكلة :no: <- احلف :hh:

إدارة المهام .. زهقتنييييييي ..

ماخليت حل بالمنتدى ما جربته ولا اشتغلت .. : (

:er:

ساعدوني .. وهذا تقرير الهاي جاك ..

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:52:33 ص, on 05/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\No-IP\DUC20.exe
C:\AppServ\Apache\Apache.exe
C:\AppServ\mysql\bin\mysqld-nt.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\_$Df\FrzState2k.exe
C:\AppServ\Apache\Apache.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\winvbga.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\efivt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O20 - Winlogon Notify: DfLogon - C:\WINDOWS\SYSTEM32\LogonDll.dll
O23 - Service: Apache - Unknown owner - C:\AppServ\Apache\Apache.exe
O23 - Service: DF5Serv - Faronics Corporation - C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
O23 - Service: MySQL - Unknown owner - C:\AppServ\mysql\bin\mysqld-nt.exe

--
End of file - 2494 bytes
أنقر للتوسيع...



المشكلة إني لما ادخل موقع
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
ويطلب مني أحذف قيمة معينة مثل ( O7 ) .. اروح احذفها ولما اسوي فحص بعدها على طول ترجع القيمة .. :cr::no:
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
ممكن تقرير جديد بدون اقتباس

بالتوفيق
 
توقيع : SUL6AN
تأييد 0
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:52:33 ص, on 05/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\No-IP\DUC20.exe
C:\AppServ\Apache\Apache.exe
C:\AppServ\mysql\bin\mysqld-nt.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\_$Df\FrzState2k.exe
C:\AppServ\Apache\Apache.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\winvbga.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\efivt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O20 - Winlogon Notify: DfLogon - C:\WINDOWS\SYSTEM32\LogonDll.dll
O23 - Service: Apache - Unknown owner - C:\AppServ\Apache\Apache.exe
O23 - Service: DF5Serv - Faronics Corporation - C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
O23 - Service: MySQL - Unknown owner - C:\AppServ\mysql\bin\mysqld-nt.exe

--
End of file - 2494 bytes


تفضل يابعدي
 
تأييد 0
بعد اذن الاخ SUL6AN ..

.....

اعمل التالي

عطل برامج الحماية عن العمل
ثم
حمل الاداة التالية واحفظها على سطح المكتب
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
لا تقم بتشغيل اي برنامج ،، ومهما طالت عملية الفحص انتظر حتى تنتهي
انتظر حتى يظهر لك تقرير ،،انسخه والصقه بمشاركتك القادمة
 
توقيع : ابـــو عــبــد الــلــه
تأييد 0
ابو ريما قال:
بعد اذن الاخ SUL6AN ..

.....

اعمل التالي

عطل برامج الحماية عن العمل
ثم
حمل الاداة التالية واحفظها على سطح المكتب
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
لا تقم بتشغيل اي برنامج ،، ومهما طالت عملية الفحص انتظر حتى تنتهي
انتظر حتى يظهر لك تقرير ،،انسخه والصقه بمشاركتك القادمة
أنقر للتوسيع...

ياهلا بالغالي ابو ريما :smile:

ماراح يستفيد شئ لانه مثبت برنامج الديب فرايزر
اخوي
احذف البرنامج لكي تتمتع بخصائص الادمن
او غير فى خصائصه

بالتوفيق
 
توقيع : SUL6AN
تأييد 0
SUL6AN قال:
ياهلا بالغالي ابو ريما :smile:

ماراح يستفيد شئ لانه مثبت برنامج الديب فرايزر
اخوي
احذف البرنامج لكي تتمتع بخصائص الادمن
او غير فى خصائصه

بالتوفيق
أنقر للتوسيع...


كلامك صحيح .. :b: .. أستاذي

ومنك نستفيد .. :er: .. أخي SUL6AN ...


 
توقيع : ابـــو عــبــد الــلــه
تأييد 0
بس ياسلطان أنا موقف الديب فريز ..

يعني وجوده مثل عدمه حاليا ً ..
 
تأييد 0
من بعد اذن الخبراء

حمل الاداة التالية
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


شغلها واعمل كما الشرح

zyzoom-c58c4476a3.png


zyzoom-c3a429056c.png



ثم نزل هذه الاداة واتبع الشرح التالي




يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي



التوافق : ويندوز اكسبيفقط



شرح الاستخدام ,,,,,,
دبل كلك على الاداة واصبر حتى تنتهي جميع النوافذ وتقف عند هذه النافذة



002.png



وعند ظهور هذه الشاشه ,, اضغط على Close ليتم اعادة تشغيل جهازك (( لتكملة عملية التنظيف ))



وبعد عمل المطلوب شوف لنا النتيجه​
 
توقيع : AbOdy
تأييد 0
اوك جاري التجربة أخوي

ولاهنت ياعبودي
 
تأييد 0
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:38:50 م, on 05/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\No-IP\DUC20.exe
C:\AppServ\Apache\Apache.exe
C:\AppServ\mysql\bin\mysqld-nt.exe
C:\AppServ\Apache\Apache.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\_$Df\FrzState2k.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\RunOnce: [Privacy Suite] "C:\Documents and Settings\Administrator\Application Data\cleaner\CSPSeraser.exe" "/R:C:\Documents and Settings\Administrator\Application Data\CyberScrub\Privacy Suite"
O4 - Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O23 - Service: Apache - Unknown owner - C:\AppServ\Apache\Apache.exe
O23 - Service: DF5Serv - Faronics Corporation - C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
O23 - Service: MySQL - Unknown owner - C:\AppServ\mysql\bin\mysqld-nt.exe

--
End of file - 2668 bytes


هذا التقرير بعد تطبيق الشرح أخوي عبودي ..

لاهنت
 
تأييد 0
للررررررررررررفع
 
تأييد 0
عطل نقطة استعادة النظام حسب الشرح التالي




dis_sys_xp.jpg


بعدين استخدم هذة الاداة


حمل اداة الكاسبر من الرابط التالي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

او من هنا
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


او من هنا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي





بعد التحميل ،، دبل كلك وسيتم استخراج ملف الاداة الى مجلد بسطح المكتب لحظات وتبدأ الاداة بالعمل


تابع الشرح لفحص الجهاز وتنظيفه وارفاق التقرير


zyzoom-3d6517b067.png


zyzoom-7717063ed7.png


zyzoom-cda271da05.png


zyzoom-26888dbf15.png


zyzoom-3f4576c288.png


ثم قوم بضغط التقرير ورفعه هنا>>>>
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي



 
التعديل الأخير بواسطة المشرف:
توقيع : صمت السكوت
تأييد 0
جاري تطبيق الشرح ياخلود

يعطيك العافيه
 
تأييد 0
Scan
----
Scanned: 122461
Detected: 263
Untreated: 4
Start time: 10/04/1430 8:03:29 م
Duration: 00:36:43
Finish time: 10/04/1430 8:40:12 م


Detected
--------
Status Object
------ ------
disinfected: virus Virus.Win32.Sality.aa File: d:\tahmee~1\f9d9~1\combofix.exe
will be deleted when the computer is restarted: virus Virus.Win32.Agent.bu File: C:\WINDOWS\linkinfo.dll
disinfected: virus Virus.Win32.Sality.aa File: C:\Documents and Settings\Administrator\Local Settings\temp\vxb\r.exe
deleted: Trojan program Trojan-Downloader.Win32.VB.cbp File: C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla\Firefox\Profiles\tfncsvef.default\Cache\7E64F671d01/HAC-Downloader.exe
deleted: malware Constructor.Win32.Bifrose.j File: C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla\Firefox\Profiles\tfncsvef.default\Cache\4554DB5Dd01/! BaD BoY ! BiFrOsT Priv8 2.exe
deleted: Trojan program Trojan.Win32.Midgare.fcz File: C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla\Firefox\Profiles\tfncsvef.default\Cache\4544DB5Dd01/server.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031661.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031856.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031857.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031858.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031859.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031860.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031861.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031862.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031863.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031864.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031865.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031866.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031867.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031868.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031870.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031871.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031872.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031873.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031874.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031876.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031879.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031880.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031881.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031882.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031883.exe
deleted: virus Virus.Win32.Agent.bu File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031884.dll
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031889.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031890.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031892.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031894.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031896.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031900.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031901.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031902.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031903.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031904.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031905.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031909.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031913.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031920.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031926.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031927.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031929.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031930.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031935.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031941.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031943.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031944.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031947.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031948.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031949.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031950.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031954.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0031983.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0032016.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0032027.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0032028.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0032052.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0032073.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0032135.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP33\A0032192.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032193.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032213.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032214.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032220.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032222.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032231.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032240.exe
deleted: virus Virus.Win32.Alman.b File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032241.sys
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032242.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032243.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032244.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032245.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032249.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032250.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032256.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032258.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032259.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032263.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032266.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032267.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032268.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032269.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032284.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032285.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032286.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032305.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032335.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032340.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032341.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032342.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032343.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032344.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032348.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032350.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032351.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032352.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032353.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032355.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032356.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032358.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032362.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032364.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032369.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032377.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032378.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032379.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032380.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032381.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032385.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032392.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032394.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032395.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032398.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032399.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032400.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032401.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032402.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032409.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032427.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032431.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032537.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032538.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032539.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032540.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032542.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032552.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032554.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032555.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032556.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032557.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032558.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032559.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032561.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032566.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032568.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032578.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032579.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032580.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032581.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032583.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032588.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032589.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032590.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032591.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032592.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032593.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032595.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032597.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032601.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032603.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032608.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032616.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032617.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032618.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032619.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032623.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032630.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032632.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032633.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032635.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032637.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032638.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032639.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032640.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032641.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032647.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032668.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032671.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032674.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032771.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032831.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032832.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032833.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032834.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032837.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032838.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032839.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032840.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032841.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032842.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032843.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032844.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032846.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032847.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032848.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032849.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032850.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032851.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032861.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032862.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032868.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032869.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032871.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032872.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032874.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032875.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032876.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032877.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032878.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032879.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032891.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032892.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032893.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032894.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032895.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032896.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032900.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032901.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032902.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032904.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032905.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032906.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032907.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032908.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032909.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032910.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032912.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032913.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032914.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032915.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032916.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032917.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032918.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032919.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032920.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032921.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032922.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032923.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032924.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032925.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032926.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032927.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032930.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032931.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032936.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032937.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032938.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032939.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032943.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032946.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032948.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032949.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032952.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032953.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032954.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032955.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032968.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032970.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032971.EXE
disinfected: virus Virus.Win32.Sality.aa File: C:\System Volume Information\_restore{708661DD-34CC-4008-9184-E801BC19DD90}\RP34\A0032972.EXE
detected: virus Virus.Win32.Agent.bu File: C:\WINDOWS\linkinfo.dll
disinfected: virus Virus.Win32.Sality.aa File: C:\WINDOWS\system32\VTTimer.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\WINDOWS\system32\VTTrayp.exe
detected: new threat Hidden.Object (modification) File: C:\WINDOWS\system32\linkinfo.dll
detected: new threat Hidden.Object (modification) File: C:\WINDOWS\system32\dllcache\linkinfo.dll
detected: virus Virus.Win32.Alman.b File: C:\WINDOWS\system32\drivers\cdralw.sys


Events
------
Time Name Status Reason
---- ---- ------ ------
10/04/1430 8:03:37 م Running module: smss.exe\smss.exe ok scanned
10/04/1430 8:03:38 م File: C:\WINDOWS\System32\smss.exe ok scanned
10/04/1430 8:03:38 م Running module: smss.exe\ntdll.dll ok scanned
10/04/1430 8:03:38 م File: C:\WINDOWS\system32\ntdll.dll ok scanned
10/04/1430 8:03:38 م Running module: csrss.exe\csrss.exe ok scanned
10/04/1430 8:03:38 م File: C:\WINDOWS\system32\csrss.exe ok scanned
10/04/1430 8:03:38 م Running module: csrss.exe\ntdll.dll ok scanned
10/04/1430 8:03:38 م File: C:\WINDOWS\system32\ntdll.dll ok scanned
10/04/1430 8:03:38 م Running module: csrss.exe\CSRSRV.dll ok scanned
10/04/1430 8:03:38 م File: C:\WINDOWS\system32\CSRSRV.dll ok scanned
10/04/1430 8:03:38 م Running module: csrss.exe\basesrv.dll ok scanned
10/04/1430 8:03:38 م File: C:\WINDOWS\system32\basesrv.dll ok scanned
10/04/1430 8:03:38 م Running module: csrss.exe\winsrv.dll ok scanned


Statistics
----------
Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------


Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Disinfect, delete if disinfection fails
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE objects All
Skip if object is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes


Quarantine
----------
Status Object Size Added
------ ------ ---- -----


Backup
------
Status Object Size
------ ------ ----




هذا التقرير يالغالي
 
تأييد 0
بارك الله فيك هل قمت بتعطيل نقطه استعادة النظام قبل الفحص ام لا كما ارفقت لك بالصور
 
توقيع : صمت السكوت
تأييد 0
Scan
----
Scanned: 122906
Detected: 32
Untreated: 0
Start time: 13/04/1430 19:53:58
Duration: 00:26:01
Finish time: 13/04/1430 20:19:59


Detected
--------
Status Object
------ ------
disinfected: virus Virus.Win32.Sality.aa File: c:\windows\system32\niwradsoft.scr
disinfected: virus Virus.Win32.Sality.aa File: d:\p-files\f9d9~1\combofix.exe
disinfected: virus Virus.Win32.Sality.aa File: c:\program files\ahead\coverdesigner\coverdes.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Documents and Settings\Administrator\Local Settings\temp\wz3acd\Mr.Maher.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Documents and Settings\Administrator\Local Settings\temp\wz9179\برنامج معرفة المتصلين بجهازك.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\Adobe\Photoshop CS\Samples\Droplets\ImageReady Droplets\Constrain 350, Make JPG 30.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\Adobe\Photoshop CS\Samples\Droplets\ImageReady Droplets\Constrain to 64X64 pixels.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\Kristanix\Right Click Image Converter\RCIC.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\Kristanix\Right Click Image Converter\uninstall.exe
disinfected: virus Virus.Win32.Alman.b File: C:\Program Files\SWiSH Max2\Patch.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\SWiSH Max2\SWiSHpla.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\SWiSH Max2\SWiSHpla_4.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\SWiSH Max2\SWiSHpla_8.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\SWiSH Max2\SWiSHpla_9.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Program Files\Your Uninstaller 2008\fos.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\download.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\grep.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\LS.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\Process.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\psservice.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\RestartIt!.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\sc.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\sed.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\SF.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\shutdown.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\unzip.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\vfind.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\SDFix\apps\Replace\regedit.exe
will be deleted when the computer is restarted: virus Virus.Win32.Agent.bu File: C:\WINDOWS\linkinfo.dll
disinfected: virus Virus.Win32.Sality.aa File: C:\WINDOWS\system32\VTTimer.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\WINDOWS\system32\VTTrayp.exe
deleted: virus Virus.Win32.Alman.b File: C:\WINDOWS\system32\drivers\cdralw.sys


Events
------
Time Name Status Reason
---- ---- ------ ------
13/04/1430 19:54:06 Running module: smss.exe\smss.exe ok scanned


Statistics
----------
Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------


Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Disinfect, delete if disinfection fails
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE objects All
Skip if object is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes


Quarantine
----------
Status Object Size Added
------ ------ ---- -----


Backup
------
Status Object Size
------ ------ ----






هلا حبيبي

هذا التقرير بعد ما وقفت إستعادة النظام ..​
 
تأييد 0
للرررررررررررررررفع
 
تأييد 0
اخوي نواف حمل الاداه التاليه حجمها خفيف وبعد الانتهاء اعمل تقرير هايجاك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
توقيع : صمت السكوت
تأييد 0
أوك , جاري التجربة ..
 
تأييد 0
اخوي اكتب regedit في تشغيل وقلي وش صار معاك عندك فايروس sailty
 
توقيع : البارون
تأييد 0
الحالة
مغلق و غير مفتوح للمزيد من الردود.
عودة
أعلى