يليت مساعدة من الاخوان

  • بادئ الموضوع بادئ الموضوع Abo Khallody
  • تاريخ البدء تاريخ البدء
  • المشاهدات 2,149
A

Abo Khallody

زيزوومي جديد
إنضم
10 مارس 2008
المشاركات
48
مستوى التفاعل
0
النقاط
40
الإقامة
الدمام
غير متصل
السلام عليكم كيف حال الشباب ان شاء الله طيبين .....

انا عندي مشكلة قد طرحتها عليكم هنا بالمنتدى والاخوان ماقصرو وعطوني الحل ... بس ما ادري المشكلة رجعت من جديد..

الا وهي : بعد ما اخش المسنجر بمدة قصيرة يعلق الجهاز والمسن حقي يرسل فيروس لكل قائمة الايميلات اللي عندي ....... ويعلق الجهاز وبعدها لازم اقفل المسن بعدين ارجع واشتغل عليه من جديد ويصيرلي نفس الشي ويعلق مرى ثانية يوم اخش .. المشكلة انه يعلق مدة حوالي دقيقتين شي زي كذا ويرسل الفيروس لأصحابي فيجيهم الفيروس .....


غيرت ايميلي دخلت من ايميل اخوي .. ونفس المشكلة .. في فيروس بجهازي مايروح حتى بالanti - virus kasper ...سويت سكان وماطلعلي انو في فايروس .. والمشكلة مستمرة ... يليت تساعدوني يا جماعة الخير والله طفشت ... انا مرى محتاج المسنجر عشان بتواصل في مع اهلي والفيروس وصل لمعضم اقاربي فأبغى الحل عشان اساعدهم وبنفس الوقت اشيل المشكلة من عندي

يليت المساعدة

وشكرا

اخوكم ...
 

ترتيب حسب التاريخ ترتيب حسب الأصوات
وعليكم السلام

تفضل هذا الحل للفايروسات


الاداة الاولى

MSNFix

للتحميل

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


شرح الاستخدام
بعد فك الضغط افتح المجلد الناتج وتابع كما الصور

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي




الاداة الثانية

MSN Photo Virus Remover

للتحميل

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


بعد فك الضغط شغل الاداة واعمل كما الشرح

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


اختر مكان الحفظ وليكن سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


عندي لم يظهر فيروسات
biggrin.gif


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


هنا انت مخير بين الخروج او التوجه الى موقع الايميل لتغير الباسورد الخاص بك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
توقيع : أعتز بك
تأييد 0
ومن شان التعليق تفضل

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


عند تشغيل الاداة نضغط كما محدد بالصورة التالية



wh_61624949.png



ونوافق على الرسائل التي تخرج وفي حال خروج تحذير من برنامج الحماية نعمل له سماح

ثم نعيد تشغيل الجهاز

وشوف كيف الأوضاع

بالتوفيق​
 
توقيع : أعتز بك
تأييد 0
مشكور اخوي : اعتز بك


بس هذي الطريقتين سويتها ومانفع شي .. ترجع المشكلة زي اول ...
 
تأييد 0
طيب شوف الرد الثاني للتعليق

ورد لي
 
توقيع : أعتز بك
تأييد 0
وهذا تقرير عن الهايجك :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:11, on 2009-05-13
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
C:\Program Files\Hotspot Shield\bin\openvpnas.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Mixer.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
C:\Program Files\Nero\Nero 7\InCD\InCD.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Portrait Displays\HP My Display\DTHtml.exe
C:\WINDOWS\winsystem.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\BitComet\BitComet.exe
C:\WINDOWS\mstwain34.exe
C:\Program Files\Common Files\Portrait Displays\Shared\HookManager.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\XPPRESP3\mscup2.exe
C:\Documents and Settings\XPPRESP3\mscup2.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Documents and Settings\XPPRESP3\Desktop\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\XPPRESP3\Desktop\ComboFix.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favorites
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: TBSB08448 - {271CE47E-CAFF-4A35-A6DD-C0CE906898AA} - C:\Program Files\M5zn Toolbar\m5zn.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: M5zn Toolbar - {34F459B8-1D37-4FF2-9EFA-192D8E3ABA6F} - C:\Program Files\M5zn Toolbar\m5zn.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SecurDisc] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [DT HPW] C:\Program Files\Portrait Displays\HP My Display\DTHtml.exe -startup_folder
O4 - HKLM\..\Run: [Windows API Control Center] winsystem.exe
O4 - HKLM\..\Run: [iemultjx] C:\WINDOWS\system32\iemultjx.exe
O4 - HKLM\..\Run: [vmscon] C:\WINDOWS\system32\vmscon.exe
O4 - HKLM\..\Run: [bv2] C:\WINDOWS\system32\bv2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TaskSwitchXP] C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [mstwain34] C:\WINDOWS\mstwain34.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - HKCU\..\Run: [12CFG914-K641-26SF-N32P] C:\RECYCLER\S-1-5-21-0243336031-4052116379-881863308-0851\vse432.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user')
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: M5zn Toolbar - {34F459B8-1D37-4FF2-9EFA-192D8E3ABA6F} - C:\Program Files\M5zn Toolbar\m5zn.dll
O9 - Extra 'Tools' menuitem: M5zn Toolbar - {34F459B8-1D37-4FF2-9EFA-192D8E3ABA6F} - C:\Program Files\M5zn Toolbar\m5zn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.google.com
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
--
End of file - 11044 bytes
 
تأييد 0
عندك أصابات كثيره

قم بعمل التالي

عطل جميع برامج الحمايه >>> تأكد من وقت وتاريخ الجهاز
>>> لاتغير اسم الاداة واحفظها على سطح المكتب
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم
 
توقيع : أعتز بك
تأييد 0
أعتز بك قال:
ومن شان التعليق تفضل

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


عند تشغيل الاداة نضغط كما محدد بالصورة التالية



wh_61624949.png



ونوافق على الرسائل التي تخرج وفي حال خروج تحذير من برنامج الحماية نعمل له سماح

ثم نعيد تشغيل الجهاز​

وشوف كيف الأوضاع​


بالتوفيق​
أنقر للتوسيع...

سويت المطلوب وسوالي ريستارت ..

اوك دحين حسوي الملطوب مني تحت
 
تأييد 0
أعتز بك قال:
عندك أصابات كثيره

قم بعمل التالي

عطل جميع برامج الحمايه >>> تأكد من وقت وتاريخ الجهاز
>>> لاتغير اسم الاداة واحفظها على سطح المكتب
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم
أنقر للتوسيع...
وهذا طلبك :)


ComboFix 09-05-12.06 - XPPRESP3 05/13/2009 12:29.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.1.1033.18.1022.636 [GMT 3:00]
Running from: c:\documents and settings\XPPRESP3\Desktop\ComboFix.exe
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\cmsetac.dll
c:\windows\KB8888239.log
c:\windows\ntdtcstp.dll
.
---- Previous Run -------
.
c:\recycler\S-1-5-21-1482476501-1644491937-682003330-1013
c:\recycler\S-1-5-21-1482476501-1644491937-682003330-1013\cfxer.exe
c:\recycler\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini
c:\recycler\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.MSNFix
c:\windows\cmsetac.dll
c:\windows\IE4 Error Log.txt
c:\windows\KB8888239.log
c:\windows\ntdtcstp.dll
c:\windows\system32\msconfig.exe
c:\windows\winsystem.exe
.
((((((((((((((((((((((((( Files Created from 2009-04-13 to 2009-05-13 )))))))))))))))))))))))))))))))
.
2009-05-12 19:01 . 2009-05-12 19:01 33994 ----a-w c:\windows\system32\iemultjx.exe
2009-05-11 19:28 . 2009-05-11 19:28 -------- d-sh--w c:\documents and settings\Remo0o\PrivacIE
2009-05-11 19:27 . 2009-05-11 19:27 -------- d-sh--w c:\documents and settings\Remo0o\IETldCache
2009-05-11 18:44 . 2009-05-11 18:44 -------- d-----w c:\program files\Microsoft SQL Server Compact Edition
2009-05-11 18:42 . 2009-05-11 18:42 -------- d-----w c:\program files\Windows Live SkyDrive
2009-05-11 17:41 . 2009-05-11 17:41 -------- d-sh--w c:\documents and settings\XPPRESP3\PrivacIE
2009-05-11 17:40 . 2009-05-11 17:40 -------- d-sh--w c:\documents and settings\XPPRESP3\IECompatCache
2009-05-11 17:39 . 2009-05-11 17:39 -------- d-sh--w c:\documents and settings\XPPRESP3\IETldCache
2009-05-11 17:35 . 2009-05-11 17:35 -------- d-sh--w c:\documents and settings\LocalService\IETldCache
2009-05-11 17:29 . 2009-05-11 17:30 -------- dc-h--w c:\windows\ie8
2009-05-11 17:27 . 2008-02-26 11:59 294912 -c----w c:\windows\system32\dllcache\msctf.dll
2009-05-11 10:45 . 2009-05-11 10:45 -------- d-----w c:\documents and settings\Remo0o\Application Data\Media Player Classic
2009-05-10 11:23 . 2009-05-10 11:23 230 ----a-w c:\documents and settings\XPPRESP3\vmscon.bat
2009-05-10 11:22 . 2009-05-10 11:22 34410 ----a-w c:\windows\system32\vmscon.exe
2009-05-10 11:22 . 2009-05-10 11:22 34410 ----a-w c:\documents and settings\XPPRESP3\vmscon.exe
2009-05-08 11:01 . 2009-05-08 11:01 -------- d-----w C:\spacetoon_interactive
2009-05-06 12:34 . 2009-05-07 21:59 30872 ----a-w c:\documents and settings\Remo0o\mscup3.exe
2009-05-06 10:50 . 2009-05-06 12:13 30550 ----a-w c:\documents and settings\XPPRESP3\mscup3.exe
2009-05-04 10:24 . 2009-05-04 10:24 -------- d-----w c:\documents and settings\XPPRESP3\Application Data\DisplayTune
2009-05-04 10:23 . 2009-05-04 10:23 -------- d-----w c:\documents and settings\Remo0o\Application Data\DisplayTune
2009-05-01 10:44 . 2009-05-02 17:08 30270 ----a-w c:\documents and settings\XPPRESP3\mscup1.exe
2009-05-01 09:42 . 2009-05-13 09:55 31242 ----a-w c:\documents and settings\XPPRESP3\mscup2.exe
2009-04-22 08:26 . 2009-04-22 08:26 -------- d-----w c:\documents and settings\Remo0o\Local Settings\Application Data\PunkBuster
2009-04-21 20:55 . 2009-05-13 09:54 19968 ----a-w c:\documents and settings\XPPRESP3\tvs2.exe
2009-04-21 16:03 . 2009-05-12 13:23 30872 ----a-w c:\documents and settings\Remo0o\mscup2.exe
2009-04-19 12:18 . 2009-05-12 13:24 8552 ----a-w c:\documents and settings\Remo0o\bv2.exe
2009-04-19 08:11 . 2009-05-13 09:54 33994 ----a-w c:\windows\system32\bv2.exe
2009-04-18 11:39 . 2009-04-19 08:54 30276 ----a-w c:\documents and settings\XPPRESP3\mscupdate2.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-13 10:27 . 2009-03-11 23:20 -------- d-----w c:\program files\BitComet
2009-05-13 10:23 . 2009-02-23 18:18 -------- d-----w c:\program files\Yahoo!
2009-05-12 20:06 . 2009-02-28 15:22 138168 ----a-w c:\windows\system32\drivers\PnkBstrK.sys
2009-05-12 20:06 . 2009-02-28 15:21 189472 ----a-w c:\windows\system32\PnkBstrB.exe
2009-05-12 13:24 . 2009-03-20 10:38 33522 ----a-w c:\documents and settings\Remo0o\iemultjx.exe
2009-05-12 13:24 . 2009-03-27 07:38 34410 ----a-w c:\documents and settings\Remo0o\vmscon.exe
2009-05-12 13:24 . 2009-03-21 12:38 19968 ----a-w c:\documents and settings\Remo0o\tvs2.exe
2009-05-11 18:45 . 2009-03-17 17:21 -------- d-----w c:\program files\Windows Live
2009-05-03 20:33 . 2009-02-24 06:33 -------- d--h--w c:\program files\InstallShield Installation Information
2009-05-03 20:33 . 2009-05-03 20:33 -------- d-----w c:\program files\Common Files\Portrait Displays
2009-05-03 20:33 . 2009-05-03 20:33 -------- d-----w c:\program files\Portrait Displays
2009-05-02 17:08 . 2009-03-20 16:47 30270 ----a-w c:\documents and settings\XPPRESP3\mscupdate.exe
2009-04-19 14:32 . 2009-03-21 12:37 30276 ----a-w c:\documents and settings\Remo0o\mscupdate.exe
2009-04-05 11:57 . 2009-03-21 12:37 33762 ----a-w c:\documents and settings\Remo0o\cmgrs.exe
2009-04-04 18:29 . 2009-04-04 18:29 -------- d-----w c:\program files\microsoft frontpage
2009-03-31 11:27 . 2009-02-24 20:33 -------- d-----w c:\program files\GameSpy Arcade
2009-03-30 16:09 . 2009-03-17 12:54 18312 ----a-w c:\documents and settings\Remo0o\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-03-26 14:08 . 2004-07-17 20:36 163644 ----a-w c:\windows\system32\drivers\secdrv.sys
2009-03-26 13:32 . 2009-03-26 13:32 -------- d-----w c:\program files\Activision
2009-03-26 07:25 . 2009-02-28 15:20 75064 ----a-w c:\windows\system32\PnkBstrA.exe
2009-03-17 19:01 . 2009-02-28 11:43 18312 ----a-w c:\documents and settings\XPPRESP3\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-03-17 17:27 . 2009-03-17 17:27 -------- d-----w c:\program files\Microsoft Silverlight
2009-03-17 17:27 . 2009-03-17 17:22 -------- d-----w c:\program files\Microsoft
2009-03-17 17:24 . 2009-03-17 17:24 -------- d-----w c:\program files\Microsoft Sync Framework
2009-03-17 14:50 . 2009-03-17 14:50 -------- d-----w c:\program files\Common Files\Windows Live
2009-03-16 14:01 . 2009-03-16 14:01 -------- d-----w c:\program files\HitFixer
2009-03-16 14:00 . 2009-03-16 14:00 -------- d-----w c:\program files\AutoHotkey
2009-03-15 10:51 . 2009-02-28 13:32 -------- d-----w c:\program files\Hotspot Shield
2009-03-08 01:34 . 2005-10-21 03:38 914944 ----a-w c:\windows\system32\wininet.dll
2009-03-08 01:34 . 2004-08-04 09:56 43008 ----a-w c:\windows\system32\licmgr10.dll
2009-03-08 01:33 . 2004-08-04 09:56 18944 ----a-w c:\windows\system32\corpol.dll
2009-03-08 01:33 . 2004-08-04 09:56 420352 ----a-w c:\windows\system32\vbscript.dll
2009-03-08 01:32 . 2004-08-04 09:56 72704 ----a-w c:\windows\system32\admparse.dll
2009-03-08 01:32 . 2004-08-04 09:56 71680 ----a-w c:\windows\system32\iesetup.dll
2009-03-08 01:31 . 2004-08-04 09:56 34816 ----a-w c:\windows\system32\imgutil.dll
2009-03-08 01:31 . 2004-08-04 09:56 48128 ----a-w c:\windows\system32\mshtmler.dll
2009-03-08 01:31 . 2004-08-04 09:56 45568 ----a-w c:\windows\system32\mshta.exe
2009-03-08 01:22 . 2001-08-23 14:00 156160 ----a-w c:\windows\system32\msls31.dll
2009-03-04 22:57 . 2009-03-04 22:57 2560 ----a-w c:\windows\_MSRSTRT.EXE
2009-03-02 13:22 . 2009-03-02 13:22 81920 ----a-w c:\windows\system32\W32N50.DLL
2009-03-02 13:22 . 2009-03-02 13:22 17134 ----a-w c:\windows\system32\PCANDIS5.SYS
2009-02-24 08:53 . 2003-03-19 06:14 499712 ----a-w c:\windows\system32\msvcp71.dll
2009-02-23 18:15 . 2009-02-23 18:15 2806 ----a-w c:\windows\mozver.dat
2009-02-23 18:07 . 2009-02-23 18:07 110592 ----a-w c:\windows\mstwain34.exe
2009-02-23 18:06 . 2001-08-23 14:00 67 --sha-w c:\windows\Fonts\desktop.ini
2009-02-23 18:04 . 2009-02-23 18:04 21640 ----a-w c:\windows\system32\emptyregdb.dat
.
------- Sigcheck -------
[-] 2005-12-19 17:49 1580544 784DDC1F40C4F729284D5A73930F0C9D c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{271CE47E-CAFF-4A35-A6DD-C0CE906898AA}]
2008-01-25 14:24 2359296 ----a-w c:\program files\M5zn Toolbar\m5zn.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
"TaskSwitchXP"="c:\program files\TaskSwitchXP\TaskSwitchXP.exe" [2005-07-27 61952]
"MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-04-19 484904]
"BitComet"="c:\program files\BitComet\BitComet.exe" [2009-03-09 2564408]
"mstwain34"="c:\windows\mstwain34.exe" [2009-02-23 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-05-11 8429568]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-05-11 81920]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"SecurDisc"="c:\program files\Nero\Nero 7\InCD\NBHGui.exe" [2007-05-15 1628208]
"InCD"="c:\program files\Nero\Nero 7\InCD\InCD.exe" [2007-05-15 1057328]
"DT HPW"="c:\program files\Portrait Displays\HP My Display\DTHtml.exe" [2007-06-29 278528]
"iemultjx"="c:\windows\system32\iemultjx.exe" [2009-05-12 33994]
"vmscon"="c:\windows\system32\vmscon.exe" [2009-05-10 34410]
"bv2"="c:\windows\system32\bv2.exe" [2009-05-13 33994]
"C-Media Mixer"="Mixer.exe" - c:\windows\mixer.exe [2003-03-20 1855488]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2007-05-11 1626112]
"BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2004-08-04 110592]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nlsf"="move" [X]
"nlhr"="c:\windows\System32\AdvPack.Dll" [2009-03-08 128512]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-04 44544]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
"NoSMHelp"= 1 (0x1)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
"NoSMHelp"= 1 (0x1)
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32
"wave1"= serwvdrv.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"18160:TCP"= 18160:TCP:BitComet 18160 TCP
"18160:UDP"= 18160:UDP:BitComet 18160 UDP
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2009-03-17 55152]
R2 SeaPort;SeaPort;c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
S3 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 RTL8187B;TG123g USB Wireless Adapter;c:\windows\system32\drivers\RTL8187B.sys [2009-03-02 264576]
--- Other Services/Drivers In Memory ---
*NewlyCreated* - HELPSVC
NETSVCS REQUIRES REPAIRS - current entries shown
6to4
AppMgmt
AudioSrv
Browser
CryptSvc
DMServer
DHCP
ERSvc
EventSystem
FastUserSwitchingCompatibility
HidServ
Ias
Iprip
Irmon
LanmanServer
LanmanWorkstation
Netman
Nla
NWCWorkstation
Nwsapagent
Rasauto
Rasman
Remoteaccess
Schedule
Seclogon
SENS
Sharedaccess
SRService
Tapisrv
Themes
TrkWks
WZCSVC
Wmi
WmdmPmSp
winmgmt
xmlprov
BITS
wuauserv
ShellHWDetection
WmdmPmSN
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{02bc39de-0599-11de-bf1b-001b2f34d8d5}]
\sheLL\AUtOplaY\ComManD - K:\jgnio.exe
\sheLL\AutoRun\command - K:\jgnio.exe
\sheLL\expLore\CoMMANd - K:\jgnio.exe
\sheLL\oPen\coMMAND - K:\jgnio.exe
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
Contents of the 'Scheduled Tasks' folder
2009-05-13 c:\windows\Tasks\User_Feed_Synchronization-{1BB56199-1F88-478B-A52B-58EBD7FA81DC}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 01:31]
.
- - - - ORPHANS REMOVED - - - -
HKCU-Run-12CFG914-K641-26SF-N32P - c:\recycler\S-1-5-21-0243336031-4052116379-881863308-0851\vse432.exe
HKLM-Run-Windows API Control Center - winsystem.exe

.
------- Supplementary Scan -------
.
uInternet Connection Wizard,ShellNext = hxxp://www.google.com/
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
IE: &D&ownload &with BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload all video with BitComet - c:\program files\BitComet\BitComet.exe/AddVideo.htm
IE: &D&ownload all with BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html
IE: Backward Links - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - c:\program files\Google\GoogleToolbar1.dll/cmcache.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Similar Pages - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate into English - c:\program files\Google\GoogleToolbar1.dll/cmtrans.html
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-05-13 12:32
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'explorer.exe'(1568)
c:\windows\system32\msi.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\CTSVCCDA.EXE
c:\program files\Common Files\Portrait Displays\Shared\DTSRVC.exe
c:\program files\Hotspot Shield\bin\openvpnas.exe
c:\program files\Nero\Nero 7\InCD\InCDsrv.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\windows\system32\MsPMSPSv.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Portrait Displays\Shared\HookManager.exe
c:\program files\Internet Explorer\iexplore.exe
c:\program files\Internet Explorer\iexplore.exe
c:\program files\Windows Live\Toolbar\wltuser.exe
c:\program files\Internet Explorer\iexplore.exe
c:\program files\Internet Explorer\iexplore.exe
c:\program files\Internet Explorer\iexplore.exe
c:\program files\Internet Explorer\iexplore.exe
.
**************************************************************************
.
Completion time: 2009-05-13 12:34 - machine was rebooted
ComboFix-quarantined-files.txt 2009-05-13 09:33
Pre-Run: 54,058,213,376 bytes free
Post-Run: 54,527,180,800 bytes free
286
 
تأييد 0
طيب الحين اعمل كما في الشرح

عطل برنامج الحمايه

حمل الاداة من هنا​


يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


بعد التحميل ،، دبل كلك وسيتم استخراج ملف الاداة الى مجلد بسطح المكتب لحظات وتبدأ الاداة بالعمل​


تابع الشرح لفحص الجهاز وتنظيفه وارفاق التقرير​



zyzoom-7ce8879e89.png



zyzoom-cdd75c8aa3.png



zyzoom-89156f000e.png



zyzoom-6d533c4f2e.png



zyzoom-f20f3644d0.png


وبعدها عطني هايجاك جديد​
 
توقيع : أعتز بك
تأييد 0
وهذا تقرير السكان :

Scan
----
Scanned: 264788
Detected: 40
Untreated: 0
Start time: 1430-05-19 13:21
Duration: 01:14:10
Finish time: 1430-05-19 14:35

Detected
--------
Status Object
------ ------
deleted: virus Worm.Win32.AutoRun.afal File: C:\sce.MSNFix
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.bktw File: C:\Documents and Settings\Remo0o\bv2.exe//NCode
deleted: Trojan program Trojan-Downloader.Win32.VB.lvo File: C:\Documents and Settings\Remo0o\cmgrs.exe
deleted: malware Hoax.Win32.Renos.vbxm File: C:\Documents and Settings\Remo0o\iemultjx.exe
deleted: Trojan program Trojan.Win32.Dialer.vdv File: C:\Documents and Settings\Remo0o\mscup2.exe
deleted: Trojan program Trojan.Win32.Dialer.vdv File: C:\Documents and Settings\Remo0o\mscup3.exe
deleted: Trojan program Trojan.Win32.Dialer.vca File: C:\Documents and Settings\Remo0o\mscupdate.exe
deleted: Trojan program Backdoor.Win32.SdBot.lvd File: C:\Documents and Settings\Remo0o\tvs2.exe
deleted: Trojan program Trojan.Win32.Buzus.aymd File: C:\Documents and Settings\Remo0o\vmscon.exe
deleted: Trojan program Trojan-Downloader.Win32.VB.lvo File: C:\Documents and Settings\XPPRESP3\cmgrs.MSNFix
deleted: Trojan program Trojan.Win32.Dialer.exu File: C:\Documents and Settings\XPPRESP3\mscup1.exe
deleted: Trojan program Trojan.Win32.Dialer.vdq File: C:\Documents and Settings\XPPRESP3\mscup3.exe
deleted: Trojan program Trojan.Win32.Dialer.exu File: C:\Documents and Settings\XPPRESP3\mscupdate.exe
deleted: Trojan program Trojan.Win32.Dialer.vca File: C:\Documents and Settings\XPPRESP3\mscupdate2.exe
deleted: Trojan program Backdoor.Win32.SdBot.lvd File: C:\Documents and Settings\XPPRESP3\tvs2.exe
deleted: Trojan program Trojan.Win32.Buzus.aymd File: C:\Documents and Settings\XPPRESP3\vmscon.exe
deleted: Trojan program Trojan.Win32.Buzus.atou File: C:\Documents and Settings\XPPRESP3\Desktop\bv2.exe.back
deleted: Trojan program Backdoor.Win32.Turkojan.r File: C:\Documents and Settings\XPPRESP3\Desktop\Fraps 2.9.8 Build 7777 Setup.exe//data0002//UPX
deleted: Trojan program Backdoor.Win32.Turkojan.r File: C:\Documents and Settings\XPPRESP3\Desktop\Fraps_2[1].9.8_Build_7777_Setup.rar/Fraps 2.9.8 Build 7777 Setup.exe
deleted: malware Hoax.Win32.Renos.vbwg File: C:\Documents and Settings\XPPRESP3\Desktop\iemultjx.exe.back
deleted: malware Hoax.Win32.Renos.vbwg File: C:\Documents and Settings\XPPRESP3\Desktop\mscup2.exe.back
deleted: Trojan program Trojan.Win32.Buzus.aups File: C:\Documents and Settings\XPPRESP3\Desktop\tvs2.exe.back
deleted: Trojan program Trojan.Win32.Buzus.avlh File: C:\Documents and Settings\XPPRESP3\Desktop\vmscon.exe.back
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.bktw File: C:\Documents and Settings\XPPRESP3\Desktop\vse432.exe.back//NCode
deleted: Trojan program Backdoor.Win32.IRCBot.igu File: C:\Documents and Settings\XPPRESP3\Desktop\winsystem.exe.back
deleted: Trojan program Trojan-Downloader.Win32.VB.lvo File: C:\Documents and Settings\XPPRESP3\Desktop\MSNFix\backup\cmgrs.exe
deleted: Trojan program Trojan.Win32.Buzus.aups File: C:\Documents and Settings\XPPRESP3\Desktop\MSNFix\backup\iemultjx.exe
deleted: Trojan program Trojan.Win32.Dialer.vcf File: C:\Documents and Settings\XPPRESP3\Desktop\MSNFix\backup\mscupdate.exe
deleted: virus Worm.Win32.AutoRun.afal File: C:\Documents and Settings\XPPRESP3\Desktop\MSNFix\backup\sce.exe
deleted: Trojan program Backdoor.Win32.SdBot.lmu File: C:\Documents and Settings\XPPRESP3\Desktop\MSNFix\backup\tvs2.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Documents and Settings\XPPRESP3\My Documents\My Music\Error\Abode Reader 8\Programs\oovoosetup.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Documents and Settings\XPPRESP3\My Documents\My Music\Error\Abode Reader 8\Sele\HamachiSetup-0.9.9.9-en.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Documents and Settings\XPPRESP3\My Documents\My Music\Error\Abode Reader 8\Sele\IE7-WindowsXP-x86-ara.exe//PE_Patch
disinfected: virus Virus.Win32.Sality.aa File: C:\Documents and Settings\XPPRESP3\My Documents\My Music\Error\Abode Reader 8\Sele\IE7-WindowsXP-x86-ara.exe
disinfected: virus Virus.Win32.Sality.aa File: C:\Documents and Settings\XPPRESP3\My Documents\My Music\Error\Abode Reader 8\Sele\setupfraps2[1].9.4registered\setup Fraps 2.9.4 Registered.exe
deleted: Trojan program Trojan.Win32.Small.bvw File: C:\Downloads\Image02__-_www.facebook.com
deleted: virus Worm.Win32.AutoRun.afal File: C:\Qoobox\Quarantine\C\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\cfxer.exe.vir
deleted: Trojan program Backdoor.Win32.Turkojan.jv File: C:\Qoobox\Quarantine\C\WINDOWS\cmsetac.dll.vir
deleted: Trojan program Backdoor.Win32.Turkojan.ake File: C:\Qoobox\Quarantine\C\WINDOWS\ntdtcstp.dll.vir
deleted: Trojan program Backdoor.Win32.SdBot.lrf File: C:\Qoobox\Quarantine\C\WINDOWS\winsystem.exe.vir

Events
------
Time Name Status Reason
---- ---- ------ ------

Statistics
----------
Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------

Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Disinfect, delete if disinfection fails
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE objects All
Skip if object is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes

Quarantine
----------
Status Object Size Added
------ ------ ---- -----

Backup
------
Status Object Size
------ ------ ----
Infected: Trojan program Trojan.Win32.Buzus.aymd c:\windows\system32\vmscon.exe 33.6 KB
Infected: Trojan program Backdoor.Win32.Turkojan.r C:\WINDOWS\mstwain34.exe 108 KB
 
تأييد 0
تقرير هايجاك جديد لاهنت
 
توقيع : أعتز بك
تأييد 0
ابشر :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:04, on 2009-05-13
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
C:\Program Files\Hotspot Shield\bin\openvpnas.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Mixer.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
C:\Program Files\Nero\Nero 7\InCD\InCD.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Portrait Displays\HP My Display\DTHtml.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\BitComet\BitComet.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Portrait Displays\Shared\HookManager.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\XPPRESP3\Desktop\HiJackThis.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favorites
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: TBSB08448 - {271CE47E-CAFF-4A35-A6DD-C0CE906898AA} - C:\Program Files\M5zn Toolbar\m5zn.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: M5zn Toolbar - {34F459B8-1D37-4FF2-9EFA-192D8E3ABA6F} - C:\Program Files\M5zn Toolbar\m5zn.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SecurDisc] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [DT HPW] C:\Program Files\Portrait Displays\HP My Display\DTHtml.exe -startup_folder
O4 - HKLM\..\Run: [iemultjx] C:\WINDOWS\system32\iemultjx.exe
O4 - HKLM\..\Run: [bv2] C:\WINDOWS\system32\bv2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TaskSwitchXP] C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user')
O4 - Startup: is-55I03.lnk = C:\Documents and Settings\XPPRESP3\Desktop\Virus Removal Tool\is-55I03\startup.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: M5zn Toolbar - {34F459B8-1D37-4FF2-9EFA-192D8E3ABA6F} - C:\Program Files\M5zn Toolbar\m5zn.dll
O9 - Extra 'Tools' menuitem: M5zn Toolbar - {34F459B8-1D37-4FF2-9EFA-192D8E3ABA6F} - C:\Program Files\M5zn Toolbar\m5zn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.google.com
O23 - Service: CiSvc - Unknown owner - C:\WINDOWS\system32\cisvc.exe (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
--
End of file - 9277 bytes
 
تأييد 0
الله يسلمك

من التقرير قم بحذف التالي

O2 - BHO: TBSB08448 - {271CE47E-CAFF-4A35-A6DD-C0CE906898AA} - C:\Program Files\M5zn Toolbar\m5zn.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (file missing)

O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)

O4 - HKLM\..\Run: [iemultjx] C:\WINDOWS\system32\iemultjx.exe

O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user')

O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing

طريقة الحذف

i9139_1.png

i9140_2.png


ثم نزل هذه الاداة واتبع الشرح التالي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

او
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


التوافق : ويندوز اكسبي فقط


شرح الاستخدام ,,,,,,

عند تشغيل ملف الاداة تظهر لك هذه الشاشه ,, انتظر ( وتابع مع الصور )

i9141_11.png

i9142_22.png


وعند ظهور هذه الشاشه ,, اضغط على Close ليتم اعادة تشغيل جهازك (( لتكملة عملية التنظيف ))
i9143_33.png


وبعدها


حمل الاداة التالية

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


وأغلق جميع البرامج

قم بتعطيل استعادة النظام كما في الشرح

i10673_.gif


شغلها فتظهر لك واجهة الاداة

اختر خيار التنظيف فتظهر شاشة الدوس للفحص

اتركها حتى تنتهي ويظهر التقرير

انسخه والصقه بمشاركتك القادمة
 
توقيع : أعتز بك
تأييد 0
ها بشر
 
تأييد 0
يالله بسويها واردلك خبر
 
تأييد 0
طب على بال مايسوي داونلود ....

انا عندي قائمة ابدأ ما اقدر اسوي تبديل مستخدم ... يعني لما اظغط على القائمة حقت تبديل المستخدمين يجيني بس : تبديل خروج ...

كيف اقدر اجيب تبديل المستخدم عشان يوم اسوي داونلود لشي اكون طالع من الحساب حقي
 
تأييد 0
abo khallody قال:
طب على بال مايسوي داونلود ....

انا عندي قائمة ابدأ ما اقدر اسوي تبديل مستخدم ... يعني لما اظغط على القائمة حقت تبديل المستخدمين يجيني بس : تبديل خروج ...

كيف اقدر اجيب تبديل المستخدم عشان يوم اسوي داونلود لشي اكون طالع من الحساب حقي
أنقر للتوسيع...

يا ليت تفتح موضوع آآخر

عشان يكون التعامل أفضل
 
توقيع : أعتز بك
تأييد 0
وهذي نتيجت الاداة الثانية بعد التنظيف


Engine Version : 5300.2777
Engine Load Time : 15828 milliseconds
AV DAT Version : 5492.0000 488805 detections Built 1430-01-15
Extra DAT : 0 detections

Memory : Clean
Please wait ... building list of critical files to scan Critical : Clean
Scanning the computer's cookie directories
Cookies : Clean
c:\pagefile.sys : Scan Failed
File : c:\Documents and Settings\All Users\Documents\My Pictures\Sample Pictures\all\Virus Removal Tool\is-55I03\startup.exe : contains "Trojan" called "Generic PWS.y" (Deleted )
c:\Documents and Settings\All Users\Documents\My Pictures\Sample Pictures\all\Virus Removal Tool\is-55I03\startup.exe : Deleted
c:\Documents and Settings\LocalService\NTUSER.DAT : Scan Failed
c:\Documents and Settings\LocalService\NTUSER.DAT.LOG : Scan Failed
c:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\NetworkService\NTUSER.DAT : Scan Failed
c:\Documents and Settings\NetworkService\NTUSER.DAT.LOG : Scan Failed
c:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\XPPRESP3\NTUSER.DAT : Scan Failed
c:\Documents and Settings\XPPRESP3\NTUSER.DAT.LOG : Scan Failed
c:\Documents and Settings\XPPRESP3\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\XPPRESP3\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\XPPRESP3\Local Settings\Temp\Perflib_Perfdata_dd0.dat : Scan Failed
c:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb : Scan Failed
c:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log : Scan Failed
c:\WINDOWS\SoftwareDistribution\DataStore\Logs\edbtmp.log : Scan Failed
c:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb : Scan Failed
c:\WINDOWS\system32\CatRoot2\edb.log : Scan Failed
c:\WINDOWS\system32\CatRoot2\tmp.edb : Scan Failed
c:\WINDOWS\system32\config\default : Scan Failed
c:\WINDOWS\system32\config\default.LOG : Scan Failed
c:\WINDOWS\system32\config\SAM : Scan Failed
c:\WINDOWS\system32\config\SAM.LOG : Scan Failed
c:\WINDOWS\system32\config\SECURITY : Scan Failed
c:\WINDOWS\system32\config\SECURITY.LOG : Scan Failed
c:\WINDOWS\system32\config\software : Scan Failed
c:\WINDOWS\system32\config\software.LOG : Scan Failed
c:\WINDOWS\system32\config\system : Scan Failed
c:\WINDOWS\system32\config\system.LOG : Scan Failed
c:\WINDOWS\system32\drivers\fidbox.dat : Scan Failed
c:\WINDOWS\system32\drivers\fidbox.idx : Scan Failed
Scanning the registry
Registry : Clean

Summary :-
FilesFound : 34161
FilesScanned : 20299
FilesNotScanned : 13862

ObjectsFound : 69617
ObjectsInfected : 1
ObjectsCleaned : 0
ObjectsDeleted : 1

FilesInfected : 1
FilesCleaned : 0
FilesMoved : 0
FilesDeleted : 1

Started at : 22:42 1430-05-19
Ended at : 22:58 1430-05-19
Duration : 16 minutes 24 seconds
3156 MB scanned in 984 seconds = 3 MB/s
Engine Version : 5300.2777
Engine Load Time : 16953 milliseconds
AV DAT Version : 5492.0000 488805 detections Built 1430-01-15
Extra DAT : 0 detections

File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093939.exe : contains "Virus" called "W32/Sality" (No Action Taken (Clean failed) )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093939.exe : Repair Failed
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093943.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093943.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093945.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093945.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093953.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093953.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0093964.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0093964.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0093966.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0093966.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0093973.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0093973.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0094755.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0094755.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0094772.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0094772.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0095788.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP142\A0095788.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP143\A0096819.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP143\A0096819.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP143\A0097824.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP143\A0097824.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP143\A0098817.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP143\A0098817.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP144\A0098847.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP144\A0098847.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP147\A0106855.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP147\A0106855.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP149\A0107966.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP149\A01"7966.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP150\A0109111.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP150\A0109111.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP150\A0109135.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP150\A0109135.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP150\A0109152.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP150\A0109152.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP151\A0111151.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP151\A0111151.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP151\A0112151.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP151\A0112151.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP151\A0113151.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP151\A0113151.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP152\A0113175.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP152\A0113175.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP154\A0115235.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP154\A0115235.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP154\A0116228.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP154\A0116228.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP154\A0116245.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP154\A0116245.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0116286.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0116286.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117279.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117279.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117283.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117283.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117284.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117284.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117288.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117288.exe : Repaired
File : d:\System Volume Informati"n\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117289.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117289.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117290.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117290.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117291.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117291.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117292.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117292.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117293.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117293.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117294.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP155\A0117294.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP156\A0118408.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP156\A0118408.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP158\A0120541.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP158\A0120541.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP158\A0120561.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP158\A0120561.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP158\A0120586.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP158\A0120586.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP159\A0120607.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP159\A0120607.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP159\A0120636.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP159\A0120636.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP160\A0121651.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP160\A0121651.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP160\A0121662.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP160\A0121662.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP160\A0121723.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP160\A0121723.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP160\A01"2686.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP160\A0122686.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP161\A0123701.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP161\A0123701.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP162\A0123777.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP162\A0123777.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP162\A0123779.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP162\A0123779.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP162\A0123781.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP162\A0123781.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP162\A0123794.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP162\A0123794.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP163\A0123838.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP163\A0123838.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP163\A0125805.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP163\A0125805.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP164\A0126825.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP164\A0126825.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP166\A0126868.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP166\A0126868.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP167\A0127892.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP167\A0127892.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP167\A0127913.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP167\A0127913.exe : Repaired
File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP167\A0127948.exe : contains "Virus" called "W32/Sality.gen" (Cleaned )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP167\A0127948.exe : Repaired

Summary :-
FilesFound : 440
FilesScanned : 267
FilesNotScanned : 173

ObjectsFound : 448
ObjectsInfected : 59
ObjectsCleaned : 58
ObjectsDeleted : 0

FilesInfected : 59
FilesCleaned : 58
FilesMoved : 0
FilesDeleted : 0

Started at : 22:59 1430-05-19
Ended at : 23:08 1430-05-19
Duration : 9 minutes 9 seconds
577 MB scanned in 549 seconds = 1076 KB/s
Engine Version : 5300.2777
Engine Load Time : 16218 milliseconds
AV DAT Version : 5492.0000 488805 detection" Built 1430-01-15
Extra DAT : 0 detections

f:\00000001.TMP : Scan Failed
f:\00000002.TMP : Scan Failed
f:\bf2.ico : Scan Failed
f:\data1.cab : Scan Failed
f:\data1.hdr : Scan Failed
f:\data2.cab : Scan Failed
f:\engine32.cab : Scan Failed
f:\setup.ibt : Scan Failed
Engine Version : 5300.2777
Engine Load Time : 16000 milliseconds
AV DAT Version : 5492.0000 488805 detections Built 1430-01-15
Extra DAT : 0 detections

Memory : Clean
Please wait ... building list of critical files to scan Critical : Clean
Scanning the computer's cookie directories
Cookies : Clean
c:\pagefile.sys : Scan Failed
c:\Documents and Settings\LocalService\NTUSER.DAT : Scan Failed
c:\Documents and Settings\LocalService\NTUSER.DAT.LOG : Scan Failed
c:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\NetworkService\NTUSER.DAT : Scan Failed
c:\Documents and Settings\NetworkService\NTUSER.DAT.LOG : Scan Failed
c:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\XPPRESP3\NTUSER.DAT : Scan Failed
c:\Documents and Settings\XPPRESP3\NTUSER.DAT.LOG : Scan Failed
c:\Documents and Settings\XPPRESP3\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat : Scan Failed
c:\Documents and Settings\XPPRESP3\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG : Scan Failed
c:\Documents and Settings\XPPRESP3\Local Settings\Temp\Perflib_Perfdata_c44.dat : Scan Failed
c:\WINDOWS\system32\CatRoot2\edb.log : Scan Failed
c:\WINDOWS\system32\CatRoot2\edbtmp.log : Scan Failed
c:\WINDOWS\system32\CatRoot2\tmp.edb : Scan Failed
c:\WINDOWS\system32\config\default : Scan Failed
c:\WINDOWS\system32\config\default.LOG : Scan Failed
c:\WINDOWS\system32\config\SAM : Scan Failed
c:\WINDOWS\system32\config\SAM.LOG : Scan Failed
c:\WINDOWS\system32\config\SECURITY : Scan Failed
c:\WINDOWS\system32\config\SECURITY.LOG : Scan Failed
c:\WINDOWS\system32\config\software : Scan Failed
c:\WINDOWS\system32\config\software.LOG : Scan Failed
c:\WINDOWS\system32\config\system : Scan Failed
c:\WINDOWS\system32\config\system.LOG : Scan Failed
c:\WINDOWS\system32\drivers\fidbox.dat : Scan Failed
c:\WINDOWS\system32\drivers\fidbox.idx : Scan Failed
Scanning the registry
Registry : Clean

Summary :-
FilesFound : 34544
FilesScanned : 20619
FilesNotScanned : 13925

ObjectsFound : 70420
ObjectsInfected : 0
ObjectsCleaned : 0
ObjectsDeleted : 0

FilesInfected : 0
FilesCleaned : 0
FilesMoved : 0
FilesDeleted : 0

Started at : 08:11 1430-05-20
Ended at : 08:28 1430-05-20
Duration : 16 minutes 21 seconds
3266 MB scanned in 981 seconds = 3 MB/s
Engine Version : 5300.2777
Engine Load Time : 16078 milliseconds
AV DAT Version : 5492.0000 488805 detections Built 1430-01-15
Extra DAT : 0 detections

File : d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093939.exe : contains "Virus" called "W32/Sality" (No Action Taken (Clean failed) )
d:\System Volume Information\_restore{8F928DFF-5795-461B-9D68-311FAEE28FAF}\RP140\A0093939.exe : Repair Failed

Summary :-
FilesFound : 440
FilesScanned : 267
Fil"sNotScanned : 173

ObjectsFound : 448
ObjectsInfected : 1
ObjectsCleaned : 0
ObjectsDeleted : 0

FilesInfected : 1
FilesCleaned : 0
FilesMoved : 0
FilesDeleted : 0

Started at : 08:28 1430-05-20
Ended at : 08:29 1430-05-20
Duration : 40 seconds
550 MB scanned in 40 seconds = 13 MB/s
Engine Version : 5300.2777
Engine Load Time : 15953 milliseconds
AV DAT Version : 5492.0000 488805 detections Built 1430-01-15
Extra DAT : 0 detections

f:\00000001.TMP : Scan Failed
f:\00000002.TMP : Scan Failed
f:\bf2.ico : Scan Failed
f:\data1.cab : Scan Failed
f:\data1.hdr : Scan Failed
f:\data2.cab : Scan Failed
f:\engine32.cab : Scan Failed
f:\setup.ibt : Scan Failed
f:\installers\AF\data1.cab : Scan Failed
f:\installers\AF\data1.hdr : Scan Failed
f:\installers\AF\data2.cab : Scan Failed
f:\installers\AF\engine32.cab : Scan Failed
f:\installers\AF\setup.ibt : Scan Failed
f:\installers\BF2\BF2.ico : Scan Failed
f:\installers\BF2\data1.cab : Scan Failed
f:\installers\BF2\data1.hdr : Scan Failed
f:\installers\BF2\data2.cab : Scan Failed
f:\installers\BF2\engine32.cab : Scan Failed
f:\installers\BF2\setup.ibt : Scan Failed
f:\installers\BF2\directx\Apr2005_d3dx9_25_x64.cab : Scan Failed
f:\installers\BF2\directx\Apr2005_d3dx9_25_x86.cab : Scan Failed
f:\installers\BF2\directx\Apr2005_MDX_x86.cab : Scan Failed
f:\installers\BF2\directx\BDA.cab : Scan Failed
f:\installers\BF2\directx\BDANT.cab : Scan Failed
f:\installers\BF2\directx\BDAXP.cab : Scan Failed
f:\installers\BF2\directx\DirectX.cab : Scan Failed
f:\installers\BF2\directx\dxnt.cab : Scan Failed
f:\installers\BF2\directx\dxupdate.cab : Scan Failed
f:\installers\BF2\directx\Feb2005_d3dx9_24_x64.cab : Scan Failed
f:\installers\BF2\directx\Feb2005_d3dx9_24_x86.cab : Scan Failed
f:\installers\BF2\Redist\gamespy.ico : Scan Failed
f:\installers\BF2\Support\Chinese\readme.txt : Scan Failed
f:\installers\BF2\Support\Dutch\readme.txt : Scan Failed
f:\installers\BF2\Support\EA Help\book_open.gif : Scan Failed
f:\installers\BF2\Support\EA Help\bookclosed.gif : Scan Failed
f:\installers\BF2\Support\EA Help\close.gif : Scan Failed
f:\installers\BF2\Support\EA Help\content.gif : Scan Failed
f:\installers\BF2\Support\EA Help\directional.gif : Scan Failed
f:\installers\BF2\Support\EA Help\EAhome07_03.gif : Scan Failed
f:\installers\BF2\Support\EA Help\Electronic Arts Technical Support.log : Scan Failed
f:\installers\BF2\Support\EA Help\go.gif : Scan Failed
f:\installers\BF2\Support\EA Help\gray-left.gif : Scan Failed
f:\installers\BF2\Support\EA Help\gray-rt.gif : Scan Failed
f:\installers\BF2\Support\EA Help\greyback.gif : Scan Failed
f:\installers\BF2\Support\EA Help\index.gif : Scan Failed
f:\installers\BF2\Support\EA Help\left-ar.gif : Scan Failed
f:\installers\BF2\Support\EA Help\other_index.gif : Scan Failed
f:\installers\BF2\Support\EA Help\page.gif : Scan Failed
f:\installers\BF2\Support\EA Help\right-ar.gif : Scan Failed
f:\installers\BF2\Support\EA Help\RoboHHRE.lng : Scan Failed
f:\installers\BF2\Support\EA Help\search.gif : Scan Failed
f:\installers\BF2\Support\EA Help\urls.gif : Scan Failed
f:\installers\BF2\Support\EA Help\webhelp.cab : Scan Failed
f:\installers\BF2\Support\EA Help\websearch.gif : Scan Failed
f:\installers\BF2\Support\EA Help\whestart.ico : Scan Failed
f:\installers\BF2\Support\EA Help\whrstart.ico : Scan Failed
f:\installers\BF2\Support\EA Help\whstart.ico : Scan Failed
f:\installers\BF2\Support\EA Help\wht_fts_h.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_fts_n.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_glo_h.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_glo_n.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_go.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_hide.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_idx_h.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_idx_n.gif :"Scan Failed
f:\installers\BF2\Support\EA Help\wht_logo1.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_logo2.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_next.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_next_g.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_prev.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_prev_g.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_spac.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_sync.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab0.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab1.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab2.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab3.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab4.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab5.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab6.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab7.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_tab8.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_toc_h.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_toc_n.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_ws.gif : Scan Failed
f:\installers\BF2\Support\EA Help\wht_ws_g.gif : Scan Failed
f:\installers\BF2\Support\EA Help\whgdata\whexpbar.gif : Scan Failed
f:\installers\BF2\Support\English\readme.txt : Scan Failed
f:\installers\BF2\Support\European Help Files\badge.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Thumbs.db : Scan Failed
f:\installers\BF2\Support\European Help Files\De\badge.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\blueback.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\book_closed.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\bookopen.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\close.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\content_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\content_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\directional.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\EA_Help_De.log : Scan Failed
f:\installers\BF2\Support\European Help Files\De\EA_Logo_White.GIF : Scan Failed
f:\installers\BF2\Support\European Help Files\De\glossary_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\glossary_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\go.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\index_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\index_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\leftarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\page.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\r01.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\r02.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\rightarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\RoboHHRE.lng : Scan Failed
f:\installers\BF2\Support\European Help Files\De\search_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\search_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\searchweb_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\searchweb_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\Thumbs.db : Scan Failed
f:\installers\BF2\Support\European Help Files\De\urls.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\webhelp.cab : Scan Failed
f:\installers\BF2\Support\European Help Files\De\whestart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\De\whrstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\De\whstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\De\wht_logo1.gif : Scan Failed
f:\installers\BF2\Support\European Help File"\De\wht_logo2.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\De\wht_spac.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\badge.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\blueback.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\book_closed.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\bookopen.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\close.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\content_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\content_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\directional.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\EA_Help_Esp.log : Scan Failed
f:\installers\BF2\Support\European Help Files\es\EA_Logo_White.GIF : Scan Failed
f:\installers\BF2\Support\European Help Files\es\glossary_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\glossary_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\go.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\index_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\index_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\leftarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\page.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\r01.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\r02.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\rightarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\RoboHHRE.lng : Scan Failed
f:\installers\BF2\Support\European Help Files\es\search_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\search_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\searchweb_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\searchweb_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\Thumbs.db : Scan Failed
f:\installers\BF2\Support\European Help Files\es\urls.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\webhelp.cab : Scan Failed
f:\installers\BF2\Support\European Help Files\es\whestart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\es\whrstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\es\whstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\es\wht_logo1.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\wht_logo2.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\es\wht_spac.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\badge.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\blueback.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\book_closed.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\bookopen.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\close.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\content_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\content_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\directional.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\EA_Help_Fr.log : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\EA_Logo_White.GIF : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\glossary_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\glossary_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\go.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\index_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\index_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\leftarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\page.gif : Scan Failed
f:\instal"ers\BF2\Support\European Help Files\fr-fr\r01.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\r02.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\rightarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\RoboHHRE.lng : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\search_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\search_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\searchweb_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\searchweb_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\Thumbs.db : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\urls.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\webhelp.cab : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\whestart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\whrstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\whstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\wht_logo1.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\wht_logo2.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\fr-fr\wht_spac.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\badge.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\blueback.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\book_closed.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\bookopen.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\close.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\content_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\content_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\directional.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\EA_Help_NL.log : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\EA_Logo_White.GIF : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\glossary_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\glossary_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\go.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\index_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\index_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\leftarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\page.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\r01.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\r02.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\rightarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\RoboHHRE.lng : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\search_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\search_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\searchweb_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\searchweb_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\Thumbs.db : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\urls.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\webhelp.cab : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\whestart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\whrstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\whstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\wht_logo1.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\wht_logo2.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\NL\wht_spac.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\badge.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\blueback.gif : Sca" Failed
f:\installers\BF2\Support\European Help Files\Sv\book_closed.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\bookopen.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\close.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\content_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\content_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\directional.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\EA_Help_Sv.log : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\EA_Logo_White.GIF : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\glossary_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\glossary_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\go.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\index_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\index_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\leftarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\page.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\r01.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\r02.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\rightarrow.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\RoboHHRE.lng : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\search_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\search_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\searchweb_h.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\searchweb_n.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\Thumbs.db : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\urls.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\webhelp.cab : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\whestart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\whrstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\whstart.ico : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\wht_logo1.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\wht_logo2.gif : Scan Failed
f:\installers\BF2\Support\European Help Files\Sv\wht_spac.gif : Scan Failed
f:\installers\BF2\Support\French\LisezMoi.txt : Scan Failed
f:\installers\BF2\Support\French\readme.txt : Scan Failed
f:\installers\BF2\Support\German\readme.txt : Scan Failed
f:\installers\BF2\Support\Italian\readme.txt : Scan Failed
f:\installers\BF2\Support\Japanese\readme.txt : Scan Failed
f:\installers\BF2\Support\Korean\readme.txt : Scan Failed
f:\installers\BF2\Support\Polish\readme.txt : Scan Failed
f:\installers\BF2\Support\Spanish\readme.txt : Scan Failed
f:\installers\BF2\Support\Swedish\readme.txt : Scan Failed
f:\installers\BF2\Support\Thai\readme.txt : Scan Failed
f:\installers\EF\data1.cab : Scan Failed
f:\installers\EF\data1.hdr : Scan Failed
f:\installers\EF\data2.cab : Scan Failed
f:\installers\EF\engine32.cab : Scan Failed
f:\installers\EF\setup.ibt : Scan Failed
f:\installers\SF\BF2xp1.ico : Scan Failed
f:\installers\SF\data1.cab : Scan Failed
f:\installers\SF\data1.hdr : Scan Failed
f:\installers\SF\data2.cab : Scan Failed
f:\installers\SF\dist.vlu : Scan Failed
f:\installers\SF\engine32.cab : Scan Failed
f:\installers\SF\setup.ibt : Scan Failed
f:\installers\SF\Redist\gamespy.ico : Scan Failed
f:\installers\SF\Support\Chinese\readme.txt : Scan Failed
f:\installers\SF\Support\Dutch\readme.txt : Scan Failed
f:\installers\SF\Support\EA Help\book_open.gif : Scan Failed
f:\installers\SF\Support\EA Help\bookclosed.gif : Scan Failed
f:\installers\SF\Support\EA Help\close.gif : Scan Failed
f:\installers\SF\Support\EA Help\content.gif : Scan Failed
f:\installers\SF\Support\EA Help\directional.gif : Scan Failed
f:\installers\SF\Support\EA Help\EAhome07_03."if : Scan Failed
f:\installers\SF\Support\EA Help\Electronic Arts Technical Support.log : Scan Failed
f:\installers\SF\Support\EA Help\go.gif : Scan Failed
f:\installers\SF\Support\EA Help\gray-left.gif : Scan Failed
f:\installers\SF\Support\EA Help\gray-rt.gif : Scan Failed
f:\installers\SF\Support\EA Help\greyback.gif : Scan Failed
f:\installers\SF\Support\EA Help\index.gif : Scan Failed
f:\installers\SF\Support\EA Help\left-ar.gif : Scan Failed
f:\installers\SF\Support\EA Help\other_index.gif : Scan Failed
f:\installers\SF\Support\EA Help\page.gif : Scan Failed
f:\installers\SF\Support\EA Help\right-ar.gif : Scan Failed
f:\installers\SF\Support\EA Help\RoboHHRE.lng : Scan Failed
f:\installers\SF\Support\EA Help\search.gif : Scan Failed
f:\installers\SF\Support\EA Help\urls.gif : Scan Failed
f:\installers\SF\Support\EA Help\webhelp.cab : Scan Failed
f:\installers\SF\Support\EA Help\websearch.gif : Scan Failed
f:\installers\SF\Support\EA Help\whestart.ico : Scan Failed
f:\installers\SF\Support\EA Help\whrstart.ico : Scan Failed
f:\installers\SF\Support\EA Help\whstart.ico : Scan Failed
f:\installers\SF\Support\EA Help\wht_fts_h.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_fts_n.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_glo_h.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_glo_n.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_go.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_hide.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_idx_h.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_idx_n.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_logo1.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_logo2.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_next.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_next_g.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_prev.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_prev_g.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_spac.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_sync.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab0.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab1.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab2.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab3.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab4.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab5.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab6.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab7.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_tab8.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_toc_h.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_toc_n.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_ws.gif : Scan Failed
f:\installers\SF\Support\EA Help\wht_ws_g.gif : Scan Failed
f:\installers\SF\Support\EA Help\whgdata\whexpbar.gif : Scan Failed
f:\installers\SF\Support\English\readme.txt : Scan Failed
f:\installers\SF\Support\European Help Files\badge.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Thumbs.db : Scan Failed
f:\installers\SF\Support\European Help Files\De\badge.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\blueback.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\book_closed.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\bookopen.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\close.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\content_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\content_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\directional.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\EA_Help_De.log : Scan Failed
f:\installers\SF\Support\European Help Files\De\EA_Logo_White.GIF : Scan Failed
f:\installers\SF\Support\European Help Files\De\glossary_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\glossary_n.gif : Scan Failed"
f:\installers\SF\Support\European Help Files\De\go.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\index_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\index_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\leftarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\page.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\r01.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\r02.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\rightarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\RoboHHRE.lng : Scan Failed
f:\installers\SF\Support\European Help Files\De\search_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\search_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\searchweb_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\searchweb_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\Thumbs.db : Scan Failed
f:\installers\SF\Support\European Help Files\De\urls.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\webhelp.cab : Scan Failed
f:\installers\SF\Support\European Help Files\De\whestart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\De\whrstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\De\whstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\De\wht_logo1.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\wht_logo2.gif : Scan Failed
f:\installers\SF\Support\European Help Files\De\wht_spac.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\badge.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\blueback.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\book_closed.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\bookopen.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\close.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\content_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\content_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\directional.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\EA_Help_Esp.log : Scan Failed
f:\installers\SF\Support\European Help Files\es\EA_Logo_White.GIF : Scan Failed
f:\installers\SF\Support\European Help Files\es\glossary_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\glossary_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\go.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\index_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\index_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\leftarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\page.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\r01.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\r02.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\rightarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\RoboHHRE.lng : Scan Failed
f:\installers\SF\Support\European Help Files\es\search_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\search_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\searchweb_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\searchweb_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\Thumbs.db : Scan Failed
f:\installers\SF\Support\European Help Files\es\urls.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\webhelp.cab : Scan Failed
f:\installers\SF\Support\European Help Files\es\whestart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\es\whrstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\es\whstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\es\wht_logo1.gif : Scan Failed
f:\installers\S"\Support\European Help Files\es\wht_logo2.gif : Scan Failed
f:\installers\SF\Support\European Help Files\es\wht_spac.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\badge.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\blueback.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\book_closed.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\bookopen.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\close.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\content_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\content_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\directional.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\EA_Help_Fr.log : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\EA_Logo_White.GIF : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\glossary_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\glossary_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\go.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\index_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\index_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\leftarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\page.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\r01.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\r02.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\rightarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\RoboHHRE.lng : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\search_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\search_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\searchweb_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\searchweb_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\Thumbs.db : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\urls.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\webhelp.cab : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\whestart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\whrstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\whstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\wht_logo1.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\wht_logo2.gif : Scan Failed
f:\installers\SF\Support\European Help Files\fr-fr\wht_spac.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\badge.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\blueback.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\book_closed.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\bookopen.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\close.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\content_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\content_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\directional.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\EA_Help_NL.log : Scan Failed
f:\installers\SF\Support\European Help Files\NL\EA_Logo_White.GIF : Scan Failed
f:\installers\SF\Support\European Help Files\NL\glossary_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\glossary_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\go.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\index_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\index_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\leftarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\page.gi" : Scan Failed
f:\installers\SF\Support\European Help Files\NL\r01.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\r02.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\rightarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\RoboHHRE.lng : Scan Failed
f:\installers\SF\Support\European Help Files\NL\search_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\search_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\searchweb_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\searchweb_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\Thumbs.db : Scan Failed
f:\installers\SF\Support\European Help Files\NL\urls.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\webhelp.cab : Scan Failed
f:\installers\SF\Support\European Help Files\NL\whestart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\NL\whrstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\NL\whstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\NL\wht_logo1.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\wht_logo2.gif : Scan Failed
f:\installers\SF\Support\European Help Files\NL\wht_spac.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\badge.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\blueback.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\book_closed.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\bookopen.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\close.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\content_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\content_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\directional.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\EA_Help_Sv.log : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\EA_Logo_White.GIF : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\glossary_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\glossary_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\go.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\index_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\index_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\leftarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\page.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\r01.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\r02.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\rightarrow.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\RoboHHRE.lng : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\search_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\search_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\searchweb_h.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\searchweb_n.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\Thumbs.db : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\urls.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\webhelp.cab : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\whestart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\whrstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\whstart.ico : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\wht_logo1.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\wht_logo2.gif : Scan Failed
f:\installers\SF\Support\European Help Files\Sv\wht_spac.gif : Scan Failed
f:\installers\SF\Support\French\LisezMoi.txt : Scan Failed
f:\installers\SF\Support\French\readme.txt : Scan Failed
f:\installers\SF\Support\German\readme.txt : Scan Failed
f:\installers\SF\Support\Italian\readme.t"t : Scan Failed
f:\installers\SF\Support\Japanese\readme.txt : Scan Failed
f:\installers\SF\Support\Korean\readme.txt : Scan Failed
f:\installers\SF\Support\Polish\readme.txt : Scan Failed
f:\installers\SF\Support\Spanish\readme.txt : Scan Failed
f:\installers\SF\Support\Swedish\readme.txt : Scan Failed
f:\installers\SF\Support\Thai\readme.txt : Scan Failed
f:\support\Chinese\Chinese_autorun.utxt : Scan Failed
f:\support\Chinese\eReg\readme.txt : Scan Failed
f:\support\Dutch\Dutch_autorun.utxt : Scan Failed
f:\support\Dutch\eReg\readme.txt : Scan Failed
f:\support\English\English_autorun.utxt : Scan Failed
f:\support\English\eReg\readme.txt : Scan Failed
f:\support\French\french_autorun.utxt : Scan Failed
f:\support\French\eReg\readme.txt : Scan Failed
f:\support\German\German_autorun.utxt : Scan Failed
f:\support\German\eReg\readme.txt : Scan Failed
f:\support\Italian\italian_autorun.utxt : Scan Failed
f:\support\Italian\eReg\readme.txt : Scan Failed
f:\support\Japanese\japanese_autorun.utxt : Scan Failed
f:\support\Japanese\eReg\readme.txt : Scan Failed
f:\support\Polish\polish_autorun.utxt : Scan Failed
f:\support\Polish\eReg\readme.txt : Scan Failed
f:\support\Spanish\spanish_autorun.utxt : Scan Failed
f:\support\Spanish\eReg\readme.txt : Scan Failed
f:\support\Swedish\Swedish_autorun.utxt : Scan Failed
f:\support\Swedish\eReg\readme.txt : Scan Failed

Summary :-
FilesFound : 2331
FilesScanned : 1788
FilesNotScanned : 543

ObjectsFound : 5002
ObjectsInfected : 0
ObjectsCleaned : 0
ObjectsDeleted : 0

FilesInfected : 0
FilesCleaned : 0
FilesMoved : 0
FilesDeleted : 0

Started at : 08:29 1430-05-20
Ended at : 08:45 1430-05-20
Duration : 16 minutes 23 seconds
1068 MB scanned in 983 seconds = 1113 KB/s
 
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى