-
[ يمنع ] طرح أي موضوع يحوي على كراكات أو باتشات او كيجنات من غير فحصها عبر موقع فيروس توتال [ virustotal.com ] وطرح رابط الفحص ضِمن الموضوع.
- بادئ الموضوع زيزوووم
- تاريخ البدء
- 69,914
- الحالة
سلام عليكم
هذا التطبيق حقي
*** عملية الفحص جاريه :y:وبدأ الصيدk:
* كتبت اسمي بدال run علشان التأكيد على التطبيق :u:
وهنا انتهينا من المكافي والتقرير طلع
كود:McAfee VirusScan for Win32 v5.40.0 Copyright (c) 1992-2008 McAfee, Inc. All rights reserved. (408) 988-3832 EVALUATION COPY - Apr 16 2009 Scan engine v5.4.00 for Win32. Virus data file v5783 created Oct 26 2009 Scanning for 574099 viruses, trojans and variants. 10/30/2009 13:37:35 Options: /ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK Scanning C: [] Scanning C:\*.* C:\auto.exe ... Found the BackDoor-DKA trojan !!! C:\autorun.inf ... Found the Generic!atr trojan !!! C:\Documents and Settings\Ali\Desktop\auto.exe ... Found the BackDoor-DKA trojan !!! C:\WINDOWS\system32\43161F2A.DLL ... Found the W32/Winko.worm.dll virus !!! C:\WINDOWS\system32\ADAC5B60.EXE ... Found the BackDoor-DKA trojan !!! Summary report on C:\*.* File(s) Total files: ........... 10728 Clean: ................. 10697 Possibly Infected: ..... 5 Non-critical Error(s): 1 Master Boot Record(s): ......... 1 Possibly Infected: ..... 0 Boot Sector(s): ................ 1 Possibly Infected: ..... 0 Time: 00:05.04 Thank you for choosing to evaluate VirusScan from McAfee. This version of the software is for Evaluation Purposes Only and may be used for up to 30 days to determine if it meets your requirements. To license the software, or to obtain assistance during the evaluation process, please call (408) 988-3832. If you choose not to license the software, you need to remove it from your system. All use of this software is conditioned upon compliance with the license terms set forth in the README.TXT file. McAfee VirusScan for Win32 v5.40.0 Copyright (c) 1992-2008 McAfee, Inc. All rights reserved. (408) 988-3832 EVALUATION COPY - Apr 16 2009 Scan engine v5.4.00 for Win32. Virus data file v5783 created Oct 26 2009 Scanning for 574099 viruses, trojans and variants. 10/30/2009 13:45:03 Options: /ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK Scanning C: [] Scanning C:\*.* C:\auto.exe ... Found the BackDoor-DKA trojan !!! C:\autorun.inf ... Found the Generic!atr trojan !!! C:\Documents and Settings\Ali\Desktop\auto.exe ... Found the BackDoor-DKA trojan !!! C:\WINDOWS\system32\43161F2A.DLL ... Found the W32/Winko.worm.dll virus !!! C:\WINDOWS\system32\ADAC5B60.EXE ... Found the BackDoor-DKA trojan !!! Summary report on C:\*.* File(s) Total files: ........... 10730 Clean: ................. 10698 Possibly Infected: ..... 5 Non-critical Error(s): 1 Master Boot Record(s): ......... 1 Possibly Infected: ..... 0 Boot Sector(s): ................ 1 Possibly Infected: ..... 0 Time: 00:03.47 Thank you for choosing to evaluate VirusScan from McAfee. This version of the software is for Evaluation Purposes Only and may be used for up to 30 days to determine if it meets your requirements. To license the software, or to obtain assistance during the evaluation process, please call (408) 988-3832. If you choose not to license the software, you need to remove it from your system. All use of this software is conditioned upon compliance with the license terms set forth in the README.TXT file.
وهذت تقرير الـSilent Runners
بس تراني ما لقيت الفايروس بالأداه السابقه بخانة الـStartupكود:"Silent Runners.vbs", revision 59, http://www.silentrunners.org/ Operating System: Windows XP SP2 Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "VBoxTray" = "C:\WINDOWS\system32\VBoxTray.exe" ["Sun Microsystems, Inc."] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ "{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Display Panning CPL Extension" -> {HKLM...CLSID} = "Display Panning CPL Extension" \InProcServer32\(Default) = "deskpan.dll" [file not found] "{88895560-9AA2-1069-930E-00AA0030EBC8}" = "HyperTerminal Icon Ext" -> {HKLM...CLSID} = "HyperTerminal Icon Ext" \InProcServer32\(Default) = "C:\WINDOWS\system32\hticons.dll" ["Hilgraeve, Inc."] "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" ["Alexander Roshal"] HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\ WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" ["Alexander Roshal"] HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\ WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" ["Alexander Roshal"] HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\ WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" ["Alexander Roshal"] Group Policies {GPedit.msc branch and setting}: ----------------------------------------------- Note: detected settings may not have any effect. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ "shutdownwithoutlogon" = (REG_DWORD) dword:0x00000001 {Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options| Shutdown: Allow system to be shut down without having to log on} "undockwithoutlogon" = (REG_DWORD) dword:0x00000001 {Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options| Devices: Allow undock without having to log on} Active Desktop and Wallpaper: ----------------------------- Active Desktop may be disabled at this entry: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState Displayed if Active Desktop enabled and wallpaper not set by Group Policy: HKCU\Software\Microsoft\Internet Explorer\Desktop\General\ "Wallpaper" = "C:\WINDOWS\web\wallpaper\Bliss.bmp" Displayed if Active Desktop disabled and wallpaper not set by Group Policy: HKCU\Control Panel\Desktop\ "Wallpaper" = "C:\WINDOWS\web\wallpaper\Bliss.bmp" Enabled Screen Saver: --------------------- HKCU\Control Panel\Desktop\ "SCRNSAVE.EXE" = "C:\WINDOWS\system32\logon.scr" [MS] Winsock2 Service Provider DLLs: ------------------------------- Namespace Service Providers HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++} 000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] 000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS] 000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] Transport Service Providers HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++} 0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range: %SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 11 %SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05 Toolbars, Explorer Bars, Extensions: ------------------------------------ Extensions (Tools menu items, main toolbar menu buttons) HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\ {FB5F1910-F110-11D2-BB9E-00C04F795683}\ "ButtonText" = "Messenger" "MenuText" = "Windows Messenger" "Exec" = "C:\Program Files\Messenger\msmsgs.exe" [MS] Running Services (Display Name, Service Name, Path {Service DLL}): ------------------------------------------------------------------ ERSvc, ERSvc, (null value) [file not found] VirtualBox Guest Additions Service, VBoxService, "system32\VBoxService.exe" ["Sun Microsystems, Inc."] ---------- (launch time: 2009-10-30 13:51:53) + This report excludes default entries except where indicated. + To see *everywhere* the script checks and *everything* it finds, launch it from a command prompt or a shortcut with the -all parameter. + To search all directories of local fixed drives for DESKTOP.INI DLL launch points, use the -supp parameter or answer "No" at the first message box and "Yes" at the second message box. ---------- (total run time: 96 seconds, including 14 seconds for message boxes)
وهذا الـRunscanner قبل اصلاح المشاكل
بس غربيه ما لقيت الفايروس ؟!كود:Runscanner logfile * = signed file - = file not found General info ------------ Computer name : LAB-889A3CA1226 Creation time : 10/30/2009 1:59:58 PM Hosts <> 127.0.0.1 : 0 Hosts file location : %SystemRoot%\System32\drivers\etc IE version : 6.0.2900.2180 OS : Microsoft Windows XP OS Build : 2600 OS SP : Service Pack 2 RunScanner Version : 1.9.0.9 User Language : English (United States) User rights : Administrator Windows folder : C:\WINDOWS Running processes ----------------- * C:\WINDOWS\System32\alg.exe (Microsoft Corporation) * C:\WINDOWS\system32\csrss.exe (Microsoft Corporation) * C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) * C:\WINDOWS\system32\svchost.exe (Microsoft Corporation) * C:\WINDOWS\system32\svchost.exe (Microsoft Corporation) * C:\WINDOWS\System32\svchost.exe (Microsoft Corporation) * C:\WINDOWS\system32\svchost.exe (Microsoft Corporation) * C:\WINDOWS\system32\svchost.exe (Microsoft Corporation) * C:\WINDOWS\system32\lsass.exe (Microsoft Corporation) * C:\WINDOWS\system32\NOTEPAD.EXE (Microsoft Corporation) * C:\WINDOWS\system32\NOTEPAD.EXE (Microsoft Corporation) * C:\Documents and Settings\Ali\Desktop\runscanner.exe (Runscanner.net) * C:\WINDOWS\system32\services.exe (Microsoft Corporation) * C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation) * C:\WINDOWS\system32\VBoxService.exe (Sun Microsystems, Inc.) * C:\WINDOWS\system32\VBoxTray.exe (Sun Microsystems, Inc.) * C:\WINDOWS\Explorer.EXE (Microsoft Corporation) * C:\WINDOWS\system32\winlogon.exe (Microsoft Corporation) * c:\windows\System32\smss.exe (Microsoft Corporation) * C:\WINDOWS\system32\wscntfy.exe (Microsoft Corporation) Unrated items ------------- 010 C:\WINDOWS\system32\ADAC5B60.EXE (FC59062E) 011 C:\WINDOWS\system32\DRIVERS\tcpip.sys (TCP/IP Protocol Driver) 031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} 031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} 031 C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation) {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} 061 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} 170 {e3502691-c4dd-11de-a17c-806d6172696f} : D:\VBoxWindowsAdditions.exe 173 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} 221 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} 225 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} 225 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} 227 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} 251 C:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} Missing files ------------- 011 C:\WINDOWS\system32\drivers\Abiosdsk.sys 011 C:\WINDOWS\system32\drivers\abp480n5.sys 011 C:\WINDOWS\system32\drivers\adpu160m.sys 011 C:\WINDOWS\system32\drivers\Aha154x.sys 011 C:\WINDOWS\system32\drivers\aic78u2.sys 011 C:\WINDOWS\system32\drivers\aic78xx.sys 011 C:\WINDOWS\system32\drivers\AliIde.sys 011 C:\WINDOWS\system32\drivers\amsint.sys 011 C:\WINDOWS\system32\drivers\asc.sys 011 C:\WINDOWS\system32\drivers\asc3350p.sys 011 C:\WINDOWS\system32\drivers\asc3550.sys 011 C:\WINDOWS\system32\drivers\Atdisk.sys 011 C:\WINDOWS\system32\drivers\cd20xrnt.sys 011 C:\WINDOWS\system32\drivers\Changer.sys 011 C:\WINDOWS\system32\drivers\CmdIde.sys 011 C:\WINDOWS\system32\drivers\Cpqarray.sys 011 C:\WINDOWS\system32\drivers\dac2w2k.sys 011 C:\WINDOWS\system32\drivers\dac960nt.sys 011 C:\WINDOWS\system32\drivers\dpti2o.sys 011 C:\WINDOWS\system32\drivers\hpn.sys 011 C:\WINDOWS\system32\drivers\i2omgmt.sys 011 C:\WINDOWS\system32\drivers\i2omp.sys 011 C:\WINDOWS\system32\drivers\ini910u.sys 011 C:\WINDOWS\system32\drivers\lbrtfdc.sys 011 C:\WINDOWS\system32\drivers\mraid35x.sys 011 C:\WINDOWS\system32\drivers\PCIDump.sys 011 C:\WINDOWS\system32\drivers\PCIIde.sys 011 C:\WINDOWS\system32\drivers\PDCOMP.sys 011 C:\WINDOWS\system32\drivers\PDFRAME.sys 011 C:\WINDOWS\system32\drivers\PDRELI.sys 011 C:\WINDOWS\system32\drivers\PDRFRAME.sys 011 C:\WINDOWS\system32\drivers\perc2.sys 011 C:\WINDOWS\system32\drivers\perc2hib.sys 011 C:\WINDOWS\system32\drivers\ql1080.sys 011 C:\WINDOWS\system32\drivers\Ql10wnt.sys 011 C:\WINDOWS\system32\drivers\ql12160.sys 011 C:\WINDOWS\system32\drivers\ql1240.sys 011 C:\WINDOWS\system32\drivers\ql1280.sys 011 C:\WINDOWS\system32\drivers\Simbad.sys 011 C:\WINDOWS\system32\drivers\Sparrow.sys 011 C:\WINDOWS\system32\drivers\sym_hi.sys 011 C:\WINDOWS\system32\drivers\sym_u3.sys 011 C:\WINDOWS\system32\drivers\symc810.sys 011 C:\WINDOWS\system32\drivers\symc8xx.sys 011 C:\WINDOWS\system32\drivers\TosIde.sys 011 C:\WINDOWS\system32\drivers\ultra.sys 011 C:\WINDOWS\system32\drivers\ViaIde.sys 011 C:\WINDOWS\system32\drivers\WDICA.sys 061 deskpan.dll
اتوقع المكافي مسحه ولا ؟؟
ياسلاام عليك ...............
بخصوص تقرير المكافي
ما تم اكتشافه من ملفات مصابه ( باللون الاحمر ) ومساراتها
كود:
C:\[COLOR=red]auto.exe[/COLOR] ... Found the BackDoor-DKA trojan !!!
C:\[COLOR=red]autorun.inf[/COLOR] ... Found the Generic!atr trojan !!!
C:\Documents and Settings\Ali\Desktop\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\WINDOWS\system32\[COLOR=red]43161F2A.DLL[/COLOR] ... Found the W32/Winko.worm.dll virus !!!
C:\WINDOWS\system32\[COLOR=red]ADAC5B60.EXE[/COLOR] ... Found the BackDoor-DKA trojan !!!وهنا ملخص التقرير
كود:
Summary report on C:\*.*
File(s)
Total files: ........... 10728
Clean: ................. 10697
Possibly Infected: ..... 5
Non-critical Error(s): 1
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0بحيث ....
Total files: ........... 10728
ما تم فحصه من ملفات
Possibly Infected: ..... 5
عدد الاصابات المكتشفه
موجود هنا
كود:
Unrated items
-------------
010 C:\WINDOWS\system32\[COLOR=red]ADAC5B60.EXE[/COLOR] (FC59062E)وراح نجي لتحليل هذه التقارير بالتفاصيل ... في حينه :bleh:
حاليا ... فقط المكافي
السلام عليكم ورحمة الله ...
تم التطبيق والحمد لله ... الله يعطيك العافيه يازيزوم ..
وهذا التقرير ..
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Scan engine v5.4.00 for Win32.
Virus data file v5785 created Oct 28 2009
Scanning for 574446 viruses, trojans and variants.
10/30/2009 02:19:49
Options:
/ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK
Scanning C: []
Scanning C:\*.*
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Scan engine v5.4.00 for Win32.
Virus data file v5785 created Oct 28 2009
Scanning for 574446 viruses, trojans and variants.
10/30/2009 14:35:57
Options:
/ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK
Scanning C: []
Scanning C:\*.*
C:\WINDOWS\system32\2FB1C3C2.EXE ... Found the BackDoor-DKA trojan !!!
C:\WINDOWS\system32\ED7A8452.DLL ... Found the W32/Winko.worm.dll virus !!!
C:\Documents and Settings\shady-ksa\Desktop\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\autorun.inf ... Found the Generic!atr trojan !!!
Summary report on C:\*.*
File(s)
Total files: ........... 10637
Clean: ................. 10607
Possibly Infected: ..... 5
Non-critical Error(s): 1
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Time: 00:02.09
Thank you for choosing to evaluate VirusScan from McAfee.
This version of the software is for Evaluation Purposes Only and may be
used for up to 30 days to determine if it meets your requirements. To
license the software, or to obtain assistance during the evaluation
process, please call (408) 988-3832. If you choose not to license the
software, you need to remove it from your system. All use of this
software is conditioned upon compliance with the license terms set forth
in the README.TXT file.
ياسلاام عليك
k:k:ممكن تحلل التقرير ؟
shaded
زيزوومى فضى
غير متصل
ياسلاام عليك
ممكن تحلل التقرير ؟
[/CENTER]
تسلم يالغالي ..
ابشر ولا يهمك ..
-------------------------
تم فحص ملفات عددها 10637 ملف
الاصابات التي تم اكتشافها ... عددها 5 اصابات ..
وهي كالتالي ..
الملف الاساسي .. الموجود على سطح المكتب (( الي تم تحميله ))
عند تشغيل الفايروس .. نزلت 4 ملفات في الجهاز ..
1-C:\auto.exe
2-C:\autorun.inf
3-C:\WINDOWS\system32\2FB1C3C2.EXE
4-C:\WINDOWS\system32\ED7A8452.DLL
عند تشغيل الفايروس .. نزلت 4 ملفات في الجهاز ..
1-C:\auto.exe
2-C:\autorun.inf
3-C:\WINDOWS\system32\2FB1C3C2.EXE
4-C:\WINDOWS\system32\ED7A8452.DLL
طبعا الملفات مخفية ... وايضا يقوم بتعطيل (( خيار اظهار الملفات المخفية )) عشان ما نشوفه :y:
هذا والله أعلم ..
توقيع : shaded
KoNaMi
زيزوومى فضى
غير متصل
هذا التقرير الجديد ان شاء الله يكون المطلوب
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Scan engine v5.4.00 for Win32.
Virus data file v5783 created Oct 26 2009
Scanning for 574099 viruses, trojans and variants.
10/30/2009 21:13:58
Options:
/ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK
Scanning C: []
Scanning C:\*.*
C:\autorun.inf ... Found the Generic!atr trojan !!!
C:\Documents and Settings\8\سطح المكتب\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\Documents and Settings\8\سطح المكتب\التطبيق\showpost.php_files\RCX3F7.tmp ... Found the W32/Mabezat virus !!!
C:\Documents and Settings\hook.dl_ ... Found the W32/Mabezat virus !!!
C:\Documents and Settings\tazebama.dll ... Found the W32/Mabezat.dll virus !!!
C:\Documents and Settings\tazebama.dl_ ... Found the W32/Mabezat virus !!!
C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Common Files\Microsoft Shared\MODI\11.0\MSPVIEW.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Common Files\Real\Update_OB\rnxproc.exe ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Firefly Studios\Stronghold Crusader\Stronghold Crusader.exe ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Messenger\msmsgs.exe ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\FRONTPG.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\MSACCESS.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\MSPUB.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\OIS.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\POWERPNT.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE ... Found the W32/Mabezat.a virus !!!
Summary report on C:\*.*
File(s)
Total files: ........... 54364
Clean: ................. 54312
Possibly Infected: ..... 18
Non-critical Error(s): 1
Master Boot Record(s): ......... 2
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning D: []
Scanning D:\*.*
Summary report on D:\*.*
File(s)
Total files: ........... 143
Clean: ................. 105
Possibly Infected: ..... 0
Non-critical Error(s): 1
Master Boot Record(s): ......... 2
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning E: []
Scanning E:\*.*
Summary report on E:\*.*
File(s)
Total files: ........... 558
Clean: ................. 535
Possibly Infected: ..... 0
Non-critical Error(s): 1
Master Boot Record(s): ......... 2
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning F: []
Scanning F:\*.*
Summary report on F:\*.*
File(s)
Total files: ........... 491
Clean: ................. 457
Possibly Infected: ..... 0
Non-critical Error(s): 1
Master Boot Record(s): ......... 2
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Time: 00:17.49
Thank you for choosing to evaluate VirusScan from McAfee.
This version of the software is for Evaluation Purposes Only and may be
used for up to 30 days to determine if it meets your requirements. To
license the software, or to obtain assistance during the evaluation
process, please call (408) 988-3832. If you choose not to license the
software, you need to remove it from your system. All use of this
software is conditioned upon compliance with the license terms set forth
in the README.TXT file.
الذي تم حذفه 18
ترا بديت احس بالاحباط في الجامعه فاشل وهنا فاشل بعد :er:
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Scan engine v5.4.00 for Win32.
Virus data file v5783 created Oct 26 2009
Scanning for 574099 viruses, trojans and variants.
10/30/2009 21:13:58
Options:
/ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK
Scanning C: []
Scanning C:\*.*
C:\autorun.inf ... Found the Generic!atr trojan !!!
C:\Documents and Settings\8\سطح المكتب\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\Documents and Settings\8\سطح المكتب\التطبيق\showpost.php_files\RCX3F7.tmp ... Found the W32/Mabezat virus !!!
C:\Documents and Settings\hook.dl_ ... Found the W32/Mabezat virus !!!
C:\Documents and Settings\tazebama.dll ... Found the W32/Mabezat.dll virus !!!
C:\Documents and Settings\tazebama.dl_ ... Found the W32/Mabezat virus !!!
C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Common Files\Microsoft Shared\MODI\11.0\MSPVIEW.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Common Files\Real\Update_OB\rnxproc.exe ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Firefly Studios\Stronghold Crusader\Stronghold Crusader.exe ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Messenger\msmsgs.exe ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\FRONTPG.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\MSACCESS.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\MSPUB.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\OIS.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\POWERPNT.EXE ... Found the W32/Mabezat.a virus !!!
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE ... Found the W32/Mabezat.a virus !!!
Summary report on C:\*.*
File(s)
Total files: ........... 54364
Clean: ................. 54312
Possibly Infected: ..... 18
Non-critical Error(s): 1
Master Boot Record(s): ......... 2
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning D: []
Scanning D:\*.*
Summary report on D:\*.*
File(s)
Total files: ........... 143
Clean: ................. 105
Possibly Infected: ..... 0
Non-critical Error(s): 1
Master Boot Record(s): ......... 2
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning E: []
Scanning E:\*.*
Summary report on E:\*.*
File(s)
Total files: ........... 558
Clean: ................. 535
Possibly Infected: ..... 0
Non-critical Error(s): 1
Master Boot Record(s): ......... 2
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning F: []
Scanning F:\*.*
Summary report on F:\*.*
File(s)
Total files: ........... 491
Clean: ................. 457
Possibly Infected: ..... 0
Non-critical Error(s): 1
Master Boot Record(s): ......... 2
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Time: 00:17.49
Thank you for choosing to evaluate VirusScan from McAfee.
This version of the software is for Evaluation Purposes Only and may be
used for up to 30 days to determine if it meets your requirements. To
license the software, or to obtain assistance during the evaluation
process, please call (408) 988-3832. If you choose not to license the
software, you need to remove it from your system. All use of this
software is conditioned upon compliance with the license terms set forth
in the README.TXT file.
الذي تم حذفه 18
ترا بديت احس بالاحباط في الجامعه فاشل وهنا فاشل بعد :er:
توقيع : KoNaMi
العتب على النظر ، يعطيك العافيه على التعقيب ومعليش تراني نسيت احلل التقرير لك
ولا يهمك يا بعدي
وجهك على السبوره
:وارفع يدك اليمنى وارفع رجلك اليسرى :hh:
بلال عبدالعزيز
زيزوومي نشيط
- إنضم
- 14 أغسطس 2007
- المشاركات
- 132
- مستوى التفاعل
- 4
- النقاط
- 170
- الإقامة
- Syria - Damascus
- الموقع الالكتروني
- www.syria-news.com
غير متصل
بعتولنا الفايروس يا إخوان لنشوفه . .
أطيب تحياتي للجميع .
أطيب تحياتي للجميع .
ramay
زيزوومى مبدع
غير متصل
هذا تقرير ياالغالي لكن لا أعرف كيف أحلله
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Scan engine v5.4.00 for Win32.
Virus data file v5708 created Aug 13 2009
Scanning for 547051 viruses, trojans and variants.
10/31/2009 13:21:38
Options:
/ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK
Scanning C: [ACER]
Scanning C:\*.*
C:\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\autorun.inf ... Found the Generic!atr trojan !!!
C:\CSTRIKE\REALBOT\RB_NAMES.TXT ... Found the IRC/Flood.at trojan !!!
C:\Documents and Settings\acer\Desktop\auto\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\Documents and Settings\acer\Local Settings\Temp\activator\AMD64\antiwpa.dll ... Found the Generic.dx trojan !!!
C:\Documents and Settings\acer\Local Settings\Temp\activator\X86\antiwpa.dll ... Found the Generic.dx trojan !!!
C:\Future Games\Cs Bab Alhara\CSTRIKE\REALBOT\RB_NAMES.TXT ... Found the IRC/Flood.at trojan !!!
C:\Program Files\A.S Pack Plus!\AutoPlay\Docs\anti\sergiwa\PRT.exe ... Found the Generic.dx trojan !!!
C:\Program Files\A.S Pack Plus!\AutoPlay\Docs\anti\sergiwa\SRT.exe ... Found the Generic.dx trojan !!!
C:\WINDOWS\system32\4179FCCF.DLL ... Found the W32/Winko.worm.dll virus !!!
C:\WINDOWS\system32\A4048F37.EXE ... Found the BackDoor-DKA trojan !!!
C:\WINDOWS\system32\antiwpa.dll ... Found the Generic.dx trojan !!!
Summary report on C:\*.*
File(s)
Total files: ........... 39898
Clean: ................. 39851
Possibly Infected: ..... 12
Non-critical Error(s): 1
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning D: []
Scanning D:\*.*
D:\auto.exe ... Found the BackDoor-DKA trojan !!!
D:\autorun.inf ... Found the Generic!atr trojan !!!
Summary report on D:\*.*
File(s)
Total files: ........... 3735
Clean: ................. 3733
Possibly Infected: ..... 2
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning E: []
Scanning E:\*.*
E:\auto.exe ... Found the BackDoor-DKA trojan !!!
E:\autorun.inf ... Found the Generic!atr trojan !!!
Summary report on E:\*.*
File(s)
Total files: ........... 1135
Clean: ................. 1133
Possibly Infected: ..... 2
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning G: []
Scanning G:\*.*
G:\auto.exe ... Found the BackDoor-DKA trojan !!!
G:\autorun.inf ... Found the Generic!atr trojan !!!
Summary report on G:\*.*
File(s)
Total files: ........... 7605
Clean: ................. 7603
Possibly Infected: ..... 2
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Time: 00:13.25
Thank you for choosing to evaluate VirusScan from McAfee.
This version of the software is for Evaluation Purposes Only and may be
used for up to 30 days to determine if it meets your requirements. To
license the software, or to obtain assistance during the evaluation
process, please call (408) 988-3832. If you choose not to license the
software, you need to remove it from your system. All use of this
software is conditioned upon compliance with the license terms set forth
in the README.TXT file.
عدد ملفا مفحوصة 39898
عدد ملفا المصابة 12
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Scan engine v5.4.00 for Win32.
Virus data file v5708 created Aug 13 2009
Scanning for 547051 viruses, trojans and variants.
10/31/2009 13:21:38
Options:
/ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK
Scanning C: [ACER]
Scanning C:\*.*
C:\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\autorun.inf ... Found the Generic!atr trojan !!!
C:\CSTRIKE\REALBOT\RB_NAMES.TXT ... Found the IRC/Flood.at trojan !!!
C:\Documents and Settings\acer\Desktop\auto\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\Documents and Settings\acer\Local Settings\Temp\activator\AMD64\antiwpa.dll ... Found the Generic.dx trojan !!!
C:\Documents and Settings\acer\Local Settings\Temp\activator\X86\antiwpa.dll ... Found the Generic.dx trojan !!!
C:\Future Games\Cs Bab Alhara\CSTRIKE\REALBOT\RB_NAMES.TXT ... Found the IRC/Flood.at trojan !!!
C:\Program Files\A.S Pack Plus!\AutoPlay\Docs\anti\sergiwa\PRT.exe ... Found the Generic.dx trojan !!!
C:\Program Files\A.S Pack Plus!\AutoPlay\Docs\anti\sergiwa\SRT.exe ... Found the Generic.dx trojan !!!
C:\WINDOWS\system32\4179FCCF.DLL ... Found the W32/Winko.worm.dll virus !!!
C:\WINDOWS\system32\A4048F37.EXE ... Found the BackDoor-DKA trojan !!!
C:\WINDOWS\system32\antiwpa.dll ... Found the Generic.dx trojan !!!
Summary report on C:\*.*
File(s)
Total files: ........... 39898
Clean: ................. 39851
Possibly Infected: ..... 12
Non-critical Error(s): 1
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning D: []
Scanning D:\*.*
D:\auto.exe ... Found the BackDoor-DKA trojan !!!
D:\autorun.inf ... Found the Generic!atr trojan !!!
Summary report on D:\*.*
File(s)
Total files: ........... 3735
Clean: ................. 3733
Possibly Infected: ..... 2
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning E: []
Scanning E:\*.*
E:\auto.exe ... Found the BackDoor-DKA trojan !!!
E:\autorun.inf ... Found the Generic!atr trojan !!!
Summary report on E:\*.*
File(s)
Total files: ........... 1135
Clean: ................. 1133
Possibly Infected: ..... 2
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Scanning G: []
Scanning G:\*.*
G:\auto.exe ... Found the BackDoor-DKA trojan !!!
G:\autorun.inf ... Found the Generic!atr trojan !!!
Summary report on G:\*.*
File(s)
Total files: ........... 7605
Clean: ................. 7603
Possibly Infected: ..... 2
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Time: 00:13.25
Thank you for choosing to evaluate VirusScan from McAfee.
This version of the software is for Evaluation Purposes Only and may be
used for up to 30 days to determine if it meets your requirements. To
license the software, or to obtain assistance during the evaluation
process, please call (408) 988-3832. If you choose not to license the
software, you need to remove it from your system. All use of this
software is conditioned upon compliance with the license terms set forth
in the README.TXT file.
عدد ملفا مفحوصة 39898
عدد ملفا المصابة 12
توقيع : ramay
الليث الضارب
زيزوومى مبدع
غير متصل
السلام عليكم
أخيراً تم التطبيق على الدرس الأول :d:
وهذا تقرير المكافي
خالص التحايا
:king:
أخيراً تم التطبيق على الدرس الأول :d:
وهذا تقرير المكافي
كود:
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Missing or invalid DAT: c:\zyzoom\SCAN.DAT
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Missing or invalid DAT: c:\zyzoom\SCAN.DAT
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Missing or invalid DAT: c:\zyzoom\SCAN.DAT
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Missing or invalid DAT: c:\zyzoom\SCAN.DAT
McAfee VirusScan for Win32 v5.40.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832 EVALUATION COPY - Apr 16 2009
Scan engine v5.4.00 for Win32.
Virus data file v5784 created Oct 27 2009
Scanning for 574321 viruses, trojans and variants.
10/31/2009 14:35:07
Options:
/ADL /ALL /SUB /MIME /STREAMS /ALLOLE /APPEND /REPORT C:\MCAFEE.TXT /NOBREAK
Scanning C: []
Scanning C:\*.*
C:\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\autorun.inf ... Found the Generic!atr trojan !!!
C:\Documents and Settings\zyzoom.org\سطح المكتب\auto.exe ... Found the BackDoor-DKA trojan !!!
C:\WINDOWS\system32\1BB90076.EXE ... Found the BackDoor-DKA trojan !!!
C:\WINDOWS\system32\AD679F4C.DLL ... Found the W32/Winko.worm.dll virus !!!
Summary report on C:\*.*
File(s)
Total files: ........... 12069
Clean: ................. 12040
Possibly Infected: ..... 5
Non-critical Error(s): 1
Master Boot Record(s): ......... 1
Possibly Infected: ..... 0
Boot Sector(s): ................ 1
Possibly Infected: ..... 0
Time: 00:09.12
Thank you for choosing to evaluate VirusScan from McAfee.
This version of the software is for Evaluation Purposes Only and may be
used for up to 30 days to determine if it meets your requirements. To
license the software, or to obtain assistance during the evaluation
process, please call (408) 988-3832. If you choose not to license the
software, you need to remove it from your system. All use of this
software is conditioned upon compliance with the license terms set forth
in the README.TXT file.:king:
توقيع : الليث الضارب
اللؤلؤ المكنون
زيزوومى مميز
غير متصل
:hh::hh::hh::hh:
توقيع : اللؤلؤ المكنون
- إنضم
- 20 يوليو 2007
- المشاركات
- 2,808
- مستوى التفاعل
- 2,696
- النقاط
- 2,750
متصل
توقيع : abukhaled
اللؤلؤ المكنون
زيزوومى مميز
غير متصل
السلام عليكم ورحمة الله وبركاته أخي زيزووم قرأت موضوع بأسمك في أحد المواقع عن خلط الكاسبر والافيرا
إذا لك سنقوم بخلط الكاسبر مع الافيرا نحن مترددين من خلطهم ننتظر ردك وفقك الله
ولكن سيكون الخلط اصدار اطور من الذي في الموضوع الكاسبر 2010 سكيورتي والافيرا 2009 سكيورتي نرجو التوضيح أثابك الله شاكرين مقدرين
إذا لك سنقوم بخلط الكاسبر مع الافيرا نحن مترددين من خلطهم ننتظر ردك وفقك الله
ولكن سيكون الخلط اصدار اطور من الذي في الموضوع الكاسبر 2010 سكيورتي والافيرا 2009 سكيورتي نرجو التوضيح أثابك الله شاكرين مقدرين
توقيع : اللؤلؤ المكنون
- الحالة