دوستان آنتی ویروس پاندا یه امکانی داره که با نصب یه برنامه در کنار آنتی ویروس میتوانید کامپیوترتون را چک کنید.من لینکشو براتون میذارم .ضمناروی سیستم من هم فایلای اینترنت دانلود منیجر و هم فایلای پادویش رو به عنوان مالویر شناخت با یه چنتا کلید رجیستری که مربوط به اینا بود. فایل گزارششو هم براتون میذارم تا دوستان مسئول سایت پیگیری کنند
http://acs.pandasoftware.com/pandacloud ... leaner.exe
====================================================
لیست فایلا و کلیدای رجیستری:
Malware. FILE: C:\Users\Haneiye\AppData\Roaming\MICROSOFT\Windows\Cookies\Low\MNQ14TNC.txt to be deleted.
Malware. FILE: C:\Program Files (x86)\INTERNET DOWNLOAD MANAGER\IDMan.exe to be deleted.
Malware. FILE: C:\Users\Haneiye\Desktop\Internet Download Manager.lnk to be deleted.
Malware. FILE: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager\Internet Download Manager.lnk to be deleted.
Malware. FILE: C:\Users\Haneiye\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager\Internet Download Manager.lnk to be deleted.
Malware. REGKEY: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[IDMan]. Value: IDMan To be deleted.
Malware. REGKEY: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[IDMan]. Value: IDMan To be deleted.
Malware. REGKEY: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4}. Key to be deleted.
Malware. REGKEY: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\DragDrop\{F6E1B27E-F2DA-4919-9DBD-CAB90A1D662B}. Key to be deleted.
Malware. REGKEY: HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4}. Key to be deleted.
Malware. REGKEY: HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\DragDrop\{19129CDA-AFC0-4330-99BC-C5A834F89006}. Key to be deleted.
Malware. REGKEY: HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4}. Key to be deleted.
Malware. REGKEY: HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\DragDrop\{19129CDA-AFC0-4330-99BC-C5A834F89006}. Key to be deleted.
Malware. FILE: C:\Users\Haneiye\AppData\Roaming\MICROSOFT\Windows\Cookies\Low\8GARS9Y8.txt to be deleted.
Malware. FILE: C:\Program Files (x86)\PADVISH ANTIVIRUS\APGUI.exe to be deleted.
Malware. FILE: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AmnPardaz\Padvish\Padvish Antivirus.lnk to be deleted.
Malware. FILE: C:\Program Files (x86)\PADVISH ANTIVIRUS\APCcSvc.exe to be deleted.
Malware. REGKEY: HKLM\SYSTEM\CurrentControlSet\Services\AmnPardazControlCenterWinService. Key to be deleted.
Malware. FILE: C:\Program Files (x86)\PADVISH ANTIVIRUS\APAlert.exe to be deleted.
Malware. REGKEY: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run[Padvish Antivirus Alert Daemon]. Value: Padvish Antivirus Alert Daemon To be deleted.
Malware. REGKEY: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run[Padvish Antivirus Alert Daemon]. Value: Padvish Antivirus Alert Daemon To be deleted.
Malware. REGKEY: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run[Padvish Antivirus Alert Daemon]. Value: Padvish Antivirus Alert Daemon To be deleted.
Malware. FILE: C:\Users\Haneiye\AppData\Roaming\MICROSOFT\Windows\Cookies\5UDNJ16J.txt to be deleted.
Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[HIDEFILEEXT] to be changed to: 0
Suspicious Policy. POLICY: HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED[HIDEFILEEXT] to be changed to: 0
Malware. REGKEY: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM[DISABLEREGISTRYTOOLS]. Value: DISABLEREGISTRYTOOLS To be deleted.