Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
they are system policies and may be done by avirus but may be done by disable alarm am control panel by a user.
Files Infected:
C:\Program Files\HTMLConvert\HTMLConvert.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{78D99F90-86DF-4B3C-85F2-336148289E01}\RP157\A0080141.dll (Trojan.Agent) -> Quarantined and deleted successfully.
K:\Papa\AppData\Local\Temp\MMBPlayer\dssEditBox.dll (Malware.Packer) -> Quarantined and deleted successfully.
K:\Papa\AppData\Local\Temp\MMBPlayer\Plugin.dll (Malware.Packer) -> Quarantined and deleted successfully.
i am sure that the last two files completely virus free(the same thing came with me but i analyze the files and discover that FPs in MBAM)
and the other files maybe virus free but how i am sure?
you can send the files to kaspersky lab virus lab :virus@kaspersky.com
after zip those files and protect them with a password (dont forget to write the password in the message)
after two days or less they will tell you about them or send them to me and iw ill report you after two days at most(make a zipped file with password)
or send them to any virus lab and see.