This is my report which you sent to me. What should I do now? 2016-05-08T14:44:47+00:00

Home Forums Virus, Trojan, Spyware, and Malware Removal Logs This is my report which you sent to me. What should I do now?

  • Author
    Posts
  • kiritharen
    Participant
    Post count: 4
    #1676 |

    ############################## | UsbFix V 8.230 | [Clean]

    User: User (Administrator) # NOTEBOOK
    Updated 28/04/2016 by SOSVirus
    Started at 15:54:32 | 29/04/2016

    Website : https://www.usb-antivirus.com/
    Tutorial : https://www.usb-antivirus.com/tutorial/
    Support : http://www.sosvirus.org/
    Live detection : http://www.sosmalware.com/usbfix/
    Contact : https://www.usb-antivirus.com/contact/

    ################## | System information |

    MB: Dell Inc. (0HW7X5)
    CPU: Intel(R) Core(TM) i5-4200U CPU @ 1.60GHz
    GC: Intel(R) HD Graphics 3000
    GC: Intel(R) HD Graphics Family
    RAM -> [Total : 4001 Mo | Free : 2720 Mo]
    Bios: Dell Inc.
    Boot: Normal boot

    OS: Microsoft� Windows 8.1 Pro (6.3.9600 64-Bit)
    WB: Internet Explorer : 11.00.9600.16384
    WB: Google Chrome : 49.0.2623.112
    WB: Mozilla Firefox : 44.0.2

    ################## | Security Information |

    AV: Windows Defender [(!) Disabled |(!) Outdated]
    AV: avast! Antivirus [Enabled |Updated]
    AS: Windows Defender [(!) Disabled |(!) Outdated]
    AS: avast! Antivirus [Enabled |Updated]
    FW: avast! Antivirus [Enabled]
    FW: Windows Firewall [Enabled]
    SC: Security Center [Enabled]
    WU: Windows Update [Enabled]

    ################## | Disk Information |

    C: (%SystemDrive%) -> Fixed disk # 194 Gb (129 Gb free – 66%) [Win] # NTFS
    D: -> Fixed disk # 271 Gb (270 Gb free – 100%) [My Data] # NTFS
    F: -> Removable disk # 8 Gb (8 Gb free – 100%) [KIRI] # FAT32

    ################## | Generic Research |

    Deleted! F:System Volume Information.lnk
    Deleted! C:UsersUserAppDataRoamingiqgabnscapkwqsxec64.exe
    Deleted! C:UsersUserAppDataRoamingiqgabnscfmjic
    Deleted! C:UsersUserAppDataRoamingiqgabnscgvelsh.js
    Deleted! C:UsersUserAppDataRoamingiqgabnschrwpeyk
    Deleted! C:UsersUserAppDataRoamingiqgabnsckobeq
    Deleted! C:UsersUserAppDataRoamingiqgabnscnaoecs
    Deleted! C:UsersUserAppDataRoamingiqgabnscokiccd.exe
    Deleted! C:UsersUserAppDataRoamingiqgabnscpyxkfblp
    Deleted! C:UsersUserAppDataRoamingiqgabnsc
    Deleted! C:UsersUserAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupatajo.lnk
    Deleted! C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupatajo.lnk
    Deleted! F:1.bat
    Restored! F:.Trashes698jwlkuiphy.js -> F:698jwlkuiphy.js
    Restored! F:.TrashesSystem Volume InformationIndexerVolumeGuid -> F:System Volume InformationIndexerVolumeGuid

    (!) Temporary files deleted. (71.6580591201782 MB)

    ################## | Startup |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] userinit.exe
    F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
    04 – HKCU..Run : [uTorrent] “C:UsersUserAppDataRoaminguTorrentuTorrent.exe” /MINIMIZED
    04 – HKCU..Run : [Advanced SystemCare 8] “C:Program Files (x86)IObitAdvanced SystemCare 8ASCTray.exe” /Auto
    04 – HKCU..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
    04 – HKCU..Run : [Lync] “C:Program Files (x86)Microsoft OfficeOffice15lync.exe” /fromrunkey
    04 – HKCU..Run : [RESTART_STICKY_NOTES] C:WindowsSystem32StikyNot.exe
    04 – HKCU..Run : [GoogleChromeAutoLaunch_BCEA24321E5E4F1401136BBEDFB545FE] “C:Program Files (x86)GoogleChromeApplicationchrome.exe” –no-startup-window /prefetch:5
    04 – HKLM..Run : [YouCam Mirage] “C:Program Files (x86)CyberLinkYouCamYCMMirage.exe”
    04 – HKLM..Run : [YouCam Tray] “C:Program Files (x86)CyberLinkYouCamYouCamTray.exe” /s
    04 – HKLM..Run : [AvastUI.exe] “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
    04 – HKLM..Run : [CanonQuickMenu] C:Program Files (x86)CanonQuick MenuCNQMMAIN.EXE /logon
    04 – [x64] HKLM..Run : [RTHDVCPL] “C:Program FilesRealtekAudioHDARtkNGUI64.exe” -s
    04 – [x64] HKLM..Run : [RtHDVBg] “C:Program FilesRealtekAudioHDARAVBg64.exe” /MAXX4P1
    04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [uTorrent] “C:UsersUserAppDataRoaminguTorrentuTorrent.exe” /MINIMIZED
    04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [Advanced SystemCare 8] “C:Program Files (x86)IObitAdvanced SystemCare 8ASCTray.exe” /Auto
    04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
    04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [Lync] “C:Program Files (x86)Microsoft OfficeOffice15lync.exe” /fromrunkey
    04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [RESTART_STICKY_NOTES] C:WindowsSystem32StikyNot.exe
    04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [GoogleChromeAutoLaunch_BCEA24321E5E4F1401136BBEDFB545FE] “C:Program Files (x86)GoogleChromeApplicationchrome.exe” –no-startup-window /prefetch:5
    04GS – Send to OneNote.lnk : C:Program Files (x86)Microsoft OfficeOffice15ONENOTEM.EXE

    ################## | C: %SystemDrive% – Fixed drive (NTFS) |

    [14/07/2015 – 23:37:28 | A | 162 Ko] – C:MyXML.xml
    [27/04/2016 – 23:12:18 | ASH | 3277336 Ko] – C:hiberfil.sys
    [27/04/2016 – 23:12:19 | ASH | 4194304 Ko] – C:pagefile.sys
    [27/04/2016 – 23:12:19 | ASH | 262144 Ko] – C:swapfile.sys
    [11/04/2016 – 22:16:28 | SHD] – C:$Recycle.Bin
    [18/06/2013 – 20:18:29 | N | 0 Ko] – C:BOOTNXT
    [22/08/2013 – 22:45:52 | SHD] – C:Documents and Settings
    [22/08/2013 – 23:22:35 | D] – C:PerfLogs
    [18/03/2014 – 18:14:54 | RASH | 389 Ko] – C:bootmgr
    [21/01/2015 – 08:47:37 | RD] – C:Users
    [21/01/2015 – 09:42:29 | RHD] – C:MSOCache
    [18/06/2015 – 14:58:25 | D] – C:Intel
    [02/03/2016 – 12:22:57 | D] – C:temp
    [05/04/2016 – 20:13:35 | D] – C:Xperia C
    [07/04/2016 – 11:07:29 | D] – C:[Smad-Cage]
    [21/04/2016 – 17:58:47 | RD] – C:Program Files
    [25/04/2016 – 22:04:27 | RD] – C:Program Files (x86)
    [25/04/2016 – 22:04:28 | HD] – C:ProgramData
    [28/04/2016 – 17:25:38 | D] – C:OneDriveTemp
    [28/04/2016 – 18:59:42 | D] – C:Windows
    [29/04/2016 – 15:53:06 | D] – C:UsbFix

    ################## | D: – Fixed drive (NTFS) |

    [07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1042.txt
    [07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1028.txt
    [07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1031.txt
    [07/11/2007 – 08:00:40 | A | 10 Ko] – D:eula.1033.txt
    [07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1036.txt
    [07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1040.txt
    [07/11/2007 – 08:00:40 | A | 0 Ko] – D:eula.1041.txt
    [07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.2052.txt
    [07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.3082.txt
    [07/11/2007 – 08:53:12 | A | 237 Ko] – D:VC_RED.MSI
    [04/01/2016 – 09:37:03 | A | 1 Ko] – D:Music – Shortcut.lnk
    [07/11/2007 – 08:00:40 | A | 1 Ko] – D:install.ini
    [07/11/2007 – 08:00:40 | A | 1 Ko] – D:globdata.ini
    [07/11/2007 – 08:44:20 | A | 835 Ko] – D:install.exe
    [23/09/2005 – 00:39:38 | A | 874 Ko] – D:msdia80.dll
    [07/11/2007 – 08:44:20 | A | 93 Ko] – D:install.res.1031.dll
    [07/11/2007 – 08:44:20 | A | 88 Ko] – D:install.res.1033.dll
    [07/11/2007 – 08:44:20 | A | 94 Ko] – D:install.res.1036.dll
    [07/11/2007 – 08:44:20 | A | 92 Ko] – D:install.res.1040.dll
    [07/11/2007 – 08:44:20 | A | 79 Ko] – D:install.res.1041.dll
    [07/11/2007 – 08:44:20 | A | 77 Ko] – D:install.res.1042.dll
    [07/11/2007 – 08:44:20 | A | 73 Ko] – D:install.res.2052.dll
    [07/11/2007 – 08:44:20 | A | 93 Ko] – D:install.res.3082.dll
    [07/11/2007 – 08:44:20 | A | 74 Ko] – D:install.res.1028.dll
    [07/11/2007 – 08:50:40 | A | 1883 Ko] – D:VC_RED.cab
    [07/11/2007 – 08:00:40 | A | 6 Ko] – D:vcredist.bmp
    [01/08/2015 – 21:58:06 | SHD] – D:$RECYCLE.BIN
    [21/01/2015 – 09:39:59 | D] – D:FFOutput

    ################## | F: – Removable drive (FAT32) |

    [26/04/2016 – 19:20:10 | HD] – F:.Trashes
    [29/04/2016 – 15:59:10 | D] – F:698
    [26/04/2016 – 19:20:10 | HD] – F:.Trashes698
    [21/03/2016 – 19:15:38 | N | 84 Ko] – F:698jwlkuiphy.js

    ################## | Vaccin |

    C:Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
    D:Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
    F:Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

    Analysed in 282.0 seconds

    ################## | E.O.F | https://www.sosvirus.net/ | https://www.usb-antivirus.com/ |

  • Anonymous
    Post count: 0

    Hi,

    Please, Remove this folder :

    F:698

    Best Regards

  • You must be logged in to reply to this topic.