Reply To: This is my report. Everytime I put any pendrive in my laptop, it becomes shortcut. 2016-09-07T13:55:25+00:00

Home Forums Virus, Trojan, Spyware, and Malware Removal Logs This is my report. Everytime I put any pendrive in my laptop, it becomes shortcut. Reply To: This is my report. Everytime I put any pendrive in my laptop, it becomes shortcut.

kiritharen
Participant
Post count: 4

############################## | UsbFix V 8.230 | [Clean]

User: User (Administrator) # NOTEBOOK
Updated 28/04/2016 by SOSVirus
Started at 15:54:32 | 29/04/2016

Website : https://www.usb-antivirus.com/
Tutorial : https://www.usb-antivirus.com/tutorial/
Support : http://www.sosvirus.org/
Live detection : http://www.sosmalware.com/usbfix/
Contact : https://www.usb-antivirus.com/contact/

################## | System information |

MB: Dell Inc. (0HW7X5)
CPU: Intel(R) Core(TM) i5-4200U CPU @ 1.60GHz
GC: Intel(R) HD Graphics 3000
GC: Intel(R) HD Graphics Family
RAM -> [Total : 4001 Mo | Free : 2720 Mo]
Bios: Dell Inc.
Boot: Normal boot

OS: Microsoft� Windows 8.1 Pro (6.3.9600 64-Bit)
WB: Internet Explorer : 11.00.9600.16384
WB: Google Chrome : 49.0.2623.112
WB: Mozilla Firefox : 44.0.2

################## | Security Information |

AV: Windows Defender [(!) Disabled |(!) Outdated]
AV: avast! Antivirus [Enabled |Updated]
AS: Windows Defender [(!) Disabled |(!) Outdated]
AS: avast! Antivirus [Enabled |Updated]
FW: avast! Antivirus [Enabled]
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]

################## | Disk Information |

C: (%SystemDrive%) -> Fixed disk # 194 Gb (129 Gb free – 66%) [Win] # NTFS
D: -> Fixed disk # 271 Gb (270 Gb free – 100%) [My Data] # NTFS
F: -> Removable disk # 8 Gb (8 Gb free – 100%) [KIRI] # FAT32

################## | Generic Research |

Deleted! F:System Volume Information.lnk
Deleted! C:UsersUserAppDataRoamingiqgabnscapkwqsxec64.exe
Deleted! C:UsersUserAppDataRoamingiqgabnscfmjic
Deleted! C:UsersUserAppDataRoamingiqgabnscgvelsh.js
Deleted! C:UsersUserAppDataRoamingiqgabnschrwpeyk
Deleted! C:UsersUserAppDataRoamingiqgabnsckobeq
Deleted! C:UsersUserAppDataRoamingiqgabnscnaoecs
Deleted! C:UsersUserAppDataRoamingiqgabnscokiccd.exe
Deleted! C:UsersUserAppDataRoamingiqgabnscpyxkfblp
Deleted! C:UsersUserAppDataRoamingiqgabnsc
Deleted! C:UsersUserAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupatajo.lnk
Deleted! C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupatajo.lnk
Deleted! F:1.bat
Restored! F:.Trashes698jwlkuiphy.js -> F:698jwlkuiphy.js
Restored! F:.TrashesSystem Volume InformationIndexerVolumeGuid -> F:System Volume InformationIndexerVolumeGuid

(!) Temporary files deleted. (71.6580591201782 MB)

################## | Startup |

F2 – HKLM..Winlogon : [Shell] explorer.exe
F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
F2 – HKLM..Winlogon : [Userinit] userinit.exe
F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
04 – HKCU..Run : [uTorrent] “C:UsersUserAppDataRoaminguTorrentuTorrent.exe” /MINIMIZED
04 – HKCU..Run : [Advanced SystemCare 8] “C:Program Files (x86)IObitAdvanced SystemCare 8ASCTray.exe” /Auto
04 – HKCU..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
04 – HKCU..Run : [Lync] “C:Program Files (x86)Microsoft OfficeOffice15lync.exe” /fromrunkey
04 – HKCU..Run : [RESTART_STICKY_NOTES] C:WindowsSystem32StikyNot.exe
04 – HKCU..Run : [GoogleChromeAutoLaunch_BCEA24321E5E4F1401136BBEDFB545FE] “C:Program Files (x86)GoogleChromeApplicationchrome.exe” –no-startup-window /prefetch:5
04 – HKLM..Run : [YouCam Mirage] “C:Program Files (x86)CyberLinkYouCamYCMMirage.exe”
04 – HKLM..Run : [YouCam Tray] “C:Program Files (x86)CyberLinkYouCamYouCamTray.exe” /s
04 – HKLM..Run : [AvastUI.exe] “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
04 – HKLM..Run : [CanonQuickMenu] C:Program Files (x86)CanonQuick MenuCNQMMAIN.EXE /logon
04 – [x64] HKLM..Run : [RTHDVCPL] “C:Program FilesRealtekAudioHDARtkNGUI64.exe” -s
04 – [x64] HKLM..Run : [RtHDVBg] “C:Program FilesRealtekAudioHDARAVBg64.exe” /MAXX4P1
04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [uTorrent] “C:UsersUserAppDataRoaminguTorrentuTorrent.exe” /MINIMIZED
04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [Advanced SystemCare 8] “C:Program Files (x86)IObitAdvanced SystemCare 8ASCTray.exe” /Auto
04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [Lync] “C:Program Files (x86)Microsoft OfficeOffice15lync.exe” /fromrunkey
04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [RESTART_STICKY_NOTES] C:WindowsSystem32StikyNot.exe
04 – HKUS-1-5-21-2291370900-3171552936-3087117897-1001..Run : [GoogleChromeAutoLaunch_BCEA24321E5E4F1401136BBEDFB545FE] “C:Program Files (x86)GoogleChromeApplicationchrome.exe” –no-startup-window /prefetch:5
04GS – Send to OneNote.lnk : C:Program Files (x86)Microsoft OfficeOffice15ONENOTEM.EXE

################## | C: %SystemDrive% – Fixed drive (NTFS) |

[14/07/2015 – 23:37:28 | A | 162 Ko] – C:MyXML.xml
[27/04/2016 – 23:12:18 | ASH | 3277336 Ko] – C:hiberfil.sys
[27/04/2016 – 23:12:19 | ASH | 4194304 Ko] – C:pagefile.sys
[27/04/2016 – 23:12:19 | ASH | 262144 Ko] – C:swapfile.sys
[11/04/2016 – 22:16:28 | SHD] – C:$Recycle.Bin
[18/06/2013 – 20:18:29 | N | 0 Ko] – C:BOOTNXT
[22/08/2013 – 22:45:52 | SHD] – C:Documents and Settings
[22/08/2013 – 23:22:35 | D] – C:PerfLogs
[18/03/2014 – 18:14:54 | RASH | 389 Ko] – C:bootmgr
[21/01/2015 – 08:47:37 | RD] – C:Users
[21/01/2015 – 09:42:29 | RHD] – C:MSOCache
[18/06/2015 – 14:58:25 | D] – C:Intel
[02/03/2016 – 12:22:57 | D] – C:temp
[05/04/2016 – 20:13:35 | D] – C:Xperia C
[07/04/2016 – 11:07:29 | D] – C:[Smad-Cage]
[21/04/2016 – 17:58:47 | RD] – C:Program Files
[25/04/2016 – 22:04:27 | RD] – C:Program Files (x86)
[25/04/2016 – 22:04:28 | HD] – C:ProgramData
[28/04/2016 – 17:25:38 | D] – C:OneDriveTemp
[28/04/2016 – 18:59:42 | D] – C:Windows
[29/04/2016 – 15:53:06 | D] – C:UsbFix

################## | D: – Fixed drive (NTFS) |

[07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1042.txt
[07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1028.txt
[07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1031.txt
[07/11/2007 – 08:00:40 | A | 10 Ko] – D:eula.1033.txt
[07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1036.txt
[07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.1040.txt
[07/11/2007 – 08:00:40 | A | 0 Ko] – D:eula.1041.txt
[07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.2052.txt
[07/11/2007 – 08:00:40 | A | 17 Ko] – D:eula.3082.txt
[07/11/2007 – 08:53:12 | A | 237 Ko] – D:VC_RED.MSI
[04/01/2016 – 09:37:03 | A | 1 Ko] – D:Music – Shortcut.lnk
[07/11/2007 – 08:00:40 | A | 1 Ko] – D:install.ini
[07/11/2007 – 08:00:40 | A | 1 Ko] – D:globdata.ini
[07/11/2007 – 08:44:20 | A | 835 Ko] – D:install.exe
[23/09/2005 – 00:39:38 | A | 874 Ko] – D:msdia80.dll
[07/11/2007 – 08:44:20 | A | 93 Ko] – D:install.res.1031.dll
[07/11/2007 – 08:44:20 | A | 88 Ko] – D:install.res.1033.dll
[07/11/2007 – 08:44:20 | A | 94 Ko] – D:install.res.1036.dll
[07/11/2007 – 08:44:20 | A | 92 Ko] – D:install.res.1040.dll
[07/11/2007 – 08:44:20 | A | 79 Ko] – D:install.res.1041.dll
[07/11/2007 – 08:44:20 | A | 77 Ko] – D:install.res.1042.dll
[07/11/2007 – 08:44:20 | A | 73 Ko] – D:install.res.2052.dll
[07/11/2007 – 08:44:20 | A | 93 Ko] – D:install.res.3082.dll
[07/11/2007 – 08:44:20 | A | 74 Ko] – D:install.res.1028.dll
[07/11/2007 – 08:50:40 | A | 1883 Ko] – D:VC_RED.cab
[07/11/2007 – 08:00:40 | A | 6 Ko] – D:vcredist.bmp
[01/08/2015 – 21:58:06 | SHD] – D:$RECYCLE.BIN
[21/01/2015 – 09:39:59 | D] – D:FFOutput

################## | F: – Removable drive (FAT32) |

[26/04/2016 – 19:20:10 | HD] – F:.Trashes
[29/04/2016 – 15:59:10 | D] – F:698
[26/04/2016 – 19:20:10 | HD] – F:.Trashes698
[21/03/2016 – 19:15:38 | N | 84 Ko] – F:698jwlkuiphy.js

################## | Vaccin |

C:Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
D:Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
F:Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

Analysed in 282.0 seconds

################## | E.O.F | https://www.sosvirus.net/ | https://www.usb-antivirus.com/ |