[b]############################## | UsbFix V 7.917 | [Research][/b]

User: Win7 (Administrator) # WIN7-PC
Updated 30/03/2015 by El Desaparecido - SosVirus
Started at 01:19:00 | 31/03/2015

Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Changelog : [url=http://www.en.usbfix.net/changelog/]http://www.en.usbfix.net/changelog/[/url]
Support : [url=http://www.sos-virus.net/]http://www.sos-virus.net/[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]

[b]################## | System information |[/b]

MB: Gigabyte Technology Co., Ltd. (G41MT-S2P) 
CPU: Intel(R) Core(TM)2 Duo CPU     E6550  @ 2.33GHz
GC: Intel(R) G41 Express Chipset
RAM -> [Total : 2012 Mo | Free : 1550 Mo]
Bios: Award Software International, Inc.
Boot: Normal boot

OS: Microsoft™ Windows 7 Ultimate (6.1.7600 32-Bit) 
WB: Internet Explorer : 8.00.7600.16385
WB: Google Chrome : 41.0.2272.101
WB: Mozilla Firefox : 36.0.4

[b]################## | Security Information |[/b]

AS: Windows Defender [Enabled |[b](!) Outdated[/b]]
AS: Malwarebytes Anti-Malware : 2.1.4.1018
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]

[b]################## | Disk Information |[/b]

C:\ (%SystemDrive%) -> Fixed disk # 67 Gb (40 Gb free - 59%) [] # NTFS
D:\ -> Fixed disk # 78 Gb (54 Gb free - 68%) [ثورة وألتراس] # NTFS
E:\ -> Fixed disk # 87 Gb (47 Gb free - 54%) [J] # FAT32
F:\ -> Fixed disk # 87 Gb (26 Gb free - 30%) [C] # FAT32
G:\ -> Fixed disk # 87 Gb (23 Gb free - 26%) [منوعات] # FAT32
H:\ -> Fixed disk # 59 Gb (59 Gb free - 99%) [برامج] # NTFS
I:\ -> Removable disk # 7 Gb (955 Mb free - 13%) [KINGSTON] # FAT32

[b]################## | Autorun |[/b]


[b]################## | Regedit Run |[/b]

F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [ProgLauncher] C:\Program Files\ProgDVB\ProgLauncher.exe
04 - HKCU\..\Run : [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
04 - HKLM\..\Run : [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
04 - HKLM\..\Run : [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
04 - HKLM\..\Run : [EaseUS EPM tray] C:\Program Files\EaseUS\EaseUS Partition Master 10.1\bin\EpmNews.exe
04 - HKLM\..\Run : [EaseUS EPM Tray Agent] "C:\Program Files\EaseUS\EaseUS Partition Master 10.1\bin\TrayPopupE\TrayTipAgentE.exe"
04 - HKLM\..\Run : [EaseUS TB Tray Agent] "C:\Program Files\EaseUS\TrayPopup\TrayTipAgent.exe"
04 - HKLM\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM\..\Run : [UIExec] "C:\Program Files\Etisalat USB Modem\UIExec.exe"
04 - HKLM\..\Run : [YouCam Service] "C:\Program Files\CyberLink\YouCam\YouCamService.exe" /s
04 - HKU\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run : [ProgLauncher] C:\Program Files\ProgDVB\ProgLauncher.exe
04 - HKU\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run : [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
04GS - ViberSetup.rar.lnk : C:\ProgramData\{6a811926-c225-ad52-6a81-11926c22649b}\ViberSetup.rar.exe
04GS - PrivateTunnel.lnk : C:\Program Files\OpenVPN Technologies\PrivateTunnel\PrivateTunnel.exe

[b]################## | Generic Research |[/b]

Found! C:\Program Files\Windows Service\WCDMAnewversion\amss.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\amsshd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\armprg.bin
Found! C:\Program Files\Windows Service\WCDMAnewversion\Channel1.nvm
Found! C:\Program Files\Windows Service\WCDMAnewversion\efs.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\nandprgcombined.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\nandprghd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\oemsbl.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\oemsblhd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\partition.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\qcsbl.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\qcsblhd_cfgdata.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\ResetUSB.dll
Found! C:\Program Files\Windows Service

[b]################## | Registry |[/b]


[b]################## | UsbFix - Information |[/b]

Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]

[b]################## | Attrib - Restore |[/b]

Will be restored : [SHD] I:\video_resume_play

[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url] |[/b]