Publicité
Publicité
Format du document : text/plain
Prévisualisation
[b]############################## | UsbFix V 7.917 | [Research][/b]
User: Win7 (Administrator) # WIN7-PC
Updated 30/03/2015 by El Desaparecido - SosVirus
Started at 01:19:00 | 31/03/2015
Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Changelog : [url=http://www.en.usbfix.net/changelog/]http://www.en.usbfix.net/changelog/[/url]
Support : [url=http://www.sos-virus.net/]http://www.sos-virus.net/[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]
[b]################## | System information |[/b]
MB: Gigabyte Technology Co., Ltd. (G41MT-S2P)
CPU: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz
GC: Intel(R) G41 Express Chipset
RAM -> [Total : 2012 Mo | Free : 1550 Mo]
Bios: Award Software International, Inc.
Boot: Normal boot
OS: Microsoft� Windows 7 Ultimate (6.1.7600 32-Bit)
WB: Internet Explorer : 8.00.7600.16385
WB: Google Chrome : 41.0.2272.101
WB: Mozilla Firefox : 36.0.4
[b]################## | Security Information |[/b]
AS: Windows Defender [Enabled |[b](!) Outdated[/b]]
AS: Malwarebytes Anti-Malware : 2.1.4.1018
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Fixed disk # 67 Gb (40 Gb free - 59%) [] # NTFS
D:\ -> Fixed disk # 78 Gb (54 Gb free - 68%) [���� �������] # NTFS
E:\ -> Fixed disk # 87 Gb (47 Gb free - 54%) [J] # FAT32
F:\ -> Fixed disk # 87 Gb (26 Gb free - 30%) [C] # FAT32
G:\ -> Fixed disk # 87 Gb (23 Gb free - 26%) [������] # FAT32
H:\ -> Fixed disk # 59 Gb (59 Gb free - 99%) [�����] # NTFS
I:\ -> Removable disk # 7 Gb (955 Mb free - 13%) [KINGSTON] # FAT32
[b]################## | Autorun |[/b]
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [ProgLauncher] C:\Program Files\ProgDVB\ProgLauncher.exe
04 - HKCU\..\Run : [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
04 - HKLM\..\Run : [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
04 - HKLM\..\Run : [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
04 - HKLM\..\Run : [EaseUS EPM tray] C:\Program Files\EaseUS\EaseUS Partition Master 10.1\bin\EpmNews.exe
04 - HKLM\..\Run : [EaseUS EPM Tray Agent] "C:\Program Files\EaseUS\EaseUS Partition Master 10.1\bin\TrayPopupE\TrayTipAgentE.exe"
04 - HKLM\..\Run : [EaseUS TB Tray Agent] "C:\Program Files\EaseUS\TrayPopup\TrayTipAgent.exe"
04 - HKLM\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM\..\Run : [UIExec] "C:\Program Files\Etisalat USB Modem\UIExec.exe"
04 - HKLM\..\Run : [YouCam Service] "C:\Program Files\CyberLink\YouCam\YouCamService.exe" /s
04 - HKU\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run : [ProgLauncher] C:\Program Files\ProgDVB\ProgLauncher.exe
04 - HKU\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run : [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
04GS - ViberSetup.rar.lnk : C:\ProgramData\{6a811926-c225-ad52-6a81-11926c22649b}\ViberSetup.rar.exe
04GS - PrivateTunnel.lnk : C:\Program Files\OpenVPN Technologies\PrivateTunnel\PrivateTunnel.exe
[b]################## | Generic Research |[/b]
Found! C:\Program Files\Windows Service\WCDMAnewversion\amss.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\amsshd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\armprg.bin
Found! C:\Program Files\Windows Service\WCDMAnewversion\Channel1.nvm
Found! C:\Program Files\Windows Service\WCDMAnewversion\efs.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\nandprgcombined.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\nandprghd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\oemsbl.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\oemsblhd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\partition.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\qcsbl.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\qcsblhd_cfgdata.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\ResetUSB.dll
Found! C:\Program Files\Windows Service
[b]################## | Registry |[/b]
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]
[b]################## | Attrib - Restore |[/b]
Will be restored : [SHD] I:\video_resume_play
[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url] |[/b]
User: Win7 (Administrator) # WIN7-PC
Updated 30/03/2015 by El Desaparecido - SosVirus
Started at 01:19:00 | 31/03/2015
Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Changelog : [url=http://www.en.usbfix.net/changelog/]http://www.en.usbfix.net/changelog/[/url]
Support : [url=http://www.sos-virus.net/]http://www.sos-virus.net/[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]
[b]################## | System information |[/b]
MB: Gigabyte Technology Co., Ltd. (G41MT-S2P)
CPU: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz
GC: Intel(R) G41 Express Chipset
RAM -> [Total : 2012 Mo | Free : 1550 Mo]
Bios: Award Software International, Inc.
Boot: Normal boot
OS: Microsoft� Windows 7 Ultimate (6.1.7600 32-Bit)
WB: Internet Explorer : 8.00.7600.16385
WB: Google Chrome : 41.0.2272.101
WB: Mozilla Firefox : 36.0.4
[b]################## | Security Information |[/b]
AS: Windows Defender [Enabled |[b](!) Outdated[/b]]
AS: Malwarebytes Anti-Malware : 2.1.4.1018
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Fixed disk # 67 Gb (40 Gb free - 59%) [] # NTFS
D:\ -> Fixed disk # 78 Gb (54 Gb free - 68%) [���� �������] # NTFS
E:\ -> Fixed disk # 87 Gb (47 Gb free - 54%) [J] # FAT32
F:\ -> Fixed disk # 87 Gb (26 Gb free - 30%) [C] # FAT32
G:\ -> Fixed disk # 87 Gb (23 Gb free - 26%) [������] # FAT32
H:\ -> Fixed disk # 59 Gb (59 Gb free - 99%) [�����] # NTFS
I:\ -> Removable disk # 7 Gb (955 Mb free - 13%) [KINGSTON] # FAT32
[b]################## | Autorun |[/b]
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [ProgLauncher] C:\Program Files\ProgDVB\ProgLauncher.exe
04 - HKCU\..\Run : [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
04 - HKLM\..\Run : [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
04 - HKLM\..\Run : [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
04 - HKLM\..\Run : [EaseUS EPM tray] C:\Program Files\EaseUS\EaseUS Partition Master 10.1\bin\EpmNews.exe
04 - HKLM\..\Run : [EaseUS EPM Tray Agent] "C:\Program Files\EaseUS\EaseUS Partition Master 10.1\bin\TrayPopupE\TrayTipAgentE.exe"
04 - HKLM\..\Run : [EaseUS TB Tray Agent] "C:\Program Files\EaseUS\TrayPopup\TrayTipAgent.exe"
04 - HKLM\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM\..\Run : [UIExec] "C:\Program Files\Etisalat USB Modem\UIExec.exe"
04 - HKLM\..\Run : [YouCam Service] "C:\Program Files\CyberLink\YouCam\YouCamService.exe" /s
04 - HKU\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run : [ProgLauncher] C:\Program Files\ProgDVB\ProgLauncher.exe
04 - HKU\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run : [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
04GS - ViberSetup.rar.lnk : C:\ProgramData\{6a811926-c225-ad52-6a81-11926c22649b}\ViberSetup.rar.exe
04GS - PrivateTunnel.lnk : C:\Program Files\OpenVPN Technologies\PrivateTunnel\PrivateTunnel.exe
[b]################## | Generic Research |[/b]
Found! C:\Program Files\Windows Service\WCDMAnewversion\amss.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\amsshd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\armprg.bin
Found! C:\Program Files\Windows Service\WCDMAnewversion\Channel1.nvm
Found! C:\Program Files\Windows Service\WCDMAnewversion\efs.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\nandprgcombined.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\nandprghd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\oemsbl.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\oemsblhd.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\partition.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\qcsbl.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\qcsblhd_cfgdata.mbn
Found! C:\Program Files\Windows Service\WCDMAnewversion\ResetUSB.dll
Found! C:\Program Files\Windows Service
[b]################## | Registry |[/b]
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]
[b]################## | Attrib - Restore |[/b]
Will be restored : [SHD] I:\video_resume_play
[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url] |[/b]