REKLAMA

UsbFix_Report.txt

Wirus, który tworzy skróty - Wirus tworzy skróty na pamięci zewnętrznej

Oto logi z tych programów.


Pobierz plik - link do postu

[b]############################## | UsbFix V 7.807 | [Clean][/b]

User: GratissVTM (Administrator) # GRATISSVTM-PC
Updated 18/12/2014 by El Desaparecido - SosVirus
Started at 21:04:14 | 06/01/2015

Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Changelog : [url=http://www.en.usbfix.net/changelog/]http://www.en.usbfix.net/changelog/[/url]
Support : [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]

[b]################## | System information |[/b]

MB: ASUSTeK Computer INC. (K50AB)
CPU: AMD Turion(tm) X2 Dual-Core Mobile RM-74
RAM - & gt; [Total : 3071 Mo | Free : 1566 Mo]
Bios: American Megatrends Inc.
Boot: Normal boot

OS: Microsoft™ Windows 7 Professional (6.1.7601 32-Bit) Service Pack 1
WB: Internet Explorer : 8.00.7600.16385
WB: Google Chrome : 39.0.2171.95

[b]################## | Security Information |[/b]

AV: Norton Security [Enabled |Updated]
AS: Norton Security [Enabled |Updated]
AS: Windows Defender [[b](!) Disabled[/b] |[b](!) Outdated[/b]]
FW: Norton Security [Enabled]
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]

[b]################## | Disk Information |[/b]

C:\ (%SystemDrive%) - & gt; Fixed disk # 116 Gb (94 Gb free - 80%) [] # NTFS
D:\ - & gt; Fixed disk # 105 Gb (18 Gb free - 17%) [DATA] # NTFS
F:\ - & gt; CD-ROM # 2 Gb (0 Mb free - 0%) [ROME_TW] # UDF
G:\ - & gt; Fixed disk # 931 Gb (174 Gb free - 19%) [My Passport] # NTFS
H:\ - & gt; Removable disk # 940 Mb (60 Mb free - 6%) [SEBEK] # FAT

[b]################## | Generic Research |[/b]

Deleted! H:\Extra.lnk
Deleted! H:\SD Content Package sd_Central_Europe.lnk
Deleted! H:\card_content.xml.lnk
Deleted! H:\nokia_unprocessed_images_.lnk
Deleted! H:\Zdjêcia.lnk
Deleted! H:\Pliki wideo.lnk
Deleted! H:\Playlists.lnk
Deleted! H:\Nagrania.lnk
Deleted! H:\Music.lnk
Deleted! H:\wadermani.lnk
Deleted! H:\RECYCLER\eaaeeb3e.exe

(!) Temporary files deleted. (5.23083019256592 MB)

[b]################## | Registry |[/b]


[b]################## | Regedit Run |[/b]

F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [DAEMON Tools Pro Agent] " C:\Program Files\DAEMON Tools Pro\DTAgent.exe " -autorun
04 - HKCU\..\Run : [Qhvwvm] C:\Users\GratissVTM\AppData\Roaming\Qhvwvm.exe
04 - HKLM\..\Run : [AdobeAAMUpdater-1.0] " C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe "
04 - HKLM\..\Run : [AdobeCEPServiceManager] " C:\Program Files\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe " -launchedbylogin
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-2111380967-1293155424-373992015-1001\..\Run : [DAEMON Tools Pro Agent] " C:\Program Files\DAEMON Tools Pro\DTAgent.exe " -autorun
04 - HKU\S-1-5-21-2111380967-1293155424-373992015-1001\..\Run : [Qhvwvm] C:\Users\GratissVTM\AppData\Roaming\Qhvwvm.exe
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe

[b]################## | UsbFix - Information |[/b]

Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]

[b]################## | Hijack |[/b]

Restored! [D] H:\Extra
Restored! [D] H:\wadermani
Restored! [RAH] H:\SD Content Package sd_Central_Europe
Restored! [N] H:\rm443_conpack_conf.cnfp
Restored! [N] H:\Launcher.exe
Restored! [RAH] H:\card_content.xml
Restored! [D] H:\nokia_unprocessed_images_
Restored! [D] H:\Zdjêcia
Restored! [D] H:\Pliki wideo
Restored! [D] H:\Playlists
Restored! [N] H:\358005037406805WMLicense.dat
Restored! [D] H:\Nagrania
Restored! [D] H:\Music

[b]################## | C:\ %SystemDrive% - Fixed drive (NTFS) |[/b]

[02/10/2012 - 12:06:57 | A | 7 Ko] - C:\NetworkCfg.xml
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.3082.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1031.txt
[07/11/2007 - 08:00:40 | A | 10 Ko] - C:\eula.1033.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.2052.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1042.txt
[07/11/2007 - 08:00:40 | A | 0 Ko] - C:\eula.1041.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1040.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1036.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1028.txt
[13/09/2010 - 18:28:08 | A | 0 Ko] - C:\file_list.txt
[16/10/2011 - 10:08:46 | A | 0 Ko] - C:\bos_log.txt
[10/06/2009 - 22:42:20 | A | 0 Ko] - C:\config.sys
[14/12/2013 - 14:37:42 | RASH | 0 Ko] - C:\MSDOS.SYS
[14/12/2013 - 14:37:42 | RASH | 0 Ko] - C:\IO.SYS
[06/01/2015 - 20:55:33 | ASH | 2358616 Ko] - C:\hiberfil.sys
[06/01/2015 - 20:55:34 | ASH | 3144824 Ko] - C:\pagefile.sys
[26/12/2013 - 12:17:47 | A | 0 Ko] - C:\extensions.sqlite
[07/11/2007 - 08:12:28 | A | 228 Ko] - C:\VC_RED.MSI
[07/11/2007 - 08:00:40 | A | 1 Ko] - C:\globdata.ini
[07/11/2007 - 08:00:40 | A | 1 Ko] - C:\install.ini
[26/12/2013 - 12:17:47 | A | 0 Ko] - C:\extensions.ini
[07/11/2007 - 08:03:18 | A | 550 Ko] - C:\install.exe
[07/11/2007 - 08:03:18 | A | 89 Ko] - C:\install.res.1033.dll
[07/11/2007 - 08:03:18 | A | 94 Ko] - C:\install.res.1031.dll
[07/11/2007 - 08:03:18 | A | 94 Ko] - C:\install.res.3082.dll
[07/11/2007 - 08:03:18 | A | 74 Ko] - C:\install.res.2052.dll
[07/11/2007 - 08:03:18 | A | 78 Ko] - C:\install.res.1042.dll
[07/11/2007 - 08:03:18 | A | 80 Ko] - C:\install.res.1041.dll
[07/11/2007 - 08:03:18 | A | 93 Ko] - C:\install.res.1040.dll
[07/11/2007 - 08:03:18 | A | 75 Ko] - C:\install.res.1028.dll
[07/11/2007 - 08:03:18 | A | 95 Ko] - C:\install.res.1036.dll
[16/10/2011 - 10:08:45 | A | 2 Ko] - C:\bos.cfg
[07/11/2007 - 08:09:22 | A | 1409 Ko] - C:\VC_RED.cab
[07/11/2007 - 08:00:40 | A | 6 Ko] - C:\vcredist.bmp
[21/11/2014 - 17:20:21 | SHD] - C:\$Recycle.Bin
[10/06/2009 - 22:42:20 | A | 0 Ko] - C:\autoexec.bat
[22/11/2014 - 01:54:58 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[14/07/2009 - 03:37:05 | D] - C:\PerfLogs
[14/07/2009 - 05:53:55 | SHD] - C:\Documents and Settings
[20/11/2010 - 22:29:06 | RASH | 375 Ko] - C:\bootmgr
[16/10/2011 - 10:08:46 | D] - C:\$$current$$
[20/10/2011 - 20:50:01 | D] - C:\ATI
[26/10/2011 - 18:35:15 | RHD] - C:\MSOCache
[13/12/2011 - 19:16:45 | D] - C:\AMD
[20/11/2014 - 22:06:57 | D] - C:\sh4ldr
[21/11/2014 - 06:31:07 | D] - C:\KRECYCLE
[21/11/2014 - 17:18:36 | SHD] - C:\Recovery
[21/11/2014 - 17:20:03 | RD] - C:\Users
[21/11/2014 - 17:48:27 | | 364 Ko] - C:\MKCYP
[22/11/2014 - 01:54:55 | SHD] - C:\Boot
[06/01/2015 - 17:01:54 | HD] - C:\ProgramData
[06/01/2015 - 20:43:57 | RD] - C:\Program Files
[06/01/2015 - 20:44:02 | D] - C:\AdwCleaner
[06/01/2015 - 21:01:02 | D] - C:\Windows
[06/01/2015 - 21:02:52 | D] - C:\UsbFix
[06/01/2015 - 21:03:27 | D] - C:\FRST

[b]################## | D:\ - Fixed drive (NTFS) |[/b]

[22/12/2014 - 10:53:42 | A | 18 Ko] - D:\CV.docx
[22/12/2014 - 11:17:20 | A | 14 Ko] - D:\List motywacyjny.docx
[21/11/2014 - 17:20:21 | SHD] - D:\$RECYCLE.BIN
[18/02/2011 - 12:21:02 | D] - D:\$AVG
[22/11/2014 - 10:11:03 | D] - D:\Programy
[22/11/2014 - 10:36:42 | D] - D:\AI_RecycleBin
[23/11/2014 - 10:46:50 | D] - D:\Muza
[07/12/2014 - 12:54:04 | D] - D:\VirtualDJ
[13/12/2014 - 17:06:59 | D] - D:\Inne
[03/01/2015 - 20:57:31 | D] - D:\Gry

[b]################## | G:\ - Fixed drive (NTFS) |[/b]

[01/01/1970 - 02:10:14 | A | 0 Ko] - G:\db.info
[28/03/2013 - 15:48:13 | A | 0 Ko] - G:\winamp_metadata.idx
[12/04/2012 - 01:13:19 | A | 4109 Ko] - G:\WD Apps Setup.exe
[01/01/1970 - 02:10:14 | A | 3233 Ko] - G:\data.db
[28/03/2013 - 15:48:13 | A | 0 Ko] - G:\winamp_metadata.dat
[01/01/1970 - 01:23:29 | A | 0 Ko] - G:\.cm0013
[06/01/2015 - 20:22:34 | SHD] - G:\$RECYCLE.BIN
[01/01/1970 - 03:09:24 | A | 1 Ko] - G:\pos_info
[28/08/2012 - 09:40:57 | D] - G:\Extras
[28/08/2012 - 09:40:57 | D] - G:\My Passport Apps for Mac
[28/08/2012 - 09:40:57 | D] - G:\Locale
[28/08/2012 - 09:41:03 | D] - G:\User Manuals
[28/08/2012 - 09:41:08 | D] - G:\WD Apps for Windows
[01/03/2013 - 00:46:54 | D] - G:\- Kris
[21/10/2013 - 18:36:52 | D] - G:\87ab080ec0c43f73d520c57b4595ce91
[06/10/2014 - 10:54:23 | D] - G:\- Irena
[26/12/2014 - 22:36:29 | D] - G:\- Seba
[01/01/2015 - 22:46:22 | D] - G:\- Jakub
[06/01/2015 - 16:43:11 | HD] - G:\RECYCLER

[b]################## | H:\ - Removable drive (FAT) |[/b]

[01/01/2009 - 12:00:00 | RAH | 0 Ko] - H:\card_content.xml
[30/11/2009 - 22:46:04 | A | 0 Ko] - H:\MeBoy_m_20R_POKEMON RED001011111110111.rms
[30/11/2009 - 22:55:06 | A | 0 Ko] - H:\MeBoy_m_set000.rms
[30/11/2009 - 22:55:20 | A | 49 Ko] - H:\MeBoy_m_20S_1? Pokemon Red.gb001000010000000100000.rms
[03/01/2010 - 16:10:02 | A | 34 Ko] - H:\Ghost.mp3
[03/01/2010 - 16:10:38 | A | 40 Ko] - H:\This is Sparta!.mp3
[03/01/2010 - 16:12:16 | A | 2904 Ko] - H:\Inglourious Basterds.mp3
[02/04/2010 - 22:07:44 | A | 3543 Ko] - H:\okoliczny element - balsam party feat. szufla (bonus track).mp3
[25/06/2010 - 00:35:08 | A | 6033 Ko] - H:\piesn czwurta.mp3
[01/07/2010 - 23:31:00 | A | 6308 Ko] - H:\Virtual haircut.mp3
[30/03/2010 - 20:25:28 | A | 242 Ko] - H:\DSC01036.JPG
[30/03/2010 - 20:27:40 | A | 206 Ko] - H:\DSC01033.JPG
[02/07/2010 - 16:32:06 | A | 298 Ko] - H:\Zdjêcie003.jpg
[22/10/2010 - 08:57:40 | A | 316 Ko] - H:\Zdjêcie0263.jpg
[23/10/2010 - 20:01:14 | A | 928 Ko] - H:\Zdjêcie0264.jpg
[27/10/2010 - 13:38:38 | A | 345 Ko] - H:\Zdjêcie0266.jpg
[05/11/2010 - 13:16:08 | A | 69 Ko] - H:\Zdj__cie0092.jpg
[19/03/2011 - 21:25:24 | A | 29 Ko] - H:\Zdj_cie0020.jpg
[09/09/2011 - 11:20:04 | A | 21 Ko] - H:\2011-09-01_19.35.41.jpg
[04/10/2011 - 17:57:48 | A | 561 Ko] - H:\DSC00632.JPG
[02/01/2012 - 08:56:14 | A | 838 Ko] - H:\Zdjêcie0150.jpg
[29/12/2014 - 21:44:12 | A | 734 Ko] - H:\DSC00641.JPG
[30/11/2009 - 18:36:52 | A | 453 Ko] - H:\MeBoy.jar
[01/01/2009 - 12:00:00 | AS | 50828 Ko] - H:\PC-Suite.exe
[01/01/2009 - 12:00:00 | N | 156 Ko] - H:\Launcher.exe
[18/02/2012 - 18:08:08 | D] - H:\LOST.DIR
[18/02/2012 - 18:08:10 | D] - H:\.dataviz
[22/09/2011 - 19:34:52 | N | 132 Ko] - H:\358005037406805WMLicense.dat
[01/01/2009 - 12:00:00 | N | 5 Ko] - H:\rm443_conpack_conf.cnfp
[20/02/2012 - 17:37:00 | D] - H:\.bookmark_thumb1
[18/02/2012 - 18:08:08 | D] - H:\.android_secure
[21/11/2010 - 20:57:38 | A | 51 Ko] - H:\Nagranie000.amr
[02/07/2010 - 16:32:48 | A | 546 Ko] - H:\Wideo001.3gp
[01/01/2007 - 00:00:00 | D] - H:\nokia_unprocessed_images_
[01/01/2009 - 00:00:00 | D] - H:\Extra
[01/01/2009 - 12:00:00 | RAH | 0 Ko] - H:\SD Content Package sd_Central_Europe
[27/11/2009 - 18:31:02 | D] - H:\Zdjêcia
[13/12/2009 - 23:07:02 | D] - H:\Pliki wideo
[06/01/2010 - 22:32:26 | D] - H:\Playlists
[04/04/2011 - 11:09:00 | D] - H:\wadermani
[18/09/2011 - 06:33:52 | D] - H:\Nagrania
[22/09/2011 - 19:34:52 | D] - H:\Music
[18/02/2012 - 15:47:34 | HD] - H:\RECYCLER
[18/02/2012 - 18:08:10 | D] - H:\Android
[18/02/2012 - 18:08:34 | D] - H:\Video
[19/02/2012 - 00:57:38 | D] - H:\documents
[19/02/2012 - 13:52:34 | D] - H:\DCIM

[b]################## | Vaccin |[/b]

C:\Autorun.inf - & gt; Vaccine created by UsbFix (El Desaparecido)
D:\Autorun.inf - & gt; Vaccine created by UsbFix (El Desaparecido)
G:\Autorun.inf - & gt; Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf - & gt; Vaccine created by UsbFix (El Desaparecido)

[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url] |[/b]