Wondering if I have a virus? No start menu or desktop on startup
Solved/Closed
Hsbciber
Posts
4
Registration date
Thursday 27 November 2014
Status
Member
Last seen
28 November 2014
-
27 Nov 2014 à 19:46
Ambucias Posts 47311 Registration date Monday 1 February 2010 Status Moderator Last seen 15 February 2023 - 28 Nov 2014 à 17:02
Ambucias Posts 47311 Registration date Monday 1 February 2010 Status Moderator Last seen 15 February 2023 - 28 Nov 2014 à 17:02
Related:
- Cnslmain
- Desktop goose - Download - Other
- Startup sound changer - Download - Customization
- Can a jpg have a virus - Guide
- Ntuser.dat virus - Guide
- Desktop hut - Download - Customization
3 responses
Ambucias
Posts
47311
Registration date
Monday 1 February 2010
Status
Moderator
Last seen
15 February 2023
11,166
28 Nov 2014 à 06:48
28 Nov 2014 à 06:48
Hello,
# Download http://www.en.usbfix.net/download/usbfix/ on your computer, and launch it.
# It will start automatically, and a shortcut will be created on your desktop.
# Connect all your external data sources to your PC (Usb keys, external drives, etc...) Do not open them.
# Choose " Deletion " option.
#The computer will re-start, and it may be longer than usually.
# UsbFix will display a message at re-start.
# Click "OK" to start cleaning.
# Copy/paste the report here.
Tutorial : http://www.en.usbfix.net/2014/02/usbfix-tutorial-clean-option/
# Download http://www.en.usbfix.net/download/usbfix/ on your computer, and launch it.
# It will start automatically, and a shortcut will be created on your desktop.
# Connect all your external data sources to your PC (Usb keys, external drives, etc...) Do not open them.
# Choose " Deletion " option.
#The computer will re-start, and it may be longer than usually.
# UsbFix will display a message at re-start.
# Click "OK" to start cleaning.
# Copy/paste the report here.
Tutorial : http://www.en.usbfix.net/2014/02/usbfix-tutorial-clean-option/
Hsbciber
Posts
4
Registration date
Thursday 27 November 2014
Status
Member
Last seen
28 November 2014
28 Nov 2014 à 10:08
28 Nov 2014 à 10:08
I am confused because my computer didn't restart. the scan ended and here is the link to the report.
Report UsbFix 543c15ce775f74700e04e80d5bf683dd7c2a65a2.txt
Report UsbFix 543c15ce775f74700e04e80d5bf683dd7c2a65a2.txt
Ambucias
Posts
47311
Registration date
Monday 1 February 2010
Status
Moderator
Last seen
15 February 2023
11,166
28 Nov 2014 à 16:03
28 Nov 2014 à 16:03
You must copy the entire report and paste it here
Hsbciber
Posts
4
Registration date
Thursday 27 November 2014
Status
Member
Last seen
28 November 2014
>
Ambucias
Posts
47311
Registration date
Monday 1 February 2010
Status
Moderator
Last seen
15 February 2023
28 Nov 2014 à 16:14
28 Nov 2014 à 16:14
[b]############################## | UsbFix V 7.805 | [Clean][/b]
User: Helen (Administrator) # HELEN-PC
Updated 27/11/2014 by El Desaparecido - SosVirus
Started at 08:47:21 | 28/11/2014
Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Changelog : [url=http://www.en.usbfix.net/changelog/]http://www.en.usbfix.net/changelog/[/url]
Support : [url=http://www.sosvirus.net/]https://www.sosvirus.net/[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Live detection : [url=http://how-to-remove.us/]http://ww25.how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]
[b]################## | System information |[/b]
MB: Gigabyte Technology Co., Ltd. (EP45-UD3P)
CPU: Intel(R) Core(TM)2 Duo CPU E8500 @ 3.16GHz
RAM -> [Total : 8190 Mo | Free : 5733 Mo]
Bios: Award Software International, Inc.
Boot: Normal boot
OS: Microsoft? Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Internet Explorer : 9.00.8112.16421
WB: Google Chrome : 39.0.2171.71
[b]################## | Security Information |[/b]
AV: Avira Desktop [Enabled |Updated]
AS: Avira Desktop [Enabled |Updated]
AS: Windows Defender [[b](!) Disabled[/b] |Updated]
AS: Malwarebytes Anti-Malware : 2.0.3.1025
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Fixed disk # 931 Gb (595 Gb free - 64%) [] # NTFS
D:\ -> CD-ROM # 3 Gb (0 Mb free - 0%) [GRMCHPXFREO_EN_DVD] # UDF
H:\ -> Fixed disk # 288 Gb (13 Gb free - 5%) [New Volume] # NTFS
J:\ -> Fixed disk # 466 Gb (43 Gb free - 9%) [FreeAgent Drive] # NTFS
[b]################## | Generic Research |[/b]
(!) Temporary files deleted. (34.1844997406006 MB)
[b]################## | Registry |[/b]
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\System32\Userinit.exe,
04 - HKCU\..\Run : [CAHeadless] C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
04 - HKCU\..\Run : [DuckCapture] "C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe" /autorun
04 - HKCU\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKCU\..\Run : [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\..\Run : [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
04 - HKLM\..\Run : [Cobian Backup 11 interface] "C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe" -service
04 - HKLM\..\Run : [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking13\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking13\Ereg.ini"
04 - HKLM\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - [x64] HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - [x64] HKLM\..\Run : [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
04 - [x64] HKLM\..\Run : [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [CAHeadless] C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [DuckCapture] "C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe" /autorun
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04GS - NkbMonitor.exe.lnk : C:\Program Files (x86)\Nikon\PictureProject\NkbMonitor.exe
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://ww25.how-to-remove.us/[/url]
[b]################## | Hijack |[/b]
[b]################## | C:\ %SystemDrive% - Fixed drive (NTFS) |[/b]
[07/11/2007 - 07:00:40 | A | 10 Ko] - C:\eula.1033.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.2052.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.3082.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1036.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1040.txt
[07/11/2007 - 07:00:40 | A | 0 Ko] - C:\eula.1041.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1028.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1042.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1031.txt
[23/09/2010 - 16:47:14 | A | 152 Ko] - C:\history.txt
[23/09/2010 - 16:47:26 | A | 3 Ko] - C:\TReadme.txt
[23/09/2010 - 16:47:26 | A | 1 Ko] - C:\versions.txt
[23/09/2010 - 16:47:26 | A | 3 Ko] - C:\license.txt
[23/09/2010 - 16:47:26 | A | 6 Ko] - C:\readme.txt
[17/07/2012 - 12:51:05 | A | 125 Ko] - C:\TDSSKiller.2.7.46.0_17.07.2012_13.36.31_log.txt
[03/09/2013 - 15:39:19 | A | 138 Ko] - C:\TDSSKiller.2.9.2.0_03.09.2013_16.37.40_log.txt
[29/12/2013 - 12:40:36 | A | 193 Ko] - C:\TDSSKiller.3.0.0.19_29.12.2013_12.33.06_log.txt
[28/11/2014 - 03:25:34 | ASH | 6290152 Ko] - C:\hiberfil.sys
[28/11/2014 - 03:25:51 | ASH | 8386872 Ko] - C:\pagefile.sys
[07/11/2007 - 07:12:28 | A | 228 Ko] - C:\VC_RED.MSI
[28/11/2014 - 08:18:08 | D] - C:\Config.Msi
[26/07/2011 - 20:21:38 | RA | 8 Ko] - C:\CLDMA.LOG
[22/08/2011 - 11:29:11 | A | 0 Ko] - C:\InstallHelper.log
[17/05/2012 - 14:26:47 | A | 1 Ko] - C:\user.js
[07/11/2007 - 07:00:40 | A | 1 Ko] - [[url=https://www.virustotal.com/file/672621b056188f8d3fa5ab8cd3df4f95530c962af9bb11cf7c9bd1127b3c3605/analysis/1416286728/]VirusTotal[/url] - (0/55)] - C:\install.ini
[07/11/2007 - 07:00:40 | A | 1 Ko] - [[url=https://www.virustotal.com/file/7912e3fcf2698cf4f8625e563cd8215c6668739cae18bd6f27af2d25bec5c951/analysis/1416286725/]VirusTotal[/url] - (0/55)] - C:\globdata.ini
[10/10/2005 - 12:20:12 | A | 829 Ko] - C:\CVSLogger.exe
[07/11/2007 - 07:03:18 | A | 550 Ko] - [[url=https://www.virustotal.com/file/08966ce743aa1cbed0874933e104ef7b913188ecd8f0c679f7d8378516c51da2/analysis/1417156965/]VirusTotal[/url] - (0/55)] - C:\install.exe
[23/09/2010 - 09:49:08 | A | 66 Ko] - C:\cbVSCService.exe
[23/09/2010 - 16:46:14 | A | 1099 Ko] - C:\cbService.exe
[23/09/2010 - 16:46:14 | A | 412 Ko] - C:\Cobian.exe
[23/09/2010 - 16:46:16 | A | 3081 Ko] - C:\cbInterface.exe
[23/09/2010 - 16:46:18 | A | 1028 Ko] - C:\cbPChecker.exe
[23/09/2010 - 16:46:18 | A | 1349 Ko] - C:\cbTranslator.exe
[23/09/2010 - 16:46:18 | A | 1290 Ko] - C:\cbHelpreader.exe
[23/09/2010 - 16:46:18 | A | 1154 Ko] - C:\cbSrvControl.exe
[23/09/2010 - 16:46:20 | A | 1682 Ko] - C:\cbDecompressor.exe
[23/09/2010 - 16:46:20 | A | 1936 Ko] - C:\cbManager.exe
[23/09/2010 - 16:46:20 | A | 1426 Ko] - C:\cbDecrypter.exe
[23/09/2010 - 16:46:22 | A | 1254 Ko] - C:\cbUninstall.exe
[07/11/2007 - 07:03:18 | A | 74 Ko] - C:\install.res.2052.dll
[07/11/2007 - 07:03:18 | A | 95 Ko] - C:\install.res.1036.dll
[07/11/2007 - 07:03:18 | A | 94 Ko] - C:\install.res.3082.dll
[07/11/2007 - 07:03:18 | A | 89 Ko] - C:\install.res.1033.dll
[07/11/2007 - 07:03:18 | A | 78 Ko] - C:\install.res.1042.dll
[07/11/2007 - 07:03:18 | A | 94 Ko] - C:\install.res.1031.dll
[07/11/2007 - 07:03:18 | A | 75 Ko] - C:\install.res.1028.dll
[07/11/2007 - 07:03:18 | A | 93 Ko] - C:\install.res.1040.dll
[07/11/2007 - 07:03:18 | A | 80 Ko] - C:\install.res.1041.dll
[23/09/2010 - 09:49:06 | A | 150 Ko] - C:\AlphaVSS.WinXP.x64.dll
[23/09/2010 - 09:49:06 | A | 130 Ko] - C:\AlphaVSS.Win2003.x86.dll
[23/09/2010 - 09:49:06 | A | 10 Ko] - C:\CobStringList.dll
[23/09/2010 - 09:49:08 | A | 55 Ko] - C:\AlphaVSS.Common.dll
[23/09/2010 - 09:49:08 | A | 278 Ko] - C:\7za.dll
[23/09/2010 - 09:49:08 | A | 150 Ko] - C:\AlphaVSS.Win2003.x64.dll
[23/09/2010 - 09:49:08 | A | 142 Ko] - C:\AlphaVSS.Win2008.x86.dll
[23/09/2010 - 09:49:08 | A | 116 Ko] - C:\AlphaVSS.WinXP.x86.dll
[23/09/2010 - 09:49:08 | A | 163 Ko] - C:\AlphaVSS.Win2008.x64.dll
[23/09/2010 - 09:49:08 | A | 72 Ko] - C:\zlib1.dll
[23/09/2010 - 09:49:08 | A | 196 Ko] - C:\ssleay32.dll
[23/09/2010 - 09:49:08 | A | 1044 Ko] - C:\libeay32.dll
[23/09/2010 - 16:46:16 | A | 1006 Ko] - C:\cbLogon.dll
[23/09/2010 - 16:46:16 | A | 2611 Ko] - C:\cbEngine.dll
[23/09/2010 - 16:46:18 | A | 301 Ko] - C:\cbSrvControlLib.dll
[07/11/2007 - 07:09:22 | A | 1409 Ko] - C:\VC_RED.cab
[07/11/2007 - 07:00:40 | A | 6 Ko] - C:\vcredist.bmp
[20/11/2010 - 20:51:03 | SHD] - C:\$Recycle.Bin
[26/11/2014 - 15:37:26 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[26/11/2014 - 15:14:17 | D] - C:\$INPLACE.~TR
[26/11/2014 - 14:33:19 | D] - C:\$WINDOWS.~Q
[13/07/2009 - 21:20:08 | D] - C:\PerfLogs
[13/07/2009 - 23:08:56 | SHD] - C:\Documents and Settings
[20/11/2010 - 21:23:51 | RASH | 375 Ko] - C:\bootmgr
[28/07/2011 - 19:50:01 | D] - C:\psedbtool
[07/08/2011 - 12:01:00 | D] - C:\GreetingCardStudio
[13/07/2012 - 18:49:06 | D] - C:\pdf995
[10/10/2012 - 08:52:25 | D] - C:\Swsetup
[03/09/2013 - 15:39:17 | D] - C:\TDSSKiller_Quarantine
[19/09/2013 - 10:06:04 | D] - C:\190cbc25af900e9616c9
[19/09/2013 - 10:23:15 | D] - C:\14ddbf22daa739ddcb7dbf5e98
[27/12/2013 - 15:18:21 | D] - C:\Help
[27/12/2013 - 15:40:00 | D] - C:\Settings
[29/12/2013 - 12:31:36 | D] - C:\FRST
[29/12/2013 - 15:59:34 | D] - C:\AdwCleaner
[31/12/2013 - 17:51:05 | D] - C:\DB
[05/01/2014 - 10:38:05 | D] - C:\Languages
[14/01/2014 - 08:47:58 | D] - C:\Legacy
[25/02/2014 - 19:48:04 | D] - C:\LG
[03/10/2014 - 10:47:57 | D] - C:\VueScan
[26/11/2014 - 13:48:39 | RD] - C:\Program Files
[26/11/2014 - 14:22:49 | RD] - C:\Users
[26/11/2014 - 14:29:04 | HD] - C:\ProgramData
[26/11/2014 - 15:28:38 | SHD] - C:\Recovery
[26/11/2014 - 15:37:23 | SHD] - C:\Boot
[26/11/2014 - 16:52:36 | RD] - C:\Program Files (x86)
[28/11/2014 - 03:24:19 | D] - C:\Windows
[28/11/2014 - 08:46:17 | D] - C:\UsbFix
[b]################## | H:\ - Fixed drive (NTFS) |[/b]
[11/11/2009 - 18:41:46 | A | 11323 Ko] - H:\dolls i bought.wps
[18/12/2012 - 15:20:50 | A | 671 Ko] - H:\ty-tad-black4.jpg
[26/07/2011 - 15:04:00 | SHD] - H:\$RECYCLE.BIN
[19/05/2011 - 09:55:21 | D] - H:\AppData
[06/06/2011 - 13:37:58 | D] - H:\vuescan help
[18/07/2011 - 11:44:10 | D] - H:\VHS to DVD
[18/07/2011 - 14:02:29 | D] - H:\Windows Mail
[20/07/2011 - 22:44:05 | D] - H:\FBackup
[23/07/2011 - 16:08:54 | D] - H:\recovered mail
[01/05/2013 - 09:08:56 | D] - H:\MailStoreBackup
[26/11/2014 - 19:09:27 | RD] - H:\Pictures
[26/11/2014 - 19:44:53 | RD] - H:\Documents
[b]################## | J:\ - Fixed drive (NTFS) |[/b]
[26/07/2011 - 15:04:01 | SHD] - J:\$RECYCLE.BIN
[03/03/2013 - 19:06:13 | RA | 1 Ko] - J:\MediaID.bin
[24/07/2011 - 16:58:42 | D] - J:\AppData
[04/02/2013 - 16:41:36 | D] - J:\New 1 T hard drive
[30/12/2013 - 00:07:28 | RD] - J:\HELEN-PC
[26/11/2014 - 19:09:27 | RD] - J:\Pictures
[26/11/2014 - 19:25:27 | RD] - J:\Documents
[b]################## | Vaccin |[/b]
C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
J:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
User: Helen (Administrator) # HELEN-PC
Updated 27/11/2014 by El Desaparecido - SosVirus
Started at 08:47:21 | 28/11/2014
Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Changelog : [url=http://www.en.usbfix.net/changelog/]http://www.en.usbfix.net/changelog/[/url]
Support : [url=http://www.sosvirus.net/]https://www.sosvirus.net/[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Live detection : [url=http://how-to-remove.us/]http://ww25.how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]
[b]################## | System information |[/b]
MB: Gigabyte Technology Co., Ltd. (EP45-UD3P)
CPU: Intel(R) Core(TM)2 Duo CPU E8500 @ 3.16GHz
RAM -> [Total : 8190 Mo | Free : 5733 Mo]
Bios: Award Software International, Inc.
Boot: Normal boot
OS: Microsoft? Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Internet Explorer : 9.00.8112.16421
WB: Google Chrome : 39.0.2171.71
[b]################## | Security Information |[/b]
AV: Avira Desktop [Enabled |Updated]
AS: Avira Desktop [Enabled |Updated]
AS: Windows Defender [[b](!) Disabled[/b] |Updated]
AS: Malwarebytes Anti-Malware : 2.0.3.1025
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Fixed disk # 931 Gb (595 Gb free - 64%) [] # NTFS
D:\ -> CD-ROM # 3 Gb (0 Mb free - 0%) [GRMCHPXFREO_EN_DVD] # UDF
H:\ -> Fixed disk # 288 Gb (13 Gb free - 5%) [New Volume] # NTFS
J:\ -> Fixed disk # 466 Gb (43 Gb free - 9%) [FreeAgent Drive] # NTFS
[b]################## | Generic Research |[/b]
(!) Temporary files deleted. (34.1844997406006 MB)
[b]################## | Registry |[/b]
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\System32\Userinit.exe,
04 - HKCU\..\Run : [CAHeadless] C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
04 - HKCU\..\Run : [DuckCapture] "C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe" /autorun
04 - HKCU\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKCU\..\Run : [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\..\Run : [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
04 - HKLM\..\Run : [Cobian Backup 11 interface] "C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe" -service
04 - HKLM\..\Run : [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking13\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking13\Ereg.ini"
04 - HKLM\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - [x64] HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - [x64] HKLM\..\Run : [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
04 - [x64] HKLM\..\Run : [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [CAHeadless] C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [DuckCapture] "C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe" /autorun
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04GS - NkbMonitor.exe.lnk : C:\Program Files (x86)\Nikon\PictureProject\NkbMonitor.exe
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://ww25.how-to-remove.us/[/url]
[b]################## | Hijack |[/b]
[b]################## | C:\ %SystemDrive% - Fixed drive (NTFS) |[/b]
[07/11/2007 - 07:00:40 | A | 10 Ko] - C:\eula.1033.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.2052.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.3082.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1036.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1040.txt
[07/11/2007 - 07:00:40 | A | 0 Ko] - C:\eula.1041.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1028.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1042.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1031.txt
[23/09/2010 - 16:47:14 | A | 152 Ko] - C:\history.txt
[23/09/2010 - 16:47:26 | A | 3 Ko] - C:\TReadme.txt
[23/09/2010 - 16:47:26 | A | 1 Ko] - C:\versions.txt
[23/09/2010 - 16:47:26 | A | 3 Ko] - C:\license.txt
[23/09/2010 - 16:47:26 | A | 6 Ko] - C:\readme.txt
[17/07/2012 - 12:51:05 | A | 125 Ko] - C:\TDSSKiller.2.7.46.0_17.07.2012_13.36.31_log.txt
[03/09/2013 - 15:39:19 | A | 138 Ko] - C:\TDSSKiller.2.9.2.0_03.09.2013_16.37.40_log.txt
[29/12/2013 - 12:40:36 | A | 193 Ko] - C:\TDSSKiller.3.0.0.19_29.12.2013_12.33.06_log.txt
[28/11/2014 - 03:25:34 | ASH | 6290152 Ko] - C:\hiberfil.sys
[28/11/2014 - 03:25:51 | ASH | 8386872 Ko] - C:\pagefile.sys
[07/11/2007 - 07:12:28 | A | 228 Ko] - C:\VC_RED.MSI
[28/11/2014 - 08:18:08 | D] - C:\Config.Msi
[26/07/2011 - 20:21:38 | RA | 8 Ko] - C:\CLDMA.LOG
[22/08/2011 - 11:29:11 | A | 0 Ko] - C:\InstallHelper.log
[17/05/2012 - 14:26:47 | A | 1 Ko] - C:\user.js
[07/11/2007 - 07:00:40 | A | 1 Ko] - [[url=https://www.virustotal.com/file/672621b056188f8d3fa5ab8cd3df4f95530c962af9bb11cf7c9bd1127b3c3605/analysis/1416286728/]VirusTotal[/url] - (0/55)] - C:\install.ini
[07/11/2007 - 07:00:40 | A | 1 Ko] - [[url=https://www.virustotal.com/file/7912e3fcf2698cf4f8625e563cd8215c6668739cae18bd6f27af2d25bec5c951/analysis/1416286725/]VirusTotal[/url] - (0/55)] - C:\globdata.ini
[10/10/2005 - 12:20:12 | A | 829 Ko] - C:\CVSLogger.exe
[07/11/2007 - 07:03:18 | A | 550 Ko] - [[url=https://www.virustotal.com/file/08966ce743aa1cbed0874933e104ef7b913188ecd8f0c679f7d8378516c51da2/analysis/1417156965/]VirusTotal[/url] - (0/55)] - C:\install.exe
[23/09/2010 - 09:49:08 | A | 66 Ko] - C:\cbVSCService.exe
[23/09/2010 - 16:46:14 | A | 1099 Ko] - C:\cbService.exe
[23/09/2010 - 16:46:14 | A | 412 Ko] - C:\Cobian.exe
[23/09/2010 - 16:46:16 | A | 3081 Ko] - C:\cbInterface.exe
[23/09/2010 - 16:46:18 | A | 1028 Ko] - C:\cbPChecker.exe
[23/09/2010 - 16:46:18 | A | 1349 Ko] - C:\cbTranslator.exe
[23/09/2010 - 16:46:18 | A | 1290 Ko] - C:\cbHelpreader.exe
[23/09/2010 - 16:46:18 | A | 1154 Ko] - C:\cbSrvControl.exe
[23/09/2010 - 16:46:20 | A | 1682 Ko] - C:\cbDecompressor.exe
[23/09/2010 - 16:46:20 | A | 1936 Ko] - C:\cbManager.exe
[23/09/2010 - 16:46:20 | A | 1426 Ko] - C:\cbDecrypter.exe
[23/09/2010 - 16:46:22 | A | 1254 Ko] - C:\cbUninstall.exe
[07/11/2007 - 07:03:18 | A | 74 Ko] - C:\install.res.2052.dll
[07/11/2007 - 07:03:18 | A | 95 Ko] - C:\install.res.1036.dll
[07/11/2007 - 07:03:18 | A | 94 Ko] - C:\install.res.3082.dll
[07/11/2007 - 07:03:18 | A | 89 Ko] - C:\install.res.1033.dll
[07/11/2007 - 07:03:18 | A | 78 Ko] - C:\install.res.1042.dll
[07/11/2007 - 07:03:18 | A | 94 Ko] - C:\install.res.1031.dll
[07/11/2007 - 07:03:18 | A | 75 Ko] - C:\install.res.1028.dll
[07/11/2007 - 07:03:18 | A | 93 Ko] - C:\install.res.1040.dll
[07/11/2007 - 07:03:18 | A | 80 Ko] - C:\install.res.1041.dll
[23/09/2010 - 09:49:06 | A | 150 Ko] - C:\AlphaVSS.WinXP.x64.dll
[23/09/2010 - 09:49:06 | A | 130 Ko] - C:\AlphaVSS.Win2003.x86.dll
[23/09/2010 - 09:49:06 | A | 10 Ko] - C:\CobStringList.dll
[23/09/2010 - 09:49:08 | A | 55 Ko] - C:\AlphaVSS.Common.dll
[23/09/2010 - 09:49:08 | A | 278 Ko] - C:\7za.dll
[23/09/2010 - 09:49:08 | A | 150 Ko] - C:\AlphaVSS.Win2003.x64.dll
[23/09/2010 - 09:49:08 | A | 142 Ko] - C:\AlphaVSS.Win2008.x86.dll
[23/09/2010 - 09:49:08 | A | 116 Ko] - C:\AlphaVSS.WinXP.x86.dll
[23/09/2010 - 09:49:08 | A | 163 Ko] - C:\AlphaVSS.Win2008.x64.dll
[23/09/2010 - 09:49:08 | A | 72 Ko] - C:\zlib1.dll
[23/09/2010 - 09:49:08 | A | 196 Ko] - C:\ssleay32.dll
[23/09/2010 - 09:49:08 | A | 1044 Ko] - C:\libeay32.dll
[23/09/2010 - 16:46:16 | A | 1006 Ko] - C:\cbLogon.dll
[23/09/2010 - 16:46:16 | A | 2611 Ko] - C:\cbEngine.dll
[23/09/2010 - 16:46:18 | A | 301 Ko] - C:\cbSrvControlLib.dll
[07/11/2007 - 07:09:22 | A | 1409 Ko] - C:\VC_RED.cab
[07/11/2007 - 07:00:40 | A | 6 Ko] - C:\vcredist.bmp
[20/11/2010 - 20:51:03 | SHD] - C:\$Recycle.Bin
[26/11/2014 - 15:37:26 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[26/11/2014 - 15:14:17 | D] - C:\$INPLACE.~TR
[26/11/2014 - 14:33:19 | D] - C:\$WINDOWS.~Q
[13/07/2009 - 21:20:08 | D] - C:\PerfLogs
[13/07/2009 - 23:08:56 | SHD] - C:\Documents and Settings
[20/11/2010 - 21:23:51 | RASH | 375 Ko] - C:\bootmgr
[28/07/2011 - 19:50:01 | D] - C:\psedbtool
[07/08/2011 - 12:01:00 | D] - C:\GreetingCardStudio
[13/07/2012 - 18:49:06 | D] - C:\pdf995
[10/10/2012 - 08:52:25 | D] - C:\Swsetup
[03/09/2013 - 15:39:17 | D] - C:\TDSSKiller_Quarantine
[19/09/2013 - 10:06:04 | D] - C:\190cbc25af900e9616c9
[19/09/2013 - 10:23:15 | D] - C:\14ddbf22daa739ddcb7dbf5e98
[27/12/2013 - 15:18:21 | D] - C:\Help
[27/12/2013 - 15:40:00 | D] - C:\Settings
[29/12/2013 - 12:31:36 | D] - C:\FRST
[29/12/2013 - 15:59:34 | D] - C:\AdwCleaner
[31/12/2013 - 17:51:05 | D] - C:\DB
[05/01/2014 - 10:38:05 | D] - C:\Languages
[14/01/2014 - 08:47:58 | D] - C:\Legacy
[25/02/2014 - 19:48:04 | D] - C:\LG
[03/10/2014 - 10:47:57 | D] - C:\VueScan
[26/11/2014 - 13:48:39 | RD] - C:\Program Files
[26/11/2014 - 14:22:49 | RD] - C:\Users
[26/11/2014 - 14:29:04 | HD] - C:\ProgramData
[26/11/2014 - 15:28:38 | SHD] - C:\Recovery
[26/11/2014 - 15:37:23 | SHD] - C:\Boot
[26/11/2014 - 16:52:36 | RD] - C:\Program Files (x86)
[28/11/2014 - 03:24:19 | D] - C:\Windows
[28/11/2014 - 08:46:17 | D] - C:\UsbFix
[b]################## | H:\ - Fixed drive (NTFS) |[/b]
[11/11/2009 - 18:41:46 | A | 11323 Ko] - H:\dolls i bought.wps
[18/12/2012 - 15:20:50 | A | 671 Ko] - H:\ty-tad-black4.jpg
[26/07/2011 - 15:04:00 | SHD] - H:\$RECYCLE.BIN
[19/05/2011 - 09:55:21 | D] - H:\AppData
[06/06/2011 - 13:37:58 | D] - H:\vuescan help
[18/07/2011 - 11:44:10 | D] - H:\VHS to DVD
[18/07/2011 - 14:02:29 | D] - H:\Windows Mail
[20/07/2011 - 22:44:05 | D] - H:\FBackup
[23/07/2011 - 16:08:54 | D] - H:\recovered mail
[01/05/2013 - 09:08:56 | D] - H:\MailStoreBackup
[26/11/2014 - 19:09:27 | RD] - H:\Pictures
[26/11/2014 - 19:44:53 | RD] - H:\Documents
[b]################## | J:\ - Fixed drive (NTFS) |[/b]
[26/07/2011 - 15:04:01 | SHD] - J:\$RECYCLE.BIN
[03/03/2013 - 19:06:13 | RA | 1 Ko] - J:\MediaID.bin
[24/07/2011 - 16:58:42 | D] - J:\AppData
[04/02/2013 - 16:41:36 | D] - J:\New 1 T hard drive
[30/12/2013 - 00:07:28 | RD] - J:\HELEN-PC
[26/11/2014 - 19:09:27 | RD] - J:\Pictures
[26/11/2014 - 19:25:27 | RD] - J:\Documents
[b]################## | Vaccin |[/b]
C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
J:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
Ambucias
Posts
47311
Registration date
Monday 1 February 2010
Status
Moderator
Last seen
15 February 2023
11,166
28 Nov 2014 à 16:28
28 Nov 2014 à 16:28
Hi
Thanks for the report.
Your computer will restart only if necessary.
The main question is: do you believe that your machine is working properly without any issue?
Thanks for the report.
Your computer will restart only if necessary.
The main question is: do you believe that your machine is working properly without any issue?
Hsbciber
Posts
4
Registration date
Thursday 27 November 2014
Status
Member
Last seen
28 November 2014
28 Nov 2014 à 16:43
28 Nov 2014 à 16:43
yes it is now, thank you so much
Ambucias
Posts
47311
Registration date
Monday 1 February 2010
Status
Moderator
Last seen
15 February 2023
11,166
>
Hsbciber
Posts
4
Registration date
Thursday 27 November 2014
Status
Member
Last seen
28 November 2014
28 Nov 2014 à 17:02
28 Nov 2014 à 17:02
Great and thank you for your patience and feedback.
Should you have any other concerns, come back.
It was a pleasure helping you.
Have a most splendid Thanksgiving.
Should you have any other concerns, come back.
It was a pleasure helping you.
Have a most splendid Thanksgiving.
