Wondering if I have a virus? No start menu or desktop on startup
Solved/Closed
Hsbciber
Posts
4
Registration date
Thursday November 27, 2014
Status
Member
Last seen
November 28, 2014
-
Nov 27, 2014 at 07:46 PM
Ambucias Posts 47310 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Nov 28, 2014 at 05:02 PM
Ambucias Posts 47310 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Nov 28, 2014 at 05:02 PM
Related:
- Isuspm startup
- Startup sound changer download - Download - Customization
- Pc beeping on startup - Guide
- How to remove f1 at startup in windows 10 - Guide
- Lg tv home screen on startup - Guide
- How to factory reset hp laptop from startup - Guide
3 responses
Ambucias
Posts
47310
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,162
Nov 28, 2014 at 06:48 AM
Nov 28, 2014 at 06:48 AM
Hello,
# Download http://www.en.usbfix.net/download/usbfix/ on your computer, and launch it.
# It will start automatically, and a shortcut will be created on your desktop.
# Connect all your external data sources to your PC (Usb keys, external drives, etc...) Do not open them.
# Choose " Deletion " option.
#The computer will re-start, and it may be longer than usually.
# UsbFix will display a message at re-start.
# Click "OK" to start cleaning.
# Copy/paste the report here.
Tutorial : http://www.en.usbfix.net/2014/02/usbfix-tutorial-clean-option/
# Download http://www.en.usbfix.net/download/usbfix/ on your computer, and launch it.
# It will start automatically, and a shortcut will be created on your desktop.
# Connect all your external data sources to your PC (Usb keys, external drives, etc...) Do not open them.
# Choose " Deletion " option.
#The computer will re-start, and it may be longer than usually.
# UsbFix will display a message at re-start.
# Click "OK" to start cleaning.
# Copy/paste the report here.
Tutorial : http://www.en.usbfix.net/2014/02/usbfix-tutorial-clean-option/
Hsbciber
Posts
4
Registration date
Thursday November 27, 2014
Status
Member
Last seen
November 28, 2014
Nov 28, 2014 at 10:08 AM
Nov 28, 2014 at 10:08 AM
I am confused because my computer didn't restart. the scan ended and here is the link to the report.
Report UsbFix 543c15ce775f74700e04e80d5bf683dd7c2a65a2.txt
Report UsbFix 543c15ce775f74700e04e80d5bf683dd7c2a65a2.txt
Ambucias
Posts
47310
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,162
Nov 28, 2014 at 04:03 PM
Nov 28, 2014 at 04:03 PM
You must copy the entire report and paste it here
Hsbciber
Posts
4
Registration date
Thursday November 27, 2014
Status
Member
Last seen
November 28, 2014
>
Ambucias
Posts
47310
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
Nov 28, 2014 at 04:14 PM
Nov 28, 2014 at 04:14 PM
[b]############################## | UsbFix V 7.805 | [Clean][/b]
User: Helen (Administrator) # HELEN-PC
Updated 27/11/2014 by El Desaparecido - SosVirus
Started at 08:47:21 | 28/11/2014
Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Changelog : [url=http://www.en.usbfix.net/changelog/]http://www.en.usbfix.net/changelog/[/url]
Support : [url=http://www.sosvirus.net/]https://www.sosvirus.net/[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Live detection : [url=http://how-to-remove.us/]http://ww25.how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]
[b]################## | System information |[/b]
MB: Gigabyte Technology Co., Ltd. (EP45-UD3P)
CPU: Intel(R) Core(TM)2 Duo CPU E8500 @ 3.16GHz
RAM -> [Total : 8190 Mo | Free : 5733 Mo]
Bios: Award Software International, Inc.
Boot: Normal boot
OS: Microsoft? Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Internet Explorer : 9.00.8112.16421
WB: Google Chrome : 39.0.2171.71
[b]################## | Security Information |[/b]
AV: Avira Desktop [Enabled |Updated]
AS: Avira Desktop [Enabled |Updated]
AS: Windows Defender [[b](!) Disabled[/b] |Updated]
AS: Malwarebytes Anti-Malware : 2.0.3.1025
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Fixed disk # 931 Gb (595 Gb free - 64%) [] # NTFS
D:\ -> CD-ROM # 3 Gb (0 Mb free - 0%) [GRMCHPXFREO_EN_DVD] # UDF
H:\ -> Fixed disk # 288 Gb (13 Gb free - 5%) [New Volume] # NTFS
J:\ -> Fixed disk # 466 Gb (43 Gb free - 9%) [FreeAgent Drive] # NTFS
[b]################## | Generic Research |[/b]
(!) Temporary files deleted. (34.1844997406006 MB)
[b]################## | Registry |[/b]
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\System32\Userinit.exe,
04 - HKCU\..\Run : [CAHeadless] C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
04 - HKCU\..\Run : [DuckCapture] "C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe" /autorun
04 - HKCU\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKCU\..\Run : [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\..\Run : [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
04 - HKLM\..\Run : [Cobian Backup 11 interface] "C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe" -service
04 - HKLM\..\Run : [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking13\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking13\Ereg.ini"
04 - HKLM\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - [x64] HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - [x64] HKLM\..\Run : [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
04 - [x64] HKLM\..\Run : [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [CAHeadless] C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [DuckCapture] "C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe" /autorun
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04GS - NkbMonitor.exe.lnk : C:\Program Files (x86)\Nikon\PictureProject\NkbMonitor.exe
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://ww25.how-to-remove.us/[/url]
[b]################## | Hijack |[/b]
[b]################## | C:\ %SystemDrive% - Fixed drive (NTFS) |[/b]
[07/11/2007 - 07:00:40 | A | 10 Ko] - C:\eula.1033.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.2052.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.3082.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1036.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1040.txt
[07/11/2007 - 07:00:40 | A | 0 Ko] - C:\eula.1041.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1028.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1042.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1031.txt
[23/09/2010 - 16:47:14 | A | 152 Ko] - C:\history.txt
[23/09/2010 - 16:47:26 | A | 3 Ko] - C:\TReadme.txt
[23/09/2010 - 16:47:26 | A | 1 Ko] - C:\versions.txt
[23/09/2010 - 16:47:26 | A | 3 Ko] - C:\license.txt
[23/09/2010 - 16:47:26 | A | 6 Ko] - C:\readme.txt
[17/07/2012 - 12:51:05 | A | 125 Ko] - C:\TDSSKiller.2.7.46.0_17.07.2012_13.36.31_log.txt
[03/09/2013 - 15:39:19 | A | 138 Ko] - C:\TDSSKiller.2.9.2.0_03.09.2013_16.37.40_log.txt
[29/12/2013 - 12:40:36 | A | 193 Ko] - C:\TDSSKiller.3.0.0.19_29.12.2013_12.33.06_log.txt
[28/11/2014 - 03:25:34 | ASH | 6290152 Ko] - C:\hiberfil.sys
[28/11/2014 - 03:25:51 | ASH | 8386872 Ko] - C:\pagefile.sys
[07/11/2007 - 07:12:28 | A | 228 Ko] - C:\VC_RED.MSI
[28/11/2014 - 08:18:08 | D] - C:\Config.Msi
[26/07/2011 - 20:21:38 | RA | 8 Ko] - C:\CLDMA.LOG
[22/08/2011 - 11:29:11 | A | 0 Ko] - C:\InstallHelper.log
[17/05/2012 - 14:26:47 | A | 1 Ko] - C:\user.js
[07/11/2007 - 07:00:40 | A | 1 Ko] - [[url=https://www.virustotal.com/file/672621b056188f8d3fa5ab8cd3df4f95530c962af9bb11cf7c9bd1127b3c3605/analysis/1416286728/]VirusTotal[/url] - (0/55)] - C:\install.ini
[07/11/2007 - 07:00:40 | A | 1 Ko] - [[url=https://www.virustotal.com/file/7912e3fcf2698cf4f8625e563cd8215c6668739cae18bd6f27af2d25bec5c951/analysis/1416286725/]VirusTotal[/url] - (0/55)] - C:\globdata.ini
[10/10/2005 - 12:20:12 | A | 829 Ko] - C:\CVSLogger.exe
[07/11/2007 - 07:03:18 | A | 550 Ko] - [[url=https://www.virustotal.com/file/08966ce743aa1cbed0874933e104ef7b913188ecd8f0c679f7d8378516c51da2/analysis/1417156965/]VirusTotal[/url] - (0/55)] - C:\install.exe
[23/09/2010 - 09:49:08 | A | 66 Ko] - C:\cbVSCService.exe
[23/09/2010 - 16:46:14 | A | 1099 Ko] - C:\cbService.exe
[23/09/2010 - 16:46:14 | A | 412 Ko] - C:\Cobian.exe
[23/09/2010 - 16:46:16 | A | 3081 Ko] - C:\cbInterface.exe
[23/09/2010 - 16:46:18 | A | 1028 Ko] - C:\cbPChecker.exe
[23/09/2010 - 16:46:18 | A | 1349 Ko] - C:\cbTranslator.exe
[23/09/2010 - 16:46:18 | A | 1290 Ko] - C:\cbHelpreader.exe
[23/09/2010 - 16:46:18 | A | 1154 Ko] - C:\cbSrvControl.exe
[23/09/2010 - 16:46:20 | A | 1682 Ko] - C:\cbDecompressor.exe
[23/09/2010 - 16:46:20 | A | 1936 Ko] - C:\cbManager.exe
[23/09/2010 - 16:46:20 | A | 1426 Ko] - C:\cbDecrypter.exe
[23/09/2010 - 16:46:22 | A | 1254 Ko] - C:\cbUninstall.exe
[07/11/2007 - 07:03:18 | A | 74 Ko] - C:\install.res.2052.dll
[07/11/2007 - 07:03:18 | A | 95 Ko] - C:\install.res.1036.dll
[07/11/2007 - 07:03:18 | A | 94 Ko] - C:\install.res.3082.dll
[07/11/2007 - 07:03:18 | A | 89 Ko] - C:\install.res.1033.dll
[07/11/2007 - 07:03:18 | A | 78 Ko] - C:\install.res.1042.dll
[07/11/2007 - 07:03:18 | A | 94 Ko] - C:\install.res.1031.dll
[07/11/2007 - 07:03:18 | A | 75 Ko] - C:\install.res.1028.dll
[07/11/2007 - 07:03:18 | A | 93 Ko] - C:\install.res.1040.dll
[07/11/2007 - 07:03:18 | A | 80 Ko] - C:\install.res.1041.dll
[23/09/2010 - 09:49:06 | A | 150 Ko] - C:\AlphaVSS.WinXP.x64.dll
[23/09/2010 - 09:49:06 | A | 130 Ko] - C:\AlphaVSS.Win2003.x86.dll
[23/09/2010 - 09:49:06 | A | 10 Ko] - C:\CobStringList.dll
[23/09/2010 - 09:49:08 | A | 55 Ko] - C:\AlphaVSS.Common.dll
[23/09/2010 - 09:49:08 | A | 278 Ko] - C:\7za.dll
[23/09/2010 - 09:49:08 | A | 150 Ko] - C:\AlphaVSS.Win2003.x64.dll
[23/09/2010 - 09:49:08 | A | 142 Ko] - C:\AlphaVSS.Win2008.x86.dll
[23/09/2010 - 09:49:08 | A | 116 Ko] - C:\AlphaVSS.WinXP.x86.dll
[23/09/2010 - 09:49:08 | A | 163 Ko] - C:\AlphaVSS.Win2008.x64.dll
[23/09/2010 - 09:49:08 | A | 72 Ko] - C:\zlib1.dll
[23/09/2010 - 09:49:08 | A | 196 Ko] - C:\ssleay32.dll
[23/09/2010 - 09:49:08 | A | 1044 Ko] - C:\libeay32.dll
[23/09/2010 - 16:46:16 | A | 1006 Ko] - C:\cbLogon.dll
[23/09/2010 - 16:46:16 | A | 2611 Ko] - C:\cbEngine.dll
[23/09/2010 - 16:46:18 | A | 301 Ko] - C:\cbSrvControlLib.dll
[07/11/2007 - 07:09:22 | A | 1409 Ko] - C:\VC_RED.cab
[07/11/2007 - 07:00:40 | A | 6 Ko] - C:\vcredist.bmp
[20/11/2010 - 20:51:03 | SHD] - C:\$Recycle.Bin
[26/11/2014 - 15:37:26 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[26/11/2014 - 15:14:17 | D] - C:\$INPLACE.~TR
[26/11/2014 - 14:33:19 | D] - C:\$WINDOWS.~Q
[13/07/2009 - 21:20:08 | D] - C:\PerfLogs
[13/07/2009 - 23:08:56 | SHD] - C:\Documents and Settings
[20/11/2010 - 21:23:51 | RASH | 375 Ko] - C:\bootmgr
[28/07/2011 - 19:50:01 | D] - C:\psedbtool
[07/08/2011 - 12:01:00 | D] - C:\GreetingCardStudio
[13/07/2012 - 18:49:06 | D] - C:\pdf995
[10/10/2012 - 08:52:25 | D] - C:\Swsetup
[03/09/2013 - 15:39:17 | D] - C:\TDSSKiller_Quarantine
[19/09/2013 - 10:06:04 | D] - C:\190cbc25af900e9616c9
[19/09/2013 - 10:23:15 | D] - C:\14ddbf22daa739ddcb7dbf5e98
[27/12/2013 - 15:18:21 | D] - C:\Help
[27/12/2013 - 15:40:00 | D] - C:\Settings
[29/12/2013 - 12:31:36 | D] - C:\FRST
[29/12/2013 - 15:59:34 | D] - C:\AdwCleaner
[31/12/2013 - 17:51:05 | D] - C:\DB
[05/01/2014 - 10:38:05 | D] - C:\Languages
[14/01/2014 - 08:47:58 | D] - C:\Legacy
[25/02/2014 - 19:48:04 | D] - C:\LG
[03/10/2014 - 10:47:57 | D] - C:\VueScan
[26/11/2014 - 13:48:39 | RD] - C:\Program Files
[26/11/2014 - 14:22:49 | RD] - C:\Users
[26/11/2014 - 14:29:04 | HD] - C:\ProgramData
[26/11/2014 - 15:28:38 | SHD] - C:\Recovery
[26/11/2014 - 15:37:23 | SHD] - C:\Boot
[26/11/2014 - 16:52:36 | RD] - C:\Program Files (x86)
[28/11/2014 - 03:24:19 | D] - C:\Windows
[28/11/2014 - 08:46:17 | D] - C:\UsbFix
[b]################## | H:\ - Fixed drive (NTFS) |[/b]
[11/11/2009 - 18:41:46 | A | 11323 Ko] - H:\dolls i bought.wps
[18/12/2012 - 15:20:50 | A | 671 Ko] - H:\ty-tad-black4.jpg
[26/07/2011 - 15:04:00 | SHD] - H:\$RECYCLE.BIN
[19/05/2011 - 09:55:21 | D] - H:\AppData
[06/06/2011 - 13:37:58 | D] - H:\vuescan help
[18/07/2011 - 11:44:10 | D] - H:\VHS to DVD
[18/07/2011 - 14:02:29 | D] - H:\Windows Mail
[20/07/2011 - 22:44:05 | D] - H:\FBackup
[23/07/2011 - 16:08:54 | D] - H:\recovered mail
[01/05/2013 - 09:08:56 | D] - H:\MailStoreBackup
[26/11/2014 - 19:09:27 | RD] - H:\Pictures
[26/11/2014 - 19:44:53 | RD] - H:\Documents
[b]################## | J:\ - Fixed drive (NTFS) |[/b]
[26/07/2011 - 15:04:01 | SHD] - J:\$RECYCLE.BIN
[03/03/2013 - 19:06:13 | RA | 1 Ko] - J:\MediaID.bin
[24/07/2011 - 16:58:42 | D] - J:\AppData
[04/02/2013 - 16:41:36 | D] - J:\New 1 T hard drive
[30/12/2013 - 00:07:28 | RD] - J:\HELEN-PC
[26/11/2014 - 19:09:27 | RD] - J:\Pictures
[26/11/2014 - 19:25:27 | RD] - J:\Documents
[b]################## | Vaccin |[/b]
C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
J:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
User: Helen (Administrator) # HELEN-PC
Updated 27/11/2014 by El Desaparecido - SosVirus
Started at 08:47:21 | 28/11/2014
Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Changelog : [url=http://www.en.usbfix.net/changelog/]http://www.en.usbfix.net/changelog/[/url]
Support : [url=http://www.sosvirus.net/]https://www.sosvirus.net/[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Live detection : [url=http://how-to-remove.us/]http://ww25.how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]
[b]################## | System information |[/b]
MB: Gigabyte Technology Co., Ltd. (EP45-UD3P)
CPU: Intel(R) Core(TM)2 Duo CPU E8500 @ 3.16GHz
RAM -> [Total : 8190 Mo | Free : 5733 Mo]
Bios: Award Software International, Inc.
Boot: Normal boot
OS: Microsoft? Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Internet Explorer : 9.00.8112.16421
WB: Google Chrome : 39.0.2171.71
[b]################## | Security Information |[/b]
AV: Avira Desktop [Enabled |Updated]
AS: Avira Desktop [Enabled |Updated]
AS: Windows Defender [[b](!) Disabled[/b] |Updated]
AS: Malwarebytes Anti-Malware : 2.0.3.1025
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Fixed disk # 931 Gb (595 Gb free - 64%) [] # NTFS
D:\ -> CD-ROM # 3 Gb (0 Mb free - 0%) [GRMCHPXFREO_EN_DVD] # UDF
H:\ -> Fixed disk # 288 Gb (13 Gb free - 5%) [New Volume] # NTFS
J:\ -> Fixed disk # 466 Gb (43 Gb free - 9%) [FreeAgent Drive] # NTFS
[b]################## | Generic Research |[/b]
(!) Temporary files deleted. (34.1844997406006 MB)
[b]################## | Registry |[/b]
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\System32\Userinit.exe,
04 - HKCU\..\Run : [CAHeadless] C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
04 - HKCU\..\Run : [DuckCapture] "C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe" /autorun
04 - HKCU\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKCU\..\Run : [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\..\Run : [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
04 - HKLM\..\Run : [Cobian Backup 11 interface] "C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe" -service
04 - HKLM\..\Run : [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking13\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking13\Ereg.ini"
04 - HKLM\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - [x64] HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - [x64] HKLM\..\Run : [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
04 - [x64] HKLM\..\Run : [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [CAHeadless] C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [DuckCapture] "C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe" /autorun
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKU\S-1-5-21-465818372-1096287524-2901957246-1001\..\Run : [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04GS - NkbMonitor.exe.lnk : C:\Program Files (x86)\Nikon\PictureProject\NkbMonitor.exe
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://ww25.how-to-remove.us/[/url]
[b]################## | Hijack |[/b]
[b]################## | C:\ %SystemDrive% - Fixed drive (NTFS) |[/b]
[07/11/2007 - 07:00:40 | A | 10 Ko] - C:\eula.1033.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.2052.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.3082.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1036.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1040.txt
[07/11/2007 - 07:00:40 | A | 0 Ko] - C:\eula.1041.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1028.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1042.txt
[07/11/2007 - 07:00:40 | A | 17 Ko] - C:\eula.1031.txt
[23/09/2010 - 16:47:14 | A | 152 Ko] - C:\history.txt
[23/09/2010 - 16:47:26 | A | 3 Ko] - C:\TReadme.txt
[23/09/2010 - 16:47:26 | A | 1 Ko] - C:\versions.txt
[23/09/2010 - 16:47:26 | A | 3 Ko] - C:\license.txt
[23/09/2010 - 16:47:26 | A | 6 Ko] - C:\readme.txt
[17/07/2012 - 12:51:05 | A | 125 Ko] - C:\TDSSKiller.2.7.46.0_17.07.2012_13.36.31_log.txt
[03/09/2013 - 15:39:19 | A | 138 Ko] - C:\TDSSKiller.2.9.2.0_03.09.2013_16.37.40_log.txt
[29/12/2013 - 12:40:36 | A | 193 Ko] - C:\TDSSKiller.3.0.0.19_29.12.2013_12.33.06_log.txt
[28/11/2014 - 03:25:34 | ASH | 6290152 Ko] - C:\hiberfil.sys
[28/11/2014 - 03:25:51 | ASH | 8386872 Ko] - C:\pagefile.sys
[07/11/2007 - 07:12:28 | A | 228 Ko] - C:\VC_RED.MSI
[28/11/2014 - 08:18:08 | D] - C:\Config.Msi
[26/07/2011 - 20:21:38 | RA | 8 Ko] - C:\CLDMA.LOG
[22/08/2011 - 11:29:11 | A | 0 Ko] - C:\InstallHelper.log
[17/05/2012 - 14:26:47 | A | 1 Ko] - C:\user.js
[07/11/2007 - 07:00:40 | A | 1 Ko] - [[url=https://www.virustotal.com/file/672621b056188f8d3fa5ab8cd3df4f95530c962af9bb11cf7c9bd1127b3c3605/analysis/1416286728/]VirusTotal[/url] - (0/55)] - C:\install.ini
[07/11/2007 - 07:00:40 | A | 1 Ko] - [[url=https://www.virustotal.com/file/7912e3fcf2698cf4f8625e563cd8215c6668739cae18bd6f27af2d25bec5c951/analysis/1416286725/]VirusTotal[/url] - (0/55)] - C:\globdata.ini
[10/10/2005 - 12:20:12 | A | 829 Ko] - C:\CVSLogger.exe
[07/11/2007 - 07:03:18 | A | 550 Ko] - [[url=https://www.virustotal.com/file/08966ce743aa1cbed0874933e104ef7b913188ecd8f0c679f7d8378516c51da2/analysis/1417156965/]VirusTotal[/url] - (0/55)] - C:\install.exe
[23/09/2010 - 09:49:08 | A | 66 Ko] - C:\cbVSCService.exe
[23/09/2010 - 16:46:14 | A | 1099 Ko] - C:\cbService.exe
[23/09/2010 - 16:46:14 | A | 412 Ko] - C:\Cobian.exe
[23/09/2010 - 16:46:16 | A | 3081 Ko] - C:\cbInterface.exe
[23/09/2010 - 16:46:18 | A | 1028 Ko] - C:\cbPChecker.exe
[23/09/2010 - 16:46:18 | A | 1349 Ko] - C:\cbTranslator.exe
[23/09/2010 - 16:46:18 | A | 1290 Ko] - C:\cbHelpreader.exe
[23/09/2010 - 16:46:18 | A | 1154 Ko] - C:\cbSrvControl.exe
[23/09/2010 - 16:46:20 | A | 1682 Ko] - C:\cbDecompressor.exe
[23/09/2010 - 16:46:20 | A | 1936 Ko] - C:\cbManager.exe
[23/09/2010 - 16:46:20 | A | 1426 Ko] - C:\cbDecrypter.exe
[23/09/2010 - 16:46:22 | A | 1254 Ko] - C:\cbUninstall.exe
[07/11/2007 - 07:03:18 | A | 74 Ko] - C:\install.res.2052.dll
[07/11/2007 - 07:03:18 | A | 95 Ko] - C:\install.res.1036.dll
[07/11/2007 - 07:03:18 | A | 94 Ko] - C:\install.res.3082.dll
[07/11/2007 - 07:03:18 | A | 89 Ko] - C:\install.res.1033.dll
[07/11/2007 - 07:03:18 | A | 78 Ko] - C:\install.res.1042.dll
[07/11/2007 - 07:03:18 | A | 94 Ko] - C:\install.res.1031.dll
[07/11/2007 - 07:03:18 | A | 75 Ko] - C:\install.res.1028.dll
[07/11/2007 - 07:03:18 | A | 93 Ko] - C:\install.res.1040.dll
[07/11/2007 - 07:03:18 | A | 80 Ko] - C:\install.res.1041.dll
[23/09/2010 - 09:49:06 | A | 150 Ko] - C:\AlphaVSS.WinXP.x64.dll
[23/09/2010 - 09:49:06 | A | 130 Ko] - C:\AlphaVSS.Win2003.x86.dll
[23/09/2010 - 09:49:06 | A | 10 Ko] - C:\CobStringList.dll
[23/09/2010 - 09:49:08 | A | 55 Ko] - C:\AlphaVSS.Common.dll
[23/09/2010 - 09:49:08 | A | 278 Ko] - C:\7za.dll
[23/09/2010 - 09:49:08 | A | 150 Ko] - C:\AlphaVSS.Win2003.x64.dll
[23/09/2010 - 09:49:08 | A | 142 Ko] - C:\AlphaVSS.Win2008.x86.dll
[23/09/2010 - 09:49:08 | A | 116 Ko] - C:\AlphaVSS.WinXP.x86.dll
[23/09/2010 - 09:49:08 | A | 163 Ko] - C:\AlphaVSS.Win2008.x64.dll
[23/09/2010 - 09:49:08 | A | 72 Ko] - C:\zlib1.dll
[23/09/2010 - 09:49:08 | A | 196 Ko] - C:\ssleay32.dll
[23/09/2010 - 09:49:08 | A | 1044 Ko] - C:\libeay32.dll
[23/09/2010 - 16:46:16 | A | 1006 Ko] - C:\cbLogon.dll
[23/09/2010 - 16:46:16 | A | 2611 Ko] - C:\cbEngine.dll
[23/09/2010 - 16:46:18 | A | 301 Ko] - C:\cbSrvControlLib.dll
[07/11/2007 - 07:09:22 | A | 1409 Ko] - C:\VC_RED.cab
[07/11/2007 - 07:00:40 | A | 6 Ko] - C:\vcredist.bmp
[20/11/2010 - 20:51:03 | SHD] - C:\$Recycle.Bin
[26/11/2014 - 15:37:26 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[26/11/2014 - 15:14:17 | D] - C:\$INPLACE.~TR
[26/11/2014 - 14:33:19 | D] - C:\$WINDOWS.~Q
[13/07/2009 - 21:20:08 | D] - C:\PerfLogs
[13/07/2009 - 23:08:56 | SHD] - C:\Documents and Settings
[20/11/2010 - 21:23:51 | RASH | 375 Ko] - C:\bootmgr
[28/07/2011 - 19:50:01 | D] - C:\psedbtool
[07/08/2011 - 12:01:00 | D] - C:\GreetingCardStudio
[13/07/2012 - 18:49:06 | D] - C:\pdf995
[10/10/2012 - 08:52:25 | D] - C:\Swsetup
[03/09/2013 - 15:39:17 | D] - C:\TDSSKiller_Quarantine
[19/09/2013 - 10:06:04 | D] - C:\190cbc25af900e9616c9
[19/09/2013 - 10:23:15 | D] - C:\14ddbf22daa739ddcb7dbf5e98
[27/12/2013 - 15:18:21 | D] - C:\Help
[27/12/2013 - 15:40:00 | D] - C:\Settings
[29/12/2013 - 12:31:36 | D] - C:\FRST
[29/12/2013 - 15:59:34 | D] - C:\AdwCleaner
[31/12/2013 - 17:51:05 | D] - C:\DB
[05/01/2014 - 10:38:05 | D] - C:\Languages
[14/01/2014 - 08:47:58 | D] - C:\Legacy
[25/02/2014 - 19:48:04 | D] - C:\LG
[03/10/2014 - 10:47:57 | D] - C:\VueScan
[26/11/2014 - 13:48:39 | RD] - C:\Program Files
[26/11/2014 - 14:22:49 | RD] - C:\Users
[26/11/2014 - 14:29:04 | HD] - C:\ProgramData
[26/11/2014 - 15:28:38 | SHD] - C:\Recovery
[26/11/2014 - 15:37:23 | SHD] - C:\Boot
[26/11/2014 - 16:52:36 | RD] - C:\Program Files (x86)
[28/11/2014 - 03:24:19 | D] - C:\Windows
[28/11/2014 - 08:46:17 | D] - C:\UsbFix
[b]################## | H:\ - Fixed drive (NTFS) |[/b]
[11/11/2009 - 18:41:46 | A | 11323 Ko] - H:\dolls i bought.wps
[18/12/2012 - 15:20:50 | A | 671 Ko] - H:\ty-tad-black4.jpg
[26/07/2011 - 15:04:00 | SHD] - H:\$RECYCLE.BIN
[19/05/2011 - 09:55:21 | D] - H:\AppData
[06/06/2011 - 13:37:58 | D] - H:\vuescan help
[18/07/2011 - 11:44:10 | D] - H:\VHS to DVD
[18/07/2011 - 14:02:29 | D] - H:\Windows Mail
[20/07/2011 - 22:44:05 | D] - H:\FBackup
[23/07/2011 - 16:08:54 | D] - H:\recovered mail
[01/05/2013 - 09:08:56 | D] - H:\MailStoreBackup
[26/11/2014 - 19:09:27 | RD] - H:\Pictures
[26/11/2014 - 19:44:53 | RD] - H:\Documents
[b]################## | J:\ - Fixed drive (NTFS) |[/b]
[26/07/2011 - 15:04:01 | SHD] - J:\$RECYCLE.BIN
[03/03/2013 - 19:06:13 | RA | 1 Ko] - J:\MediaID.bin
[24/07/2011 - 16:58:42 | D] - J:\AppData
[04/02/2013 - 16:41:36 | D] - J:\New 1 T hard drive
[30/12/2013 - 00:07:28 | RD] - J:\HELEN-PC
[26/11/2014 - 19:09:27 | RD] - J:\Pictures
[26/11/2014 - 19:25:27 | RD] - J:\Documents
[b]################## | Vaccin |[/b]
C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
J:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
Ambucias
Posts
47310
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,162
Nov 28, 2014 at 04:28 PM
Nov 28, 2014 at 04:28 PM
Hi
Thanks for the report.
Your computer will restart only if necessary.
The main question is: do you believe that your machine is working properly without any issue?
Thanks for the report.
Your computer will restart only if necessary.
The main question is: do you believe that your machine is working properly without any issue?
Hsbciber
Posts
4
Registration date
Thursday November 27, 2014
Status
Member
Last seen
November 28, 2014
Nov 28, 2014 at 04:43 PM
Nov 28, 2014 at 04:43 PM
yes it is now, thank you so much
Ambucias
Posts
47310
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,162
>
Hsbciber
Posts
4
Registration date
Thursday November 27, 2014
Status
Member
Last seen
November 28, 2014
Nov 28, 2014 at 05:02 PM
Nov 28, 2014 at 05:02 PM
Great and thank you for your patience and feedback.
Should you have any other concerns, come back.
It was a pleasure helping you.
Have a most splendid Thanksgiving.
Should you have any other concerns, come back.
It was a pleasure helping you.
Have a most splendid Thanksgiving.
