Hi,
USB Disk Security only with big and green shiny colors and via nice words “you are protected” can protect your system from USB kind malware.
In the real world USB protection is quite different story from what USB Disk Security knows …
Let’s do an valid USB storage devices / removable drives check:
Download MCShield from one of the following links:
MyCity - Official download link
Softpedija - Mirror download link
[*] Double click MCShield-Setup to install the application.
[*] Wait a few seconds to MCShield finish initial scan.
Recommendation to under General and Scanner tab you click on Defaults button to choose recommended options.
[*] Connect your USB storage devices to the computer one at a time. Scanning will be done automatically.
When all scanning is done, you need to attach a logreport that has made MCShield.
Start → All Programs → MCShield → Logs
Attach here → AllScans.txt
Explanation: USB storage devices are all the USB devices that get their own partition letter at connecting to the PC,
e.g. flash drives (thumb/pen drives, USB sticks), external HDDs, MP3/MP4 players, digital cameras,
memory cards (SD cards, Sony Memory Stick, MultiMedia Cards etc.), some mobile phones, some GPS navigation devices etc.
Re-run zoek.exe as you did before but use this script:
C:\Users\admin\AppData\Roaming\137\*.js;f
C:\users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\*.js;f
C:\users\admin\AppData\Roaming\137;fs
C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936};vs
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r
"056a"=-;r
[-HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0E7B197B-A3DE-4FD4-A19A-1EECF791D16F}];r
[-HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C30DAF89-C966-4796-F7B2-EC4BB8E6BB95}];r
[-HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EE930633-72f4-76D7-A0FF-142E3A16EB8B}];r
autoclean;
Click on RunScript button. Attach here fresh zoek log