Author Topic: Avast warning of these virus differentia/diff.php & disorderstatus.ru Pls help:c  (Read 1482 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
I read before all the previous post of this same issue so i attached the addition and frst.txt files made by farbar recovery scan tool.
The problem begin because my usb device had the virus and infected my pc too. 


Please help me

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Let me know if this stops it

Download MCShield to your desktop and install
It will initially run a scan and show the result as a toaster by the system clock
Then in the control centre select scanner and tick unhide items on flash drives

Plug in the drive and McShield will start a scan

Then get the log which will be located under the logs tab on the main page

And post that

THEN

CAUTION :  This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:
 
Quote
CreateRestorePoint:
HKU\S-1-5-21-454575600-430329462-2246618419-1001\...\CurrentVersion\Windows: [Load] C:\ProgramData\msdjju.exe <===== ATTENTION
2012-07-25 21:06 - 2012-07-25 22:20 - 81237120 ___SH () C:\ProgramData\msdjju.exe
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
RemoveProxy:
EmptyTemp:
CMD: bitsadmin /reset /allusers

 
Save this as fixlist.txt, in the same location as FRST.exe

Run FRST and press Fix
On completion a log will be generated please post that

REDACTED

  • Guest
It worked!  The MCshield found something in the usb driver they gave me a report i am attaching it too.
Thank you so much.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37649
  • F-Secure user
you need to copy and paste MCShield log or we cant read it (a forum bug)



Opend it with android and done the copy paste for you
Quote
MCShield ::Anti-Malware Tool:: http://www.mcshield.net/

>>> v 3.0.5.28 / DB: 2015.11.5.1 / Windows 8 <<<


18/11/2015 05:14:00 p.m. > Unidad C: - análisis comenzó (Ninguna designación ~586 GB, NTFS HDD )...



=> El disco está limpio.


18/11/2015 05:14:01 p.m. > Unidad D: - análisis comenzó (ETER Kingdom ~1277 GB, NTFS HDD )...



=> El disco está limpio.


18/11/2015 05:14:04 p.m. > Unidad E: - análisis comenzó (Reservado para el sistema ~tamaño desconocido, NTFS HDD )...



=> El disco está limpio.


18/11/2015 05:14:04 p.m. > Unidad G: - análisis comenzó (Old Kindgom ~78 GB, NTFS HDD )...



=> El disco está limpio.


18/11/2015 05:14:04 p.m. > Unidad H: - análisis comenzó (Nuevo vol ~388 GB, NTFS HDD )...



=> El disco está limpio.


18/11/2015 05:14:05 p.m. > Unidad I: - análisis comenzó (ETER DRIVER ~7767 MB, FAT32 memoria flash )...


>>> I:\ETER DRIVER (8GB).lnk - Malware > Eliminado. (; MD5: bd63922352a22d9940c9ea0b7c355cd6)


=> Archivos maliciosos  : 1/1 eliminado.

____________________________________________

::::: Tiempo del análisis: (Modo Interactivo)

18/11/2015 05:15:07 p.m. > Unidad J: - análisis comenzó (EOS_DIGITAL ~15263 MB, FAT32 memoria flash )...



=> El disco está limpio.


« Last Edit: November 18, 2015, 11:51:36 PM by Pondus »

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Cheers Pondus :)

Any further problems ?