# ---------------------------------------------------- # UsbFix Antivirus Free # ---------------------------------------------------- # Version 11.010 # Database 2018.11.28 # Contact httpswww.usb-antivirus.comcontact # ---------------------------------------------------- # Scan type USB # User Karol (Administrator) # Device ASUS-KAROL # Started 13122018 204223 # ---------------------------------------------------- ------------ Analyzed disks K NTFS (25GB29GB) [Removable] ------------ Infected elements Restored! K  Deleted! KPENDRIVE KAROL (30GB).lnk ------------ Run F2 - HKLM..Winlogon [Shell] explorer.exe F2 - [x64] HKLM..Winlogon [Shell] explorer.exe F2 - HKLM..Winlogon [Userinit] userinit.exe F2 - [x64] HKLM..Winlogon [Userinit] CWindowssystem32userinit.exe, 04 - HKCU..Run [Ditto] CProgram FilesDittoDitto.exe 04 - HKCU..Run [OPENVPN-GUI] CProgram FilesOpenVPNbinopenvpn-gui.exe 04 - HKCU..Run [CCleaner Smart Cleaning] CProgram FilesCCleanerCCleaner64.exe MONITOR 04 - HKCU..RunOnce [FlashPlayerUpdate] CWindowsSysWOW64MacromedFlashFlashUtil32_31_0_0_122_Plugin.exe -update plugin 04 - HKLM..Run [USB3MON] CProgram Files (x86)IntelIntel(R) USB 3.0 3.1 eXtensible Host Controller DriverApplicationiusb3mon.exe 04 - HKLM..Run [SunJavaUpdateSched] CProgram Files (x86)Common FilesJavaJava Updatejusched.exe 04 - [x64] HKLM..Run [AvastUI.exe] CProgram FilesAVAST SoftwareAvastAvLaunch.exe gui 04 - HKUS-1-5-19..Run [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe autoRun 04 - HKUS-1-5-20..Run [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe autoRun 04 - HKUS-1-5-21-3225201627-2190115873-3201683631-1000..Run [Ditto] CProgram FilesDittoDitto.exe 04 - HKUS-1-5-21-3225201627-2190115873-3201683631-1000..Run [OPENVPN-GUI] CProgram FilesOpenVPNbinopenvpn-gui.exe 04 - HKUS-1-5-21-3225201627-2190115873-3201683631-1000..Run [CCleaner Smart Cleaning] CProgram FilesCCleanerCCleaner64.exe MONITOR 04 - HKUS-1-5-21-3225201627-2190115873-3201683631-501..Run [OPENVPN-GUI] CProgram FilesOpenVPNbinopenvpn-gui.exe 04 - HKUS-1-5-19..RunOnce [mctadmin] CWindowsSystem32mctadmin.exe 04 - HKUS-1-5-20..RunOnce [mctadmin] CWindowsSystem32mctadmin.exe 04 - HKUS-1-5-21-3225201627-2190115873-3201683631-1000..RunOnce [FlashPlayerUpdate] CWindowsSysWOW64MacromedFlashFlashUtil32_31_0_0_122_Plugin.exe -update plugin ------------ Tasks Task - Adobe Acrobat Update Task -- CProgram Files (x86)Common FilesAdobeARM1.0AdobeARM.exe Task - Adobe Flash Player NPAPI Notifier -- CWindowsSysWOW64MacromedFlashFlashUtil32_32_0_0_101_Plugin.exe -check plugin Task - Adobe Flash Player Updater -- CWindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe Task - ASC11_SkipUac_Karol -- CProgram Files (x86)IObitAdvanced SystemCareASC.exe SkipUac Task - Avast Emergency Update -- CProgram FilesAVAST SoftwareAvastAvEmUpdate.exe Task - CCleaner Update -- CProgram FilesCCleanerCCUpdate.exe Task - CCleanerSkipUAC -- CProgram FilesCCleanerCCleaner.exe $(Arg0) Task - Driver Booster Scheduler -- CProgram Files (x86)IObitDriver Booster5.2.0Scheduler.exe scheduler Task - Driver Booster SkipUAC (Karol) -- CProgram Files (x86)IObitDriver Booster5.2.0DriverBooster.exe skipuac Task - GoogleUpdateTaskMachineCore -- CProgram Files (x86)GoogleUpdateGoogleUpdate.exe c Task - GoogleUpdateTaskMachineUA -- CProgram Files (x86)GoogleUpdateGoogleUpdate.exe ua installsource scheduler Task - NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram FilesNVIDIA CorporationNvContainernvcontainer.exe -d CProgram FilesNVIDIA CorporationNvBackendNvBatteryBoostCheck -l 3 -f CProgramDataNVIDIANvContainerBatteryBoostCheck.log Task - NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram FilesNVIDIA CorporationNvContainernvcontainer.exe -d CProgram FilesNVIDIA CorporationNvDriverUpdateCheck -l 3 -f CProgramDataNVIDIANvContainerDriverUpdateCheck.log Task - NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Experience.exe Task - NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram Files (x86)NVIDIA CorporationNvNodenvnodejslauncher.exe --launcher=TaskScheduler Task - NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe Task - NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe Task - NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram Files (x86)NVIDIA CorporationUpdate CoreNvTmMon.exe Task - NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram Files (x86)NVIDIA CorporationUpdate CoreNvTmRep.exe noshim Task - NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram Files (x86)NVIDIA CorporationUpdate CoreNvTmRep.exe noshim Task - NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram Files (x86)NVIDIA CorporationUpdate CoreNvTmRep.exe noshim Task - NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -- CProgram Files (x86)NVIDIA CorporationUpdate CoreNvTmRep.exe Task - RtHDVBg_ListenToDevice -- CProgram FilesRealtekAudioHDARAVBg64.exe AECBYLISTENTOSTATUS Task - RTKCPL -- CProgram FilesRealtekAudioHDARAVBg64.exe runcplsilence Task - {05FF0918-3C08-40A3-AA0F-4D021B23AF0C} -- CWindowssystem32pcalua.exe -a CUsersKarolDesktopsynaptics_touchpad_16.3.9.064Setup.exe -d CUsersKarolDesktopsynaptics_touchpad_16.3.9.064 Task - {162E50A7-EA0F-476C-AEF1-F9A6D0F2A26E} -- CWindowssystem32pcalua.exe -a FISO obrazy płyt gier i systemówGothicGothic1gothic1_playerkit108kgothic1_playerkit-1.08kgothic1_playerkit-1.08k.exe -d FISO obrazy płyt gier i systemówGothicGothic1gothic1_playerkit108kgothic1_playerkit-1.08k Task - {45D59561-623B-4F30-8044-895DE5F86A1F} -- CWindowssystem32pcalua.exe -a EGryPiranha BytesGothicMroczne TajemniceMateriały Dodatkowegothic1_playerkit-1.08k.exe -d EGryPiranha BytesGothicMroczne TajemniceMateriały Dodatkowe Task - {9EF51FF0-BAFC-4714-BB2D-43F780F1DEC8} -- CWindowssystem32pcalua.exe -a FISO obrazy płyt gier i systemówGothicGothic2gothic2_playerkit26fgothic2_playerkit-2.6f.exe -d FISO obrazy płyt gier i systemówGothicGothic2gothic2_playerkit26f Task - {B470EF6D-29D1-4A48-9E28-429B59B0491F} -- CWindowssystem32pcalua.exe -a FSterownikiTouchpad_Elantech_Win7_64_Z11509Setup.exe -d FSterownikiTouchpad_Elantech_Win7_64_Z11509 Task - {C6CC7FC2-5DC8-42E6-9D9C-82BC0E63EF40} -- CWindowssystem32pcalua.exe -a DChessmastersetup.exe -d DChessmaster ------------ K - Removable drive (NTFS) [16082018 - 185749 SHD] - found.000 [13122018 - 200917 D] -   Infected elements 2 Analyzed elements 68978 in 00h 00m 03s # UsbFix-Report-01.txt [7309B] ------------ E.O.F