# ---------------------------------------------------- # UsbFix Antivirus Premium # ---------------------------------------------------- # Version : 11.029 # Database : 2020.03.23 # Contact : https://www.usb-antivirus.com/contact # ---------------------------------------------------- # Scan type : USB # User : annag (Administrator) # Device : DESKTOP-4TL8RJG # Started : 15/04/2020 19:42:02 # ---------------------------------------------------- ------------ | Analyzed disks | G:\ FAT32 (19GB/29GB) [Removable] H:\ FAT32 (3GB/4GB) [Removable] ------------ | Infected elements | Not selected! H:\ \22.05.txt -> H:\UsbFix Backup\22.05.txt Not selected! H:\ \ania\AG forum.ods -> H:\UsbFix Backup\ania\AG forum.ods Not selected! H:\ \ania\dane dostępowe.ods -> H:\UsbFix Backup\ania\dane dostępowe.ods Not selected! H:\ \ania\myckowa.jpg -> H:\UsbFix Backup\ania\myckowa.jpg Not selected! H:\ \ania\satyry #4\kat4.jpg -> H:\UsbFix Backup\ania\satyry #4\kat4.jpg Not selected! H:\ \ania\satyry #4\krak4.jpg -> H:\UsbFix Backup\ania\satyry #4\krak4.jpg Not selected! H:\ \ania\satyry #4\lub4.jpg -> H:\UsbFix Backup\ania\satyry #4\lub4.jpg Not selected! H:\ \ania\satyry #4\poz4.jpg -> H:\UsbFix Backup\ania\satyry #4\poz4.jpg Not selected! H:\ \ania\satyry #4\Thumbs.db -> H:\UsbFix Backup\ania\satyry #4\Thumbs.db Not selected! H:\ \ania\satyry #4\Tr4.jpg -> H:\UsbFix Backup\ania\satyry #4\Tr4.jpg Not selected! H:\ \ania\satyry #4\war4.jpg -> H:\UsbFix Backup\ania\satyry #4\war4.jpg Not selected! H:\ \ania\satyry #4\wroc4.jpg -> H:\UsbFix Backup\ania\satyry #4\wroc4.jpg Not selected! H:\ \ania\satyry #5\kat5.jpg -> H:\UsbFix Backup\ania\satyry #5\kat5.jpg Not selected! H:\ \ania\satyry #5\krak5.jpg -> H:\UsbFix Backup\ania\satyry #5\krak5.jpg Not selected! H:\ \ania\satyry #5\LUB5.jpg -> H:\UsbFix Backup\ania\satyry #5\LUB5.jpg Not selected! H:\ \ania\satyry #5\poz5.jpg -> H:\UsbFix Backup\ania\satyry #5\poz5.jpg Not selected! H:\ \ania\satyry #5\Thumbs.db -> H:\UsbFix Backup\ania\satyry #5\Thumbs.db Not selected! H:\ \ania\satyry #5\Tr5.jpg -> H:\UsbFix Backup\ania\satyry #5\Tr5.jpg Not selected! H:\ \ania\satyry #5\war5.jpg -> H:\UsbFix Backup\ania\satyry #5\war5.jpg Not selected! H:\ \ania\satyry #5\wroc5.jpg -> H:\UsbFix Backup\ania\satyry #5\wroc5.jpg Not selected! H:\ \ania\satyry #6\kat6.jpg -> H:\UsbFix Backup\ania\satyry #6\kat6.jpg Not selected! H:\ \ania\satyry #6\krak6.jpg -> H:\UsbFix Backup\ania\satyry #6\krak6.jpg Not selected! H:\ \ania\satyry #6\LUB6.jpg -> H:\UsbFix Backup\ania\satyry #6\LUB6.jpg Not selected! H:\ \ania\satyry #6\poz6.jpg -> H:\UsbFix Backup\ania\satyry #6\poz6.jpg Not selected! H:\ \ania\satyry #6\Thumbs.db -> H:\UsbFix Backup\ania\satyry #6\Thumbs.db Not selected! H:\ \ania\satyry #6\Tr6.jpg -> H:\UsbFix Backup\ania\satyry #6\Tr6.jpg Not selected! H:\ \ania\satyry #6\war6.jpg -> H:\UsbFix Backup\ania\satyry #6\war6.jpg Not selected! H:\ \ania\satyry #6\wroc6.jpg -> H:\UsbFix Backup\ania\satyry #6\wroc6.jpg Not selected! H:\ \ania\todo.txt -> H:\UsbFix Backup\ania\todo.txt Not selected! H:\ \Anna Grabowska-Myca_cv.pdf -> H:\UsbFix Backup\Anna Grabowska-Myca_cv.pdf Not selected! H:\ \Anna Grabowska-Myca_cv1.pdf -> H:\UsbFix Backup\Anna Grabowska-Myca_cv1.pdf Not selected! H:\ \cv.pdf -> H:\UsbFix Backup\cv.pdf Not selected! H:\ \cv_05.08.docx -> H:\UsbFix Backup\cv_05.08.docx Not selected! H:\ \cv_05.08.pdf -> H:\UsbFix Backup\cv_05.08.pdf Not selected! H:\ \cv_11.06.2013.docx -> H:\UsbFix Backup\cv_11.06.2013.docx Not selected! H:\ \cv_13.06.2013.pdf -> H:\UsbFix Backup\cv_13.06.2013.pdf Not selected! H:\ \cv_21.05.2013.docx -> H:\UsbFix Backup\cv_21.05.2013.docx Not selected! H:\ \cv_21.05.2013.pdf -> H:\UsbFix Backup\cv_21.05.2013.pdf Not selected! H:\ \cv_22.05.2013.doc -> H:\UsbFix Backup\cv_22.05.2013.doc Not selected! H:\ \cv_22.05.2013.rar -> H:\UsbFix Backup\cv_22.05.2013.rar Not selected! H:\ \cv_27.06.docx -> H:\UsbFix Backup\cv_27.06.docx Not selected! H:\ \cv_27.06.pdf -> H:\UsbFix Backup\cv_27.06.pdf Not selected! H:\ \cv_28.06.docx -> H:\UsbFix Backup\cv_28.06.docx Not selected! H:\ \cv_28.06.pdf -> H:\UsbFix Backup\cv_28.06.pdf Not selected! H:\ \cv_pracownik biurowy.docx -> H:\UsbFix Backup\cv_pracownik biurowy.docx Not selected! H:\ \cv_pracownik biurowy.pdf -> H:\UsbFix Backup\cv_pracownik biurowy.pdf Not selected! H:\ \cv_pracownik biurowy_11.06.2013.docx -> H:\UsbFix Backup\cv_pracownik biurowy_11.06.2013.docx Not selected! H:\ \cv_pracownik biurowy_11.06.2013.pdf -> H:\UsbFix Backup\cv_pracownik biurowy_11.06.2013.pdf Not selected! H:\ \desktop.ini -> H:\UsbFix Backup\desktop.ini Not selected! H:\ \Firefox 23.0.1 (pl) - 2013-09-09.pcv -> H:\UsbFix Backup\Firefox 23.0.1 (pl) - 2013-09-09.pcv Not selected! H:\ \Kożuch Barbara - Nauka o organizacji(1).PDF -> H:\UsbFix Backup\Kożuch Barbara - Nauka o organizacji(1).PDF Not selected! H:\ \Thunderbird 17.0.8 (pl) - 2013-09-09.pcv -> H:\UsbFix Backup\Thunderbird 17.0.8 (pl) - 2013-09-09.pcv Not selected! H:\ \umowa_najmu_Weissflog.pdf -> H:\UsbFix Backup\umowa_najmu_Weissflog.pdf Not selected! H:\ \wniosek.docx -> H:\UsbFix Backup\wniosek.docx Not selected! H:\ \wyrejestrowanie.docx -> H:\UsbFix Backup\wyrejestrowanie.docx Not selected! H:\ \zeszyt działania.pdf -> H:\UsbFix Backup\zeszyt działania.pdf ------------ | Run | F2 - HKLM\..\Winlogon : [Shell] explorer.exe F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\WINDOWS\system32\userinit.exe, 04 - HKCU\..\Run : [OneDrive] "C:\Users\annag\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background 04 - HKCU\..\Run : [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR 04 - HKCU\..\Run : [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000000" /M "L3150 Series" 04 - HKCU\..\Run : [EPLTarget\P0000000000000001] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000001" /M "L3150 Series" 04 - HKLM\..\Run : [XPE] "C:\Program Files (x86)\XPE Windows 10 DPI Fix\XPEWindows10_DPI.exe" -hide:105 04 - HKLM\..\Run : [StartCCC] "D:\programy\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun 04 - HKLM\..\Run : [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" 04 - [x64] HKLM\..\Run : [SecurityHealth] %windir%\system32\SecurityHealthSystray.exe 04 - [x64] HKLM\..\Run : [StartCN] "D:\programy\CNext\CNext\cnext.exe" atlogon 04 - HKU\S-1-5-19\..\Run : [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup 04 - HKU\S-1-5-20\..\Run : [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup 04 - HKU\S-1-5-21-2129501872-4289982712-2245916903-1002\..\Run : [OneDrive] "C:\Users\annag\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background 04 - HKU\S-1-5-21-2129501872-4289982712-2245916903-1002\..\Run : [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR 04 - HKU\S-1-5-21-2129501872-4289982712-2245916903-1002\..\Run : [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000000" /M "L3150 Series" 04 - HKU\S-1-5-21-2129501872-4289982712-2245916903-1002\..\Run : [EPLTarget\P0000000000000001] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE /EPT "EPLTarget\P0000000000000001" /M "L3150 Series" ------------ | Tasks | Task - AMD Updater --> "D:\programy\CIM\\Bin64\InstallManagerApp.exe" /AUTOUPDATEIN Task - CCleaner Update --> C:\Program Files\CCleaner\CCUpdate.exe Task - CCleanerSkipUAC --> "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0) Task - EPSON L3150 Series Update {401BEB6F-A304-45B6-AAB6-9B1DF20BF680} --> C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{401BEB6F-A304-45B6-AAB6-9B1DF20BF680}" /F:"Update" Task - EPSON L3150 Series Update {AA57EDA0-07D6-4ECC-843A-2C0523A25165} --> C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSUNE.EXE /EXE:"{AA57EDA0-07D6-4ECC-843A-2C0523A25165}" /F:"Update" Task - GoogleUpdateTaskMachineCore --> C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c Task - GoogleUpdateTaskMachineUA --> C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler Task - OneDrive Standalone Update Task-S-1-5-21-2129501872-4289982712-2245916903-1002 --> %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task - UsbFix Boot Scan --> "C:\ProgramData\SosVirus\UsbFix\UsbFix.exe" -scanonstart Task - UsbFix Monitor --> "C:\ProgramData\SosVirus\UsbFix\Modules\UsbFixMonitor.exe" ------------ | G:\ - Removable drive (FAT32) | [31/12/2019 - 09:40:20 | A | 92 Ko] - Premia.xls [26/03/2020 - 10:58:16 | AH | 0 Ko] - _disk_id.pod [19/02/2020 - 11:28:04 | A | 243 Ko] - 2020.02.18 Zajzdnia Tramwajowa GAiT ul. Wita Stwosza 110-112 Protokół.pdf [01/04/2020 - 07:00:46 | A | 1 Ko] - BOOTEX.LOG [17/03/2020 - 13:07:12 | H | 0 Ko] - AUTORUN.INF [06/07/2018 - 11:03:16 | D] - KAROLINA [06/07/2018 - 11:06:28 | D] - NEGOCJACJE Z OGŁOSZENIEM [03/01/2019 - 08:38:24 | D] - ZAMÓWIENIA UZUPEŁNIAJĄCE [01/02/2019 - 10:07:30 | D] - SPRZEDAŻ [03/01/2020 - 14:11:28 | RD] - organizacyjne [08/01/2020 - 12:36:20 | D] - ZAPYTANIA OFERTOWE [10/01/2020 - 14:31:52 | D] - PRZETARGI NIEOGRANICZONE [24/01/2020 - 07:45:12 | D] - ANEKSY [13/02/2020 - 09:14:34 | D] - ZAMÓWIENIA Z WOLNEJ RĘKI [28/02/2020 - 13:51:34 | D] - WYDZIAŁ TORÓW I SIECI [11/03/2020 - 13:37:36 | D] - PRZETARGI UNIJNE ------------ | H:\ - Removable drive (FAT32) | [18/02/2020 - 12:23:50 | A | 161 Ko] - Zmiana treści SIWZ.pdf [18/02/2020 - 13:25:14 | A | 604 Ko] - Wezwanie do uzupełnienia oferty_RR AUTOMATYKA.pdf [10/07/2014 - 16:14:12 | RA | 3 Ko] - desktop.ini [08/05/2013 - 23:00:40 | H | 0 Ko] - AUTORUN.INF [18/02/2020 - 12:23:34 | A | 914 Ko] - Zmiana treści SIWZ.docx [10/07/2014 - 16:14:12 | RA | 248 Ko] - Thumbs.db [03/06/2013 - 15:09:42 | D] -   [10/07/2014 - 16:18:34 | D] - My Pictures [09/05/2019 - 09:50:00 | D] - ZAMÓWIENIA PUBLICZNE [29/05/2019 - 11:08:12 | D] - PG [04/07/2019 - 11:41:02 | D] - zarząd [03/01/2020 - 13:04:38 | D] - INNE [31/03/2020 - 04:46:20 | D] - BACKUP D Infected elements : 56 Analyzed elements : 57132 in 00h 00m 03s # UsbFix-Report-01.txt [10374B] ------------ | E.O.F |