# ----------------------------------------------------

# UsbFix Antivirus Free

# ----------------------------------------------------
# Versión : 11.022
# Base de datos : 2019.10.27
# Contacto : https://www.usb-antivirus.com/es/contacto
# ----------------------------------------------------
# Tipo de escaneo : USB
# Usuario : HP650 (Administrador)
# Dispositivo : RUSO
# Comenzó : 09/11/2019 18:17:39
# ----------------------------------------------------

------------ | Discos analizados |

D:\ FAT32 (13GB/15GB) [Removable]

------------ | Elemento(s) infectado(s) |

Restorado! D:\drivers
Restorado! D:\fl
Restorado! D:\Imagenes Museo
Restorado! D:\nebu 28
Restorado! D:\Prácticas Profesionalizantes
Restorado! D:\Taller
Restorado! D:\ternoterere
Restorado! D:\UnoArduSimV2.3
Restorado! D:\comandos cmd.txt
Restorado! D:\Informacion.txt
Restorado! D:\Manuel.doc
Restorado! D:\Portafolio Batalla Naval Garbezza.docx
Restorado! D:\PORTFOLIO.docx
Restorado! D:\PPc04_controlleddesdehttphtml.pdf
Restorado! D:\PPc04_Ethernet.pdf
Restorado! D:\PPc05_arduinoYMysql - segunda parte.pdf
Restorado! D:\PPc06_Base de Datos Mysql.pdf
Restorado! D:\TecnoMate-2018-Nivel-Secundaria-ProblemSet.pdf
Restorado! D:\UnoArduSimV2.3.zip
Restorado! D:\zinjai-w32-20180718.exe
Borrado! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|SysinfY2X
Borrado! D:\comandos cmd.txt.lnk
Borrado! D:\drivers.lnk
Borrado! D:\fl.lnk
Borrado! D:\Imagenes Museo.lnk
Borrado! D:\Informacion.txt.lnk
Borrado! D:\Manuel.doc
Borrado! D:\nebu 28.lnk
Borrado! D:\Portafolio Batalla Naval Garbezza.docx.lnk
Borrado! D:\PORTFOLIO.docx.lnk
Borrado! D:\PPc04_controlleddesdehttphtml.pdf.lnk
Borrado! D:\PPc04_Ethernet.pdf.lnk
Borrado! D:\PPc05_arduinoYMysql - segunda parte.pdf.lnk
Borrado! D:\PPc06_Base de Datos Mysql.pdf.lnk
Borrado! D:\Prácticas Profesionalizantes.lnk
Borrado! D:\System Volume Information.lnk
Borrado! D:\Taller.lnk
Borrado! D:\TecnoMate-2018-Nivel-Secundaria-ProblemSet.pdf.lnk
Borrado! D:\ternoterere.lnk
Borrado! D:\UnoArduSimV2.3.lnk
Borrado! D:\UnoArduSimV2.3.zip.lnk
Borrado! D:\zinjai-w32-20180718.exe.lnk

------------ | Run |

F2 - HKLM\..\Winlogon : [Shell] explorer.exe

F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\WINDOWS\system32\userinit.exe,
04 - HKCU\..\Run : [utweb] "C:\Users\HP650\AppData\Roaming\uTorrent
Web\utweb.exe" /MINIMIZED
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common
Files\Java\Java Update\jusched.exe"
04 - [x64] HKLM\..\Run : [SecurityHealth] %ProgramFiles%\Windows
Defender\MSASCuiL.exe
04 - [x64] HKLM\..\Run : [IgfxTray] "C:\WINDOWS\system32\igfxtray.exe"
04 - [x64] HKLM\..\Run : [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
04 - [x64] HKLM\..\Run : [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
04 - HKU\S-1-5-19\..\Run : [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe
/thfirstsetup
04 - HKU\S-1-5-20\..\Run : [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe
/thfirstsetup
04 - HKU\S-1-5-21-1113010127-2961931294-2058115585-1001\..\Run : [utweb]
"C:\Users\HP650\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED

------------ | Tasks |

Task - GoogleUpdateTaskMachineCore --> C:\Program Files

(x86)\Google\Update\GoogleUpdate.exe /c
Task - GoogleUpdateTaskMachineUA --> C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Task - IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 --> "C:\Program
Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe"
--automatic
Task - IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon -->
"C:\Program
Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe"
--automatic
Task - OneDrive Standalone Update Task-S-1-5-21-1113010127-2961931294-2058115585-
1001 --> %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task - Opera scheduled assistant Autoupdate 1555460219 -->
C:\Users\HP650\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate
--component-name=assistant --component-
path="C:\Users\HP650\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task - Opera scheduled Autoupdate 1555460211 -->
C:\Users\HP650\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $
(Arg0)
Task - USER_ESRV_SVC_QUEENCREEK --> "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo
"C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"

------------ | D:\ - Disco extraíble (FAT32) |

[21/05/2019 - 11:02:42 | N | 19432 Ko] - UnoArduSimV2.3.zip

[04/07/2019 - 11:17:54 | N | 0 Ko] - Informacion.txt
[30/07/2019 - 10:43:46 | N | 0 Ko] - comandos cmd.txt
[30/07/2019 - 09:20:30 | N | 669 Ko] - PPc04_Ethernet.pdf
[27/08/2019 - 08:49:28 | N | 379 Ko] - PPc04_controlleddesdehttphtml.pdf
[27/08/2019 - 08:50:20 | N | 611 Ko] - PPc06_Base de Datos Mysql.pdf
[03/09/2019 - 10:56:42 | N | 149 Ko] - PPc05_arduinoYMysql - segunda parte.pdf
[30/10/2019 - 08:23:42 | N | 394 Ko] - TecnoMate-2018-Nivel-Secundaria-
ProblemSet.pdf
[26/03/2019 - 08:32:12 | N | 36748 Ko] - zinjai-w32-20180718.exe
[06/06/2019 - 08:24:24 | N | 20 Ko] - PORTFOLIO.docx
[11/06/2019 - 11:46:36 | N | 14 Ko] - Portafolio Batalla Naval Garbezza.docx
[24/08/2019 - 20:57:12 | D] - UnoArduSimV2.3
[02/05/2019 - 11:21:42 | D] - nebu 28
[24/08/2019 - 20:57:04 | D] - drivers
[24/08/2019 - 20:57:12 | D] - Prácticas Profesionalizantes
[24/08/2019 - 20:57:12 | D] - Taller
[10/09/2019 - 20:45:06 | D] - fl
[24/09/2019 - 14:34:54 | D] - Imagenes Museo
[01/11/2019 - 00:45:34 | D] - ternoterere

Elemento(s) infectado(s) : 44
Elementos analizados : 53712 en 00h 00m 09s

# UsbFix-Report-01.txt [5690B]

------------ | E.O.F |