Thank you very much Pondus! I think Mcshield did the trick. You are very helpful sir!
here the log
>>> MCShield AllScans.txt <<<
-----------------------------
MCShield ::Anti-Malware Tool::
http://www.mcshield.net/>>> v 3.0.5.28 / DB: 2016.2.21.1 / Windows 7 <<<
7/13/2017 2:20:33 AM > Drive C: - scan started (no label ~466 GB, NTFS HDD )...
=> The drive is clean.
7/13/2017 2:20:33 AM > Drive E: - scan started (Transcend ~7444 MB, FAT32 flash drive )...
>>> E:\Transcend (8GB).lnk - Suspicious > Renamed. (MD5: 718bb6826e2f8bca0755ab0a11e90469)
> Resetting attributes: E:\ < Successful.
=> Suspicious files : 1/1 renamed.
=> Hidden folders : 1/1 unhidden.
____________________________________________
::::: Scan duration: 2sec ::::::::::::::::::
____________________________________________
MCShield ::Anti-Malware Tool::
http://www.mcshield.net/>>> v 3.0.5.28 / DB: 2016.2.21.1 / Windows 7 <<<
7/13/2017 2:21:42 AM > Drive E: - scan started (Transcend ~7444 MB, FAT32 flash drive )...
=> The drive is clean.