Ayuda, Creo que estoy infectado con un virus

vegaquemada · 31 Enero, 2019 16:32

Buenas tardes. He notado cuando arranca el ordenador, se me abre el explorador de archivos en M, que es un disco externo que uso de almcenimiento. Por lo demás va rápido como antes de hacer este último paso. Estos son los resultados.

Fix result of Farbar Recovery Scan Tool (x64) Version: 30.01.2019
Ran by Pepe (31-01-2019 17:22:16) Run:1
Running from C:\Users\Pepe\Desktop
Loaded Profiles: Pepe (Available Profiles: Pepe)
Boot Mode: Safe Mode (with Networking)
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:

BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> No File
U3 idsvc; no ImagePath
2019-01-25 13:27 - 2019-01-25 13:27 - 000000000 ____D C:\ProgramData\HXZFOKLB24IZFW8LN92K
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-08-29] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-08-29] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-08-29] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-08-29] (Google Inc.)
019-01-23 15:20 - 2016-04-14 23:16 - 000000000 ____D C:\ProgramData\AVAST Software
019-01-23 15:09 - 2019-01-23 15:09 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
Task: {23448904-1F3A-40B0-88C4-133ED602BC59} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {477D2722-E6DE-434E-B7DB-EE0D0A9AEE05} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {594075A1-FB79-49C5-87BE-17A6930E6C22} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {814F580E-0444-4F5B-BC15-15A4944A1F97} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {84BEEA45-AC30-4875-9533-4691FEBB5A0A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {853509B9-7719-4ECF-BF18-01E30FC64FFD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B327F9E2-FB45-4FF7-92BE-70C5E023BCCC} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {BDDA3D5F-1908-46EA-8893-8C02AD734639} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D2555650-B141-4E07-B070-6888BB1AD5B5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D5E4AD02-E401-4299-82D2-2194B259D6F2} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E244DDB4-2C6C-4521-9EF5-A9F0CBC25CAE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {E911EE61-5F9A-409B-B1F5-306EC4D46736} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {ECCF19E7-780F-4B71-9BD3-109A90BB3758} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2019-01-23] (AVAST Software)
C:\Program Files\Common Files\AVAST Software
Task: {FD3B0E92-E3AC-4257-B6A6-BF2B4957C8D7} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION


*****************

Error: Restore point can only be created in normal mode.
Processes closed successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{AF949550-9094-4807-95EC-D1C317803333} => removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
C:\ProgramData\HXZFOKLB24IZFW8LN92K => moved successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
C:\Program Files (x86)\Google\Google Toolbar => moved successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
019-01-23 15:20 - 2016-04-14 23:16 - 000000000 ____D C:\ProgramData\AVAST Software => Error: No automatic fix found for this entry.
019-01-23 15:09 - 2019-01-23 15:09 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software => Error: No automatic fix found for this entry.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23448904-1F3A-40B0-88C4-133ED602BC59}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23448904-1F3A-40B0-88C4-133ED602BC59}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{477D2722-E6DE-434E-B7DB-EE0D0A9AEE05}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{477D2722-E6DE-434E-B7DB-EE0D0A9AEE05}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{594075A1-FB79-49C5-87BE-17A6930E6C22}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{594075A1-FB79-49C5-87BE-17A6930E6C22}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{814F580E-0444-4F5B-BC15-15A4944A1F97}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{814F580E-0444-4F5B-BC15-15A4944A1F97}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{84BEEA45-AC30-4875-9533-4691FEBB5A0A}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{84BEEA45-AC30-4875-9533-4691FEBB5A0A}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{853509B9-7719-4ECF-BF18-01E30FC64FFD}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{853509B9-7719-4ECF-BF18-01E30FC64FFD}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B327F9E2-FB45-4FF7-92BE-70C5E023BCCC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B327F9E2-FB45-4FF7-92BE-70C5E023BCCC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BDDA3D5F-1908-46EA-8893-8C02AD734639}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BDDA3D5F-1908-46EA-8893-8C02AD734639}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D2555650-B141-4E07-B070-6888BB1AD5B5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D2555650-B141-4E07-B070-6888BB1AD5B5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5E4AD02-E401-4299-82D2-2194B259D6F2}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5E4AD02-E401-4299-82D2-2194B259D6F2}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E244DDB4-2C6C-4521-9EF5-A9F0CBC25CAE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E244DDB4-2C6C-4521-9EF5-A9F0CBC25CAE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E911EE61-5F9A-409B-B1F5-306EC4D46736}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E911EE61-5F9A-409B-B1F5-306EC4D46736}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{ECCF19E7-780F-4B71-9BD3-109A90BB3758}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ECCF19E7-780F-4B71-9BD3-109A90BB3758}" => removed successfully
C:\WINDOWS\System32\Tasks\Avast Software\Overseer => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => removed successfully
C:\Program Files\Common Files\AVAST Software => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FD3B0E92-E3AC-4257-B6A6-BF2B4957C8D7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD3B0E92-E3AC-4257-B6A6-BF2B4957C8D7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully

vegaquemada · 31 Enero, 2019 23:43

Buenas noches. Me apareció hoy haciendo limpieza, debajo de un mueble la hoja en la que anoté las incidencias cuando ejecute el krack. En la hoja tengo anotado lo siguiente: SoftwareBundler:win32/Prepscram y no te lo comenté. LetsSee!2.05. Lets SeeiI2.08. C:\Program Filex (x86)LeetsSEE|\Ytloader.exe Disculpa que no lo posteara desde el principio pero con el nerviosismo no me acordé de la hoja hasta hoy que la vi. Recuerdo también que se me abrió una ventana pequeña de YouTube que cerré, y creo acordarme que fue con la versión de prueba del Malwarebytes donde vi esos archivos. El softwareBundler:win32/Prepscram, no lo recuerdo.

Miguelgrado · 1 Febrero, 2019 06:17

Bueno, virus ya no hay

Lo del explorador, eso es que tienes configurado que se abra al insertar un medio externo Escribe en cuadro de busqueda de Cortana:panel de control

Luego en “rep`roduccion automatica”, en unidades externas, o en los demas apartados, puedes elegir, que pregunte cada vez que los insertes, que se abra el explorador de archivos, que no haga nada…etc y pulsas en guardar

Comentas como va todo y dudas

vegaquemada · 1 Febrero, 2019 21:33

Buenas noches. Comentarte varias cosas: En Seguridad de Windows, Control de Aplicaciones y Navegador, protección de aplicaciones y seguridad en línea, pone esta configuración la administra el administrador en color rojo, Comprobar aplicaciones y archivos, el filtro SmartScreen está marcado en desactivado y no puedo cambiarlo. En configuración de antivirus y protección contra amenazas, en el apartado Exclusiones, salían 4 exclusiones, la primera la quite yo por error, en las otras 3 exclusiones pone lo siguiente: C:\WINDOWS\System32\SppExtComObjPatcher.ex C:\WINDOWS\Temp\KMSAuto_Files F:\KMSAUTO\KMSAUTO++.exe

Cuando clico botón derecho en una parte bacía del escritorio y salen las opciones, donde antes ponía nuevo documento de texto, ahora pone Plain Text. Y Por último El ccleaner, me detecta un montón de claves del registro que no sé qué hacer con ellas, de momento están ahí, en espera de lo que me digas. Muchas gracias.

Miguelgrado · 2 Febrero, 2019 20:13

Hola

Has accedido desde cuenta de Administrador??

Lo de las exclusiones, esas las añadirías tu para poder usar esos activa dores ilegales

Con Ccleaner limpia todo lo que sale

vegaquemada · 7 Febrero, 2019 14:57

Buenas tardes. Después de unos días ausente, hoy he pasado de nuevo el Eset Online Scanner y me ha detectado otra amenaza, te pego el archivo log.txt. del Eset. Como verás me dice que esta en la carpeta, C:\Users\Pepe\Download\ccsetup552.exe, si analizo la carpeta downloads, con Malwarebytes, me dice, 5 archivos escaneados, pero no veo más que cuatro

12:33:02 # product=EOS
# version=8
# ESETOnlineScanner_ESL.exe=3.0.17.0
# country="Spain"
# lang=13322
12:37:22 Updating
12:37:22 Update Init
12:37:33 Update Download
12:38:24 esets_scanner_reload returned 0
12:38:24 g_uiModuleBuild: 40313
12:38:24 Update Finalize
12:38:24 Call m_esets_charon_send
12:38:24 Call m_esets_charon_destroy
12:38:24 Updated modules version: 40313
12:38:35 Call m_esets_charon_setup_create
12:38:35 Call m_esets_charon_create
12:38:35 m_esets_charon_create OK
12:38:35 Call m_esets_charon_start_send_thread
12:38:35 Call m_esets_charon_setup_set
12:38:35 m_esets_charon_setup_set OK
12:38:35 Scanner engine: 40313
15:28:21 # product=EOS
# version=8
# flags=0
# av=0
# fw=7
# admin=1
# ESETOnlineScanner_ESL.exe=3.0.17.0
# EOSSerial=30563edf888aff4d8a181513078d659a
# engine=40313
# end=finished
# bannerClicked=0
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# sfx_checked=true
# utc_time=2019-02-07 14:28:20
# local_time=2019-02-07 15:28:20 (+0100, Hora estándar romance)
# country="Spain"
# lang=13322
# osver=10.0.17763 NT 
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 88 12336 12553194 0 0
# scanned=264648
# found=1
# cleaned=1
# scan_time=8839
# flow=2019-02-07 12:33:02|scr|home|2019-02-07 12:33:04|promo|eis|2019-02-07 12:33:46|scr|scan_type|2019-02-07 12:33:49|scr|custom_target|2019-02-07 12:36:21|scr|pua|2019-02-07 12:36:37|scr|adv_settings|2019-02-07 12:36:40|scr|pua|2019-02-07 12:36:52|scr|adv_settings|2019-02-07 12:36:55|scr|pua|2019-02-07 12:37:12|scr|updating|2019-02-07 12:38:24|scr|scanning|2019-02-07 15:05:44|scr|all_cleaned|2019-02-07 15:13:48|click|save_report|2019-02-07 15:15:24|scr|report_cleaned|2019-02-07 15:15:24|click|resolved_detections|2019-02-07 15:16:16|click|minimize|2019-02-07 15:17:05|click|minimize|2019-02-07 15:18:36|click|minimize|2019-02-07 15:18:49|click|minimize|2019-02-07 15:20:16|click|minimize|2019-02-07 15:21:50|scr|periodic_offer|2019-02-07 15:22:03|click|minimize|2019-02-07 15:22:27|scr|upsell|2019-02-07 15:22:50|scr|thanks_short|2019-02-07 15:23:22|click|minimize
# periodic=0,0
# stats_enabled=0
# scan_type=3
sh=CAB1D85A3FFB4F255E7847C892587D160831B86F ft=1 fh=0000000001272238 vn="Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura (desinfectado por eliminación)" ac=C fn="C:\Users\Pepe\Downloads\ccsetup552.exe"
15:28:21 Call m_esets_charon_send
15:28:21 Call m_esets_charon_destroy
15:28:22 Call m_esets_charon_send
15:28:22 Call m_esets_charon_destroy
15:28:31 # product=EOS
# version=8
# ESETOnlineScanner_ESL.exe=3.0.17.0
# country="Spain"
# lang=13322
15:29:58 # product=EOS
# version=8
# flags=0
# av=0
# fw=7
# admin=1
# ESETOnlineScanner_ESL.exe=3.0.17.0
# EOSSerial=30563edf888aff4d8a181513078d659a
# engine=0
# end=finished
# bannerClicked=0
# remove_checked=false
# archives_checked=false
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=false
# sfx_checked=false
# utc_time=2019-02-07 14:29:57
# local_time=2019-02-07 15:29:57 (+0100, Hora estándar romance)
# country="Spain"
# lang=13322
# osver=10.0.17763 NT 
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 88 12433 12553291 0 0
# scanned=0
# found=0
# cleaned=0
# scan_time=0
# flow=2019-02-07 15:28:31|scr|home|2019-02-07 15:28:33|scr|about|2019-02-07 15:28:33|promo|eis|2019-02-07 15:28:43|scr|h_quarantine
# periodic=0,0
# stats_enabled=4816
# scan_type=4640
15:29:58 Call m_esets_charon_send
15:29:58 Call m_esets_charon_destroy
15:30:49 # product=EOS
# version=8
# ESETOnlineScanner_ESL.exe=3.0.17.0
# country="Spain"
# lang=13322
15:34:28 # product=EOS
# version=8
# flags=0
# av=0
# fw=7
# admin=1
# ESETOnlineScanner_ESL.exe=3.0.17.0
# EOSSerial=30563edf888aff4d8a181513078d659a
# engine=0
# end=finished
# bannerClicked=0
# remove_checked=false
# archives_checked=false
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=false
# sfx_checked=false
# utc_time=2019-02-07 14:34:28
# local_time=2019-02-07 15:34:28 (+0100, Hora estándar romance)
# country="Spain"
# lang=13322
# osver=10.0.17763 NT 
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 88 12704 12553562 0 0
# scanned=0
# found=0
# cleaned=0
# scan_time=0
# flow=2019-02-07 15:30:49|scr|home|2019-02-07 15:30:50|scr|about|2019-02-07 15:30:51|promo|eis|2019-02-07 15:31:01|scr|h_quarantine|2019-02-07 15:31:13|click|minimize
# periodic=0,0
# stats_enabled=1954032296
# scan_type=309
15:34:28 Call m_esets_charon_send
15:34:28 Call m_esets_charon_destroy

Miguelgrado · 7 Febrero, 2019 18:46

Esta todo bien…

El instalador de Ccleaner es detectado porque ofrece la instalacion de otros programas, en este caso ,Chrome, y es normal que lo detecte.

Lo del numero de archivos analizados por Malwarebytes, este estará contando los ocultos del sistema…no hay problema tampoco, que seguro si muestras archivos ocultos de Windows, tengas alguno en ese directorio

Alguna duda mas??

vegaquemada · 7 Febrero, 2019 20:06

Tengo activado por defecto que se muestren archivos y carpetas ocultos, por lo cual, si hubiese algún archivo oculto en esa carpeta debería de verse, o no. De cualquier forma si decís que está todo bien, de acuerdo. Tomo nota de tus buenos consejos. Gracias.

Miguelgrado · 7 Febrero, 2019 20:19

Si, pero una cosa es tener visibles archivos y carpetas ocultos y otra opción son los archivos protegidos del sistema ( ver opciones de carpeta), que esa opción no debe tenerse como norma habilitada

vegaquemada · 7 Febrero, 2019 20:41

De acuerdo Miguel, Entonces, cerramos el tema. Muchas gracias por vuestra ayuda. Un saludo.

system · 10 Febrero, 2019 18:27

Este tema se cerró automáticamente 2 días después del último post. No se permiten nuevas respuestas.