Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 2/10/20
Hora del análisis: 17:08
Archivo de registro: df7f5d06-04fb-11eb-a0dc-7085c280c12b.json
-Información del software-
Versión: 4.2.1.89
Versión de los componentes: 1.0.1045
Versión del paquete de actualización: 1.0.30690
Licencia: Prueba
-Información del sistema-
SO: Windows 10 (Build 18362.1016)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-4NO3GIO\RICARDO
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 340272
Amenazas detectadas: 55
Amenazas en cuarentena: 55
Tiempo transcurrido: 1 min, 31 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 4
HackTool.KMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\KMSAutoNet, En cuarentena, 1298, 805275, , , , , ,
HackTool.KMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{446BC9E1-E47D-49DE-B993-258422E9DDC7}, En cuarentena, 1298, 805275, , , , , ,
HackTool.KMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{446BC9E1-E47D-49DE-B993-258422E9DDC7}, En cuarentena, 1298, 805275, , , , , ,
PUP.Optional.SearchYa, HKU\S-1-5-21-298326731-2040674408-755056328-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{993F5746-4C15-42BC-99C1-064A1764271B}, En cuarentena, 425, 242794, 1.0.30690, , ame, , ,
Valor del registro: 2
PUP.Optional.SearchManager.BITSRST, HKU\S-1-5-21-298326731-2040674408-755056328-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|bahkljhhdeciiaodlkppoonappfnheoi, En cuarentena, 283, 626736, , , , , ,
PUP.Optional.SearchYa, HKU\S-1-5-21-298326731-2040674408-755056328-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{993F5746-4C15-42BC-99C1-064A1764271B}|DISPLAYNAME, En cuarentena, 425, 242794, 1.0.30690, , ame, , ,
Datos del registro: 0
(No hay elementos maliciosos detectados)
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 8
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\EXTENSIONS\bahkljhhdeciiaodlkppoonappfnheoi, En cuarentena, 283, 626736, 1.0.30690, , ame, , ,
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV, En cuarentena, 1298, 805275, , , , , ,
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 283, 628563, , , , , ,
PUP.Optional.Delta, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 328, 455071, , , , , ,
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 283, 626729, , , , , ,
PUP.Optional.Delta, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 328, 455071, , , , , ,
Adware.Elex.ShrtCln, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 297, 454741, , , , , ,
PUP.Optional.Delta, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, En cuarentena, 328, 455071, , , , , ,
Archivo: 41
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, 283, 626736, , , , , 23F829B94E341AB4D03186454B5619E1, 0F2AD2D4350D955FA7374918965F690C61BF2406A784ED985F5A3930A4ACCFA6
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sustituido, 283, 626736, , , , , 728088D33EFB79EA66B58CDB101D5346, 0D47627FC2117EED39543FAF7F5F2FE2B9F5F7D9E8AAC1F7AA5F7D6A33248CB7
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP1\devcon.exe, En cuarentena, 1298, 805275, , , , , 3904D0698962E09DA946046020CBCB17, A51E25ACC489948B31B1384E1DC29518D19B421D6BC0CED90587128899275289
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP1\OemVista.inf, En cuarentena, 1298, 805275, , , , , 864625122184689B4854483B51BD4C09, 4A4CC81DD6655906E817EBAEDE1692871A79B7000A5F9188B30082C06C71894B
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP1\ptun0901.sys, En cuarentena, 1298, 805275, , , , , D8EB393983B644879DE0546122CC16DF, 4A11DDFB016B560E770660183AF1ADA4831D97DAEAF560E60259F81F2727CBFC
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP2\devcon.exe, En cuarentena, 1298, 805275, , , , , 7F0C8F7B6F6D22ECD83013F2F26A71AE, A4E561F666C08353C2226E8E264555C406893B0AD1B74FD05F4F29655E128809
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP2\tapoas.inf, En cuarentena, 1298, 805275, , , , , 61243CB103543EE3163BF16DF69BCB54, 1652B1DE2F15EEACBD06E0AB14ADA5A466316FFD3AB88D4A2A46CFCBD25FDFA1
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP2\tapoas.sys, En cuarentena, 1298, 805275, , , , , 927D0CDB3F96EFC1E98FB1A2C9FB67AD, 58F14DAA0EA21EA2F2A1D3D62C88BD8E5A0E0EF498B7B8D367BEEADE6A46843C
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\FakeClient.exe, En cuarentena, 1298, 805275, , , , , B85F4CE841F3AE1EBDF76835D2EADBEF, CE28748F6AE7B54AB35FC31D825E80A26E143737CF4748FFF523781E04C1EE79
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\WdfCoInstaller01009.dll, En cuarentena, 1298, 805275, , , , , BE566E174EAF5B93B0474593CD8F2715, CEE8496BFA1080FD84FC48BA4375625238900FE93EA739B2DC0300206FDE8330
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\WinDivert.dll, En cuarentena, 1298, 805275, , , , , 3F0C03E5076C7E6B404F894FF4DC5BB1, 4E7EBED8410C83B73A23185AA94680143DA2933305CD6DEEFE8EC0B51B7EE6F3
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\WinDivert.inf, En cuarentena, 1298, 805275, , , , , A94D989905A248AFCA52BC3CBFCB248B, 6C9F7DEA4F9A47788D5D2BA110B08457FD00DBABE4812EBCA6F022300843A75D
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\WinDivert.sys, En cuarentena, 1298, 805275, , , , , A0D15D8727D0780C51628DF46B7268B3, 5E23F3ED1D6620C39A644F9879404A22DED86B3B076EC4A898B4B6BE244AFD64
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\oas_sert.cer, En cuarentena, 1298, 805275, , , , , 0041584E5F66762B1FA9BE8910D0B92B, BB27684B569CBB72DEC63EA6FDEF8E5F410CDAEB73717EEE1B36478DBCFF94CC
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\tap0901.cer, En cuarentena, 1298, 805275, , , , , 3D5FFD53BE77C32CBB147F32423C0A86, 669C56DB590C0308EA25C4508375BB88611B06B1AE689A895DC6B19F4DF5619C
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\KMSSS.exe, En cuarentena, 1298, 805275, , , , , 22FC15F2C2E2A77BC5A1186E5F55D7D3, 4C8C3BED3D9E8F48800065E4AC024AEF237861AAA37443D4B00B98569D83AEEA
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\KMSSS.log, En cuarentena, 1298, 805275, , , , , 8152CFE631F170C65F2C4B8A47EE560A, CEEDAFF19CED94CA64BBCE7660865749CBB5167F1F986459D5A72F518872DF25
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\TunMirror.exe, En cuarentena, 1298, 805275, , , , , FB5F055633E4F7890004972E108A07CD, 02145C3F60E704DF17919CD26CB79BD31A12B98D66B0B7FD1CF7EA894AD1F871
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\TunMirror2.exe, En cuarentena, 1298, 805275, , , , , 3B33E3AB6E91806DF4CAE19405AB8846, D9CD47831FABA4053225DAC181709FD7AB9D066C3DE6F541968FFFEEEE4A9BF9
HackTool.KMS, C:\ProgramData\KMSAutoS\KMSAuto Net.exe, En cuarentena, 1298, 805275, , , , , 311F3BAA9BFA5B2364FEA8B254D15EB9, BEA219F0F08ED083677A0B869E658BA09785F470668EADC659DB2885FA89F3B9
HackTool.KMS, C:\ProgramData\KMSAutoS\kmsauto.ini, En cuarentena, 1298, 805275, , , , , 545AD8C59E4F647D76A6D653172E5095, AD6804074EB1593149686CCA3BD7876C3CDB9D75408F1FF045D9B096C08E14C6
HackTool.KMS, C:\WINDOWS\SYSTEM32\TASKS\KMSAutoNet, En cuarentena, 1298, 805275, , , , , 287153F58624118B1EF089B0EFE39DE0, 85144E557653BF57FD9BE4412E38B31D26310AF946C741CC933CCFF601A73319
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\BAHKLJHHDECIIAODLKPPOONAPPFNHEOI\10.1.4.125_0\MANIFEST.JSON, En cuarentena, 283, 626728, 1.0.30690, , ame, , A27BC447188DBEF3CF0F4624A32D06C1, DC187945B4E619DA33995F87C4429A330E82CF1C404939953DD39939A454E7D9
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\BAHKLJHHDECIIAODLKPPOONAPPFNHEOI\10.1.4.125_0\RESPONSECONFIG.JSON, En cuarentena, 283, 626727, 1.0.30690, , ame, , BB47A06F21AF0043213A70F7F0E7CFB6, F462BF03DA7F4267DEC8C45E5BC81BF024D541E50C6D5FDF97AF1C3CBCE59241
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, En cuarentena, 283, 628563, , , , , 9484F94BDBA4C6FAA04318E8365A1D62, A40DB79822322B0C86883FE7D5D75DE3A90A246A9FEEC75003429827F5B1BC51
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\010129.ldb, En cuarentena, 283, 628563, , , , , F4D9489D3DE937E007C87722EAE98C3C, A8D1A2B5A2240BD1933B42CC3B40CEFA7AFD01EDD1EC7A32B0894A8C5AF4E343
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\010132.ldb, En cuarentena, 283, 628563, , , , , 23E6EC2BE56639F2FCA814BBAE69A0F9, 4F6A4DA6DE77A5EB7F225E6F9585BFD330AAA726343DAB2D675F0EB736316F3F
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\010134.ldb, En cuarentena, 283, 628563, , , , , 917A8895DC202E217746473091047AEE, 89F42DBA0525E131B496B85C16AD1FF62D3571782F2FEB0B65869A76B0448081
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\010135.log, En cuarentena, 283, 628563, , , , , CF4F435AE013F356DEEB44E9201275F4, 254C952D7B108877DDBEDD1668413AA18F3BD8285E1846A7A7FF766C2EF2BE0D
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\010136.ldb, En cuarentena, 283, 628563, , , , , AC0A917C8925C903F2070DA661ED65D9, 227A2E9F437DF9A2CD29481B27323593DB5F52C5F235B1FF2B5A60F10D3CC14A
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, En cuarentena, 283, 628563, , , , , 46295CAC801E5D4857D09837238A6394, 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, En cuarentena, 283, 628563, , , , , ,
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, En cuarentena, 283, 628563, , , , , 480B358FEA0EEC19B02B05AA69003670, 8D5C38C81B7FADBC084454FF300CA8605FC6DAA3F221D80276841505C63C049B
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, En cuarentena, 283, 628563, , , , , C17E41D1EAF291453FDE496FECA83834, 9C43B95EDF882134894A9938727FC36E1683CDDCDFA1433953E73D61407F6ED5
PUP.Optional.SearchManager.BITSRST, C:\Users\RICARDO\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, En cuarentena, 283, 628563, , , , , 27EA96A47D4CD2DE87A6CAFFB33CAF76, 16572236B9C0C78B78F0E122A3A8CF5230F2A2DBB5C25E0B7B890F78C4CF2927
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, 283, 628563, 1.0.30690, , ame, , 23F829B94E341AB4D03186454B5619E1, 0F2AD2D4350D955FA7374918965F690C61BF2406A784ED985F5A3930A4ACCFA6
PUP.Optional.Delta, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 328, 455071, 1.0.30690, , ame, , 19D29022CBCBD20FCBFE4C48876D0DFE, 83D01D97CF21C1B09E9F562042FAE673B49958FE4414657531625659EC6AE6C3
PUP.Optional.SearchManager.BITSRST, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, 283, 626729, 1.0.30690, , ame, , 23F829B94E341AB4D03186454B5619E1, 0F2AD2D4350D955FA7374918965F690C61BF2406A784ED985F5A3930A4ACCFA6
PUP.Optional.Delta, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 328, 455071, 1.0.30690, , ame, , 19D29022CBCBD20FCBFE4C48876D0DFE, 83D01D97CF21C1B09E9F562042FAE673B49958FE4414657531625659EC6AE6C3
Adware.Elex.ShrtCln, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 297, 454741, 1.0.30690, , ame, , 19D29022CBCBD20FCBFE4C48876D0DFE, 83D01D97CF21C1B09E9F562042FAE673B49958FE4414657531625659EC6AE6C3
PUP.Optional.Delta, C:\USERS\RICARDO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, 328, 455071, 1.0.30690, , ame, , 19D29022CBCBD20FCBFE4C48876D0DFE, 83D01D97CF21C1B09E9F562042FAE673B49958FE4414657531625659EC6AE6C3
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 2/10/20
Hora del análisis: 17:15
Archivo de registro: b6348fec-04fc-11eb-a952-7085c280c12b.json
-Información del software-
Versión: 4.2.1.89
Versión de los componentes: 1.0.1045
Versión del paquete de actualización: 1.0.30692
Licencia: Prueba
-Información del sistema-
SO: Windows 10 (Build 18362.1016)
CPU: x64
Sistema de archivos: NTFS
Usuario: System
-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Programador de tareas
Resultado: Completado
Objetos analizados: 994727
Amenazas detectadas: 13
Amenazas en cuarentena: 13
Tiempo transcurrido: 5 hr, 20 min, 39 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 0
(No hay elementos maliciosos detectados)
Valor del registro: 0
(No hay elementos maliciosos detectados)
Datos del registro: 0
(No hay elementos maliciosos detectados)
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 0
(No hay elementos maliciosos detectados)
Archivo: 13
Malware.AI.2576528072, D:\DATOS\DOWNLOADS\MEGA SAMPLES VOL-91\XFER SERUM UPDATE 120B9 WIN FIX X86 X64.RAR, Se eliminará al reiniciar, 1000000, 0, 1.0.30692, 6536D9628CAE60699992B2C8, dds, 00922853, F8FFDD6A3372F8B4DE5E038A7DDC01FF, E072638C4A58FD5E35D1F1A10682EA6A4E77D0F1F8B2FFA63CBB667F71B8FD92
HackTool.Agent, D:\FL\PROGRAMAS\MAGIX_SAMPLITUDE_MUSIC_STUDIO_16_VERSION_PARA_DESCARGAR\SAMPLITUDE_MUSIC_STUDIO_16_VERSION_PARA_DESCARGAR\MAGIX.SAMPLITUDE.MUSIC.STUDIO.16-MPT.EXE, Se eliminará al reiniciar, 3937, 1570, 1.0.30692, 0000000000000000000003EB, dds, 00922853, 00094990368E1950AE6CC782AFB983F6, 3E62320111C7AE8AC9D40E3AAA71692D9F8878081106E8A12BC514C7F27F25FA
RiskWare.Tool.CK, D:\FL\PROGRAMAS\GUITAR_PRO_5.2_+_KEYGEN.RAR, Se eliminará al reiniciar, 7328, 133356, 1.0.30692, , ame, , 4258DCB97634E60315D2B309CC5ABD24, 1070EA4471BFED7BAA8982CF794D32528AC7E92D66278F534C5E53B894CE1FDB
Malware.AI.825494617, D:\FL\VST\NICKY.ROMERO.KICKSTART.V1.0.9.INCL.KEYGEN-R2R.RAR, Se eliminará al reiniciar, 1000000, 0, 1.0.30692, 5B0E4FB74DFE741831340C59, dds, 00922853, 2345FEF86C0B3485E144309FF2685A80, 43930135C007A74BC51B6C02B1CD1F5474EA1851FCE8270AA1853A1CECD2363C
MachineLearning/Anomalous.100%, D:\FL\VST\PSP AUDIOWARE - VINTAGE WARMER 2.5.2 VST.RTAS X86 X64-20200404T034442Z-001.ZIP, Se eliminará al reiniciar, 0, 392687, 1.0.30692, , shuriken, , DB77B26C29D665D056EA8E46EEB5723B, 8766A9A8C27E2BCE52DE89E260EE7155DC58EEA65DEBDE0747D7A12DDF146C40
Generic.Malware/Suspicious, D:\FL\VST\VALHALLA.DSP.VALHALLADELAY.V1.0.3.2.INCL.PATCHED.AND.KEYGEN-R2R.RAR, Se eliminará al reiniciar, 0, 392686, 1.0.30692, , shuriken, , E1C184601DA0A98D3B80022FF3E0519F, 00FEF71E006F1B96EDF8001BAB36933C06F4152AF860D167A0FF8401AA6E8043
CrackTool.Keygen, D:\FL\VST\FABFILTER_KEYGEN.EXE, Se eliminará al reiniciar, 7604, 823818, 1.0.30692, E5FAAB5E0B673406FF7101F8, dds, 00922853, 374382CBE56B5834046A681CB7DC2662, F501E4403469884F00CDF9B1043D36841EFA05D5C1E6A6FBF5B7E8009E761B3B
Malware.AI.4291975219, D:\FL\VST INSTALADOS\KONTAKT\NI KONTAKT 6\CF\KONTAKT\ADD LIBRARY.EXE, Se eliminará al reiniciar, 1000000, 0, 1.0.30692, 97C89D36AB88DC61FFD25833, dds, 00922853, 954067251BFBBE5572B08AFBD393DAF9, 7BA4E0B1FFE00A932B6FB8F42153376042F27B9156C6E80B60A4458B704BF364
Generic.Malware/Suspicious, D:\FL\VSTIS\SYNTHS\DUNE VSTI V1.3.1. X86 X64\KEYGEN.EXE, Se eliminará al reiniciar, 0, 392686, 1.0.30692, , shuriken, , C0625498194F4DB35CD04F519CF05FE8, 5B07E6FDD51DB4720BDE8901B3922695550CEABA0E1C342225229232C7BA39C7
Generic.Malware/Suspicious, D:\FL\VSTIS\SYNTHS\REVEAL.SOUND.SPIRE.V1.1.16.INCL.PATCHED.AND.KEYGEN.READ.NFO-R2R\R2R\SPIRE_KEYGEN.EXE, Se eliminará al reiniciar, 0, 392686, 1.0.30692, , shuriken, , 5EC4673FC5C5669D0696858AED61FF06, 076A912621202D3A1E32EDD82729798FFF47D17D386FC7BF799EBDC32A3A14C7
MachineLearning/Anomalous.100%, D:\PROGRAM INSTALLERS\AUTOCAD 2019 64\AUTODESK AUTOCAD 2019 64BITS ES\ACTIVADOR\X-FORCE 2019.RAR, Se eliminará al reiniciar, 0, 392687, 1.0.30692, , shuriken, , DAEE3AEAF55C6C4F5305C148809BB1B5, 7EB124EFDFD5F3945773E515A234DF1892D6818E0E0B0652356EAE812C9C47B9
MachineLearning/Anomalous.100%, D:\PROGRAM INSTALLERS\AUTOCAD 2019 64\AUTODESK AUTOCAD 2019 64BITS ES\ACTIVADOR\XF-ADESK19_X64.EXE, Se eliminará al reiniciar, 0, 392687, 1.0.30692, , shuriken, , D7E19A629E102152CCB6EB2307DB8523, 52F756A73C0DB036B07D590708CC72D0D1AD5D4827B6F38345AFA17564AC85F8
Adware.FusionCore, D:\PROGRAM INSTALLERS\SETUPIMGBURN_2.5.8.0.EXE, Se eliminará al reiniciar, 7410, 770512, 1.0.30692, , ame, , 0B4C94F8480F8CD13E160BCEAAAA8B29, D7DEA2819EDC77BC44DB637CD324E61942B54930CB3034F8F1A417B7DD27B514
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-09-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-02-2020
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 20
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files\Hola
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\Users\RICARDO\AppData\Roaming\Hola
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Hola
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hola.org
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKLM\Software\Hola
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|hola
Deleted HKLM\Software\Wow6432Node\Hola
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
***** [ Chromium (and derivatives) ] *****
Deleted bahkljhhdeciiaodlkppoonappfnheoi
Deleted bahkljhhdeciiaodlkppoonappfnheoi
Deleted bahkljhhdeciiaodlkppoonappfnheoi
***** [ Chromium URLs ] *****
Deleted V9
Deleted delta-homes
Deleted delta-homes
Deleted delta-homes
Deleted delta-homes
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2711 octets] - [02/10/2020 22:38:19]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########