Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 3/3/19
Hora del análisis: 20:24
Archivo de registro: 38eac856-3e1c-11e9-b205-2cfda17debde.json

-Información del software-
Versión: 3.7.1.2839
Versión de los componentes: 1.0.538
Versión del paquete de actualización: 1.0.9524
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 17134.590)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-U32J61O\David Mateo Diaz

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 295201
Amenazas detectadas: 318
Amenazas en cuarentena: 318
Tiempo transcurrido: 20 min, 11 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 3
Adware.Tuto4PC, C:\Program Files (x86)\Multitimer\Multitimer.exe, En cuarentena, [2811], [474048],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\ShutdownTime.exe, En cuarentena, [2811], [425765],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\Y2JlOGMyYzc1YjY4M.exe, En cuarentena, [495], [556539],1.0.9524

Módulo: 4
Adware.Tuto4PC, C:\Program Files (x86)\Multitimer\Multitimer.exe, En cuarentena, [2811], [474048],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\ShutdownTime.exe, En cuarentena, [2811], [425765],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\Y2JlOGMyYzc1YjY4M.exe, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam.Generic, C:\WINDOWS\XKNWRNJABMZHVLB.XKU, En cuarentena, [4899], [580251],1.0.9524

Clave del registro: 73
PUP.Optional.OneSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\One System Care Delayed, En cuarentena, [622], [241381],1.0.9524
PUP.Optional.OneSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0690C8B9-2A2F-4128-B27E-B467C3DAD57A}, En cuarentena, [622], [241381],1.0.9524
PUP.Optional.OneSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{0690C8B9-2A2F-4128-B27E-B467C3DAD57A}, En cuarentena, [622], [241381],1.0.9524
Adware.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Multitimer_is1, En cuarentena, [2811], [474048],1.0.9524
PUP.Optional.RunBooster, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\RunBooster, En cuarentena, [5465], [368478],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\UPDATER_ONLINE_APPLICATION, En cuarentena, [3685], [391429],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{28EAEF14-79EA-4C02-8F0A-89DF5DC176EC}, En cuarentena, [3685], [391429],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{28EAEF14-79EA-4C02-8F0A-89DF5DC176EC}, En cuarentena, [3685], [391429],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G1, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{40BC2C0B-5096-490F-A4A0-389DA69D4680}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{40BC2C0B-5096-490F-A4A0-389DA69D4680}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G2, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{08D52591-F20F-47C6-83BF-F1F1D0305A15}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{08D52591-F20F-47C6-83BF-F1F1D0305A15}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G3, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2E6F338F-56E9-4F30-A5E6-B1F183EFDBA2}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{2E6F338F-56E9-4F30-A5E6-B1F183EFDBA2}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G4, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{7D56AFA0-B013-4831-987D-BEC874E91557}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{7D56AFA0-B013-4831-987D-BEC874E91557}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G5, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E0C583AD-1B55-4594-8BB2-085F67442274}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{E0C583AD-1B55-4594-8BB2-085F67442274}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application V2G6, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{73CAE331-605B-49DD-A819-047BF9C2F0D0}, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{73CAE331-605B-49DD-A819-047BF9C2F0D0}, En cuarentena, [1195], [399420],1.0.9524
Adware.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SVC UPDATE, En cuarentena, [1120], [434799],1.0.9524
Adware.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8724891A-45F4-43F9-9AE1-7FE12A6038D1}, En cuarentena, [1120], [434799],1.0.9524
Adware.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{8724891A-45F4-43F9-9AE1-7FE12A6038D1}, En cuarentena, [1120], [434799],1.0.9524
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, En cuarentena, [495], [-1],0.0.0
Adware.FastDataX.EncJob, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\FastDataX_is1, En cuarentena, [2115], [407194],1.0.9524
Adware.FastDataX, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\FastDataX, En cuarentena, [3948], [484533],1.0.9524
PUP.Optional.Wajam, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\WajIEnhance, En cuarentena, [202], [244670],1.0.9524
Adware.Tuto4PC, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\EWMON, En cuarentena, [2811], [411543],1.0.9524
PUP.Optional.Tuto4PC, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\wewewe, En cuarentena, [691], [339689],1.0.9524
Adware.Tuto4PC, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\BIGTIME, En cuarentena, [2811], [411542],1.0.9524
PUP.Optional.Linkury, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{ielnksrch}, En cuarentena, [253], [259313],1.0.9524
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZmI0OTFlZjIwZDcyMWI2, En cuarentena, [495], [556539],1.0.9524
Adware.Tuto4PC, HKLM\SOFTWARE\Foldershare, En cuarentena, [2811], [536223],1.0.9524
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\ielnksrch, En cuarentena, [799], [259989],1.0.9524
Adware.SearchAwesome, HKLM\SOFTWARE\SrcAAAesom Browser Enhancer, En cuarentena, [7166], [509886],1.0.9524
Adware.Linkury, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\Quoteex.exe, En cuarentena, [1171], [527830],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\Online Application, En cuarentena, [1195], [527822],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\Online.io Application, En cuarentena, [3685], [317312],1.0.9524
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SILENTPROCESSEXIT\Quoteex.exe, En cuarentena, [799], [260624],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, En cuarentena, [3685], [339688],1.0.9524
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\Quoteex_RASAPI32, En cuarentena, [799], [260623],1.0.9524
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\Quoteex_RASMANCS, En cuarentena, [799], [260623],1.0.9524
Adware.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\Quoteex.exe, En cuarentena, [1171], [527830],1.0.9524
Adware.Wajam, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ZmI0OTFlZjIwZDcyMWI2, En cuarentena, [495], [533738],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, En cuarentena, [3685], [321304],1.0.9524
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{CE70A757-BF25-469D-B8EF-9E4D540B88FA}, En cuarentena, [253], [239939],1.0.9524
Adware.Wajam.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NGI1OTVkZ, En cuarentena, [4899], [580251],1.0.9524
Trojan.Agent, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Amazon assistant 1.0, En cuarentena, [417], [533745],1.0.9524
Trojan.Agent, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Amazon assistant 2.0, En cuarentena, [417], [533745],1.0.9524
Trojan.Agent.E, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Ebayssistant 1.0, En cuarentena, [3714], [623237],1.0.9524
Trojan.Agent.E, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Look Picture Tool, En cuarentena, [3714], [623238],1.0.9524
Trojan.Agent.E, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\telezilla, En cuarentena, [3714], [623239],1.0.9524
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\bestavicampaign563, En cuarentena, [447], [584322],1.0.9524
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\mtQuoteex, En cuarentena, [799], [260625],1.0.9524
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, En cuarentena, [447], [518478],1.0.9524
Adware.SearchAwesome, HKLM\SOFTWARE\WOW6432NODE\SrcAAAesom Browser Enhancer, En cuarentena, [7166], [509886],1.0.9524
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, En cuarentena, [447], [518476],1.0.9524
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\Speedycar, En cuarentena, [447], [518473],1.0.9524
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\TechnologyDesktopnew, En cuarentena, [447], [518479],1.0.9524
Adware.Csdimonetize.E, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\foldershare, En cuarentena, [5238], [623233],1.0.9524
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\DMUNVERSION, En cuarentena, [447], [518477],1.0.9524
Adware.Neoreklami.ChrPRST, HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME, En cuarentena, [2549], [-1],0.0.0
Adware.Neoreklami.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\CHROME, En cuarentena, [2549], [-1],0.0.0
PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, En cuarentena, [202], [170024],1.0.9524
PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, En cuarentena, [202], [170024],1.0.9524
PUP.Optional.Wajam, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9, En cuarentena, [202], [170024],1.0.9524
Adware.Adposhel, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\OneSystemCare_is1, En cuarentena, [510], [647525],1.0.9524

Valor del registro: 36
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En cuarentena, [799], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En cuarentena, [799], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\ENVIRONMENT|SNF, En cuarentena, [799], [-1],0.0.0
Adware.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Multitimer, En cuarentena, [2811], [474048],1.0.9524
Adware.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ShutdownTime, En cuarentena, [2811], [425765],1.0.9524
Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En cuarentena, [495], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En cuarentena, [495], [-1],0.0.0
Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En cuarentena, [495], [-1],0.0.0
Adware.Tuto4PC, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\EWMON|PARTNER, En cuarentena, [2811], [411543],1.0.9524
Adware.Tuto4PC, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\BIGTIME|PARTNER, En cuarentena, [2811], [411542],1.0.9524
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, En cuarentena, [799], [259988],1.0.9524
PUP.Optional.Linkury, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{ielnksrch}|DISPLAYNAME, En cuarentena, [253], [259313],1.0.9524
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\ielnksrch|URL, En cuarentena, [799], [259989],1.0.9524
Adware.Wajam, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ZmI0OTFlZjIwZDcyMWI2|DISPLAYNAME, En cuarentena, [495], [533738],1.0.9524
Adware.Wajam, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ZmI0OTFlZjIwZDcyMWI2|PUBLISHER, En cuarentena, [495], [533738],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}|CONTACT, En cuarentena, [3685], [333852],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}|URLINFOABOUT, En cuarentena, [3685], [321304],1.0.9524
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{CE70A757-BF25-469D-B8EF-9E4D540B88FA}|PUBLISHER, En cuarentena, [253], [239939],1.0.9524
Adware.Wajam.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NGI1OTVkZ|IMAGEPATH, En cuarentena, [4899], [580251],1.0.9524
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\ENVIRONMENT|SNF, En cuarentena, [799], [259517],1.0.9524
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\ENVIRONMENT|SNP, En cuarentena, [799], [259518],1.0.9524
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{ielnksrch}|URL, En cuarentena, [799], [259987],1.0.9524
PUP.Optional.OneSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0690C8B9-2A2F-4128-B27E-B467C3DAD57A}|PATH, En cuarentena, [622], [258705],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{08D52591-F20F-47C6-83BF-F1F1D0305A15}|PATH, En cuarentena, [1195], [527820],1.0.9524
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{28EAEF14-79EA-4C02-8F0A-89DF5DC176EC}|PATH, En cuarentena, [3685], [391427],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2E6F338F-56E9-4F30-A5E6-B1F183EFDBA2}|PATH, En cuarentena, [1195], [527820],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{40BC2C0B-5096-490F-A4A0-389DA69D4680}|PATH, En cuarentena, [1195], [527820],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{73CAE331-605B-49DD-A819-047BF9C2F0D0}|PATH, En cuarentena, [1195], [527820],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{7D56AFA0-B013-4831-987D-BEC874E91557}|PATH, En cuarentena, [1195], [527820],1.0.9524
Adware.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8724891A-45F4-43F9-9AE1-7FE12A6038D1}|PATH, En cuarentena, [1120], [434797],1.0.9524
Adware.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E0C583AD-1B55-4594-8BB2-085F67442274}|PATH, En cuarentena, [1195], [527820],1.0.9524
Adware.RunBooster, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\RUNBOOSTER|DESCRIPTION, En cuarentena, [6037], [357591],1.0.9524
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\DMUNVERSION|VERSION, En cuarentena, [447], [518477],1.0.9524
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\ielnksrch|DISPLAYNAME, En cuarentena, [253], [259314],1.0.9524
Adware.Neoreklami.ChrPRST, HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME\ExtensionInstallWhitelist|1, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\CHROME\ExtensionInstallWhitelist|1, En cuarentena, [2549], [641228],1.0.9524

Datos del registro: 7
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, Sustituido, [799], [293486],1.0.9524
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Sustituido, [253], [293477],1.0.9524
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH PAGE, Sustituido, [799], [293485],1.0.9524
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Sustituido, [799], [293485],1.0.9524
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, Sustituido, [799], [293485],1.0.9524
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, Sustituido, [799], [293485],1.0.9524
PUP.Optional.Linkury, HKU\S-1-5-21-4175682127-3877867951-1631616607-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Sustituido, [253], [293476],1.0.9524

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 37
PUP.Optional.OneSystemCare, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\ONE SYSTEM CARE, En cuarentena, [622], [241379],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\ondemand, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\PROGRAMDATA\QUOTEEX, En cuarentena, [799], [260620],1.0.9524
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\MULTITIMER, En cuarentena, [2811], [474048],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\USERS\DAVID MATEO DIAZ\APPDATA\ROAMING\ONE SYSTEM CARE, En cuarentena, [622], [178764],1.0.9524
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\SHUTDOWNTIME, En cuarentena, [2811], [425765],1.0.9524
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\PROGRAM FILES (X86)\MICROLEAVES, En cuarentena, [1195], [399420],1.0.9524
Adware.Wajam, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\TEMP\5plsuplm.rd5, En cuarentena, [495], [450113],1.0.9524
Adware.Tuto4PC, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\TEMP\T8KE8HH9A5, En cuarentena, [2811], [487472],1.0.9524
Adware.Wajam, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\TEMP\v3hu2p0i.ff2, En cuarentena, [495], [450113],1.0.9524
Adware.FastDataX.EncJob, C:\PROGRAM FILES (X86)\FASTDATAX, En cuarentena, [2115], [407194],1.0.9524
Adware.Wajam, C:\WINDOWS\SYSWOW64\SSL, En cuarentena, [495], [533889],1.0.9524
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\FOLDERSHARE, En cuarentena, [2811], [474043],1.0.9524
Adware.Wajam, C:\PROGRAM FILES\ZmI0OTFlZjIwZDcyMWI2, En cuarentena, [495], [556539],1.0.9524
PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, En cuarentena, [3685], [391425],1.0.9524
Adware.OnlineIO, C:\Users\David Mateo Diaz\AppData\Roaming\Microleaves\Online Application 2.7.0\install\CFCBAA1, En cuarentena, [1195], [399763],1.0.9524
Adware.OnlineIO, C:\Users\David Mateo Diaz\AppData\Roaming\Microleaves\Online Application 2.7.0\install, En cuarentena, [1195], [399763],1.0.9524
Adware.OnlineIO, C:\Users\David Mateo Diaz\AppData\Roaming\Microleaves\Online Application 2.7.0, En cuarentena, [1195], [399763],1.0.9524
Adware.OnlineIO, C:\USERS\DAVID MATEO DIAZ\APPDATA\ROAMING\MICROLEAVES, En cuarentena, [1195], [399763],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\X64, En cuarentena, [1171], [431817],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\X86, En cuarentena, [1171], [431817],1.0.9524
Adware.Linkury, C:\PROGRAMDATA\LOGIC CRAMBLE, En cuarentena, [1171], [431817],1.0.9524
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\JCOSDNFAHE, En cuarentena, [3707], [385289],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\_metadata, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\FODAGHPPPNCFCNAOCHHHAEPFKEJHDLLJ, En cuarentena, [2549], [641228],1.0.9524
PUP.Optional.Linkury.Generic, C:\PROGRAMDATA\QUOTEEXS, En cuarentena, [218], [380106],1.0.9524
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\A9YPSUA15K, En cuarentena, [3707], [385289],1.0.9524
Adware.Linkury.TskLnk, C:\PROGRAM FILES (X86)\COMMON FILES\STATTOUCH, En cuarentena, [14602], [444932],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\_metadata, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\USERS\DAVID MATEO DIAZ\APPDATA\ROAMING\OPERA SOFTWARE\OPERA STABLE\EXTENSIONS\FODAGHPPPNCFCNAOCHHHAEPFKEJHDLLJ, En cuarentena, [2549], [641230],1.0.9524
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\2F3KU91VHM, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\2W4CVZBO8G, En cuarentena, [3707], [385289],1.0.9524

Archivo: 158
PUP.Optional.OneSystemCare, C:\WINDOWS\SYSTEM32\TASKS\One System Care Delayed, En cuarentena, [622], [241381],1.0.9524
PUP.Optional.OneSystemCare, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\ONE SYSTEM CARE\LAUNCH ONE SYSTEM CARE.LNK, En cuarentena, [622], [241379],1.0.9524
PUP.Optional.OneSystemCare, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One System Care\One System Care on the Web.url, En cuarentena, [622], [241379],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\PROGRAMDATA\QUOTEEX\conf.config, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Saltex.bin, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Fixtech.bin, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Indigohold.bin, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Keyjob.exe.config, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\md.xml, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Opeity.bin, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Quoteex.d.dat, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Quoteex.dat, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\rme4wm2r.xml, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Sanphase.exe, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Sanphase.exe.config, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Sumkix.bin, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Tanzunstrong.bin, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\uninstall.dat, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Ventolax.bin, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\X-tone.dat, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Zamity.dat, En cuarentena, [799], [260620],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\ZunSoldox.dat, En cuarentena, [799], [260620],1.0.9524
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\MULTITIMER\UNINS000.DAT, En cuarentena, [2811], [474048],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\Multitimer\Multitimer.exe, En cuarentena, [2811], [474048],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\Multitimer\unins000.exe, En cuarentena, [2811], [474048],1.0.9524
PUP.Optional.Linkury.ACMB1, C:\WINDOWS\SYSWOW64\FINDIT.XML, En cuarentena, [799], [259512],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\Danish.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\Dutch.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\English.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\EnglishPC.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\French.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\German.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\Italian.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\Norwegian.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\Parameters.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\Portuguese.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\Spanish.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.OneSystemCare, C:\Users\David Mateo Diaz\AppData\Roaming\One System Care\Languages\Swedish.json, En cuarentena, [622], [178764],1.0.9524
PUP.Optional.RunBooster, C:\PROGRAM FILES\RUNBOOSTER\WINDIVERT.DLL, En cuarentena, [5465], [368478],1.0.9524
PUP.Optional.RunBooster, C:\Program Files\RunBooster\RunBoosterService64.exe, En cuarentena, [5465], [368478],1.0.9524
PUP.Optional.OnlineIO, C:\WINDOWS\TASKS\UPDATER_ONLINE_APPLICATION.job, En cuarentena, [3685], [391429],1.0.9524
PUP.Optional.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\UPDATER_ONLINE_APPLICATION, En cuarentena, [3685], [391429],1.0.9524
Adware.Linkury.Generic, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\UNINSTALL_TEMP.ICO, En cuarentena, [3746], [404862],1.0.9524
PUP.Optional.WinHTTP, C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\WINHTTP.DLL, En cuarentena, [5284], [382898],1.0.9524
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\SHUTDOWNTIME\UNINS000.DAT, En cuarentena, [2811], [425765],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\cast.config, En cuarentena, [2811], [425765],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\config.conf, En cuarentena, [2811], [425765],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\DY0DDE0VA7OBI8V.exe.config, En cuarentena, [2811], [425765],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\ShutdownTime.exe, En cuarentena, [2811], [425765],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\UCMNZ.exe.config, En cuarentena, [2811], [425765],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\unins000.exe, En cuarentena, [2811], [425765],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\ShutdownTime\uninstaller.exe.config, En cuarentena, [2811], [425765],1.0.9524
Adware.OnlineIO, C:\PROGRAM FILES (X86)\MICROLEAVES\Online Application\Online Application Updater.exe, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online.io EULA.url, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online.io Privacy.url, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Uninstall Online Application.lnk, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.ini, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G1.job, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G1, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G2.job, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G2, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G3.job, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G3, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G4.job, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G4, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G5.job, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G5, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\TASKS\Online Application V2G6.job, En cuarentena, [1195], [399420],1.0.9524
Adware.OnlineIO, C:\WINDOWS\SYSTEM32\TASKS\Online Application V2G6, En cuarentena, [1195], [399420],1.0.9524
Adware.Linkury.Generic, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\Tris-Trax.tst, En cuarentena, [3746], [404871],1.0.9524
Adware.Linkury.Generic, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\AGENT.DAT, En cuarentena, [3746], [404872],1.0.9524
PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, En cuarentena, [3685], [391431],1.0.9524
Adware.Linkury.Generic, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\MAIN.DAT, En cuarentena, [3746], [442900],1.0.9524
Adware.Linkury.Generic, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\NOAH.DAT, En cuarentena, [3746], [404865],1.0.9524
Adware.Linkury.Generic, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\MD.XML, En cuarentena, [3746], [404866],1.0.9524
Adware.StartPage, C:\WINDOWS\SYSTEM32\TASKS\SVC UPDATE, En cuarentena, [1120], [434799],1.0.9524
Adware.Wajam, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\TEMP\5plsuplm.rd5\s2s_install.exe, En cuarentena, [495], [450113],1.0.9524
Adware.Tuto4PC, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\TEMP\T8KE8HH9A5\up.exe.config, En cuarentena, [2811], [487472],1.0.9524
Adware.Wajam, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\TEMP\v3hu2p0i.ff2\s2s_install.exe, En cuarentena, [495], [450113],1.0.9524
Adware.FastDataX.EncJob, C:\PROGRAM FILES (X86)\FASTDATAX\UNINS000.DAT, En cuarentena, [2115], [407194],1.0.9524
Adware.FastDataX.EncJob, C:\Program Files (x86)\FastDataX\unins000.exe, En cuarentena, [2115], [407194],1.0.9524
Adware.Wajam, C:\WINDOWS\SYSWOW64\SSL\CERT.DB, En cuarentena, [495], [533889],1.0.9524
Adware.Wajam, C:\Windows\SysWOW64\SSL\OWU0MjU1YmI0Yj 2.cer, En cuarentena, [495], [533889],1.0.9524
Adware.Wajam, C:\Windows\SysWOW64\SSL\x.db, En cuarentena, [495], [533889],1.0.9524
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\FOLDERSHARE\FOLDERSHARE.EXE.CONFIG, En cuarentena, [2811], [474043],1.0.9524
Adware.Tuto4PC, C:\Program Files (x86)\foldershare\foldershare.exe, En cuarentena, [2811], [474043],1.0.9524
Adware.Tuto4PC, C:\$RECYCLE.BIN\S-1-5-21-4175682127-3877867951-1631616607-1001\$RV8G9U3.lnk, En cuarentena, [2811], [474043],1.0.9524
Adware.Wajam, C:\PROGRAM FILES\ZmI0OTFlZjIwZDcyMWI2\WBE_uninstall.dat, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\mozcrt19.dll, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\NjFmMGE0MTU.exe, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\nspr4.dll, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\nss3.dll, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\ODExNWRmMGRiY.exe, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\plc4.dll, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\plds4.dll, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\service.dat, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\service_64.dat, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\softokn3.dll, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\Y2JlOGMyYzc1YjY4M.exe, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\YzI5YjMwNzFhMjFlZ.ico, En cuarentena, [495], [556539],1.0.9524
Adware.Wajam, C:\Program Files\ZmI0OTFlZjIwZDcyMWI2\ZWQ4YWJjYjY4YjllZTZ, En cuarentena, [495], [556539],1.0.9524
PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\online.exe, En cuarentena, [3685], [391425],1.0.9524
PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\SystemFoldermsiexec.exe, En cuarentena, [3685], [391425],1.0.9524
Adware.OnlineIO, C:\Users\David Mateo Diaz\AppData\Roaming\Microleaves\Online Application 2.7.0\install\CFCBAA1\Basic Installer with memory detection.msi, En cuarentena, [1195], [399763],1.0.9524
Adware.Wajam.Generic, C:\WINDOWS\XKNWRNJABMZHVLB.XKU, En cuarentena, [4899], [580251],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\X64\SQLite.Interop.dll, En cuarentena, [1171], [431817],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\X86\SQLite.Interop.dll, En cuarentena, [1171], [431817],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\Config.json, En cuarentena, [1171], [431817],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\set.exe.config, En cuarentena, [1171], [431817],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\System.Data.SQLite.dll, En cuarentena, [1171], [431817],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\System.Data.SQLite.Linq.dll, En cuarentena, [1171], [431817],1.0.9524
Adware.Linkury, C:\ProgramData\Logic Cramble\System.Data.SQLite.xml, En cuarentena, [1171], [431817],1.0.9524
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\JCOSDNFAHE\CAST.CONFIG, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\Program Files\JCOSDNFAHE\uninstaller.exe.config, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\Program Files\JCOSDNFAHE\W1V7LMMBG.exe.config, En cuarentena, [3707], [385289],1.0.9524
Adware.Neoreklami.ChrPRST, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\FODAGHPPPNCFCNAOCHHHAEPFKEJHDLLJ\1.0.0.0_0\MANIFEST.JSON, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\_metadata\verified_contents.json, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\background.js, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\icon.png, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\icon48.png, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\jquery-1.8.3.min.js, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\m_inc.js, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\popup.html, En cuarentena, [2549], [641228],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\popup.js, En cuarentena, [2549], [641228],1.0.9524
PUP.Optional.Linkury.Generic, C:\PROGRAMDATA\QUOTEEXS\FF.HP, En cuarentena, [218], [380106],1.0.9524
PUP.Optional.Linkury.Generic, C:\ProgramData\Quoteexs\ff.NT, En cuarentena, [218], [380106],1.0.9524
PUP.Optional.Linkury.Generic, C:\ProgramData\Quoteexs\snp.sc, En cuarentena, [218], [380106],1.0.9524
Adware.Linkury.Generic, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\CONFIG.XML, En cuarentena, [3746], [404859],1.0.9524
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\A9YPSUA15K\CAST.CONFIG, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\Program Files\A9YPSUA15K\A9YPSUA15.exe.config, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\Program Files\A9YPSUA15K\uninstaller.exe.config, En cuarentena, [3707], [385289],1.0.9524
Adware.Linkury.TskLnk, C:\PROGRAM FILES (X86)\COMMON FILES\STATTOUCH\INSTALLATIONCONFIGURATION.XML, En cuarentena, [14602], [444932],1.0.9524
Adware.Linkury.TskLnk, C:\Program Files (x86)\Common Files\StatTouch\uninstall.dat, En cuarentena, [14602], [444932],1.0.9524
Adware.Linkury.TskLnk, C:\Program Files (x86)\Common Files\StatTouch\uninstall.ico, En cuarentena, [14602], [444932],1.0.9524
Adware.Neoreklami.ChrPRST, C:\USERS\DAVID MATEO DIAZ\APPDATA\ROAMING\OPERA SOFTWARE\OPERA STABLE\EXTENSIONS\FODAGHPPPNCFCNAOCHHHAEPFKEJHDLLJ\1.0.0.0_0\MANIFEST.JSON, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\_metadata\verified_contents.json, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\background.js, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\icon.png, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\icon48.png, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\jquery-1.8.3.min.js, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\m_inc.js, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\popup.html, En cuarentena, [2549], [641230],1.0.9524
Adware.Neoreklami.ChrPRST, C:\Users\David Mateo Diaz\AppData\Roaming\Opera Software\Opera Stable\Extensions\fodaghpppncfcnaochhhaepfkejhdllj\1.0.0.0_0\popup.js, En cuarentena, [2549], [641230],1.0.9524
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\2F3KU91VHM\CAST.CONFIG, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\Program Files\2F3KU91VHM\2F3KU91VH.exe.config, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\Program Files\2F3KU91VHM\uninstaller.exe.config, En cuarentena, [3707], [385289],1.0.9524
Adware.Linkury.TskLnk, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\INSTALLATIONCONFIGURATION.XML, En cuarentena, [14602], [444922],1.0.9524
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\2W4CVZBO8G\CAST.CONFIG, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\Program Files\2W4CVZBO8G\2W4CVZBO8.exe.config, En cuarentena, [3707], [385289],1.0.9524
Adware.Tuto4PC.Generic, C:\Program Files\2W4CVZBO8G\uninstaller.exe.config, En cuarentena, [3707], [385289],1.0.9524
Adware.Linkury.TskLnk, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\INSTALLATIONCONFIGURATION.XML, En cuarentena, [14602], [444923],1.0.9524
Generic.Malware/Suspicious, C:\$RECYCLE.BIN\S-1-5-21-4175682127-3877867951-1631616607-1001\$RAVP1EY.lnk, En cuarentena, [0], [392686],1.0.9524
Generic.Malware/Suspicious, C:\PROGRAM FILES (X86)\ONESYSTEMCARE\ONESYSTEMCARE.EXE, En cuarentena, [0], [392686],1.0.9524
Adware.Tuto4PC, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\TEMP\4CRTDZRTOMZ.EXE, En cuarentena, [2811], [474076],1.0.9524
Adware.Adposhel, C:\PROGRAM FILES (X86)\ONESYSTEMCARE\UNINS000.EXE, En cuarentena, [510], [647525],1.0.9524
Trojan.Dropper, C:\USERS\DAVID MATEO DIAZ\APPDATA\LOCAL\TEMP\EFSY2UJY.Y4S\BCN.EXE, En cuarentena, [718], [645784],1.0.9524

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)