Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 01-12-2021
Ejecutado por josel (03-12-2021 05:56:41) Run:2
Ejecutado desde C:\Users\josel\OneDrive\Escritorio
Perfiles cargados: josel
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {222d076e-9649-11eb-a2b3-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {222d083c-9649-11eb-a2b3-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {222d0c13-9649-11eb-a2b3-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {222d0cdc-9649-11eb-a2b3-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {222d0cf3-9649-11eb-a2b3-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {222d0e95-9649-11eb-a2b3-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {3236e866-9594-11eb-a2b0-5800e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {3236e8ee-9594-11eb-a2b0-5800e333c9cb} - "V:\setup.EXE" /AUTORUN
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {3236f03e-9594-11eb-a2b0-5800e333c9cb} - "V:\setup.EXE" /AUTORUN
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {5f40d557-96d9-11eb-a2b5-5a00e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {6b7a42b5-a2ce-11eb-a2f8-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {6b7a4478-a2ce-11eb-a2f8-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {6b7a6ad4-9643-11eb-a2b2-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {6b7a6b7c-9643-11eb-a2b2-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {6b7a6b89-9643-11eb-a2b2-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {6c2701bb-9704-11eb-a2c0-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {6c27023a-9704-11eb-a2c0-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {8950a276-a2e0-11eb-a2f9-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {9182af10-9f97-11eb-a2f0-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {9182b2f7-9f97-11eb-a2f0-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {93710be1-981c-11eb-a2ce-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {93711cb0-981c-11eb-a2ce-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {9ecea807-a08e-11eb-a2f2-6045cb2e6043} - "V:\setup.EXE" /AUTORUN
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {c668c1ff-98b8-11eb-a2cf-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {c668c21f-98b8-11eb-a2cf-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {c668c22e-98b8-11eb-a2cf-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {c668c23a-98b8-11eb-a2cf-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {c668c354-98b8-11eb-a2cf-6045cb2e6043} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {e6e73dfc-98bd-11eb-a2d0-5800e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {e6e73ee9-98bd-11eb-a2d0-5800e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {e6e74113-98bd-11eb-a2d0-5800e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {e6e74124-98bd-11eb-a2d0-5800e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {e6e74139-98bd-11eb-a2d0-5800e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {e6e7414c-98bd-11eb-a2d0-5800e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {f8d3b500-9708-11eb-a2c4-5a00e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {f8d3b513-9708-11eb-a2c4-5a00e333c9cb} - "V:\setup.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {fbdc87d4-968b-11eb-a2b4-6045cb2e6043} - "V:\setup64.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {fbdc8abd-968b-11eb-a2b4-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {fbdc8ace-968b-11eb-a2b4-6045cb2e6043} - "V:\autorun.exe" 
HKU\S-1-5-21-128158195-93978417-4187598964-1001\...\MountPoints2: {fbdc90e0-968b-11eb-a2b4-6045cb2e6043} - "V:\setup.exe" 
BootExecute: autocheck autochk *  
GroupPolicy: Restricción ? <==== ATENCIÓN
GroupPolicy\User: Restricción ? <==== ATENCIÓN
Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN
Task: {78DEFBA6-BF7D-4874-B836-E8979B204E94} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe /NoUACCheck
Edge Extension: (Sin Nombre) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [no encontrado]
Edge Extension: (Sin Nombre) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [no encontrado]
Edge Extension: (Sin Nombre) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [no encontrado]
Edge Extension: (Sin Nombre) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [no encontrado]
S3 dg_ssudbus; \SystemRoot\system32\DRIVERS\ssudbus2.sys [X]
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileCoAuthLib64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> "C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\Microsoft.Nucleus.exe" => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> "C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\Microsoft.Nucleus.exe" => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll => Ningún archivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers2: [UltraISO] -> [CC]{AD392E40-428C-459F-961E-9B147782D099} =>  -> Ningún archivo
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers4: [UltraISO] -> [CC]{AD392E40-428C-459F-961E-9B147782D099} =>  -> Ningún archivo
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers1_S-1-5-21-128158195-93978417-4187598964-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll -> Ningún archivo
ContextMenuHandlers4_S-1-5-21-128158195-93978417-4187598964-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll -> Ningún archivo
ContextMenuHandlers5_S-1-5-21-128158195-93978417-4187598964-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\josel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll -> Ningún archivo
AlternateDataStreams: C:\ProgramData\TEMP:763FFD2C [134]
AlternateDataStreams: C:\ProgramData\TEMP:DEDEE4A9 [125]
FirewallRules: [{931C6E9E-B227-48C8-A30C-A0A625A37B6E}] => (Allow) C:\Program Files (x86)\Nero\Nero 2021\Nero BackItup\NBService.exe => Ningún archivo
FirewallRules: [{DF04A307-BEB9-4E38-BAAE-49DF064410EE}] => (Allow) C:\Program Files (x86)\Nero\Nero 2021\Nero BackItup\BackItUp.exe => Ningún archivo
FirewallRules: [{A14235DA-6892-4BDB-ACD4-5937DE354D74}] => (Allow) C:\Program Files (x86)\Nero\Nero 2021\Nero BackItup\NBService.exe => Ningún archivo
FirewallRules: [{9FC65D80-EDB7-4E84-A96A-F42964ECBD6C}] => (Allow) C:\Program Files (x86)\Nero\Nero 2021\Nero BackItup\BackItUp.exe => Ningún archivo

File: C:\Windows\system32\mpelocalmon.dll
VirusTotal: C:\Windows\system32\mpelocalmon.dll

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{222d076e-9649-11eb-a2b3-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{222d083c-9649-11eb-a2b3-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{222d0c13-9649-11eb-a2b3-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{222d0cdc-9649-11eb-a2b3-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{222d0cf3-9649-11eb-a2b3-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{222d0e95-9649-11eb-a2b3-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3236e866-9594-11eb-a2b0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3236e8ee-9594-11eb-a2b0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3236f03e-9594-11eb-a2b0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5f40d557-96d9-11eb-a2b5-5a00e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b7a42b5-a2ce-11eb-a2f8-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b7a4478-a2ce-11eb-a2f8-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b7a6ad4-9643-11eb-a2b2-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b7a6b7c-9643-11eb-a2b2-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b7a6b89-9643-11eb-a2b2-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6c2701bb-9704-11eb-a2c0-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6c27023a-9704-11eb-a2c0-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8950a276-a2e0-11eb-a2f9-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9182af10-9f97-11eb-a2f0-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9182b2f7-9f97-11eb-a2f0-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{93710be1-981c-11eb-a2ce-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{93711cb0-981c-11eb-a2ce-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9ecea807-a08e-11eb-a2f2-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c668c1ff-98b8-11eb-a2cf-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c668c21f-98b8-11eb-a2cf-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c668c22e-98b8-11eb-a2cf-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c668c23a-98b8-11eb-a2cf-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c668c354-98b8-11eb-a2cf-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e6e73dfc-98bd-11eb-a2d0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e6e73ee9-98bd-11eb-a2d0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e6e74113-98bd-11eb-a2d0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e6e74124-98bd-11eb-a2d0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e6e74139-98bd-11eb-a2d0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e6e7414c-98bd-11eb-a2d0-5800e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f8d3b500-9708-11eb-a2c4-5a00e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f8d3b513-9708-11eb-a2c4-5a00e333c9cb} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fbdc87d4-968b-11eb-a2b4-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fbdc8abd-968b-11eb-a2b4-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fbdc8ace-968b-11eb-a2b4-6045cb2e6043} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fbdc90e0-968b-11eb-a2b4-6045cb2e6043} => no encontrado
HKLM\System\CurrentControlSet\Control\Session Manager\\"BootExecute"="autocheck autochk *" => valor restaurado correctamente
"C:\WINDOWS\system32\GroupPolicy\Machine" => no encontrado
"C:\WINDOWS\system32\GroupPolicy\User" => no encontrado
C:\ProgramData\NTUSER.pol => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78DEFBA6-BF7D-4874-B836-E8979B204E94}" => no encontrado
"C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CreateExplorerShellUnelevatedTask" => no encontrado
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => no encontrado
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => no encontrado
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => no encontrado
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => no encontrado
dg_ssudbus => servicio no encontrado.
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => no encontrado
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => no encontrado
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => no encontrado
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => no encontrado
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\UltraISO => no encontrado
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => no encontrado
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => no encontrado
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\UltraISO => no encontrado
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx => no encontrado
HKU\S-1-5-21-128158195-93978417-4187598964-1001\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ FileSyncEx => no encontrado
"C:\ProgramData\TEMP" => ":763FFD2C" ADS no encontrado.
"C:\ProgramData\TEMP" => ":DEDEE4A9" ADS no encontrado.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{931C6E9E-B227-48C8-A30C-A0A625A37B6E}" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DF04A307-BEB9-4E38-BAAE-49DF064410EE}" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A14235DA-6892-4BDB-ACD4-5937DE354D74}" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9FC65D80-EDB7-4E84-A96A-F42964ECBD6C}" => no encontrado

========================= File: C:\Windows\system32\mpelocalmon.dll ========================

C:\Windows\system32\mpelocalmon.dll
Archivo no firmado
MD5: C347798A9BB935EE6D7ACE633B7B78B9
Fecha de creación y modificación: 2019-06-18 15:04 - 2019-12-03 17:33
Tamaño: 000026112
Atributos: ----A
Nombre de la compañía: Copyright (c) Code Industry Ltd 
Interno Nombre: mpelocalmon.dll
Original Nombre: mpelocalmon.dll
Producto: Master PDF Editor
Descripción: Master PDF Editor printer driver
Archivo Versión: 4, 0, 0, 0
Producto Versión: 4.0.0.0 
Copyright: Copyright (c) Code Industry Ltd 
VirusTotal: https://www.virustotal.com/gui/file/8dbf9d2844809753487fb9edd27e8f05bd90208283b648fba6e694e2af27cf94/detection/f-8dbf9d2844809753487fb9edd27e8f05bd90208283b648fba6e694e2af27cf94-1622722868

====== Final de File: ======

VirusTotal: C:\Windows\system32\mpelocalmon.dll => (3) Error

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 3 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 2 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : Home

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 3:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi:

   Sufijo DNS espec¡fico para la conexi¢n. . : Home
   V¡nculo: direcci¢n IPv6 local. . . : fe80::f14c:ab67:8015:b0f6%14
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.4
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.1

Adaptador de Ethernet vEthernet (Ethernet):

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::d37:de46:34bc:3de4%24
   Direcci¢n IPv4. . . . . . . . . . . . . . : 172.31.64.1
   M scara de subred . . . . . . . . . . . . : 255.255.240.0
   Puerta de enlace predeterminada . . . . . : 

Adaptador de Ethernet vEthernet (Wi-Fi):

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::b991:c5af:621a:e2b%30
   Direcci¢n IPv4. . . . . . . . . . . . . . : 172.21.240.1
   M scara de subred . . . . . . . . . . . . : 255.255.240.0
   Puerta de enlace predeterminada . . . . . : 

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to cancel {1280AF38-6ADC-44F6-BF4F-9415A3EFD26C}.
{04A38077-D9E1-499F-87BB-A90524CBCDB0} canceled.
1 out of 2 jobs canceled.

========= Final de CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= RemoveProxy: =========

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => eliminado correctamente
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-128158195-93978417-4187598964-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 138131267 B
Java, Flash, Steam htmlcache => 1142 B
Windows/system/drivers => 4154441 B
Edge => 0 B
Chrome => 127914302 B
Firefox => 10409392 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 876 B
LocalService => 1187284 B
NetworkService => 5327158 B
josel => 46047052 B
defaultuser100000 => 46054220 B

RecycleBin => 0 B
EmptyTemp: => 361.7 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 05:59:38 ====