# ----------------------------------------------------

# UsbFix Antivirus Premium

# ----------------------------------------------------
# Versión : 11.032
# Base de datos :
# Contacto : https://www.usb-antivirus.com/es/contacto
# ----------------------------------------------------
# Tipo de escaneo : Windows [Auto Scan]
# Usuario : Duver (Administrador)
# Dispositivo : DUVER
# Comenzó : 29/11/2021 18:55:22
# ----------------------------------------------------

------------ | Discos analizados |

C:\ NTFS (69GB/98GB) [Fixed]

E:\ NTFS (339GB/368GB) [Fixed]

------------ | Elemento(s) infectado(s) |

~ Ningún elemento detectado ~

------------ | Run |

F2 - HKLM\..\Winlogon : [Shell] explorer.exe

F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe"
/minimized /regrun
04 - HKCU\..\Run : [Chromium]
"c:\users\sistema\appdata\local\chromium\application\chrome.exe" --auto-launch-at-
startup --profile-directory="Default" --restore-last-session
04 - HKCU\..\Run : [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe"
/MONITOR
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common
Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [UCam_Menu] "C:\Program Files
(x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files
(x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
04 - HKLM\..\Run : [YouCam Mirror Tray icon] "C:\Program Files
(x86)\CyberLink\YouCam\YouCamTray.exe" /s
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST
Software\Avast\AvastUI.exe" /nogui
04 - HKLM\..\Run : [HP Software Update] C:\Program Files (x86)\Hp\HP Software
Update\HPWuSchd2.exe
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common
Files\Java\Java Update\jusched.exe"
04 - HKLM\..\Run : [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common
Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
04 - [x64] HKLM\..\Run : [RTHDVCPL] "C:\Program
Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
04 - HKU\S-1-5-21-2360688239-3389487239-4055657869-1001\..\Run : [Skype]
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
04 - HKU\S-1-5-21-2360688239-3389487239-4055657869-1001\..\Run : [Chromium]
"c:\users\sistema\appdata\local\chromium\application\chrome.exe" --auto-launch-at-
startup --profile-directory="Default" --restore-last-session
04 - HKU\S-1-5-21-2360688239-3389487239-4055657869-1001\..\Run : [CCleaner
Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
------------ | Tasks |

Task - AutoPico Daily Restart --> "C:\Program Files\KMSpico\AutoPico.exe" /silent

Task - Avast Emergency Update --> C:\Program Files\AVAST
Software\Avast\AvastEmUpdate.exe
Task - HPCustParticipation HP DeskJet 3630 series --> "C:\Program Files\HP\HP
DeskJet 3630 series\Bin\HPCustPartic.exe" /UA 15.0 /DDV 0x0d05
Task - KMSAutoNet --> "C:\ProgramData\KMSAutoS\KMSAuto Net.exe" /off=act
Task - Optimize Start Menu Cache Files-S-1-5-21-2360688239-3389487239-4055657869-
1001
Task - Toolbox.exe_{CD1F1904-9095-4C97-8AC8-6BA57B323492} --> C:\Program
Files\HP\HP DeskJet 3630 series\Bin\Toolbox.exe BR5BIFD20B0659:USB -cmd setup
Task - UsbFix Boot Scan --> "C:\Program Files (x86)\UsbFix\UsbFix.exe" -scanonstart
Task - UsbFix Monitor --> "C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe"
Task - User_Feed_Synchronization-{A4EA3F9A-4CC6-46F9-A7E9-A356A5465C8F} -->
C:\Windows\system32\msfeedssync.exe sync
Task - {3D877AD6-3387-4EB5-9618-6CC80C3364F5} --> "c:\program files\internet
explorer\iexplore.exe"
http://ui.skype.com/ui/0/7.3.59.101/es/go/help.faq.installer?LastError=1618
Task - {6B8C48BA-1ADB-40BE-A14B-5564B179F666} --> C:\Windows\system32\pcalua.exe -a
"c:\program files\bytefence\ByteFence.exe" -c /uninstall
Task - {D45A0005-8F1C-42EC-88C1-7CE21019B0C9} --> C:\Windows\system32\pcalua.exe -a
C:\Users\sistema\AppData\Local\{C2BAF4E6-E612-985E-8B8A-BDB6AFE2412E}\uninst.exe -c
-FN="C:\Users\sistema\AppData\Local\{C2E7F45C-E7B5-992A-8C83-
BEF8505143C6}\SynHelper.exe"-P=/Uninstall /s /noun /DelSelfDir

------------ | C:\ %SystemDrive% - Disco fijo (NTFS) |

[17/02/2019 - 19:05:27 | A | 5 Ko] - VirtualDJ Local Database v6.xml

[22/11/2021 - 13:59:03 | ASH | 1558144 Ko] - hiberfil.sys
[22/11/2021 - 13:59:05 | ASH | 262144 Ko] - swapfile.sys
[24/11/2021 - 21:51:07 | ASH | 1681936 Ko] - pagefile.sys
[12/10/2018 - 08:19:58 | A | 3518 Ko] - UsbFix.rar
[12/10/2018 - 08:08:14 | RASHD] - Autorun.inf
[12/06/2017 - 09:03:19 | SHD] - $Recycle.Bin
[18/06/2013 - 07:18:29 | N | 0 Ko] - BOOTNXT
[22/08/2013 - 00:31:45 | RASH | 418 Ko] - bootmgr
[22/08/2013 - 09:45:52 | SHD] - Documents and Settings
[22/08/2013 - 10:22:35 | D] - PerfLogs
[08/07/2016 - 21:24:53 | SHD] - Archivos de programa
[08/07/2016 - 21:26:34 | RD] - Users
[08/07/2016 - 22:15:27 | RHD] - MSOCache
[01/08/2021 - 10:11:53 | D] - UsbFix
[01/08/2021 - 17:51:35 | HD] - ProgramData
[10/09/2021 - 11:58:31 | D] - USB File Resc
[09/11/2021 - 19:28:58 | RD] - Program Files (x86)
[09/11/2021 - 19:54:10 | RD] - Program Files
[14/11/2021 - 21:28:32 | D] - Windows

------------ | E:\ - Disco fijo (NTFS) |

[08/11/2018 - 20:27:02 | A | 7125 Ko] - Expresión lingüística.pptx

[12/10/2018 - 08:08:14 | D] - Autorun.inf
[09/07/2016 - 08:53:55 | SHD] - $RECYCLE.BIN
[21/08/2016 - 20:43:50 | D] - DCIM
[21/08/2016 - 20:45:09 | D] - WhatsApp Images
[01/07/2021 - 19:43:57 | RD] - Videos
[14/11/2021 - 21:40:03 | RD] - Documents
[23/11/2021 - 21:05:53 | RD] - Downloads
[23/11/2021 - 21:05:55 | RD] - imagenes
[29/11/2021 - 18:55:17 | RD] - Desktop

Elemento(s) infectado(s) : 0
Elementos analizados : 99309 en 00h 00m 27s

# UsbFix-Report-154.txt [5882B]

------------ | E.O.F |