Combo Log

ComboFix 18-08-08.01 - Ronnie 09/08/2018 20:19:29.6.
4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.3977.2614 [GMT -3:00]
Executando de: c:\users\Ronnie\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-
15B0E7DFA289}
SP: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-
2EC29C58E834}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((( Outras
Exclus�es )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\msdownld.tmp
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Servi�os ))))))))))))))))))))))
)))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_npf
.
.
(((((((((((((((( Arquivos/Ficheiros criados de 2018-07-09 to 2018-08-
09 ))))))))))))))))))))))))))))
.
.
2018-10-04 21:47 . 2018-10-04 21:47 -------- d-----w- c:\program files
(x86)\ZebraNetworkSystems
2018-10-04 21:47 . 2018-10-04 21:47 -------- d-----w-
c:\programdata\ZebraNetworkSystems
2018-10-04 21:46 . 2018-10-04 21:46 -------- d-----w-
c:\users\Ronnie\AppData\Roaming\ZebraNetworkSystems
2018-10-04 11:01 . 2009-09-03 14:31 241496 ----a-w-
c:\windows\system32\drivers\QbikHkVistaamd64.sys
2018-10-04 11:01 . 2004-08-25 13:33 1056768 ----a-w-
c:\windows\SysWow64\roboex32.dll
2018-10-04 11:01 . 2002-08-15 13:18 49152 ----a-w-
c:\windows\SysWow64\inetwh32.dll
2018-10-04 11:01 . 2008-10-07 15:10 208896 ----a-w-
c:\windows\SysWow64\wgsrvins.dll
2018-10-04 11:01 . 2002-08-15 13:18 11264 ----a-w-
c:\windows\SysWow64\sporder.dll
2018-09-30 01:20 . 2018-09-30 01:49 -------- d-----w- C:\Cel
2018-09-21 00:18 . 2018-09-23 20:29 -------- d-----w- c:\program
files\Autodesk
2018-09-17 17:58 . 2018-09-17 17:58 -------- d-----w-
c:\users\Ronnie\AppData\Local\4kdownload.com
2018-09-17 17:57 . 2018-09-17 17:57 -------- d-----w- c:\program
files\4KDownload
2018-09-11 22:46 . 2018-09-11 22:49 46511361 ----a-w-
c:\users\Ronnie\AppData\Roaming\Microsoft\Skype for Desktop\Skype-Setup.exe
2018-09-09 21:10 . 2018-09-10 22:53 -------- d-----w- C:\09-08-18 - Casa Nova
Matheus
2018-09-01 21:34 . 2018-09-01 21:34 75888 ----a-w-
c:\programdata\Microsoft\Windows Defender\Definition Updates\{107BD50F-A61C-
42CC-B687-CE6E0438F76A}\offreg.1744.dll
2018-08-29 00:22 . 2018-08-29 19:31 -------- d-----w-
c:\users\Ronnie\AppData\Roaming\Photo DVD Slideshow
2018-08-29 00:22 . 2018-08-29 00:22 -------- d-----w- c:\programdata\Anvsoft
2018-08-29 00:12 . 2018-08-29 00:12 -------- d-----w-
c:\users\Ronnie\AppData\Local\WMTools Downloaded Files
2018-08-28 23:55 . 2018-08-28 23:55 -------- d-----w-
c:\users\Ronnie\AppData\Local\FreemakeVideoConverter
2018-08-28 23:34 . 2018-08-29 00:18 -------- d-----w- c:\programdata\Freemake
2018-08-28 23:03 . 2018-08-28 23:03 -------- d-----w-
c:\users\Ronnie\AppData\Local\Apowersoft
2018-08-28 23:03 . 2018-08-28 23:04 -------- d-----w-
c:\users\Ronnie\AppData\Roaming\Apowersoft
2018-08-26 22:23 . 2018-09-11 13:48 -------- d-----w- C:\09-09-18 - Congonhas
2018-08-26 15:18 . 2018-08-26 15:18 -------- d-----w-
c:\users\Ronnie\AppData\Roaming\Ashampoo
2018-08-26 15:16 . 2018-08-26 15:18 -------- d-----w-
c:\users\Ronnie\AppData\Local\ashampoo
2018-08-26 15:14 . 2018-08-26 15:16 -------- d-----w- c:\programdata\Ashampoo
(x86)\Ashampoo
2018-08-25 18:56 . 2018-08-28 22:16 -------- d-----w- C:\25-08-18 - Casa Nem
2018-08-19 18:11 . 2018-08-20 22:31 -------- d-----w- C:\20-08-18 - Fotos casa
2018-08-11 23:49 . 2018-09-12 12:40 -------- d-----w- c:\program
files\Rockstar Games
(x86)\Rockstar Games
(x86)\Mr DJ
2018-08-08 20:07 . 2018-08-08 20:07 -------- d-----w-
c:\users\Ronnie\AppData\Roaming\Helios
2018-08-08 20:07 . 2018-08-08 20:07 -------- d-----w-
c:\users\Ronnie\AppData\Local\Helios
2018-08-08 18:22 . 2018-08-08 18:22 -------- d-----w- c:\program files\TextPad
8
2018-07-28 14:34 . 2018-08-04 00:41 -------- d-----w- C:\28-07-18 - 15 anos
Joyce
2018-07-26 01:16 . 2018-07-26 01:16 75888 ----a-w-
2018-07-21 02:02 . 2018-07-21 02:05 -------- d-----w- c:\programdata\Corel
2018-07-21 02:01 . 2018-07-21 02:02 -------- d-----w- c:\program files\Corel
2018-07-14 13:22 . 2018-07-17 01:16 -------- d-----w- C:\15-07-18 - S�o Jo�o
Del Rei
2018-07-11 17:53 . 2018-07-11 17:53 75888 ----a-w-
.
.
.
((((((((((((((((((((((((((((((((((((( Relat�rio
Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2018-09-27 17:57 . 2016-02-06 17:32 842240 ----a-w-
c:\windows\SysWow64\FlashPlayerApp.exe
2018-09-27 17:57 . 2016-02-06 17:32 175104 ----a-w-
c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2018-09-14 11:19 . 2018-03-18 05:26 75888 ----a-w-
2018-06-04 17:04 . 2018-06-04 17:04 75888 ----a-w-
2018-06-01 15:30 . 2018-06-01 15:30 75888 ----a-w-
2018-05-24 11:16 . 2018-05-24 11:16 75888 ----a-w-
2018-05-19 12:57 . 2018-05-19 12:57 75888 ----a-w-
2014-07-10 06:16 . 2014-07-10 06:16 2174976 ----a-w- c:\program files
(x86)\Common Files\atimpenc.dll
.
.
(((((((((((((((((((((((((( Pontos de Carregamento do
Registro )))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vazias e leg�timas por padr�o n�o s�o apresentadas.
REGEDIT4
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
NeoRouter Network Explorer.lnk - c:\program files
(x86)\ZebraNetworkSystems\NeoRouter\NRClient.exe [2016-9-30 8375264]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\
ShellExecuteHooks]
"{E37CB5F0-51F5-4395-A808-5FA49E399008}"= "c:\program files
(x86)\GbPlugin\gbiehuni.dll" [2015-09-04 1896696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\
GbPluginCef]
2015-09-22 22:25 1888480 ----a-w- c:\program files
(x86)\GbPlugin\gbiehcef.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\
GbPluginUni]
2015-09-04 12:08 1896696 ------w- c:\program files
(x86)\GbPlugin\gbiehuni.dll
.
R1 QbikHKVista;QBIK NDIS
driver;c:\windows\system32\DRIVERS\QbikHkVistaamd64.sys;c:\windows\SYSNATIVE\DRIVER
S\QbikHkVistaamd64.sys [x]
R1 VBoxSF;VirtualBox Shared
Folders;c:\windows\system32\drivers\VBoxSF.sys;c:\windows\SYSNATIVE\drivers\VBoxSF.
sys [x]
R2 Autodesk Content Service;Autodesk Content Service;c:\program files
(x86)\Autodesk\Content Service\Connect.Service.ContentService.exe;c:\program files
(x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN
v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\wind
ows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 VBoxService;VirtualBox Guest Additions
Service;c:\windows\system32\VBoxService.exe;c:\windows\SYSNATIVE\VBoxService.exe
[x]
R3
afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys;c:\windows\SYSNATIVE\DRIVERS\afcd
p.sys [x]
R3 csr_bthav;Perfil�Bluetooth
AV;c:\windows\system32\drivers\csrbthav.sys;c:\windows\SYSNATIVE\drivers\csrbthav.s
ys [x]
R3 csravrcp;Perfil Bluetooth
AVRCP;c:\windows\system32\DRIVERS\csravrcp.sys;c:\windows\SYSNATIVE\DRIVERS\csravrc
p.sys [x]
R3 CsrBthAudioHF;BthAudioHF
Service;c:\windows\system32\DRIVERS\CsrBthAudioHF.sys;c:\windows\SYSNATIVE\DRIVERS\
CsrBthAudioHF.sys [x]
R3 CsrBtPort;Driver de Dispositivo
Bluetooth�Csr�;c:\windows\system32\DRIVERS\CsrBtPort.sys;c:\windows\SYSNATIVE\DRIVE
RS\CsrBtPort.sys [x]
R3 csrhfgcc;Perfil de Controle de Chamadas Bluetooth
HFG;c:\windows\system32\DRIVERS\csrhfgcc.sys;c:\windows\SYSNATIVE\DRIVERS\csrhfgcc.
sys [x]
R3 csrpan;Bluetooth Personal Area Network Device
Driver;c:\windows\system32\DRIVERS\csrpan.sys;c:\windows\SYSNATIVE\DRIVERS\csrpan.s
ys [x]
R3 csrserial;Driver de
dispositivo�SPP�;c:\windows\system32\DRIVERS\csrserial.sys;c:\windows\SYSNATIVE\DRI
VERS\csrserial.sys [x]
R3 csrusb;Driver USB CSR para adaptador
Bluetooth;c:\windows\system32\Drivers\csrusb.sys;c:\windows\SYSNATIVE\Drivers\csrus
b.sys [x]
R3 csrusbfilter;CSR USB filter
driver;c:\windows\system32\Drivers\csrusbfilter.sys;c:\windows\SYSNATIVE\Drivers\cs
rusbfilter.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU
Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.
sys [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program
files\Common Files\Macrovision Shared\FLEXnet
Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision
Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 gbridge;Gbridge Virtual
Miniport;c:\windows\system32\DRIVERS\gbridge64.sys;c:\windows\SYSNATIVE\DRIVERS\gbr
idge64.sys [x]
R3 PrintNotify;Extens�es e Notifica��es da
Impressora;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport
Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\driver
s\rdpvideominiport.sys [x]
R3 RTL8192cu;300Mbps Wireless USB
Adapter;c:\windows\system32\DRIVERS\RTL8192cu.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8
192cu.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU
Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.
sys [x]
R3
Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATI
VE\drivers\synth3dvsc.sys [x]
R3
TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\dri
vers\tsusbflt.sys [x]
R3
tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\dri
vers\tsusbhub.sys [x]
R3 VBoxUSB;VirtualBox
USB;c:\windows\system32\Drivers\VBoxUSB.sys;c:\windows\SYSNATIVE\Drivers\VBoxUSB.sy
s [x]
R3
VBoxVideo;VBoxVideo;c:\windows\system32\DRIVERS\VBoxVideo.sys;c:\windows\SYSNATIVE\
DRIVERS\VBoxVideo.sys [x]
R3
VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvg
kmd.sys [x]
R3 Virtual Router;VirtualRouterService;c:\program files (x86)\Virtual
Router\VirtualRouterService.exe;c:\program files (x86)\Virtual
Router\VirtualRouterService.exe [x]
R3 Warsaw_PP;Warsaw
Protector;c:\progra~2\GbPlugin\wsftprp64.sys;c:\progra~2\GbPlugin\wsftprp64.sys [x]
R3 WSDScan;Suporte de Digitaliza��o WSD via
UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sy
s [x]
R4 afcdpsrv;Acronis Nonstop Backup Service;c:\program files (x86)\Common
Files\Acronis\CDP\afcdpsrv.exe;c:\program files (x86)\Common
Files\Acronis\CDP\afcdpsrv.exe [x]
R4 BtSwitcherService;Servi�o do Bluetooth Switcher;c:\program files\CSR\CSR Harmony
Wireless Software Stack\BtSwitcherService.exe;c:\program files\CSR\CSR Harmony
Wireless Software Stack\BtSwitcherService.exe [x]
R4 CSRBtAudioService;Servi�o de �udio do Bluetooth da CSR;c:\program files\CSR\CSR
Harmony Wireless Software Stack\CsrBtAudioService.exe;c:\program files\CSR\CSR
Harmony Wireless Software Stack\CsrBtAudioService.exe [x]
R4 CsrBtOBEXService;CSR OBEX Service;c:\program files\CSR\CSR Harmony Wireless
Software Stack\CsrBtOBEXService.exe;c:\program files\CSR\CSR Harmony Wireless
Software Stack\CsrBtOBEXService.exe [x]
R4 CsrBtService;CSR Bluetooth Service;c:\program files\CSR\CSR Harmony Wireless
Software Stack\CsrBtService.exe;c:\program files\CSR\CSR Harmony Wireless Software
Stack\CsrBtService.exe [x]
R4 FoxitReaderService;Foxit Reader Service;c:\program files (x86)\Foxit
Software\Foxit Reader\FoxitConnectedPDFService.exe;c:\program files (x86)\Foxit
Software\Foxit Reader\FoxitConnectedPDFService.exe [x]
R4 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program
files (x86)\Intel\Intel(R) Integrated Clock Controller
Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock
Controller Service\ICCProxy.exe [x]
R4 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel
Service;c:\windows\system32\igfxCUIService.exe;c:\windows\SYSNATIVE\igfxCUIService.
exe [x]
R4 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability
Licensing Service TCP IP Interface;c:\program files\Intel\iCLS
Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe
[x]
R4 jhi_service;Intel(R) Dynamic Application Loader Host Interface
Service;c:\program files (x86)\Intel\Intel(R) Management Engine
Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management
Engine Components\DAL\jhi_service.exe [x]
R4 SEVPNCLIENT;SoftEther VPN Client;c:\program files\SoftEther VPN
Client\vpnclient_x64.exe;c:\program files\SoftEther VPN Client\vpnclient_x64.exe
[x]
R4 syncagentsrv;Acronis Sync Agent Service;c:\program files (x86)\Common
Files\Acronis\SyncAgent\syncagentsrv.exe;c:\program files (x86)\Common
Files\Acronis\SyncAgent\syncagentsrv.exe [x]
S0 fltsrv;Acronis Storage Filter
Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\flts
rv.sys [x]
S0 iusb3hcs;Driver de comuta��o do controlador host Intel(R) USB
3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.
sys [x]
S0 tib;Acronis TIB
Manager;c:\windows\system32\DRIVERS\tib.sys;c:\windows\SYSNATIVE\DRIVERS\tib.sys
[x]
S0 tib_mounter;Acronis TIB
Mounter;c:\windows\system32\DRIVERS\tib_mounter.sys;c:\windows\SYSNATIVE\DRIVERS\ti
b_mounter.sys [x]
S0 VBoxGuest;VirtualBox Guest
Driver;c:\windows\system32\DRIVERS\VBoxGuest.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxG
uest.sys [x]
S0 vididr;Acronis Virtual
Disk;c:\windows\system32\DRIVERS\vididr.sys;c:\windows\SYSNATIVE\DRIVERS\vididr.sys
[x]
S0 vidsflt;Acronis Disk Storage
Filter;c:\windows\system32\DRIVERS\vidsflt.sys;c:\windows\SYSNATIVE\DRIVERS\vidsflt
.sys [x]
S1
eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\e
amonm.sys [x]
S1
ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdr
v.sys [x]
S1 VBoxDrv;VirtualBox
Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDr
v.sys [x]
S1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport
Service;c:\windows\system32\DRIVERS\VBoxNetAdp6.sys;c:\windows\SYSNATIVE\DRIVERS\VB
oxNetAdp6.sys [x]
S1 VBoxNetLwf;VirtualBox NDIS6 Bridged Networking
Service;c:\windows\system32\DRIVERS\VBoxNetLwf.sys;c:\windows\SYSNATIVE\DRIVERS\VBo
xNetLwf.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor
Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBox
USBMon.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32
Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2
epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRI
VERS\epfwwfpr.sys [x]
S2 MsDtsServer100;SQL Server Integration Services 10.0;c:\program files\Microsoft
SQL Server\100\DTS\Binn\MsDtsSrvr.exe;c:\program files\Microsoft SQL
Server\100\DTS\Binn\MsDtsSrvr.exe [x]
S2 NRClientService;NeoRouter Client Service;c:\program files
(x86)\ZebraNetworkSystems\NeoRouter\NRService.exe;c:\program files
(x86)\ZebraNetworkSystems\NeoRouter\NRService.exe [x]
S2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by
arvato;c:\program files\Common Files\Protexis\License
Service\PsiService_2.exe;c:\program files\Common Files\Protexis\License
Service\PsiService_2.exe [x]
S2
SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys;c:\windows\SYSNATIVE\Drivers\S
SPORT.sys [x]
S3 IntcDAud;�udio Intel(R) para
telas;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAu
d.sys [x]
S3 iusb3hub;Driver para hub Intel(R) USB
3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.
sys [x]
S3 iusb3xhc;Driver de controlador host eXtens�vel Intel(R) USB
3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.
sys [x]
S3 Neo_VPN-SOFT;VPN Client Device Driver - VPN-
SOFT;c:\windows\system32\DRIVERS\Neo_0084.sys;c:\windows\SYSNATIVE\DRIVERS\Neo_0084
.sys [x]
S3 nrtap;NeoRouter Virtual Network
Interface;c:\windows\system32\DRIVERS\nrtap.sys;c:\windows\SYSNATIVE\DRIVERS\nrtap.
sys [x]
S3 RTL8167;Realtek 8167 NT
Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64wi
n7.sys [x]
S3 RTSPER;Realtek PCIE Card Reader -
PER;c:\windows\system32\DRIVERS\RtsPer.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPer.sys
[x]
S3 teamviewervpn;TeamViewer VPN
Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\
teamviewervpn.sys [x]
S3 VBoxMouse;VirtualBox Guest Mouse
Service;c:\windows\system32\DRIVERS\VBoxMouse.sys;c:\windows\SYSNATIVE\DRIVERS\VBox
Mouse.sys [x]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconove
rlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
(x86)\Acronis\TrueImageHome\tishell64.dll
.
rlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
.
rlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2015-07-08 5595848]
.
------- Scan Suplementar -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com.br/
IE: E&xportar para o Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
Trusted Zone: caixa.gov.br\imagem
Trusted Zone: caixa.gov.br\imagem2
Trusted Zone: caixa.gov.br\internetbanking
Trusted Zone: caixa.gov.br\internetbankingpf
Trusted Zone: caixa.gov.br\www
Trusted Zone: google.com\www
Trusted Zone: google.com.br\www
Trusted Zone: itau.b.br
Trusted Zone: itau.b.br\www
Trusted Zone: itau.com.br
Trusted Zone: itau.com.br\bankline
Trusted Zone: itau.com.br\banklineplus
Trusted Zone: itau.com.br\clickbanking
Trusted Zone: itau.com.br\guardiao
Trusted Zone: itau.com.br\www
Trusted Zone: itaupersonnalite.com.br\www
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{4E9AE5B6-E923-4BC7-AE20-71F0395A1E4B}: NameServer = 8.8.8.8
FF - ProfilePath -
c:\users\Ronnie\AppData\Roaming\Mozilla\Firefox\Profiles\hz6l47lb.default\
FF - prefs.js: browser.startup.homepage - www.google.com.br
.
- - - - ORF�OS REMOVIDOS - - - -
.
HKLM_Wow6432Node-ActiveSetup-{8A69D345-D564-463c-AFF1-A69D9E530F96} - c:\program
files (x86)\Google\Chrome\Application\48.0.2564.103\Installer\chrmstp.exe
.
.
.
--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,99,0e,fa,11,a4,9a,28,4b,a1,09,0f,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,99,0e,fa,11,a4,9a,28,4b,a1,09,0f,\
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.032"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.abr"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.ani"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.arw"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.bay"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.bmp"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.cr2"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.crw"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.cs1"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.cur"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.dcr"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.dcx"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.dib"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.djv"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.djvu"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.dng"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.emf"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.erf"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.fff"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.gif"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.hdr"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.icl"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.icn"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.iw4"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.j2c"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.j2k"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jbr"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jfif"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jif"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jp2"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jpc"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jpe"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jpeg"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jpg"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jpk"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.jpx"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.kdc"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.mef"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.mos"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.mrw"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.nef"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nrw\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.nrw"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.orf"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.pbr"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.pct"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.pcx"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.pef"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.pic"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.pict"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.png"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.psd"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.raf"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.raw"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.rle"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.rw2"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rwl\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.rwl"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.sr2"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.srf"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srw\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.srw"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.tga"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.tif"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.tiff"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.ttc"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.ttf"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v70po\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.v70po"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v70pp\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.v70pp"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v70ppf\UserChoice
]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.v70ppf"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.wbm"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.wbmp"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webp\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.webp"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.wmf"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.xif"
.
[HKEY_USERS\S-1-5-21-1597018361-3125757771-1538747611-
1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xmp\UserChoice]
@Denied: (2) (S-1-5-21-1597018361-3125757771-1538747611-1000)
"Progid"="ACDSee Pro 7.xmp"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-
08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
.
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
.
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
.
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
.
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Tempo para conclus�o: 2018-08-09 20:41:46 - M�quina reiniciou
ComboFix-quarantined-files.txt 2018-08-09 23:41
ComboFix2.txt 2018-05-18 14:26
.
Pr�-execu��o: 147.211.755.520 bytes dispon�veis
P�s execu��o: 146.459.484.160 bytes dispon�veis
.
- - End Of File - - 8512DE25BBD3945ABD6BBA89BC796DDA
A36C5E4F47E84449FF07ED3517B43A31

Combo Log

Caricato da

Informazioni sul documento

Titolo originale

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

Combo Log

Caricato da

Copyright:

Formati disponibili

ComboFix 18-08-08.01 - Ronnie 09/08/2018 20:19:29.6.

Potrebbero piacerti anche