Professional Documents
Culture Documents
8 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.8151.6113 [GMT -2:00]
Executando de: c:\users\copiadora\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA6
5C6ACFB0A}
SP: Microsoft Security Essentials *Enabled/Updated* {0C8D1929-27B2-688D-E114-911
7BD2BB1B7}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Criado um novo ponto de restaurao
.
.
((((((((((((((((((((((((((((((((((((( Outras Excluses )))))))))))))))))))))))
))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\DEBUG.log
.
.
(((((((((((((((( Arquivos/Ficheiros criados de 2016-09-21 to 2016-10-21 )))))
)))))))))))))))))))))))
.
.
2016-10-21 14:21 . 2016-10-21 14:21
-------d-----wc:\users
\Default\AppData\Local\temp
2016-10-21 12:46 . 2016-10-21 12:48
-------d-----wc:\progr
am files\CCleaner
2016-10-21 11:50 . 2016-10-21 11:50
-------d-----wc:\users
\copiadora\AppData\Roaming\HD Tune Pro
2016-10-21 11:49 . 2016-10-21 11:49
-------d-----wc:\progr
am files (x86)\HD Tune Pro
2016-10-21 11:17 . 2016-10-06 21:42
12033040
----a-wc:\progr
amdata\Microsoft\Microsoft Antimalware\Definition Updates\{DE6B3376-8B08-45E3-9F
11-50345C63C39A}\mpengine.dll
2016-10-20 19:43 . 2016-10-20 19:43
-------d-----wc:\users
\copiadora\AppData\Local\Diagnostics
2016-10-20 10:32 . 2016-10-06 21:42
12033040
----a-wc:\progr
amdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2016-10-18 18:10 . 2016-10-18 18:10
-------d-----wc:\progr
am files\Common Files\Corel
2016-10-05 11:12 . 2016-05-09 15:10
1167568 ----a-wc:\programdata\M
icrosoft\Microsoft Antimalware\Definition Updates\{3B6BA63B-BEAB-4C0C-AF62-581F7
5AFB8BC}\gapaengine.dll
2016-10-03 04:30 . 2016-10-03 04:30
365536 ----a-wc:\windows\SysWo
w64\DivXControlPanelApplet.cpl
.
.
.
((((((((((((((((((((((((((((((((((((( Relatrio Find3M )))))))))))))))))))))))
)))))))))))))))))))))))))))))
.
2016-07-27 19:25 . 2015-09-09 12:43
504488 ------wc:\windows\syste
m32\MpSigStub.exe
.
.
(((((((((((((((((((((((((( Pontos de Carregamento do Registro ))))))))))))))
)))))))))))))))))))))))))
.
.
*Nota* entradas vazias e legtimas por padro no so apresentadas.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"FRSSysTrayIcon"="c:\program files (x86)\Fiery\Applications3\FieryRemoteScanApp\
FRSSysTrayIcon.exe" [2016-01-19 57344]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2015-11-25
1336320]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c
:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft
.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;c:\
program files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrame
workService.exe;c:\program files (x86)\Hewlett-Packard\HP Support Solutions\HPSu
pportSolutionsFrameworkService.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbam
service.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program files\Co
mmon Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe;c:\pro
gram files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService
64.exe [x]
R3 hasplms;Sentinel LDK License Manager;c:\windows\system32\hasplms.exe -run;c:
\windows\SYSNATIVE\hasplms.exe -run [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\syst
em32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sy
s;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\dri
vers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard
\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoa
rd.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\S
YSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATI
VE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATI
VE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\driver
s\rdvgkmd.sys [x]
S2 AdAppMgrSvc;Autodesk Application Manager Service;c:\program files (x86)\Autod
esk\Autodesk Desktop App\AdAppMgrSvc.exe ;c:\program files (x86)\Autodesk\Autode
sk Desktop App\AdAppMgrSvc.exe [x]
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys;c:\windows\SYSNATIVE\driver
s\aksdf.sys [x]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\C
ontent Service\Connect.Service.ContentService.exe;c:\program files\Autodesk\Cont
ent Service\Connect.Service.ContentService.exe [x]
S2 EFI ES1000;EFI ES1000;c:\program files (x86)\Common Files\EFI\EFI ES-1000 Ser