Program : RogueKiller Anti-Malware Version : 15.8.2.0 x64 : Yes Program Date : Mar 21 2023 Location : C:\Users\BLAS\Downloads\RogueKiller_portable64.exe Premium : No Company : Adlice Software Website : https://www.adlice.com/ Contact : https://adlice.com/contact/ Website : https://adlice.com/download/roguekiller/ Operating System : Windows 10 (10.0.19045) 64-bit 64-bit OS : Yes Startup : 0 WindowsPE : No User : BLAS User is Admin : Yes Date : 2023/04/11 03:24:38 Type : Removal Aborted : No Scan Mode : Standard Duration : 6045 Found items : 64 Total scanned : 122001 Signatures Version : 20230328_134833 Truesight Driver : Yes Updates Count : 17 ************************* Warnings ************************* (19:4586) C:\Windows\System32, LONG_FOLDER_SCAN [+] path : C:\Windows\System32 [+] message : LONG_FOLDER_SCAN [+] int1 : 19 [+] int2 : 4586 ************************* Removal ************************* [PUP.Gen0 (Potencialmente Malicioso)] HKEY_CLASSES_ROOT\CLSID\{A43DE495-3D00-47d4-9D2C-303115707939} -- [%ProgramFiles%\Wondershare\UniConverter\DownloadRes\URLReqService.exe] -> Borrado [+] scan_what : 2 [+] vendors : PUP.Gen0 [+] Name : HKEY_CLASSES_ROOT\CLSID\{A43DE495-3D00-47d4-9D2C-303115707939} [+] value : [%ProgramFiles%\Wondershare\UniConverter\DownloadRes\URLReqService.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 0 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen1 (Potencialmente Malicioso)] HKEY_USERS\S-1-5-21-888831208-1218717682-3056800969-1001\Software\eSupport.com -- -> Borrado [+] scan_what : 2 [+] vendors : PUP.Gen1 [+] Name : HKEY_USERS\S-1-5-21-888831208-1218717682-3056800969-1001\Software\eSupport.com [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 1 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{42BE11FC-C515-4F98-B6A4-73425E4BC86D}C:\users\blas\appdata\local\temp\1nclmn84rffl7z48tkf7zekgjvb\deezloader remix.exe -- [%localappdata%\temp\1nclmn84rffl7z48tkf7zekgjvb\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{42BE11FC-C515-4F98-B6A4-73425E4BC86D}C:\users\blas\appdata\local\temp\1nclmn84rffl7z48tkf7zekgjvb\deezloader remix.exe [+] value : [%localappdata%\temp\1nclmn84rffl7z48tkf7zekgjvb\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 2 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FCF56A4D-68AD-4001-B697-C546533B7F9F}C:\users\blas\appdata\local\temp\1nclmn84rffl7z48tkf7zekgjvb\deezloader remix.exe -- [%localappdata%\temp\1nclmn84rffl7z48tkf7zekgjvb\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FCF56A4D-68AD-4001-B697-C546533B7F9F}C:\users\blas\appdata\local\temp\1nclmn84rffl7z48tkf7zekgjvb\deezloader remix.exe [+] value : [%localappdata%\temp\1nclmn84rffl7z48tkf7zekgjvb\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 3 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{B9B23298-E2CB-40AD-944F-DCD71ECF27B1}C:\users\blas\appdata\local\temp\nsk58dd.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsk58dd.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{B9B23298-E2CB-40AD-944F-DCD71ECF27B1}C:\users\blas\appdata\local\temp\nsk58dd.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsk58dd.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 4 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{7BBC1BF5-CBC7-45D8-9DDE-CD995FECA828}C:\users\blas\appdata\local\temp\nsk58dd.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsk58dd.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{7BBC1BF5-CBC7-45D8-9DDE-CD995FECA828}C:\users\blas\appdata\local\temp\nsk58dd.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsk58dd.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 5 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{F1AA1A4A-3909-4C9F-9D34-2DF7EBEAA3A8}C:\users\blas\appdata\local\temp\nszedea.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nszedea.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{F1AA1A4A-3909-4C9F-9D34-2DF7EBEAA3A8}C:\users\blas\appdata\local\temp\nszedea.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nszedea.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 6 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{7B84C233-FAAD-446A-B74E-3C133AE7B6DC}C:\users\blas\appdata\local\temp\nszedea.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nszedea.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{7B84C233-FAAD-446A-B74E-3C133AE7B6DC}C:\users\blas\appdata\local\temp\nszedea.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nszedea.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 7 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{9F472D16-B276-47E3-9616-117DF10BBA89}C:\users\blas\appdata\local\temp\nsdcad8.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsdcad8.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{9F472D16-B276-47E3-9616-117DF10BBA89}C:\users\blas\appdata\local\temp\nsdcad8.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsdcad8.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 8 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{E0FD8A8E-E231-4C4F-AB6D-F3AE0BA76AFE}C:\users\blas\appdata\local\temp\nsdcad8.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsdcad8.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{E0FD8A8E-E231-4C4F-AB6D-F3AE0BA76AFE}C:\users\blas\appdata\local\temp\nsdcad8.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsdcad8.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 9 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{DF816682-3589-4C2A-9CEB-6BF5B5904C3C}C:\users\blas\appdata\local\temp\nsg82d1.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsg82d1.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{DF816682-3589-4C2A-9CEB-6BF5B5904C3C}C:\users\blas\appdata\local\temp\nsg82d1.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsg82d1.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 10 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{B88F9113-03A5-44DF-BCDD-9F74095F9BA6}C:\users\blas\appdata\local\temp\nsg82d1.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsg82d1.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{B88F9113-03A5-44DF-BCDD-9F74095F9BA6}C:\users\blas\appdata\local\temp\nsg82d1.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsg82d1.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 11 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{768A631B-A16F-43A5-BD9C-4BE5BFF1A742}C:\users\blas\appdata\local\temp\nso9473.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nso9473.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{768A631B-A16F-43A5-BD9C-4BE5BFF1A742}C:\users\blas\appdata\local\temp\nso9473.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nso9473.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 12 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{C6D4B500-2363-4290-890E-B18C3585B4B8}C:\users\blas\appdata\local\temp\nso9473.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nso9473.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{C6D4B500-2363-4290-890E-B18C3585B4B8}C:\users\blas\appdata\local\temp\nso9473.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nso9473.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 13 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{4710524D-E483-44AF-89BF-D1D5134CC798}C:\users\blas\appdata\local\temp\nsk7289.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsk7289.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{4710524D-E483-44AF-89BF-D1D5134CC798}C:\users\blas\appdata\local\temp\nsk7289.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsk7289.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 14 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FF6ECA26-C2F3-4201-A424-3CBDB182171E}C:\users\blas\appdata\local\temp\nsk7289.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsk7289.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FF6ECA26-C2F3-4201-A424-3CBDB182171E}C:\users\blas\appdata\local\temp\nsk7289.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsk7289.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 15 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{3A6DC3A8-F265-462B-A4FA-077F528A5990}C:\users\blas\appdata\local\temp\nsdbd70.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsdbd70.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{3A6DC3A8-F265-462B-A4FA-077F528A5990}C:\users\blas\appdata\local\temp\nsdbd70.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsdbd70.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 16 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{F1FC19FC-6201-4A95-8751-5374415AAA10}C:\users\blas\appdata\local\temp\nsdbd70.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsdbd70.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{F1FC19FC-6201-4A95-8751-5374415AAA10}C:\users\blas\appdata\local\temp\nsdbd70.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsdbd70.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 17 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{5287B209-D373-4C7A-8D55-FA0890614ADD}C:\users\blas\appdata\local\temp\nsrbc64.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsrbc64.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{5287B209-D373-4C7A-8D55-FA0890614ADD}C:\users\blas\appdata\local\temp\nsrbc64.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsrbc64.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 18 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{05D67AF1-F704-4FE9-B546-5CC80D05F62A}C:\users\blas\appdata\local\temp\nsrbc64.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsrbc64.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{05D67AF1-F704-4FE9-B546-5CC80D05F62A}C:\users\blas\appdata\local\temp\nsrbc64.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsrbc64.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 19 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{0E4D82B5-5660-48AE-BFED-0B70C537EDBC}C:\users\blas\appdata\local\temp\nsyc5bd.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsyc5bd.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{0E4D82B5-5660-48AE-BFED-0B70C537EDBC}C:\users\blas\appdata\local\temp\nsyc5bd.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsyc5bd.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 20 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{713F6F50-DA81-4D8F-A221-D7EFB7BDF898}C:\users\blas\appdata\local\temp\nsyc5bd.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsyc5bd.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{713F6F50-DA81-4D8F-A221-D7EFB7BDF898}C:\users\blas\appdata\local\temp\nsyc5bd.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsyc5bd.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 21 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{E2D01D60-543C-422B-A920-2F673D510666}C:\users\blas\appdata\local\temp\nsd57e4.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsd57e4.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{E2D01D60-543C-422B-A920-2F673D510666}C:\users\blas\appdata\local\temp\nsd57e4.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsd57e4.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 22 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{45E72416-61EE-408E-BF8C-B09FA81E9945}C:\users\blas\appdata\local\temp\nsd57e4.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsd57e4.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{45E72416-61EE-408E-BF8C-B09FA81E9945}C:\users\blas\appdata\local\temp\nsd57e4.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsd57e4.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 23 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{65A43B67-DE63-4953-98D0-1440510692E6}C:\users\blas\appdata\local\temp\nsz4460.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsz4460.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{65A43B67-DE63-4953-98D0-1440510692E6}C:\users\blas\appdata\local\temp\nsz4460.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsz4460.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 24 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{DC94EA77-1A18-4678-95C1-E438B1E58355}C:\users\blas\appdata\local\temp\nsyca63.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsyca63.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{DC94EA77-1A18-4678-95C1-E438B1E58355}C:\users\blas\appdata\local\temp\nsyca63.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsyca63.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 25 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{5AFF839F-E44C-492F-AECD-7E451D4279C6}C:\users\blas\appdata\local\temp\nsz4460.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsz4460.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{5AFF839F-E44C-492F-AECD-7E451D4279C6}C:\users\blas\appdata\local\temp\nsz4460.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsz4460.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 26 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{553B2E07-FAF6-461D-941C-E8DC34B0514C}C:\users\blas\appdata\local\temp\nsyca63.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsyca63.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{553B2E07-FAF6-461D-941C-E8DC34B0514C}C:\users\blas\appdata\local\temp\nsyca63.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsyca63.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 27 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{B7766D87-72F2-438B-B6E8-B8F7F2E90899}C:\users\blas\appdata\local\temp\nssd6eb.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nssd6eb.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{B7766D87-72F2-438B-B6E8-B8F7F2E90899}C:\users\blas\appdata\local\temp\nssd6eb.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nssd6eb.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 28 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{2A40129C-F91A-4ECB-B597-76446AAD76EA}C:\users\blas\appdata\local\temp\nssd6eb.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nssd6eb.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{2A40129C-F91A-4ECB-B597-76446AAD76EA}C:\users\blas\appdata\local\temp\nssd6eb.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nssd6eb.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 29 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{D2E5A5CB-B04D-49B0-8E2C-FC6DA796B6D5}C:\users\blas\appdata\local\temp\nsd7576.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsd7576.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{D2E5A5CB-B04D-49B0-8E2C-FC6DA796B6D5}C:\users\blas\appdata\local\temp\nsd7576.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsd7576.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 30 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{A4AC8C9C-0DC1-423F-884E-3C17EE893E3E}C:\users\blas\appdata\local\temp\nsd7576.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsd7576.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{A4AC8C9C-0DC1-423F-884E-3C17EE893E3E}C:\users\blas\appdata\local\temp\nsd7576.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsd7576.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 31 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{3EA6A8B1-502B-4DCF-A9F1-FBACE8926759}C:\users\blas\appdata\local\temp\nssd21b.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nssd21b.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{3EA6A8B1-502B-4DCF-A9F1-FBACE8926759}C:\users\blas\appdata\local\temp\nssd21b.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nssd21b.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 32 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{12CF7FB0-436C-4CA7-97AF-38909CE9E4A2}C:\users\blas\appdata\local\temp\nssd21b.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nssd21b.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{12CF7FB0-436C-4CA7-97AF-38909CE9E4A2}C:\users\blas\appdata\local\temp\nssd21b.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nssd21b.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 33 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{67C8C70C-2A38-4511-A822-4C77D778F574}C:\users\blas\appdata\local\temp\nsncd06.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsncd06.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{67C8C70C-2A38-4511-A822-4C77D778F574}C:\users\blas\appdata\local\temp\nsncd06.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsncd06.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 34 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{D98DE9B4-ED31-4F24-8D7D-E240A69930B5}C:\users\blas\appdata\local\temp\nsncd06.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsncd06.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{D98DE9B4-ED31-4F24-8D7D-E240A69930B5}C:\users\blas\appdata\local\temp\nsncd06.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsncd06.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 35 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{F6F0C9B1-847C-44B2-BB5E-3CE6A4602457}C:\users\blas\appdata\local\temp\nsw3aa1.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsw3aa1.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{F6F0C9B1-847C-44B2-BB5E-3CE6A4602457}C:\users\blas\appdata\local\temp\nsw3aa1.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsw3aa1.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 36 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FE219A43-076B-480C-9F7C-9BC29BE9F6C4}C:\users\blas\appdata\local\temp\nsw3aa1.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsw3aa1.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FE219A43-076B-480C-9F7C-9BC29BE9F6C4}C:\users\blas\appdata\local\temp\nsw3aa1.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsw3aa1.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 37 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{A1EEDF31-9F0C-47E9-9799-7660EF3B6D35}C:\users\blas\appdata\local\temp\nsw3911.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsw3911.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{A1EEDF31-9F0C-47E9-9799-7660EF3B6D35}C:\users\blas\appdata\local\temp\nsw3911.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsw3911.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 38 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{E508A23B-E531-4A8E-973D-7564228538AF}C:\users\blas\appdata\local\temp\nsw3911.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsw3911.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{E508A23B-E531-4A8E-973D-7564228538AF}C:\users\blas\appdata\local\temp\nsw3911.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsw3911.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 39 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{00486F46-3BE2-49B4-A2BF-B8E977FD9EBF}C:\users\blas\appdata\local\temp\nssd7ff.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nssd7ff.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{00486F46-3BE2-49B4-A2BF-B8E977FD9EBF}C:\users\blas\appdata\local\temp\nssd7ff.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nssd7ff.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 40 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{7F86EE40-550B-4CD8-9DBC-99FD06B2184F}C:\users\blas\appdata\local\temp\nssd7ff.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nssd7ff.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{7F86EE40-550B-4CD8-9DBC-99FD06B2184F}C:\users\blas\appdata\local\temp\nssd7ff.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nssd7ff.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 41 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{CCECB115-7667-4C88-BFFE-B9B8B5B92AB8}C:\users\blas\appdata\local\temp\nsm87b1.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsm87b1.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{CCECB115-7667-4C88-BFFE-B9B8B5B92AB8}C:\users\blas\appdata\local\temp\nsm87b1.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsm87b1.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 42 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{72CBE360-B643-4505-8C2D-03BF082A798D}C:\users\blas\appdata\local\temp\nsm87b1.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsm87b1.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{72CBE360-B643-4505-8C2D-03BF082A798D}C:\users\blas\appdata\local\temp\nsm87b1.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsm87b1.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 43 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{3CDBA0FA-AE01-4607-B781-3EDBB85EEDF6}C:\users\blas\appdata\local\temp\nsk2d8f.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsk2d8f.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{3CDBA0FA-AE01-4607-B781-3EDBB85EEDF6}C:\users\blas\appdata\local\temp\nsk2d8f.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsk2d8f.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 44 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{B324A953-69DD-4241-8A37-E753E0D0176C}C:\users\blas\appdata\local\temp\nsk2d8f.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsk2d8f.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{B324A953-69DD-4241-8A37-E753E0D0176C}C:\users\blas\appdata\local\temp\nsk2d8f.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsk2d8f.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 45 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{E765BAF2-8B8A-455B-9074-53F8D11C4B7A}C:\users\blas\appdata\local\temp\nsd560e.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsd560e.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{E765BAF2-8B8A-455B-9074-53F8D11C4B7A}C:\users\blas\appdata\local\temp\nsd560e.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsd560e.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 46 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{16D59310-BD4E-4588-80A7-3AB6FCFFC8A1}C:\users\blas\appdata\local\temp\nsd560e.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsd560e.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{16D59310-BD4E-4588-80A7-3AB6FCFFC8A1}C:\users\blas\appdata\local\temp\nsd560e.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsd560e.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 47 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{C86F62CF-6377-4CDF-A0C9-423AD77E1B27}C:\users\blas\appdata\local\temp\nsq52b3.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsq52b3.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{C86F62CF-6377-4CDF-A0C9-423AD77E1B27}C:\users\blas\appdata\local\temp\nsq52b3.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsq52b3.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 48 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{67C0988D-BE7C-4E1E-BD99-3B1118F86F69}C:\users\blas\appdata\local\temp\nsq52b3.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsq52b3.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{67C0988D-BE7C-4E1E-BD99-3B1118F86F69}C:\users\blas\appdata\local\temp\nsq52b3.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsq52b3.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 49 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{21089A02-1B61-4DE5-9B9B-D0B4CEDE03A5}C:\users\blas\appdata\local\temp\nsceb59.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsceb59.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{21089A02-1B61-4DE5-9B9B-D0B4CEDE03A5}C:\users\blas\appdata\local\temp\nsceb59.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsceb59.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 50 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{54DB7C3E-8A45-45CF-A143-11865A3FAD02}C:\users\blas\appdata\local\temp\nsceb59.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nsceb59.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{54DB7C3E-8A45-45CF-A143-11865A3FAD02}C:\users\blas\appdata\local\temp\nsceb59.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nsceb59.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 51 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{FD11B025-C79C-44E1-9460-916FF645B468}C:\users\blas\appdata\local\temp\nshc452.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nshc452.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{FD11B025-C79C-44E1-9460-916FF645B468}C:\users\blas\appdata\local\temp\nshc452.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nshc452.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 52 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{9C760422-B2E1-42D2-9540-1A43684CD631}C:\users\blas\appdata\local\temp\nshc452.tmp\app\deezloader remix.exe -- [%localappdata%\temp\nshc452.tmp\app\deezloader remix.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{9C760422-B2E1-42D2-9540-1A43684CD631}C:\users\blas\appdata\local\temp\nshc452.tmp\app\deezloader remix.exe [+] value : [%localappdata%\temp\nshc452.tmp\app\deezloader remix.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 53 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{7605EC0E-551D-4FB4-ABA4-1ED9B10DBB7F}C:\users\blas\appdata\local\programs\deezloader\deezloader.exe -- [%localappdata%\programs\deezloader\deezloader.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{7605EC0E-551D-4FB4-ABA4-1ED9B10DBB7F}C:\users\blas\appdata\local\programs\deezloader\deezloader.exe [+] value : [%localappdata%\programs\deezloader\deezloader.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 54 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{88C56605-FFBF-4EC2-8601-DC5ECDF00D06}C:\users\blas\appdata\local\programs\deezloader\deezloader.exe -- [%localappdata%\programs\deezloader\deezloader.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{88C56605-FFBF-4EC2-8601-DC5ECDF00D06}C:\users\blas\appdata\local\programs\deezloader\deezloader.exe [+] value : [%localappdata%\programs\deezloader\deezloader.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 55 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{2293DEFF-964F-4D10-8DD4-279822F5D865}C:\users\blas\appdata\local\temp\game_app_data_hero3_dlrb\zo0coijp.exe -- [%localappdata%\temp\game_app_data_hero3_dlrb\zo0coijp.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{2293DEFF-964F-4D10-8DD4-279822F5D865}C:\users\blas\appdata\local\temp\game_app_data_hero3_dlrb\zo0coijp.exe [+] value : [%localappdata%\temp\game_app_data_hero3_dlrb\zo0coijp.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 56 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{DF748385-201C-465E-8FCE-B069FFFA3064}C:\users\blas\appdata\local\temp\game_app_data_hero3_dlrb\zo0coijp.exe -- [%localappdata%\temp\game_app_data_hero3_dlrb\zo0coijp.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{DF748385-201C-465E-8FCE-B069FFFA3064}C:\users\blas\appdata\local\temp\game_app_data_hero3_dlrb\zo0coijp.exe [+] value : [%localappdata%\temp\game_app_data_hero3_dlrb\zo0coijp.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 57 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{45E57BA9-FF58-487A-ACAD-1D9AA7FB4245}C:\users\blas\appdata\local\mycomgames\mycomgames.exe -- [%localappdata%\mycomgames\mycomgames.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{45E57BA9-FF58-487A-ACAD-1D9AA7FB4245}C:\users\blas\appdata\local\mycomgames\mycomgames.exe [+] value : [%localappdata%\mycomgames\mycomgames.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 58 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{AE41810D-46EC-4819-B62C-AA3EADF685DB}C:\users\blas\appdata\local\mycomgames\mycomgames.exe -- [%localappdata%\mycomgames\mycomgames.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{AE41810D-46EC-4819-B62C-AA3EADF685DB}C:\users\blas\appdata\local\mycomgames\mycomgames.exe [+] value : [%localappdata%\mycomgames\mycomgames.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 59 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{18FCD9E8-D14C-4F49-8327-12B485809C31}C:\users\blas\appdata\local\mycomgames\gamecenter.exe -- [%localappdata%\mycomgames\gamecenter.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{18FCD9E8-D14C-4F49-8327-12B485809C31}C:\users\blas\appdata\local\mycomgames\gamecenter.exe [+] value : [%localappdata%\mycomgames\gamecenter.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 60 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [Suspicious.Path (Potencialmente Malicioso)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{586A16F8-25B5-4F86-976D-D05AD6801C7B}C:\users\blas\appdata\local\mycomgames\gamecenter.exe -- [%localappdata%\mycomgames\gamecenter.exe] -> Borrado [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{586A16F8-25B5-4F86-976D-D05AD6801C7B}C:\users\blas\appdata\local\mycomgames\gamecenter.exe [+] value : [%localappdata%\mycomgames\gamecenter.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 61 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : -1 [PUP.OnlineIO (Potencialmente Malicioso)] AdvinstAnalytics -- %localappdata%\AdvinstAnalytics -> Borrado [+] scan_what : 1 [+] vendors : PUP.OnlineIO [+] Name : AdvinstAnalytics [+] value : %localappdata%\AdvinstAnalytics [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 62 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.HackTool (Potencialmente Malicioso)] netcut -- %programdata%\Microsoft\Windows\Start Menu\Programs\netcut -> Borrado [+] scan_what : 1 [+] vendors : PUP.HackTool [+] Name : netcut [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\netcut [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 63 [+] status : 3 [+] status_str : Borrado [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0