Module introuvable BabSolution\Shared\NTRedirect.dll

Résolu
Gibus -  
Malekal_morte- Messages postés 178136 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
Bonjour, à chaque démarrage de mon PC j'ai une fenêtre qui s'ouvre RunDLL et il est écrit : Problème lors du démarrage de
C:\Users\Houda\AppData\Roaming\BabSolution\Shared\NTRedirect.dll
Le module spécifié est introuvable.

Rapport Adwcleaner:

# AdwCleaner v1.606 - Logfile created 11/26/2013 at 09:35:08
# Updated 10/05/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Gilbert - GILBERT-PC
# Running from : C:\Users\Gilbert\Desktop\adwcleaner-1.606-en.exe
# Option [Search]

***** [Services] *****

***** [Files / Folders] *****

Folder Found : C:\Users\Gilbert\AppData\Local\Ilivid
File Found : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\searchplugins\Ask.xml
File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\ask.xml

***** [Registry] *****

Key Found : HKCU\Software\APN DTX
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\ilivid
Key Found : HKLM\SOFTWARE\DataMngr
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
[x64] Key Found : HKCU\Software\APN DTX
[x64] Key Found : HKCU\Software\DataMngr
[x64] Key Found : HKCU\Software\DataMngr_Toolbar
[x64] Key Found : HKCU\Software\ilivid
[x64] Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
[x64] Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
[x64] Key Found : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
[x64] Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar

***** [Registre - GUID] *****

Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
[x64] Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
[x64] Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
[x64] Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
[x64] Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.11.9600.16428

[OK] Registry is clean.

-\\ Mozilla Firefox v25.0.1 (es-ES)

Profile name : default
File : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\prefs.js

Found : user_pref("browser.search.defaultenginename", "Ask.com");
Found : user_pref("browser.search.order.1", "Ask.com");
Found : user_pref("browser.search.selectedEngine", "Ask.com");
Found : user_pref("browser.startup.homepage", "hxxp://www.search.ask.com/?o=APN10645A&gct=hp&d=406-834&v=n10[...]
Found : user_pref("keyword.URL", "hxxp://dts.search.ask.com/sr?src=ffb&gct=ds&appid=834&systemid=406&v=n1024[...]

-\\ Google Chrome v30.0.1599.101

File : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found : "name" : "Search The Web(HTM)",
Found : "name" : "SweetIM for Facebook",
Found : "update_url" : "hxxp://www.sweetim.com/simgcbar/GCSocialUpdate.xml",
Found : "explicit_host" : [ "chrome://favicon/*", "hxxp://*.sweetim.com/*" ]
Found : "hxxp://*.sweetim.com/*",
Found : "update_url" : "hxxp://www.sweetim.com/simgcbar/GCToolbarUpdate.xml",

*************************

AdwCleaner[R1].txt - [41739 octets] - [25/11/2013 10:19:57]
AdwCleaner[R2].txt - [41800 octets] - [25/11/2013 10:21:42]
AdwCleaner[S1].txt - [283 octets] - [25/11/2013 10:22:50]
AdwCleaner[R3].txt - [41923 octets] - [25/11/2013 10:34:20]
AdwCleaner[S2].txt - [32577 octets] - [25/11/2013 10:45:53]
AdwCleaner[R4].txt - [4971 octets] - [26/11/2013 09:35:08]

########## EOF - C:\AdwCleaner[R4].txt - [5099 octets] ##########

9 réponses

  1. Malekal_morte- Messages postés 178136 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 712
     
    Salut,

    Ta version d'AdwCleaner est obsolète.
    Supprime la.

    Suis ce tutorial https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= AdwCleaner ( d'Xplode ) sur ton bureau.
    Vas sur le lien, télécharge AdwCleaner comme indiqué.
    Lance AdwCleaner, clique sur [Scanner].
    Le scan peux durer plusieurs minutes, patienter.
    Une fois le scan terminé, clique sur [Nettoyer]

    Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
    Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.

    Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

    0
  2. Gibus
     
    Salut,
    Voici le rapport avec la bonne version AdwCleaner:
    # AdwCleaner v3.013 - Reporte Creado 26/11/2013 en 10:14:57
    # Actualizado 24/11/2013 por Xplode
    # Sistema Operativo : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Nombre de usuario : Gilbert - GILBERT-PC
    # Ejecutado desde : C:\Users\Gilbert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GQY6MEI8\adwcleaner.exe
    # Opción : Escanear

    ***** [ Servicios ] *****

    Servicio Encontrado : 24x7HelpSvc
    Servicio Encontrado : DatamngrCoordinator
    Servicio Encontrado : SProtection

    ***** [ Archivos / Carpetas ] *****

    Archivo Encontrado : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\Ask.xml
    Archivo Encontrado : C:\Program Files (x86)\Mozilla Firefox\defaults\pref\all-iminent.js
    Archivo Encontrado : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Web Search.xml
    Archivo Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
    Archivo Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ifohbjbgfchkkfhphahclmkpgejiplfo_0.localstorage
    Archivo Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
    Archivo Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage-journal
    Archivo Encontrado : C:\Users\Gilbert\AppData\Local\mysearchdial-speeddial.crx
    Archivo Encontrado : C:\Users\Gilbert\AppData\Local\Temp\IminentMinibar.exe
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\Extensions\***@***
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\searchplugins\Mysearchdial.xml
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\searchplugins\Web Search.xml
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\bprotector_extensions.sqlite
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\bprotector_prefs.js
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\Extensions\***@***
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\searchplugins\Mysearchdial.xml
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\searchplugins\Web Search.xml
    Archivo Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\user.js
    Archivo Encontrado : C:\Users\Public\Desktop\Advanced System Protector.lnk
    Archivo Encontrado : C:\Users\Public\Desktop\Get The Best Facebook Chat Messenger.lnk
    Archivo Encontrado : C:\Users\Public\Desktop\RegClean Pro.lnk
    Archivo Encontrado : C:\Windows\System32\roboot64.exe
    Archivo Encontrado : C:\Windows\System32\Tasks\Advanced System Protector_startup
    Archivo Encontrado : C:\Windows\System32\Tasks\Browser Updater
    Archivo Encontrado : C:\Windows\System32\Tasks\Plus-HD-1.3-chromeinstaller
    Archivo Encontrado : C:\Windows\System32\Tasks\Plus-HD-1.3-codedownloader
    Archivo Encontrado : C:\Windows\System32\Tasks\Plus-HD-1.3-enabler
    Archivo Encontrado : C:\Windows\System32\Tasks\Plus-HD-1.3-firefoxinstaller
    Archivo Encontrado : C:\Windows\System32\Tasks\Plus-HD-1.3-updater
    Archivo Encontrado : C:\Windows\System32\Tasks\ProtectedSearch
    Archivo Encontrado : C:\Windows\System32\Tasks\RegClean Pro
    Archivo Encontrado : C:\Windows\System32\Tasks\RegClean Pro_DEFAULT
    Archivo Encontrado : C:\Windows\System32\Tasks\RegClean Pro_UPDATES
    Archivo Encontrado : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
    Archivo Encontrado : C:\Windows\Tasks\Plus-HD-1.3-chromeinstaller.job
    Archivo Encontrado : C:\Windows\Tasks\Plus-HD-1.3-codedownloader.job
    Archivo Encontrado : C:\Windows\Tasks\Plus-HD-1.3-enabler.job
    Archivo Encontrado : C:\Windows\Tasks\Plus-HD-1.3-firefoxinstaller.job
    Archivo Encontrado : C:\Windows\Tasks\Plus-HD-1.3-updater.job
    Archivo Encontrado : C:\Windows\Tasks\RegClean Pro_DEFAULT.job
    Archivo Encontrado : C:\Windows\Tasks\RegClean Pro_UPDATES.job
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhlmghjmomaoodfgjeikphfdljhpcpkl
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\Extensions\{3d86a75b-cb6b-4764-885d-ca6336f04ba2}
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\Extensions\{AD9A41D2-9A49-4FA6-A79E-71A0785364C8}
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\Extensions\***@***
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\Extensions\***@***
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\Extensions\***@***
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\Extensions\{AD9A41D2-9A49-4FA6-A79E-71A0785364C8}
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\Extensions\***@***
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\Extensions\***@***
    Carpeta Encontrado : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\Extensions\***@***
    Carpeta Encontrado C:\Program Files (x86)\24x7Help
    Carpeta Encontrado C:\Program Files (x86)\Advanced System Protector
    Carpeta Encontrado C:\Program Files (x86)\Common Files\Umbrella
    Carpeta Encontrado C:\Program Files (x86)\Delta
    Carpeta Encontrado C:\Program Files (x86)\HomeTab
    Carpeta Encontrado C:\Program Files (x86)\Inbox Toolbar
    Carpeta Encontrado C:\Program Files (x86)\Movies Toolbar
    Carpeta Encontrado C:\Program Files (x86)\MyPC Backup
    Carpeta Encontrado C:\Program Files (x86)\optimizer pro
    Carpeta Encontrado C:\Program Files (x86)\Plus-HD-1.3
    Carpeta Encontrado C:\Program Files (x86)\RegClean Pro
    Carpeta Encontrado C:\Program Files (x86)\SimilarSites
    Carpeta Encontrado C:\Program Files (x86)\wisestamp
    Carpeta Encontrado C:\ProgramData\BitGuard
    Carpeta Encontrado C:\ProgramData\Browser Manager
    Carpeta Encontrado C:\ProgramData\BrowserProtect
    Carpeta Encontrado C:\ProgramData\DSearchLink
    Carpeta Encontrado C:\ProgramData\Microsoft\Windows\Start Menu\Programs\24x7 help
    Carpeta Encontrado C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
    Carpeta Encontrado C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
    Carpeta Encontrado C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
    Carpeta Encontrado C:\ProgramData\ParetoLogic
    Carpeta Encontrado C:\ProgramData\Systweak
    Carpeta Encontrado C:\ProgramData\wincert
    Carpeta Encontrado C:\Users\Gilbert\AppData\Local\lollipop
    Carpeta Encontrado C:\Users\Gilbert\AppData\Local\torch
    Carpeta Encontrado C:\Users\Gilbert\AppData\LocalLow\Delta
    Carpeta Encontrado C:\Users\Gilbert\AppData\LocalLow\HomeTab
    Carpeta Encontrado C:\Users\Gilbert\AppData\LocalLow\ilividmoviestoolbarha
    Carpeta Encontrado C:\Users\Gilbert\AppData\LocalLow\Inbox Toolbar
    Carpeta Encontrado C:\Users\Gilbert\AppData\LocalLow\Plus-HD-1.3
    Carpeta Encontrado C:\Users\Gilbert\AppData\LocalLow\searchresultstb
    Carpeta Encontrado C:\Users\Gilbert\AppData\LocalLow\SimplyTech
    Carpeta Encontrado C:\Users\Gilbert\AppData\LocalLow\wisestamp
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\24x7 help
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\BabSolution
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\Delta
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\DriverCure
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\HomeTab
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\ilividmoviestoolbarha
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\Inbox Toolbar
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\Inbox Toolbar
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\ParetoLogic
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\Search Protection
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\SimilarSites
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\SimplyTech
    Carpeta Encontrado C:\Users\Gilbert\AppData\Roaming\Systweak
    Carpeta Encontrado C:\Users\Gilbert\Documents\optimizer pro

    ***** [ Accesos directos ] *****

    Acceso directo Encontrado : C:\Users\Gilbert\Desktop\Search.lnk ( -url hxxp://www2.delta-search.com/?babsrc=DT_ss&mntrId=84BCB639E5815816&affID=123208&tt=150913_enh&tsp=5009 -wbr 2 )
    Acceso directo Encontrado : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar\Aide.lnk ( /showurl hxxp://toolbar.inbox.com/faq.aspx )
    Acceso directo Encontrado : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar\Inbox.com.lnk ( /showurl hxxp://www.inbox.com/homepage.aspx?tbid=80809&lng=fr )
    Acceso directo Encontrado : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar\Paramètres.lnk ( /showurl hxxp://toolbar.inbox.com/settings/settings.aspx?lng=fr )

    ***** [ Registro ] *****

    Clave Encontrado : HKCU\Software\24x7help
    Clave Encontrado : HKCU\Software\5328c8ab06def45
    Clave Encontrado : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
    Clave Encontrado : HKCU\Software\AppDataLow\Software\Crossrider
    Clave Encontrado : HKCU\Software\AppDataLow\Software\Plus-HD-1.3
    Clave Encontrado : HKCU\Software\AppDataLow\Software\simplytech
    Clave Encontrado : HKCU\Software\AppDataLow\Software\Simplytech\HomeTab
    Clave Encontrado : HKCU\Software\AppDataLow\Software\SmartBar
    Clave Encontrado : HKCU\Software\AppDataLow\Software\wisestamp
    Clave Encontrado : HKCU\Software\BabSolution
    Clave Encontrado : HKCU\Software\Classes\iLivid.torrent
    Clave Encontrado : HKCU\Software\DataMngr
    Clave Encontrado : HKCU\Software\DataMngr_Toolbar
    Clave Encontrado : HKCU\Software\Delta
    Clave Encontrado : HKCU\Software\distromatic
    Clave Encontrado : HKCU\Software\Google\Chrome\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl
    Clave Encontrado : HKCU\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
    Clave Encontrado : HKCU\Software\HomeTab
    Clave Encontrado : HKCU\Software\Inbox Toolbar
    Clave Encontrado : HKCU\Software\InstallCore
    Clave Encontrado : HKCU\Software\installedbrowserextensions
    Clave Encontrado : HKCU\Software\lollipop
    Clave Encontrado : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110311121157}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4DA0B44C-498C-4F75-85DC-32FE3C4A0211}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DF96F37A-ACCD-42B5-BD3D-629C0895E2B0}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311121157}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{23AF19F7-1D5B-442C-B14C-3D1081953C94}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4DA0B44C-498C-4F75-85DC-32FE3C4A0211}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
    Clave Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF96F37A-ACCD-42B5-BD3D-629C0895E2B0}
    Clave Encontrado : HKCU\Software\mysearchdial.com
    Clave Encontrado : HKCU\Software\Pokki
    Clave Encontrado : HKCU\Software\powerpack
    Clave Encontrado : HKCU\Software\simplytech
    Clave Encontrado : HKCU\Software\Simplytech\HomeTab
    Clave Encontrado : HKCU\Software\smartbarlog
    Clave Encontrado : HKCU\Software\systweak
    Clave Encontrado : HKCU\Software\torch
    Clave Encontrado : HKCU\Software\wisestamp
    Clave Encontrado : [x64] HKCU\Software\24x7help
    Clave Encontrado : [x64] HKCU\Software\BabSolution
    Clave Encontrado : [x64] HKCU\Software\DataMngr
    Clave Encontrado : [x64] HKCU\Software\DataMngr_Toolbar
    Clave Encontrado : [x64] HKCU\Software\Delta
    Clave Encontrado : [x64] HKCU\Software\distromatic
    Clave Encontrado : [x64] HKCU\Software\HomeTab
    Clave Encontrado : [x64] HKCU\Software\Inbox Toolbar
    Clave Encontrado : [x64] HKCU\Software\InstallCore
    Clave Encontrado : [x64] HKCU\Software\installedbrowserextensions
    Clave Encontrado : [x64] HKCU\Software\lollipop
    Clave Encontrado : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
    Clave Encontrado : [x64] HKCU\Software\mysearchdial.com
    Clave Encontrado : [x64] HKCU\Software\Pokki
    Clave Encontrado : [x64] HKCU\Software\powerpack
    Clave Encontrado : [x64] HKCU\Software\simplytech
    Clave Encontrado : [x64] HKCU\Software\Simplytech\HomeTab
    Clave Encontrado : [x64] HKCU\Software\smartbarlog
    Clave Encontrado : [x64] HKCU\Software\systweak
    Clave Encontrado : [x64] HKCU\Software\torch
    Clave Encontrado : [x64] HKCU\Software\wisestamp
    Clave Encontrado : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
    Clave Encontrado : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
    Clave Encontrado : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
    Clave Encontrado : HKLM\Software\24x7help
    Clave Encontrado : HKLM\SOFTWARE\5328c8ab06def45
    Clave Encontrado : HKLM\Software\aartemisSoftware
    Clave Encontrado : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
    Clave Encontrado : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
    Clave Encontrado : HKLM\SOFTWARE\Classes\AppID\{3FC27B34-0C19-49DA-875E-1875DDD4A6B2}
    Clave Encontrado : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
    Clave Encontrado : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
    Clave Encontrado : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
    Clave Encontrado : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
    Clave Encontrado : HKLM\SOFTWARE\Classes\AppID\HomeTab.DLL
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{0EE02110-967B-4256-ACA6-BC8AC7CB7E61}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311121157}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322122257}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{23AF19F7-1D5B-442C-B14C-3D1081953C94}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{4DA0B44C-498C-4F75-85DC-32FE3C4A0211}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{AF808758-C780-404C-A4EE-4526323FD9B6}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{DF96F37A-ACCD-42B5-BD3D-629C0895E2B0}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
    Clave Encontrado : HKLM\SOFTWARE\Classes\CrossriderApp0031257.BHO
    Clave Encontrado : HKLM\SOFTWARE\Classes\CrossriderApp0031257.BHO.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\CrossriderApp0031257.Sandbox
    Clave Encontrado : HKLM\SOFTWARE\Classes\CrossriderApp0031257.Sandbox.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\delta.deltaappCore
    Clave Encontrado : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\delta.deltadskBnd
    Clave Encontrado : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\delta.deltaHlpr
    Clave Encontrado : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
    Clave Encontrado : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\iesmartbar.bandobjectattribute
    Clave Encontrado : HKLM\SOFTWARE\Classes\iesmartbar.dockingpanel
    Clave Encontrado : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbarbandobject
    Clave Encontrado : HKLM\SOFTWARE\Classes\iesmartbar.smartbardisplaystate
    Clave Encontrado : HKLM\SOFTWARE\Classes\iesmartbar.smartbarmenuform
    Clave Encontrado : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
    Clave Encontrado : HKLM\SOFTWARE\Classes\Inbox.AppServer
    Clave Encontrado : HKLM\SOFTWARE\Classes\Inbox.IBX404
    Clave Encontrado : HKLM\SOFTWARE\Classes\Inbox.JSServer
    Clave Encontrado : HKLM\SOFTWARE\Classes\Inbox.Toolbar
    Clave Encontrado : HKLM\Software\Classes\Installer\Features\B05CCF18F0593604E8A49DC9AAF4BBF1
    Clave Encontrado : HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
    Clave Encontrado : HKLM\Software\Classes\Installer\Products\B05CCF18F0593604E8A49DC9AAF4BBF1
    Clave Encontrado : HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355125557}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366126657}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{8216BD4A-4DC2-4DCE-9AFF-C86C5ACC6757}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{A928E66C-F501-4E66-9953-855C712F93B2}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{D4D390BE-98E6-4633-AD1B-B18B54BE5E76}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
    Clave Encontrado : HKLM\SOFTWARE\Classes\Interface\{FCA8936E-403A-4487-A966-70F80F1D5A6A}
    Clave Encontrado : HKLM\SOFTWARE\Classes\OfferBoxUI.TheBoxCtrl
    Clave Encontrado : HKLM\SOFTWARE\Classes\OfferBoxUI.TheBoxCtrl.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\Prod.cap
    Clave Encontrado : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
    Clave Encontrado : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
    Clave Encontrado : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\rebinfo
    Clave Encontrado : HKLM\SOFTWARE\Classes\RebateI.Rebate Informer BHO
    Clave Encontrado : HKLM\SOFTWARE\Classes\RebateI.RebateInformImageGen
    Clave Encontrado : HKLM\SOFTWARE\Classes\RebateInf.RebateInfObj
    Clave Encontrado : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
    Clave Encontrado : HKLM\SOFTWARE\Classes\TypeLib\{438B047C-C041-4D15-98CF-A97C6B366C28}
    Clave Encontrado : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344124457}
    Clave Encontrado : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
    Clave Encontrado : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
    Clave Encontrado : HKLM\SOFTWARE\Classes\TypeLib\{8ABB9FA2-0740-4AD9-8F54-1192254B3CF4}
    Clave Encontrado : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
    Clave Encontrado : HKLM\SOFTWARE\Classes\wtb.Band
    Clave Encontrado : HKLM\SOFTWARE\Classes\wtb.Band.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\wtb.NotificationSource
    Clave Encontrado : HKLM\SOFTWARE\Classes\wtb.NotificationSource.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl
    Clave Encontrado : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl.1
    Clave Encontrado : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo
    Clave Encontrado : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo.1
    Clave Encontrado : HKLM\Software\DataMngr
    Clave Encontrado : HKLM\Software\Delta
    Clave Encontrado : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
    Clave Encontrado : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
    Clave Encontrado : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
    Clave Encontrado : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
    Clave Encontrado : HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
    Clave Encontrado : HKLM\Software\Inbox Toolbar
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19e048ed-7ff3-4eaf-a089-8d22829089ac}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19e048ed-7ff3-4eaf-a089-8d22829089ac}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19e048ed-7ff3-4eaf-a089-8d22829089ac}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{369c2224-e676-4c4e-8196-fe1539ee09c1}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{369c2224-e676-4c4e-8196-fe1539ee09c1}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{369c2224-e676-4c4e-8196-fe1539ee09c1}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C464F09-D1D7-4B24-A3B0-747289976925}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5c6faf88-2aaf-497a-a048-41c0f7b5d8a3}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5c6faf88-2aaf-497a-a048-41c0f7b5d8a3}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5c6faf88-2aaf-497a-a048-41c0f7b5d8a3}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{64ADDE04-711E-4392-8701-D2EEE8D9A626}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{965d05d1-3371-4cbe-9571-ef1476d1910e}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{965d05d1-3371-4cbe-9571-ef1476d1910e}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{965d05d1-3371-4cbe-9571-ef1476d1910e}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a93c5f26-1839-416d-a7c0-77aa8533f906}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a93c5f26-1839-416d-a7c0-77aa8533f906}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a93c5f26-1839-416d-a7c0-77aa8533f906}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\HomeTab_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\HomeTab_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_smoothicons_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_smoothicons_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_rasapi32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_rasmancs
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasapi32
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Tracing\wajamupdater_rasmancs
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311121157}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{23AF19F7-1D5B-442C-B14C-3D1081953C94}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF96F37A-ACCD-42B5-BD3D-629C0895E2B0}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0EE02110-967B-4256-ACA6-BC8AC7CB7E61}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4DA0B44C-498C-4F75-85DC-32FE3C4A0211}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{81FCC50B-950F-4063-8E4A-D99CAA4FBB1F}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-1.3
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
    Clave Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wisestamp Toolbar
    Clave Encontrado : HKLM\Software\Plus-HD-1.3
    Clave Encontrado : HKLM\Software\systweak
    Clave Encontrado : HKLM\Software\torch
    Clave Encontrado : HKLM\Software\Umbrella
    Clave Encontrado : HKLM\Software\wisestamp
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311121157}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322122257}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\CLSID\{865D7100-82C7-42F4-9C06-860DEC0871B2}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355125557}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366126657}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{8216BD4A-4DC2-4DCE-9AFF-C86C5ACC6757}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{A928E66C-F501-4E66-9953-855C712F93B2}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{D4D390BE-98E6-4633-AD1B-B18B54BE5E76}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Classes\Interface\{FCA8936E-403A-4487-A966-70F80F1D5A6A}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19e048ed-7ff3-4eaf-a089-8d22829089ac}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19e048ed-7ff3-4eaf-a089-8d22829089ac}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19e048ed-7ff3-4eaf-a089-8d22829089ac}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{369c2224-e676-4c4e-8196-fe1539ee09c1}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{369c2224-e676-4c4e-8196-fe1539ee09c1}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{369c2224-e676-4c4e-8196-fe1539ee09c1}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5c6faf88-2aaf-497a-a048-41c0f7b5d8a3}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5c6faf88-2aaf-497a-a048-41c0f7b5d8a3}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5c6faf88-2aaf-497a-a048-41c0f7b5d8a3}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{965d05d1-3371-4cbe-9571-ef1476d1910e}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{965d05d1-3371-4cbe-9571-ef1476d1910e}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{965d05d1-3371-4cbe-9571-ef1476d1910e}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a93c5f26-1839-416d-a7c0-77aa8533f906}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a93c5f26-1839-416d-a7c0-77aa8533f906}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a93c5f26-1839-416d-a7c0-77aa8533f906}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
    Clave Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311121157}
    Datos Encontrado : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://aartemis.com/?type=sc&ts=1385295826&from=slbnew&uid=HitachiXHTS547575A9E384_J2190054D0KHXCD0KHXCX
    Datos Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\MOVIES~1\Datamngr\mgrldr.dll
    Datos Encontrado : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~3\Wincert\WIN32C~1.DLL
    Datos Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\MOVIES~1\Datamngr\x64\mgrldr.dll
    Datos Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~3\Wincert\WIN64C~1.DLL
    Valor Encontrado : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{DF96F37A-ACCD-42B5-BD3D-629C0895E2B0}]
    Valor Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid]
    Valor Encontrado : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NTRedirect]
    Valor Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{82E1477C-B154-48D3-9891-33D83C26BCD3}]
    Valor Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{DF96F37A-ACCD-42B5-BD3D-629C0895E2B0}]
    Valor Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{DF96F37A-ACCD-42B5-BD3D-629C0895E2B0}]
    Valor Encontrado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [24x7HELP]
    Valor Encontrado : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
    Valor Encontrado : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
    Valor Encontrado : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
    Valor Encontrado : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
    Valor Encontrado : HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls [x64]
    Valor Encontrado : HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls [x86]

    ***** [ Navegadores ] *****

    -\\ Internet Explorer v11.0.9600.16428

    Ajustes Encontrado : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    Ajustes Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.aartemis.com/web/?type=ds&ts=1385295899&from=slbnew&uid=HitachiXHTS547575A9E384_J2190054D0KHXCD0KHXCX&q={searchTerms}
    Ajustes Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.aartemis.com/web/?type=ds&ts=1385295899&from=slbnew&uid=HitachiXHTS547575A9E384_J2190054D0KHXCD0KHXCX&q={searchTerms}
    Ajustes Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    Ajustes Encontrado : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    Ajustes Encontrado : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://feed.snap.do/?publisher=QuickOC&dpid=QuickOC&co=ES&userid=2d73d80e-7415-4730-8ad3-3e51523d3be4&searchtype=ds&q={searchTerms}&installDate=18/04/2013
    Ajustes Encontrado : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar] - hxxp://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    Ajustes Encontrado : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page] - hxxp://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    Ajustes Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    Ajustes Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar] - hxxp://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    Ajustes Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page] - hxxp://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    Ajustes Encontrado : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://feed.snap.do/?publisher=QuickOC&dpid=QuickOC&co=ES&userid=2d73d80e-7415-4730-8ad3-3e51523d3be4&searchtype=ds&q={searchTerms}&installDate=18/04/2013
    Ajustes Encontrado : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)] - hxxp://search.certified-toolbar.com?si=70474&st=bs&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&q=%s
    Ajustes Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.aartemis.com/web/?type=ds&ts=1385295899&from=slbnew&uid=HitachiXHTS547575A9E384_J2190054D0KHXCD0KHXCX&q={searchTerms}
    Ajustes Encontrado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.aartemis.com/web/?type=ds&ts=1385295899&from=slbnew&uid=HitachiXHTS547575A9E384_J2190054D0KHXCD0KHXCX&q={searchTerms}

    -\\ Mozilla Firefox v25.0.1 (es-ES)

    [ Archivo : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\rysfo9s1.default\prefs.js ]

    Linea encontrada : user_pref("extensions.crossrider.bic", "14283f090888487d6fb4492953fd904c");
    Linea encontrada : user_pref("extensions.delta.admin", false);
    Linea encontrada : user_pref("extensions.delta.aflt", "babsst");
    Linea encontrada : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
    Linea encontrada : user_pref("extensions.delta.autoRvrt", "false");
    Linea encontrada : user_pref("extensions.delta.dfltLng", "es");
    Linea encontrada : user_pref("extensions.delta.excTlbr", false);
    Linea encontrada : user_pref("extensions.delta.ffxUnstlRst", true);
    Linea encontrada : user_pref("extensions.delta.id", "84bc4a34000000000000b639e5815816");
    Linea encontrada : user_pref("extensions.delta.instlDay", "15966");
    Linea encontrada : user_pref("extensions.delta.instlRef", "sst");
    Linea encontrada : user_pref("extensions.delta.newTab", false);
    Linea encontrada : user_pref("extensions.delta.prdct", "delta");
    Linea encontrada : user_pref("extensions.delta.prtnrId", "delta");
    Linea encontrada : user_pref("extensions.delta.rvrt", "false");
    Linea encontrada : user_pref("extensions.delta.smplGrp", "none");
    Linea encontrada : user_pref("extensions.delta.tlbrId", "base");
    Linea encontrada : user_pref("extensions.delta.tlbrSrchUrl", "");
    Linea encontrada : user_pref("extensions.delta.vrsn", "1.8.24.6");
    Linea encontrada : user_pref("extensions.delta.vrsnTs", "1.8.24.617:40:21");
    Linea encontrada : user_pref("extensions.delta.vrsni", "1.8.24.6");
    Linea encontrada : user_pref("extensions.delta_i.babExt", "");
    Linea encontrada : user_pref("extensions.delta_i.babTrack", "affID=123208&tt=150913_enh&tsp=5009");
    Linea encontrada : user_pref("extensions.delta_i.srcExt", "ss");
    Linea encontrada : user_pref("extensions.mysearchdial.aflt", "irmsd1103");
    Linea encontrada : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
    Linea encontrada : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCyB0Czz0EyDyE0AtAyEtN0D0Tzu0SyCzytBtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R");
    Linea encontrada : user_pref("extensions.mysearchdial.cntry", "ES");
    Linea encontrada : user_pref("extensions.mysearchdial.cr", "163688823");
    Linea encontrada : user_pref("extensions.mysearchdial.dfltLng", "");
    Linea encontrada : user_pref("extensions.mysearchdial.dfltSrch", true);
    Linea encontrada : user_pref("extensions.mysearchdial.dnsErr", true);
    Linea encontrada : user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[...]
    Linea encontrada : user_pref("extensions.mysearchdial.dspFFXOld", "Yahoo");
    Linea encontrada : user_pref("extensions.mysearchdial.excTlbr", false);
    Linea encontrada : user_pref("extensions.mysearchdial.hdrMd5", "1DB32D920EA8A3AB7ADB41618E991CB0");
    Linea encontrada : user_pref("extensions.mysearchdial.hmpg", true);
    Linea encontrada : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCyB0Czz0EyDyE0AtAyEtN0D0Tzu0SyCzytBtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutC[...]
    Linea encontrada : user_pref("extensions.mysearchdial.id", "DC0EA117C8E54A34");
    Linea encontrada : user_pref("extensions.mysearchdial.instlDay", "16032");
    Linea encontrada : user_pref("extensions.mysearchdial.instlRef", "");
    Linea encontrada : user_pref("extensions.mysearchdial.lastB", "hxxp://start.mysearchdial.com/?f=1&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCyB0Czz0EyDyE0AtAyEtN0D0Tzu0SyCzytBtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD[...]
    Linea encontrada : user_pref("extensions.mysearchdial.lastVrsnTs", "1.8.21.08:55:37");
    Linea encontrada : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCyB0Czz0EyDyE0AtAyEtN0D0Tzu0SyCzytBtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1Czu[...]
    Linea encontrada : user_pref("extensions.mysearchdial.pnu_base", "{\"newVrsn\":\"85\",\"lastVrsn\":\"85\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\"showSilent\":\"false\",\"msgTs\":0,\"lstMsgTs\":\"0\"}");
    Linea encontrada : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
    Linea encontrada : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
    Linea encontrada : user_pref("extensions.mysearchdial.sg", "none");
    Linea encontrada : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
    Linea encontrada : user_pref("extensions.mysearchdial.tlbrId", "base");
    Linea encontrada : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCyB0Czz0EyDyE0AtAyEtN0D0Tzu0SyCzytBtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1C[...]
    Linea encontrada : user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");
    Linea encontrada : user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");
    Linea encontrada : user_pref("extensions.mysearchdial_i.hmpg", true);
    Linea encontrada : user_pref("extensions.mysearchdial_i.newTab", false);
    Linea encontrada : user_pref("extensions.mysearchdial_i.smplGrp", "none");
    Linea encontrada : user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.08:55:37");
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.hp.enabled", true);
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.initialized", true);
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.installation.contextKey", "");
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.installation.installDate", "2013042722");
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.installation.partnerId", "^9N^xdm006^YY^es");
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.installation.partnerSubId", "CPSN7MrR67YCFYjLtAodFGIAfQ");
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.installation.success", true);
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.installation.toolbarId", "7C893EC0-9A87-43C0-8091-C7A8A71501F6");
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.lastActivePing", "1368886262064");
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.options.defaultSearch", true);
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.options.homePageEnabled", true);
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.options.keywordEnabled", true);
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.options.tabEnabled", true);
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.searchHistory", "charmingsvillas||||facebook charmingsvillas||***@***||google.com||coste de botella butano vacia||comprar botella buta[...]
    Linea encontrada : user_pref("extensions.toolbar.mindspark._12Members_.weather.location", "10001");
    Linea encontrada : user_pref("extensions.toolbar.mindspark.hp.enabled", true);
    Linea encontrada : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "***@***");
    Linea encontrada : user_pref("extensions.toolbar.mindspark.lastInstalled", "***@***");
    Linea encontrada : user_pref("iminent.newtabredirect", "false");
    Linea encontrada : user_pref("iminent.searchindex", "1");

    [ Archivo : C:\Users\Gilbert\AppData\Roaming\Mozilla\Firefox\Profiles\Solo_75072\prefs.js ]

    Linea encontrada : user_pref("browser.search.defaultengine", "Web Search");
    Linea encontrada : user_pref("browser.search.order.1", "Web Search");
    Linea encontrada : user_pref("extensions.BabylonToolbar.admin", false);
    Linea encontrada : user_pref("extensions.BabylonToolbar.aflt", "babsst");
    Linea encontrada : user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
    Linea encontrada : user_pref("extensions.BabylonToolbar.autoRvrt", "false");
    Linea encontrada : user_pref("extensions.BabylonToolbar.dfltLng", "en");
    Linea encontrada : user_pref("extensions.BabylonToolbar.excTlbr", false);
    Linea encontrada : user_pref("extensions.BabylonToolbar.id", "84bc4a340000000000009439e5815816");
    Linea encontrada : user_pref("extensions.BabylonToolbar.instlDay", "15681");
    Linea encontrada : user_pref("extensions.BabylonToolbar.instlRef", "sst");
    Linea encontrada : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
    Linea encontrada : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
    Linea encontrada : user_pref("extensions.BabylonToolbar.rvrt", "false");
    Linea encontrada : user_pref("extensions.BabylonToolbar.tlbrId", "tb9");
    Linea encontrada : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=84bc4a340000000000009439e5815816&q=");
    Linea encontrada : user_pref("extensions.BabylonToolbar.vrsn", "1.8.4.9");
    Linea encontrada : user_pref("extensions.BabylonToolbar.vrsni", "1.8.4.9");
    Linea encontrada : user_pref("extensions.BabylonToolbar_i.babExt", "");
    Linea encontrada : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110824&tt=4912_6");
    Linea encontrada : user_pref("extensions.BabylonToolbar_i.excTlbr", false);
    Linea encontrada : user_pref("extensions.BabylonToolbar_i.newTab", false);
    Linea encontrada : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
    Linea encontrada : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
    Linea encontrada : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.4.919:39:48");
    Linea encontrada : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=7C893EC0-9A87-43C0-8091-C7A8A71501F6&n=77fc9822&ind=2013042722&p2=^9N^xdm006^YY[...]
    Linea encontrada : user_pref("extensions.crossrider.bic", "14283f090888487d6fb4492953fd904c");
    Linea encontrada : user_pref("extensions.delta.admin", false);
    Linea encontrada : user_pref("extensions.delta.aflt", "babsst");
    Linea encontrada : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
    Linea encontrada : user_pref("extensions.delta.autoRvrt", "false");
    Linea encontrada : user_pref("extensions.delta.dfltLng", "es");
    Linea encontrada : user_pref("extensions.delta.excTlbr", false);
    Linea encontrada : user_pref("extensions.delta.ffxUnstlRst", true);
    Linea encontrada : user_pref("extensions.delta.id", "84bc4a34000000000000b639e5815816");
    Linea encontrada : user_pref("extensions.delta.instlDay", "15966");
    Linea encontrada : user_pref("extensions.delta.instlRef", "sst");
    Linea encontrada : user_pref("extensions.delta.newTab", false);
    Linea encontrada : user_pref("extensions.delta.prdct", "delta");
    Linea encontrada : user_pref("extensions.delta.prtnrId", "delta");
    Linea encontrada : user_pref("extensions.delta.rvrt", "false");
    Linea encontrada : user_pref("extensions.delta.smplGrp", "none");
    Linea encontrada : user_pref("extensions.delta.tlbrId", "base");
    Linea encontrada : user_pref("extensions.delta.tlbrSrchUrl", "");
    Linea encontrada : user_pref("extensions.delta.vrsn", "1.8.24.6");
    Linea encontrada : user_pref("extensions.delta.vrsnTs", "1.8.24.617:40:21");
    Linea encontrada : user_pref("extensions.delta.vrsni", "1.8.24.6");
    Linea encontrada : user_pref("extensions.delta_i.babExt", "");
    Linea encontrada : user_pref("extensions.delta_i.babTrack", "affID=123208&tt=150913_enh&tsp=5009");
    Linea encontrada : user_pref("extensions.delta_i.srcExt", "ss");
    Linea encontrada : user_pref("extensions.mysearchdial.aflt", "irmsd1103");
    Linea encontrada : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
    Linea encontrada : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCyB0Czz0EyDyE0AtAyEtN0D0Tzu0SyCzytBtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R");
    Linea encontrada : user_pref("extensions.mysearchdial.cntry", "ES");
    Linea encontrada : user_pref("extensions.mysearchdial.cr", "163688823");
    Linea encontrada : user_pref("extensions.mysearchdial.dfltLng", "");
    Linea encontrada : user_pref("extensions.mysearchdial.dfltSrch", true);
    Linea encontrada : user_pref("extensions.mysearchdial.dnsErr", true);
    Linea encontrada : user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[...]
    Linea encontrada : user_pref("extensions.mysearchdial.dspFFXOld", "Yahoo");
    Linea encontrada : user_pref("extensions.mysearchdial.excTlbr", false);
    Linea encontrada : user_pref("extensions.mysearchdial.hdrMd5", "1DB32D920EA8A3AB7ADB41618E991CB0");
    Linea encontrada : user_pref("extensions.mysearchdial.hmpg", true);
    Linea encontrada : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCyB0Czz0EyDyE0AtAyEtN0D0Tzu0SyCzytBtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutC[...]
    Linea encontrada : user_pref("extensions.mysearchdial.id", "DC0EA117C8E54A34");
    Linea encontrada : user_pref("extensions.mysearchdial.instlDay&qu
    0
  3. Gibus
     
    Bonjour,

    Je n'ai pasde réponse suite au rapport que j'ai déposé?
    Merci
    0
  4. Malekal_morte- Messages postés 178136 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 712
     
    Tu utilises quel navigateur pour surfer ?

    Si Firefox et/ou Chrome sont installés :

    Sur Firefox : Menu Outils / Modules complémentaires
    Onglet Extension.
    Donne la liste.

    Sur Google Chrome : Menu en haut à droite puis Outils / Extensions
    Donne la liste.

    ensuite :

    - Télécharge https://sourceforge.net/projects/hjt/ ton bureau.
    - Pour lancer HijackThis :
    * Sur Vista/Seven faire un clic droit puis executer en tant qu'administrater pour le lancer
    * Sur XP un simple double-clic suffit
    - Génère un rapport en suivant ces indications :
    - Exécute le et clique sur Do a scan and save log file.
    - Le rapport s'ouvre sur le Bloc-Note
    - Enregistre le sur ton bureau
    - Envoie le sur http://pjjoint.malekal.com
    - Donne le lien pjjoint ici.

    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. Gibus
     
    Salut,

    J'utilise Mozilla ,la liste des modules complementaires activés

    New Tab 5.0.010433
    WiseStampp 3.13.31
    Avast 9.0.2006.53

    Non activés
    IMinent 7 48.1.1
    InbooxTolbar 1.2.049
    MySearch Dialnew Tab9.53
    WebSiteRecomendation 1.08

    Le rapport Hijack
    Logfile of Trend Micro HijackThis v2.0.5
    Scan saved at 10:13:19, on 29/11/2013
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v11.0 (11.00.9600.16428)

    FIREFOX: 25.0.1 (es-ES)
    Boot mode: Normal

    Running processes:
    C:\Users\Gilbert\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
    C:\Users\Gilbert\AppData\Roaming\uTorrent\uTorrent.exe
    C:\Users\Gilbert\AppData\Roaming\Search Protection\SearchProtection.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
    C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
    C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
    C:\Users\Gilbert\Downloads\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com?si=70474&st=home&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com?si=70474&st=home&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B
    R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snap.do/?publisher=QuickOC&dpid=QuickOC&co=ES&userid=2d73d80e-7415-4730-8ad3-3e51523d3be4&searchtype=ds&q={searchTerms}&installDate=18/04/2013
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si=70474&tid=8095&ver=5.1&ts=1381500155181.000007&tguid=70474-8095-1381500155181-FD6A96411C0FA1D6C29503F36560291B&st=chrome&q=
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.bing.com/search?q={searchTerms}
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.bing.com/search?q={searchTerms}
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:56847
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.offerbox.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe
    O2 - BHO: Bubble Dock SurfMatch - {23AF19F7-1D5B-442c-B14C-3D1081953C94} - (no file)
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
    O2 - BHO: (no name) - {CCB69577-088B-4004-9ED8-FF5BCC83A039} - (no file)
    O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    O2 - BHO: wisestamp - {df96f37a-accd-42b5-bd3d-629c0895e2b0} - C:\Program Files (x86)\wisestamp\prxtbwis0.dll
    O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
    O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O3 - Toolbar: wisestamp Toolbar - {df96f37a-accd-42b5-bd3d-629c0895e2b0} - C:\Program Files (x86)\wisestamp\prxtbwis0.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [24x7HELP] "C:\Program Files (x86)\24x7Help\App24x7Help.exe" /STARTUP
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [YTDownloader] "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
    O4 - HKLM\..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\f3c49ca3-5779-4fc6-962c-9f1e3c0576f6.exe /check
    O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
    O4 - HKCU\..\Run: [SkyDrive] "C:\Users\Gilbert\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
    O4 - HKCU\..\Run: [NTRedirect] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Gilbert\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
    O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\Run: [uTorrent] "C:\Users\Gilbert\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
    O4 - HKCU\..\Run: [SearchProtection] "C:\Users\Gilbert\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
    O4 - HKCU\..\Run: [iLivid] "C:\Users\Gilbert\AppData\Local\iLivid\iLivid.exe" -autorun
    O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Gilbert\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Gilbert\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64"
    O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Gilbert\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Gilbert\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"
    O4 - Startup: Supervisar alertas de tinta - HP Deskjet 1050 J410 series.lnk = ?
    O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
    O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
    O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
    O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
    O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O18 - Protocol: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} - C:\PROGRA~2\INBOXT~1\Inbox.dll
    O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
    O18 - Protocol: rebinfo - {AF808758-C780-404C-A4EE-4526323FD9B6} - (no file)
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O20 - AppInit_DLLs: C:\PROGRA~2\MOVIES~1\Datamngr\mgrldr.dll
    O23 - Service: 24x7HelpService (24x7HelpSvc) - PCRx.com, LLC - C:\Program Files (x86)\24x7Help\App24x7Svc.exe
    O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
    O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
    O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
    O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
    O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
    O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
    O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
    O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
    O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
    O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
    O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
    0
  7. Gibus
     
    J'ai posté le rapportégalement:http://pjjoint.malekal.com/files.php?id=HijackThis_20131129_i8c1514m11z13
    0
  8. Malekal_morte- Messages postés 178136 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 712
     
    purée tu en installes des trucs pourris...

    Vas dans le Panneau de Configuration puis Programmes et Fonctionnalités
    Déinstalle si présent :
    24x7 support truc
    BingBar
    GoogleToolbar
    iLivid
    Search Protection / Conduit
    WiseStampp 3.13.31
    YTDownloader

    Supprime les extensions :
    IMinent 7 48.1.1
    InbooxTolbar 1.2.049
    MySearch Dialnew Tab9.53
    WiseStampp 3.13.31
    WebSiteRecomendation 1.08

    ~~

    Relance HijackThis (si tu es sur Vista/Seven - faire un clic droit et executer en tant qu'administrateur) et coche ces lignes :

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ww12.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ww12.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww12.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww7.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ww12.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ww12.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww12.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww7.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://ww12.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://search.safefinder.com/?st=ds&q={searchTerms}&installDate=18/04/2013 <b>[Pays US - 65.52.144.16]</b>
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://ww12.certified-toolbar.com <b>[Pays IL - 82.80.196.117]</b>
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms} <b>[Pays US - 204.79.197.200]</b>
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms} <b>[Pays US - 204.79.197.200]</b>
    O2 - BHO: Bubble Dock SurfMatch - {23AF19F7-1D5B-442c-B14C-3D1081953C94} - (no file)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (file missing)
    O2 - BHO: wisestamp - {df96f37a-accd-42b5-bd3d-629c0895e2b0} - C:\Program Files (x86)\wisestamp\prxtbwis0.dll
    O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (file missing)
    O3 - Toolbar: wisestamp Toolbar - {df96f37a-accd-42b5-bd3d-629c0895e2b0} - C:\Program Files (x86)\wisestamp\prxtbwis0.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [24x7HELP] C:\Program Files (x86)\24x7Help\App24x7Help.exe /STARTUP
    O4 - HKLM\..\Run: [YTDownloader] C:\Program Files (x86)\YTDownloader\YTDownloader.exe /boot
    O4 - HKLM\..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\f3c49ca3-5779-4fc6-962c-9f1e3c0576f6.exe /check
    O4 - HKCU\..\Run: [NTRedirect] C:\Windows\SysWOW64\rundll32.exe C:\Users\Gilbert\AppData\Roaming\BabSolution\Shared\enhancedNT.dll,Run
    O4 - HKCU\..\Run: [uTorrent] C:\Users\Gilbert\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED
    O4 - HKCU\..\Run: [SearchProtection] C:\Users\Gilbert\AppData\Roaming\Search Protection\SearchProtection.EXE /autostart
    O4 - HKCU\..\Run: [iLivid] C:\Users\Gilbert\AppData\Local\iLivid\iLivid.exe -autorun
    O18 - Protocol: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} - C:\PROGRA~2\INBOXT~1\Inbox.dll
    O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
    O18 - Protocol: rebinfo - {AF808758-C780-404C-A4EE-4526323FD9B6} - (no file)
    O20 - AppInit_DLLs: C:\PROGRA~2\MOVIES~1\Datamngr\mgrldr.dll
    O23 - Service: 24x7HelpService (24x7HelpSvc) - PCRx.com, LLC - C:\Program Files (x86)\24x7Help\App24x7Svc.exe

    ==> clic sur fix checked

    Redémarre l'ordinateur
    0
  9. Gibus
     
    Salut,

    Super Tout est OK,le message n'apparait plus.

    Merci.
    0