WerFault.exe - Error de la aplicacion/iminent/sweet page

Estado
Cerrado para nuevas respuestas

mariela

Miembro
Miembro
He posteado este tema en seguridad informatica pero he tomado la decision de hacer tambien un estudio del log de hijackthis ya que la maquina en modo normal no me permite entrar a ninguna parte queda como congelada, al entrar en modo seguro con funciones de red pude entrar y tomar el log pero hay muchas cosas que no permite, como pasar antivirus online,asi que aqui se los dejo para ver si tiene virus pues es lo que parece,gracias desde ya.
Logfile of Trend Micro HijackThis v2.0.5
Insertar CODE, HTML o PHP:
Scan saved at 08:55:42 p.m., on 28/07/2018

Platform: Unknown Windows (WinNT 6.02.1008)

MSIE: Internet Explorer v10.0 (10.00.9200.16537)


Boot mode: Safe mode with network support


Running processes:

G:\HijackThis.exe


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Sweet-Page

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Sweet-Page

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Google{searchTerms}

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Google{searchTerms}

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Sweet-Page

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: DealPly Shopping - {4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7} - C:\Program Files (x86)\DealPly\DealPlyIE.dll

O2 - BHO: TBSB01620 - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll

O2 - BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\19.6.0.592\AVG SafeGuard toolbar_toolbar.dll

O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.21.5\bh\delta.dll

O3 - Toolbar: IMinent Toolbar - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll

O3 - Toolbar: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\19.6.0.592\AVG SafeGuard toolbar_toolbar.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart

O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE

O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"

O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s

O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"

O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"

O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4

O4 - HKLM\..\Run: [Iminent] C:\Program Files (x86)\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"

O4 - HKLM\..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe

O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"

O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw

O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [Softonic for Windows] "C:\Users\user\AppData\Local\Softonic\Softonic.exe" -minimize

O4 - Startup: lollipop.lnk = ?

O4 - Global Startup: Bluetooth.lnk = ?

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O17 - HKLM\System\CCS\Services\Tcpip\..\{15158812-364A-4DD7-BFD3-F70D3144D8CF}: NameServer = 186.12.238.1 186.12.238.7

O17 - HKLM\System\CCS\Services\Tcpip\..\{9589902B-DDC8-439D-ABEC-5CE6BEC8BB63}: NameServer = 186.12.238.1 186.12.238.7

O17 - HKLM\System\CCS\Services\Tcpip\..\{A04D8C87-C683-4FBA-9203-63D154678965}: NameServer = 186.12.238.1 186.12.238.7

O17 - HKLM\System\CCS\Services\Tcpip\..\{BF755761-D5B5-4C67-9808-9CEF8470951F}: NameServer = 186.12.238.7 186.12.238.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{CDE99840-55C4-454B-93E1-6312E97548B9}: NameServer = 186.12.238.7 186.12.238.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{15158812-364A-4DD7-BFD3-F70D3144D8CF}: NameServer = 186.12.238.1 186.12.238.7

O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\19.5.0\ViProtocol.dll

O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)

O23 - Service: @%SystemRoot%\System32\AUInstallAgent.dll,-101 (AllUserInstallAgent) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe

O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe

O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe

O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @oem17.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)

O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Claro Internet. OUC (Claro Internet. RunOuc) - Unknown owner - C:\Program Files (x86)\Claro Internet\UpdateDog\ouc.exe

O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe

O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)

O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (Eaphost) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)

O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe

O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe

O23 - Service: Hydrup - Software - C:\Program Files (x86)\Common Files\Hydrup\hydrup.exe

O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\WINDOWS\system32\msiexec.exe

O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe

O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\WINDOWS\SysWOW64\NLSSRV32.EXE

O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\WINDOWS\SysWow64\perfhost.exe

O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)

O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)

O23 - Service: Software Updater (SrvUpdater) - Unknown owner - C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe (file missing)

O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\WINDOWS\servicing\TrustedInstaller.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vmicres.dll,-101 (vmicheartbeat) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-201 (vmickvpexchange) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-601 (vmicrdv) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-301 (vmicshutdown) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-401 (vmictimesync) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-501 (vmicvss) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)

O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\WINDOWS\system32\SearchIndexer.exe

O23 - Service: @%SystemRoot%\system32\WSService.dll,-103 (WSService) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe


--

End of file - 26188 bytes
 

Kbite

Aprender y compartir
Administrador
Hola mariela.

En el log se aprecia infección, hay varias entradas que así lo demuestran, pero primero debes de seguir estos pasos y devolvernos los informen que te generen, y un nuevo log de HijackThis hecho en último lugar: Importante - Consejos antes de pegar su log de HijackThis
Para el antivirus On-Line puedes hacerlo en Modo seguro con funciones de red.
Saludos, Kbite
 

mariela

Miembro
Miembro
Hice todo pero cuando sali de modo a prueba de errores al abrir carpetas tarda un monton, los navegadores lo mismo o ni siquiera abren, respecto al malwares anti malware me pone sin acciones por parte del usuario y yo puse cuarentena que es la unica opcion que me daba. Puedo entrar al escritorio pero nada puedo abrir y de repente la pantalla queda azul. que puedo hacer? gracias desde ya
Insertar CODE, HTML o PHP:
# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build:    07-17-2018
# Database: 2018-07-25.1
# Support:  Customer Support & Help Center
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    07-29-2018
# Duration: 00:00:21
# OS:       Windows 8 Single Language
# Scanned:  41737
# Detected: 717


***** [ Services ] *****

PUP.Optional.Legacy             SrvUpdater
PUP.Optional.Legacy             SProtection
PUP.Optional.Legacy             Hydrup

***** [ Folders ] *****

Adware.Yontoo                   C:\ProgramData\Tarma Installer
PUP.Adware.Heuristic            C:\ProgramData\AVG_UPDATE_0215TB
PUP.Optional.Betcat             C:\Program Files (x86)\Betcat
PUP.Optional.Betcat             C:\Users\user\AppData\Roaming\Betcat
PUP.Optional.CouponMarvel       C:\Users\user\AppData\Local\lollipop
PUP.Optional.DealPly            C:\Program Files (x86)\DealPly
PUP.Optional.DealPly            C:\Users\user\AppData\Roaming\DealPly
PUP.Optional.DealPly            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
PUP.Optional.Delta              C:\Users\user\APPDATA\LOCALLOW\DELTA
PUP.Optional.IEPluginServices   C:\ProgramData\IePluginServices
PUP.Optional.Iminent            C:\ProgramData\Iminent
PUP.Optional.Iminent            C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
PUP.Optional.Iminent            C:\Users\user\AppData\Roaming\Iminent
PUP.Optional.Legacy             C:\Program Files (x86)\WebCake
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\WebCake
PUP.Optional.Legacy             C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Toolbar4
PUP.Optional.Legacy             C:\Windows\Installer\{5CDCDBCD-119A-4AE1-9C55-B816DBBE4245}
PUP.Optional.Legacy             C:\Users\user\AppData\Local\genienext
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\BabSolution
PUP.Optional.Legacy             C:\ProgramData\AVG Security Toolbar
PUP.Optional.Legacy             C:\ProgramData\AVG Secure Search
PUP.Optional.Legacy             C:\Program Files\Common Files\AVG Secure Search
PUP.Optional.Legacy             C:\Program Files (x86)\Common Files\AVG Secure Search
PUP.Optional.Legacy             C:\Program Files (x86)\Amazon\ABB
PUP.Optional.Legacy             C:\Program Files (x86)\Common Files\Hydrup
PUP.Optional.Legacy             C:\ProgramData\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Program Files (x86)\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Users\user\AppData\Local\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Users\user\AppData\LocalLow\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Users\user\AppData\Local\Mobogenie
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
PUP.Optional.Legacy             C:\Users\user\Documents\Mobogenie
PUP.Optional.Legacy             C:\Program Files (x86)\globalUpdate
PUP.Optional.Legacy             C:\Users\user\AppData\Local\globalUpdate
PUP.Optional.NextLive           C:\Users\user\AppData\Roaming\newnext.me
PUP.Optional.OpenSoftware.Updater C:\Program Files (x86)\SoftwareUpdater
PUP.Optional.RegCleanerPro      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
PUP.Optional.RegCleanerPro      C:\Program Files (x86)\RegClean Pro
PUP.Optional.SofTonicAssistant  C:\Users\user\AppData\Local\Softonic
PUP.Optional.SofTonicAssistant  C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Softonic
PUP.Optional.SupTab             C:\Program Files (x86)\SupTab
PUP.Optional.SupTab             C:\Users\user\AppData\Roaming\SupTab
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\sweet-page
PUP.Optional.SysTweak           C:\Users\user\AppData\Roaming\Systweak
PUP.Optional.WPM                C:\ProgramData\WindowsMangerProtect

***** [ Files ] *****

PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mobogenie.lnk
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\lollipop.lnk
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\lollipop.lnk
PUP.Optional.Legacy             C:\Users\user\daemonprocess.txt
PUP.Optional.Legacy             C:\Users\user\Downloads\ReimageRepair.exe
PUP.Optional.SysTweak           C:\Windows\System32\roboot64.exe

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

PUP.Optional.Legacy             C:\Users\user\Desktop\Firefox .lnk
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox .lnk
PUP.Optional.SweetPage.ShrtCln  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\Public\Desktop\Google Chrome.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\Desktop\Iexplore .lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Iexplore .lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome .lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk

***** [ Tasks ] *****

PUP.Optional.DealPly            C:\Windows\System32\Tasks\DealPly
PUP.Optional.Legacy             C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
PUP.Optional.Legacy             C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
PUP.Optional.Legacy             C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
PUP.Optional.Legacy             C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
PUP.Optional.Legacy             C:\Windows\System32\Tasks\DealPlyUpdate
PUP.Optional.RegCleanPro        C:\Windows\Tasks\RegClean Pro_DEFAULT.job
PUP.Optional.RegCleanPro        C:\Windows\System32\Tasks\RegClean Pro_DEFAULT
PUP.Optional.RegCleanerPro      C:\Windows\Tasks\RegClean Pro_UPDATES.job
PUP.Optional.RegCleanerPro      C:\Windows\System32\Tasks\RegClean Pro_UPDATES

***** [ Registry ] *****

Adware.Iminent                  HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\DCBDCDC5A9111EA4C9558B61BDEB2454
Adware.Iminent                  HKLM\Software\Classes\Installer\Products\DCBDCDC5A9111EA4C9558B61BDEB2454
Adware.Iminent                  HKLM\Software\Classes\Installer\Features\DCBDCDC5A9111EA4C9558B61BDEB2454
Adware.Iminent                  HKLM\Software\Wow6432Node\Loader|Iminent
Adware.Montera                  HKLM\Software\Classes\escort.escortIEPane
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\CrossriderApp0059570.Sandbox
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\CrossriderApp0059570.BHO
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DC3A392A-53DA-410E-90FC-77A459725E5D}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C73D0E6D-5A0-4208-8E16-3638D9ECB4A}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{934CA5D-4C84-4443-A63B-C0EBF74A4E66}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F96C4F2-C594-42CE-B5C1-9D471764F6FC}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{308524CC-FBE6-4A70-8F18-47F981A91DAD}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2a8a8e10-6484-4a77-b39f-10c0827ced0b}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28C226FF-F455-4BA1-9ECD-7898933651A}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{202DF0DA-C812-4CCD-9B2-79DBAE60A936}
PUP.CrossRider.Heuristic        HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2a8a8e10-6484-4a77-b39f-10c0827ced0b}
PUP.CrossRider.Heuristic        HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2a8a8e10-6484-4a77-b39f-10c0827ced0b}
PUP.Optional.Conduit            HKCU\Software\Conduit
PUP.Optional.Conduit            HKLM\Software\Wow6432Node\Conduit
PUP.Optional.CouponMarvel       HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\lollipop
PUP.Optional.CouponMarvel       HKCU\Software\lollipop
PUP.Optional.CrossRider         HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Crossrider
PUP.Optional.CrossRider         HKCU\Software\AppDataLow\Software\Crossrider
PUP.Optional.DealPly            HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
PUP.Optional.DealPly            HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
PUP.Optional.DealPly            HKCU\Software\DealPly
PUP.Optional.DealPly            HKLM\Software\Wow6432Node\DealPly
PUP.Optional.DealPly            HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9751AA55-5B34-4C29-9679-B0BAE796E0C3}
PUP.Optional.DealPly            HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9751AA55-5B34-4C29-9679-B0BAE796E0C3}
PUP.Optional.DealPly            HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly
PUP.Optional.Delta              HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-100808472-460583808-846705244-1001\Software\delta
PUP.Optional.Delta              HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\delta
PUP.Optional.Delta              HKCU\Software\delta
PUP.Optional.Delta              HKLM\Software\Wow6432Node\delta
PUP.Optional.Iminent            HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
PUP.Optional.Iminent            HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-100808472-460583808-846705244-1001\Software\Iminent
PUP.Optional.Iminent            HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Iminent
PUP.Optional.Iminent            HKCU\Software\Iminent
PUP.Optional.Iminent            HKLM\Software\Wow6432Node\Iminent
PUP.Optional.Iminent            HKLM\Software\Iminent
PUP.Optional.Iminent            HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar|{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
PUP.Optional.Iminent            HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
PUP.Optional.Iminent            HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
PUP.Optional.Iminent            HKLM\Software\Wow6432Node\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
PUP.Optional.Iminent            HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{AF13DD90-542C-4D54-BEFE-8A52C3766411}
PUP.Optional.Iminent            HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{92C8CFDF-009E-46A0-95C0-16CED8B741B2}
PUP.Optional.Iminent            HKLM\Software\Classes\Iminent
PUP.Optional.Iminent            HKLM\System\CurrentControlSet\Services\EventLog\Application\Iminent
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|IminentMessenger
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run|IminentMessenger
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|Iminent
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run|Iminent
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Wpm
PUP.Optional.Legacy             HKLM\Software\Tarma Installer
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
PUP.Optional.Legacy             HKCU\Software\InstalledBrowserExtensions
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\InstalledBrowserExtensions
PUP.Optional.Legacy             HKLM\Software\InstalledBrowserExtensions
PUP.Optional.Legacy             HKCU\Software\GlobalUpdate
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\GlobalUpdate
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
PUP.Optional.Legacy             HKCU\Software\BABSOLUTION
PUP.Optional.Legacy             HKCU\Software\AVG Security Toolbar
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\AVG Security Toolbar
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5CDCDBCD-119A-4AE1-9C55-B816DBBE4245}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\SUPDP
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C3F6D7A0BA2FDE84EB329997B1FF786D
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Products\C3F6D7A0BA2FDE84EB329997B1FF786D
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Features\C3F6D7A0BA2FDE84EB329997B1FF786D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3038A20B9089EC34D8F74220191FAB30
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18C9E3869A16248439FE3FF9EB02207A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60ECC80C54085B141A40437A96CA2618
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB3204F747B20694B8D49EF92D8DC94B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA531D0F3A71504DA7AC6A11CE33739
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4223BBC9438CAD49BBE10B4E344B1DD
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\206AF45B775E3A445B3B2273827DA85F
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\225C3CBCEB850204D860A6C7CC7724AF
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87EC9ACEAFE8ECD52A529663CD35213F
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29C79786B109AC443B0DC7BFD61B1896
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E05B987540A9E2849AAF9E5B06C27DA8
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14C66209FCA938858B9729645C666684
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4D1BA8B482D9734E943EE260A7ADEF2
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F6704141BAAF6884785EC6843143D6A7
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75FF6D97AF9FC004A9521D4B83FA6321
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB13D869D7D092348847B7481BB59E27
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDA2534BD056D1F44B6EC96AAA7F1F6E
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|mobilegeni daemon
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Google\Chrome\NativeMessagingHosts\avgsh
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\protocols\handler\viprotocol
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\ViProtocol.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\TbHelper.EXE
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\TbCommonUtils.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\esrv.EXE
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\esrv.EXE
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\escorTlbr.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\escortEng.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\escortApp.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escort.DLL
PUP.Optional.Legacy             HKCU\Software\Classes\Applications\lollipop.exe
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{BB975E58-E769-4E5A-BA12-B765BC559FF3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{AF6B0594-6008-4327-93E5-608AD710A6FA}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
PUP.Optional.Legacy             HKLM\Software\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
PUP.Optional.Legacy             HKLM\Software\Classes\Prod.cap
PUP.Optional.Legacy             HKLM\Software\Classes\ComObject.DeskbarEnabler
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B79C06D2-4B2D-4099-8A90-A2185264D6E9}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B79C06D2-4B2D-4099-8A90-A2185264D6E9}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9EA5F25-B92F-49C7-9B69-91950E9EE868}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{12CD7FAC-1CC5-44E4-93FC-A1DC28486AF7}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12CD7FAC-1CC5-44E4-93FC-A1DC28486AF7}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyUpdate
PUP.Optional.Legacy             HKLM\System\CurrentControlSet\Services\EventLog\Application\WebCakeUpdaterService
PUP.Optional.Legacy             HKLM\System\CurrentControlSet\Services\EventLog\Application\SrvUpdater
PUP.Optional.Legacy             HKLM\System\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
PUP.Optional.Legacy             HKLM\System\CurrentControlSet\Services\EventLog\Application\IePluginServices
PUP.Optional.Legacy             HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{60795ED8-15E1-4233-B759-4B25AA0C5CFB}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
PUP.Optional.OpenSoftware.Updater HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
PUP.Optional.OpenSoftware.Updater HKLM\Software\Wow6432Node\SoftwareUpdater
PUP.Optional.RegCleanPro        HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
PUP.Optional.RegCleanPro        HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{86BEAE15-F782-4711-AD58-D13BDA9CBE65}
PUP.Optional.RegCleanPro        HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86BEAE15-F782-4711-AD58-D13BDA9CBE65}
PUP.Optional.RegCleanPro        HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro_DEFAULT
PUP.Optional.RegCleanerPro      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B619D127-53E3-435D-BF5C-8E1DC2CB7BC8}
PUP.Optional.RegCleanerPro      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B619D127-53E3-435D-BF5C-8E1DC2CB7BC8}
PUP.Optional.RegCleanerPro      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro_UPDATES
PUP.Optional.SofTonicAssistant  HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Softonic For Windows
PUP.Optional.SofTonicAssistant  HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Softonic For Windows
PUP.Optional.SofTonicAssistant  HKCU\Software\Softonic
PUP.Optional.SofTonicAssistant  HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Softonic for Windows
PUP.Optional.SofTonicAssistant  HKCU\Software\Classes\Softonic
PUP.Optional.SupTab             HKLM\Software\Wow6432Node\SupTab
PUP.Optional.SupTab             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
PUP.Optional.SupTab             HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
PUP.Optional.SupTab             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
PUP.Optional.SweetIM            HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\sweet-pageSoftware
PUP.Optional.SweetPage.ShrtCln  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
PUP.Optional.SweetPage.ShrtCln  HKCU\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main|Search Page
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main|Default_Page_URL
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main|Default_Search_URL
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\Main|Search Page
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
PUP.Optional.SysTweak           HKCU\Software\systweak
PUP.Optional.SysTweak           HKLM\Software\Wow6432Node\systweak
PUP.Optional.WPM                HKLM\Software\Wow6432Node\supWindowsMangerProtect
PUP.Optional.WPM                HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
PUP.Optional.WebCake            HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}

***** [ Chromium (and derivatives) ] *****

PUP.Optional.DealPly            DealPly Beta channel
PUP.Optional.Delta.ShrtCln      Delta Toolbar

***** [ Chromium URLs ] *****

PUP.Optional.Legacy             Search
PUP.Optional.Legacy             Search
PUP.Optional.Legacy             SearchTheWeb
PUP.Optional.Legacy             claro.com.ar
PUP.Optional.Legacy             AVG Secure Search
PUP.Optional.Legacy             AVG Secure Search
PUP.Optional.Legacy             golsearch.com
PUP.Optional.SweetPage.ShrtCln  sweet-page

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 29/7/18
Hora del análisis: 20:14
Archivo de registro: 2e7b9ef2-935b-11e8-be8f-c4da2601d596.json
Administrador: Sí

-Información del software-
Versión: 3.5.1.2522
Versión de los componentes: 1.0.365
Versión del paquete de actualización: 1.0.5292
Licencia: Gratis

-Información del sistema-
SO: Windows 8
CPU: x64
Sistema de archivos: NTFS
Usuario: idea-PC\user

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 280615
Amenazas detectadas: 353
Amenazas en cuarentena: 0
(No hay elementos maliciosos detectados)
Tiempo transcurrido: 11 min, 51 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 144
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\eooncjejnppfjjklapaamhcdmjbilmde, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\CLASSES\delta.deltaHlpr, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\CLASSES\delta.deltaHlpr.1, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}\InprocServer32, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}\InprocServer32, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.DealPly, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\ojcgaoafcmbadjkfdippkdddgkeaipbn, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-1, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B9B67F5C-7ED6-465A-B3E3-08ED934B246B}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{B9B67F5C-7ED6-465A-B3E3-08ED934B246B}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-11, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C3D8F3E8-164B-4A10-A4FD-6A5490245368}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{C3D8F3E8-164B-4A10-A4FD-6A5490245368}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-2, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0A959F1B-27F5-481D-81E6-9D1C4E97A8DE}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{0A959F1B-27F5-481D-81E6-9D1C4E97A8DE}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-3, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F89A8996-DC18-44DE-A1C6-84BC909A27D2}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{F89A8996-DC18-44DE-A1C6-84BC909A27D2}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-4, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2EC1FF82-EF3C-4C29-84BB-4F59F172B7F2}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{2EC1FF82-EF3C-4C29-84BB-4F59F172B7F2}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-5, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{DD49A5D8-1F00-4E83-825A-A22A2D5D2A26}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{DD49A5D8-1F00-4E83-825A-A22A2D5D2A26}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-5_user, Sin acciones por parte del usuario, [1810], [307239],1.0.5292
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{305141E1-A044-4831-AFC5-F25C13E98C12}, Sin acciones por parte del usuario, [1810], [307239],1.0.5292
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{305141E1-A044-4831-AFC5-F25C13E98C12}, Sin acciones por parte del usuario, [1810], [307239],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-6, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{435C723F-13CA-45E2-B3B8-5E076D401B0A}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{435C723F-13CA-45E2-B3B8-5E076D401B0A}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\e29193b0-b61f-4d86-ada8-6277dd849368-7, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{42C9F677-D648-427A-B9A2-5B35A7597318}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{42C9F677-D648-427A-B9A2-5B35A7597318}, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CrossriderApp0059570.Sandbox.1, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CLSID\{22222222-2222-2222-2222-220522952270}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440544954470}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550555955570}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660566956670}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{55555555-5555-5555-5555-550555955570}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{66666666-6666-6666-6666-660566956670}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550555955570}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660566956670}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440544954470}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{44444444-4444-4444-4444-440544954470}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{22222222-2222-2222-2222-220522952270}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{22222222-2222-2222-2222-220522952270}, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.PlusHD, HKLM\SOFTWARE\WOW6432NODE\PlusHD-V1.9, Sin acciones por parte del usuario, [514], [241795],1.0.5292
PUP.Optional.WebCake, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fjoijdanhaiflhibkljeklcghcmmfffh, Sin acciones por parte del usuario, [211], [244786],1.0.5292
PUP.Optional.PlusHD, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\PlusHD-V1.9, Sin acciones por parte del usuario, [514], [241757],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, Sin acciones por parte del usuario, [2973], [238777],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, Sin acciones por parte del usuario, [2973], [238776],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{D200FDFB-3F0C-4661-B227-07838E792C5B}, Sin acciones por parte del usuario, [393], [237508],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{d200fdfb-3f0c-4661-b227-07838e792c5b}, Sin acciones por parte del usuario, [393], [237508],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CrossriderApp0059570.BHO.1, Sin acciones por parte del usuario, [393], [237346],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickCtrl.10, Sin acciones por parte del usuario, [2973], [238770],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickProcessLauncherMachine.1.0, Sin acciones por parte del usuario, [2973], [238770],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickProcessLauncherMachine, Sin acciones por parte del usuario, [2973], [238770],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoCreateAsync.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoCreateAsync, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreClass.1, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreClass, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreMachineClass.1, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreMachineClass, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CredentialDialogMachine.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CredentialDialogMachine, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachine.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachine, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachineFallback, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassSvc.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassSvc, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.ProcessLauncher.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.ProcessLauncher, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachine.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachine, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachineFallback.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachineFallback, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebSvc.1.0, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebSvc, Sin acciones por parte del usuario, [2973], [238771],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Business.Tinyfying.DownloadArgs, Sin acciones por parte del usuario, [102], [239405],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Business.Tinyfying.LinkToPromoteArgs, Sin acciones por parte del usuario, [102], [239405],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Business.Tinyfying.RawDataArgs, Sin acciones por parte del usuario, [102], [239405],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Business.Tinyfying.TinyUrlArgs, Sin acciones por parte del usuario, [102], [239405],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Business.Tinyfying.ViralLinkArgs, Sin acciones por parte del usuario, [102], [239405],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.ClientCallback, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.ContractBase, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.GameOverCallback, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.GetCreditCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.GetVariableCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.GetVariableResult, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.InstallationContextResult, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.LoadContentCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.LoginCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.LogoutCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.MyAccountCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.PlayContentCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.PostContentCallback, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.SetVariableCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.TestContentCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.WarmUpCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.DataContracts.WelcomeCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.ServerCommand, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.Communication.ServerResult, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.LightContent, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.LightUri, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\Iminent.Mediator.MediatorServiceProxy, Sin acciones por parte del usuario, [102], [239407],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\IminentWebBooster.BrowserHelperObject.1, Sin acciones por parte del usuario, [102], [239408],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\IminentWebBooster.BrowserHelperObject, Sin acciones por parte del usuario, [102], [239408],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\IminentWebBooster.ScriptExtender.1, Sin acciones por parte del usuario, [102], [239408],1.0.5292
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\IminentWebBooster.ScriptExtender, Sin acciones por parte del usuario, [102], [239408],1.0.5292
PUP.Optional.PlusHD, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\APPDATALOW\SOFTWARE\PlusHD-V1.9, Sin acciones por parte del usuario, [514], [241757],1.0.5292
PUP.Optional.CrossRider, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{B85CF427-9CB0-4DF3-B41A-EEB670E1656B}, Sin acciones por parte del usuario, [393], [237487],1.0.5292
PUP.Optional.CrossRider, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{d200fdfb-3f0c-4661-b227-07838e792c5b}, Sin acciones por parte del usuario, [393], [237486],1.0.5292
PUP.Optional.CrossRider, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FD74D870-DDA6-466A-A2E9-D44E9FC0A491}, Sin acciones por parte del usuario, [393], [237487],1.0.5292
PUP.Optional.Umbrella, HKLM\SOFTWARE\WOW6432NODE\UMBRELLA, Sin acciones por parte del usuario, [4523], [244324],1.0.5292
PUP.Optional.DealPly, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}, Sin acciones por parte del usuario, [68], [167870],1.0.5292
PUP.Optional.DealPly, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}, Sin acciones por parte del usuario, [68], [167870],1.0.5292
PUP.Optional.DealPly, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}, Sin acciones por parte del usuario, [68], [167870],1.0.5292
PUP.Optional.DealPly, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}, Sin acciones por parte del usuario, [68], [167870],1.0.5292
PUP.Optional.DealPly, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}, Sin acciones por parte del usuario, [68], [167870],1.0.5292
PUP.Optional.ModGoog, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.ModGoog, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Sin acciones por parte del usuario, [12432], [64771],1.0.5292

Valor del registro: 27
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{22222222-2222-2222-2222-220522952270}|, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550555955570}|, Sin acciones por parte del usuario, [393], [324197],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{55555555-5555-5555-5555-550555955570}|, Sin acciones por parte del usuario, [393], [324197],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CLSID\{22222222-2222-2222-2222-220522952270}|, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{d200fdfb-3f0c-4661-b227-07838e792c5b}|APPNAME, Sin acciones por parte del usuario, [393], [237508],1.0.5292
PUP.Optional.RegCleanPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\COMPATIBILITYADAPTER\SIGNATURES|REGCLEAN PRO_UPDATES.JOB, Sin acciones por parte del usuario, [1674], [484529],1.0.5292
PUP.Optional.RegCleanPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\COMPATIBILITYADAPTER\SIGNATURES|REGCLEAN PRO_UPDATES.JOB.FP, Sin acciones por parte del usuario, [1674], [484529],1.0.5292
PUP.Optional.RegCleanPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\COMPATIBILITYADAPTER\SIGNATURES|REGCLEAN PRO_DEFAULT.JOB, Sin acciones por parte del usuario, [1674], [484529],1.0.5292
PUP.Optional.RegCleanPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\COMPATIBILITYADAPTER\SIGNATURES|REGCLEAN PRO_DEFAULT.JOB.FP, Sin acciones por parte del usuario, [1674], [484529],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0A959F1B-27F5-481D-81E6-9D1C4E97A8DE}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2EC1FF82-EF3C-4C29-84BB-4F59F172B7F2}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{305141E1-A044-4831-AFC5-F25C13E98C12}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{42C9F677-D648-427A-B9A2-5B35A7597318}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{435C723F-13CA-45E2-B3B8-5E076D401B0A}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B9B67F5C-7ED6-465A-B3E3-08ED934B246B}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C3D8F3E8-164B-4A10-A4FD-6A5490245368}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{DD49A5D8-1F00-4E83-825A-A22A2D5D2A26}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F89A8996-DC18-44DE-A1C6-84BC909A27D2}|PATH, Sin acciones por parte del usuario, [393], [259199],1.0.5292
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|PLUSHD-V1.9-BG.EXE, Sin acciones por parte del usuario, [1810], [260099],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550555955570}|, Sin acciones por parte del usuario, [393], [324197],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{22222222-2222-2222-2222-220522952270}|, Sin acciones por parte del usuario, [393], [324196],1.0.5292
PUP.Optional.CrossRider, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{B85CF427-9CB0-4DF3-B41A-EEB670E1656B}|APPNAME, Sin acciones por parte del usuario, [393], [237487],1.0.5292
PUP.Optional.CrossRider, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{d200fdfb-3f0c-4661-b227-07838e792c5b}|APPNAME, Sin acciones por parte del usuario, [393], [237486],1.0.5292
PUP.Optional.CrossRider, HKU\S-1-5-21-100808472-460583808-846705244-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FD74D870-DDA6-466A-A2E9-D44E9FC0A491}|APPNAME, Sin acciones por parte del usuario, [393], [237487],1.0.5292
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{d200fdfb-3f0c-4661-b227-07838e792c5b}|APPNAME, Sin acciones por parte del usuario, [393], [237508],1.0.5292
PUP.Optional.Umbrella, HKLM\SOFTWARE\WOW6432NODE\UMBRELLA|MUPDBLOCK, Sin acciones por parte del usuario, [4523], [244324],1.0.5292
PUP.Optional.Umbrella, HKLM\SOFTWARE\WOW6432NODE\UMBRELLA|CONFIGBLOCKJSN, Sin acciones por parte del usuario, [4523], [244323],1.0.5292

Datos del registro: 4
PUP.Optional.SweetPage.ShrtCln, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND|, Sin acciones por parte del usuario, [1502], [292874],1.0.5292
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Sin acciones por parte del usuario, [5406], [292819],1.0.5292
PUP.Optional.SweetPage.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND|, Sin acciones por parte del usuario, [1502], [292874],1.0.5292
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Sin acciones por parte del usuario, [5406], [292819],1.0.5292

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 25
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\_metadata, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\_metadata, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\EOONCJEJNPPFJJKLAPAAMHCDMJBILMDE, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Program Files (x86)\Delta\delta\1.8.21.5\bh, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Program Files (x86)\Delta\delta\1.8.21.5, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\PROGRAM FILES (X86)\DELTA\DELTA, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\_metadata, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\images, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\_metadata, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\3.5.0.0_0\images, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.0_0\images, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\images, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\3.5.0.0_0, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.0_0, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\OJCGAOAFCMBADJKFDIPPKDDDGKEAIPBN, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.PlusHD, C:\PROGRAM FILES (X86)\PlusHD-V1.9, Sin acciones por parte del usuario, [514], [178928],1.0.5292
PUP.Optional.Iminent, C:\PROGRAM FILES (X86)\COMMON FILES\UMBRELLA, Sin acciones por parte del usuario, [102], [247128],1.0.5292

Archivo: 153
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\_metadata\verified_contents.json, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\128.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\48.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\48x48_notext.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\background.js, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\manifest.json, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\redirect.html, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\redirect.js, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\Thumbs.db, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\BabMaint.x, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\bg.html, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\bg.js, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\BUSolution.dll, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\Delta128.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\Deltal48.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\manifest.json, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\NPObject.dll, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\redirect.html, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0\redirect.js, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0\background.js, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0\delta128.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0\delta48.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0\manifest.json, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0\redirect.html, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0\redirect.js, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\_metadata\verified_contents.json, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\128.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\48.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\48x48_notext.png, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\background.js, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\manifest.json, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\redirect.html, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\redirect.js, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.6.3_0\Thumbs.db, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sin acciones por parte del usuario, [74], [174451],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Program Files (x86)\Delta\delta\1.8.21.5\bh\delta.dll, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Program Files (x86)\Delta\delta\1.8.21.5\deltaApp.dll, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Program Files (x86)\Delta\delta\1.8.21.5\deltaEng.dll, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Program Files (x86)\Delta\delta\1.8.21.5\deltasrv.exe, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Program Files (x86)\Delta\delta\1.8.21.5\GUninstaller.exe, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\Program Files (x86)\Delta\delta\1.8.21.5\uninstall.exe, Sin acciones por parte del usuario, [74], [175030],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\images\icon128.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\images\icon16.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\images\icon48.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\_metadata\verified_contents.json, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\background.js, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\manifest.json, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\3.5.0.0_0\images\icon128.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\3.5.0.0_0\images\icon16.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\3.5.0.0_0\images\icon48.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\3.5.0.0_0\background.html, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\3.5.0.0_0\manifest.json, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.0_0\images\icon128.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.0_0\images\icon16.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.0_0\images\icon48.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.0_0\background.js, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.0_0\manifest.json, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\images\icon128.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\images\icon16.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\images\icon48.png, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\_metadata\verified_contents.json, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\background.js, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn\4.2.2.9_0\manifest.json, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.DealPly, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sin acciones por parte del usuario, [68], [176746],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-1.job, Sin acciones por parte del usuario, [393], [235119],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-11.job, Sin acciones por parte del usuario, [393], [235119],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-2.job, Sin acciones por parte del usuario, [393], [235119],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-3.job, Sin acciones por parte del usuario, [393], [235119],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-4.job, Sin acciones por parte del usuario, [393], [235119],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-5.job, Sin acciones por parte del usuario, [393], [235119],1.0.5292
PUP.Optional.Iminent, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage, Sin acciones por parte del usuario, [102], [239391],1.0.5292
PUP.Optional.CrossRider.Generic, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-5_user.job, Sin acciones por parte del usuario, [1810], [307240],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-6.job, Sin acciones por parte del usuario, [393], [235119],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-7.job, Sin acciones por parte del usuario, [393], [235119],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-1, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-11, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-2, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.PlusHD, C:\Program Files (x86)\PlusHD-V1.9\1293297481.mxaddon, Sin acciones por parte del usuario, [514], [178928],1.0.5292
PUP.Optional.PlusHD, C:\Program Files (x86)\PlusHD-V1.9\360-59570.crx, Sin acciones por parte del usuario, [514], [178928],1.0.5292
PUP.Optional.PlusHD, C:\Program Files (x86)\PlusHD-V1.9\59570.crx, Sin acciones por parte del usuario, [514], [178928],1.0.5292
PUP.Optional.PlusHD, C:\Program Files (x86)\PlusHD-V1.9\59570.xpi, Sin acciones por parte del usuario, [514], [178928],1.0.5292
PUP.Optional.PlusHD, C:\Program Files (x86)\PlusHD-V1.9\background.html, Sin acciones por parte del usuario, [514], [178928],1.0.5292
PUP.Optional.PlusHD, C:\Program Files (x86)\PlusHD-V1.9\e29193b0-b61f-4d86-ada8-6277dd849368.crx, Sin acciones por parte del usuario, [514], [178928],1.0.5292
PUP.Optional.PlusHD, C:\Program Files (x86)\PlusHD-V1.9\PlusHD-V1.9.ico, Sin acciones por parte del usuario, [514], [178928],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-3, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-4, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-5, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider.Generic, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-5_user, Sin acciones por parte del usuario, [1810], [307239],1.0.5292
PUP.Optional.BrowserDefender, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\CHROME-EXTENSION_EOONCJEJNPPFJJKLAPAAMHCDMJBILMDE_0.LOCALSTORAGE, Sin acciones por parte del usuario, [5016], [236167],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-6, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.CrossRider, C:\WINDOWS\SYSTEM32\TASKS\e29193b0-b61f-4d86-ada8-6277dd849368-7, Sin acciones por parte del usuario, [393], [235118],1.0.5292
PUP.Optional.Iminent, C:\PROGRAM FILES (X86)\COMMON FILES\UMBRELLA\umbrella.exe, Sin acciones por parte del usuario, [102], [247128],1.0.5292
PUP.Optional.Iminent, C:\Program Files (x86)\Common Files\Umbrella\UriData.data, Sin acciones por parte del usuario, [102], [247128],1.0.5292
PUP.Optional.GolSearch, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_www.golsearch.com_0.localstorage, Sin acciones por parte del usuario, [286], [238810],1.0.5292
PUP.Optional.GolSearch, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_www.golsearch.com_0.localstorage-journal, Sin acciones por parte del usuario, [286], [238810],1.0.5292
PUP.Optional.WidgetContext, C:\USERS\USER\APPDATA\ROAMING\MOZILLA\EXTENSIONS\{EC8030F7-C20A-464F-9B0E-13A3A9E97384}\{140A2D0E-85CC-4ED3-9BA5-8FA35DA7FABA}.XPI, Sin acciones por parte del usuario, [2455], [244970],1.0.5292
PUP.Optional.Iminent, C:\USERS\USER\APPDATA\LOCAL\CHROME .LNK, Sin acciones por parte del usuario, [102], [252510],1.0.5292
PUP.Optional.Iminent, C:\USERS\USER\APPDATA\LOCAL\FIREFOX .LNK, Sin acciones por parte del usuario, [102], [252511],1.0.5292
PUP.Optional.Iminent, C:\USERS\USER\APPDATA\LOCAL\IEXPLORE .LNK, Sin acciones por parte del usuario, [102], [252512],1.0.5292
PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_easydocmerge.dl.myway.com_0.localstorage, Sin acciones por parte del usuario, [1691], [443124],1.0.5292
PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_easydocmerge.dl.myway.com_0.localstorage-journal, Sin acciones por parte del usuario, [1691], [443124],1.0.5292
PUP.Optional.ASK.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_www.search.ask.com_0.localstorage, Sin acciones por parte del usuario, [1963], [443149],1.0.5292
PUP.Optional.ASK.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_www.search.ask.com_0.localstorage-journal, Sin acciones por parte del usuario, [1963], [443149],1.0.5292
PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_easydocmerge.dl.tb.ask.com_0.localstorage, Sin acciones por parte del usuario, [1691], [443123],1.0.5292
PUP.Optional.MindSpark.Generic, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_easydocmerge.dl.tb.ask.com_0.localstorage-journal, Sin acciones por parte del usuario, [1691], [443123],1.0.5292
PUP.Optional.Iminent, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_search.iminent.com_0.localstorage, Sin acciones por parte del usuario, [102], [443494],1.0.5292
PUP.Optional.Iminent, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_search.iminent.com_0.localstorage-journal, Sin acciones por parte del usuario, [102], [443494],1.0.5292
PUP.Optional.SweetPage.ShrtCln, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_www.sweet-page.com_0.localstorage, Sin acciones por parte del usuario, [1502], [443472],1.0.5292
PUP.Optional.SweetPage.ShrtCln, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_www.sweet-page.com_0.localstorage-journal, Sin acciones por parte del usuario, [1502], [443472],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_www1.delta-search.com_0.localstorage, Sin acciones por parte del usuario, [74], [443477],1.0.5292
PUP.Optional.Delta.ShrtCln, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\http_www1.delta-search.com_0.localstorage-journal, Sin acciones por parte del usuario, [74], [443477],1.0.5292
PUP.Optional.OpenCandy, C:\USERS\USER\DESKTOP\PHOTOSCAPE_V3-6-5.EXE, Sin acciones por parte del usuario, [1034], [297667],1.0.5292
PUP.Optional.CRX, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$R9YKBAL\CRXUPDATER_D.EXE, Sin acciones por parte del usuario, [13888], [278130],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\GOOGLEUPDATEONDEMAND.EXE, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\GOOGLEUPDATE.EXE, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\GOOGLECRASHHANDLER.EXE, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\NPGOOGLEUPDATE4.DLL, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\GOOPDATERES_EN.DLL, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\GOOPDATE.DLL, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\GOOGLEUPDATEBROKER.EXE, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\PSUSER.DLL, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.CRX, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RET619Z\CRXUPDATER_D.EXE, Sin acciones por parte del usuario, [13888], [278130],1.0.5292
PUP.Optional.CRX, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RHX8T0Q\CRXUPDATER_D.EXE, Sin acciones por parte del usuario, [13888], [278130],1.0.5292
PUP.Optional.ModGoog, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RAS3X9Q.70546\PSMACHINE.DLL, Sin acciones por parte del usuario, [12432], [64771],1.0.5292
PUP.Optional.CRX, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RP1S1PD\CRXUPDATER_D.EXE, Sin acciones por parte del usuario, [13888], [278130],1.0.5292
PUP.Optional.CRX, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RUPP2LP\CRXUPDATER_D.EXE, Sin acciones por parte del usuario, [13888], [278130],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\AAPT.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\CRASHREPORT.EXE, Sin acciones por parte del usuario, [3140], [110074],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\DRIVERINSTALL_X86.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
PUP.Optional.CRX, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RRHWQY8\CRXUPDATER_D.EXE, Sin acciones por parte del usuario, [13888], [278130],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\DRIVERINSTALL_X64.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\DEVCON_X64.EXE, Sin acciones por parte del usuario, [3140], [361649],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\LSUSB.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\MGUSB.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\CRASHRPT.DLL, Sin acciones por parte del usuario, [3140], [361649],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\OUTLOOKOPERATORC.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\DEVCON_X86.EXE, Sin acciones por parte del usuario, [3140], [361649],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\MGADB.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RYQMKRB\UPDATEMOBOGENIE.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
PUP.Optional.APNToolBar, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$R626XOV.EXE, Sin acciones por parte del usuario, [7815], [76243],1.0.5292
PUP.Optional.InstallCore, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RH64IOX.EXE, Sin acciones por parte del usuario, [392], [301067],1.0.5292
Adware.MoboGenie, C:\$RECYCLE.BIN\S-1-5-21-100808472-460583808-846705244-1001\$RIQ29EP.EXE, Sin acciones por parte del usuario, [3140], [117172],1.0.5292
Rogue.SmartPCMechanic, C:\USERS\USER\DOWNLOADS\SIN CONFIRMAR 177749.CRDOWNLOAD, Sin acciones por parte del usuario, [1440], [467782],1.0.5292
PUP.Optional.Reimage, C:\USERS\USER\DOWNLOADS\REIMAGEREPAIR (1).EXE, Sin acciones por parte del usuario, [1365], [331559],1.0.5292
PUP.Optional.SpeedingUpMyPC, C:\USERS\USER\DOWNLOADS\PC-CLEANER-4134 (1).EXE, Sin acciones por parte del usuario, [1258], [125828],1.0.5292
PUP.Optional.SofTonic, C:\USERS\USER\DOWNLOADS\SOFTONICDOWNLOADER_PARA_ARES.EXE, Sin acciones por parte del usuario, [1857], [76195],1.0.5292
Adware.Agent.NSIS, C:\USERS\USER\DOWNLOADS\AJEDREZ-A-CABALLO_INSTALLER.EXE, Sin acciones por parte del usuario, [8951], [450534],1.0.5292
PUP.Optional.Delta, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, [273], [455070],1.0.5292
PUP.Optional.SpeedingUpMyPC, C:\USERS\USER\DOWNLOADS\PC-CLEANER-4134.EXE, Sin acciones por parte del usuario, [1258], [125828],1.0.5292
PUP.Optional.Iminent, C:\WINDOWS\INSTALLER\77DBC81.MSI, Sin acciones por parte del usuario, [102], [76684],1.0.5292
PUP.Optional.Delta, C:\USERS\USER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sin acciones por parte del usuario, [273], [455070],1.0.5292

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)

(end)
 

jbex

El que peca y reza empata
Administrador
Hola mariela, mira si entrando modo seguro, puede Malwarebytes realizar la limpieza.
Un saludo
 

Kbite

Aprender y compartir
Administrador
Hola mariela.

Solo incluyes el informe de Malwartebytes y parece que no eliminó nada, fíjate que en el encabezado dice:
# Scanned: 41737 (Escaneado)
# Detected: 717 (Detectado)
Pero no Eliminado, abre el Malwarebytes y abre la Cuarentena, mira si se encuentra todo lo presuntamente eliminado, son nada menos que 717 archivos que son una barbaridad, de no estar en la carpeta Cuarentena deberás pasar otra vez Malwarebytes y eliminar todo lo detectado.

Así mismo nos falta el informe de AdwCleaner y el antivirus OnLine.

De todas formas tu sistema operativo, por los problemas que tienes, está muy "tocado" y tal vez sería bueno restaurar tu equipo parta terminar con los problemas, esto dependerá de las dificultades que puedas tener: Cómo Actualizar, Restablecer o Restaurar Windows 8.1 y RT 8.1

Saludos, Kbite

EDITO: Me crucé con jbex
 

mariela

Miembro
Miembro
Insertar CODE, HTML o PHP:
# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build:    07-17-2018
# Database: 2018-07-25.1
# Support:  Customer Support & Help Center
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    07-29-2018
# Duration: 00:00:21
# OS:       Windows 8 Single Language
# Scanned:  41737
# Detected: 717


***** [ Services ] *****

PUP.Optional.Legacy             SrvUpdater
PUP.Optional.Legacy             SProtection
PUP.Optional.Legacy             Hydrup

***** [ Folders ] *****

Adware.Yontoo                   C:\ProgramData\Tarma Installer
PUP.Adware.Heuristic            C:\ProgramData\AVG_UPDATE_0215TB
PUP.Optional.Betcat             C:\Program Files (x86)\Betcat
PUP.Optional.Betcat             C:\Users\user\AppData\Roaming\Betcat
PUP.Optional.CouponMarvel       C:\Users\user\AppData\Local\lollipop
PUP.Optional.DealPly            C:\Program Files (x86)\DealPly
PUP.Optional.DealPly            C:\Users\user\AppData\Roaming\DealPly
PUP.Optional.DealPly            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
PUP.Optional.Delta              C:\Users\user\APPDATA\LOCALLOW\DELTA
PUP.Optional.IEPluginServices   C:\ProgramData\IePluginServices
PUP.Optional.Iminent            C:\ProgramData\Iminent
PUP.Optional.Iminent            C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
PUP.Optional.Iminent            C:\Users\user\AppData\Roaming\Iminent
PUP.Optional.Legacy             C:\Program Files (x86)\WebCake
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\WebCake
PUP.Optional.Legacy             C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Toolbar4
PUP.Optional.Legacy             C:\Windows\Installer\{5CDCDBCD-119A-4AE1-9C55-B816DBBE4245}
PUP.Optional.Legacy             C:\Users\user\AppData\Local\genienext
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\BabSolution
PUP.Optional.Legacy             C:\ProgramData\AVG Security Toolbar
PUP.Optional.Legacy             C:\ProgramData\AVG Secure Search
PUP.Optional.Legacy             C:\Program Files\Common Files\AVG Secure Search
PUP.Optional.Legacy             C:\Program Files (x86)\Common Files\AVG Secure Search
PUP.Optional.Legacy             C:\Program Files (x86)\Amazon\ABB
PUP.Optional.Legacy             C:\Program Files (x86)\Common Files\Hydrup
PUP.Optional.Legacy             C:\ProgramData\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Program Files (x86)\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Users\user\AppData\Local\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Users\user\AppData\LocalLow\AVG SafeGuard toolbar
PUP.Optional.Legacy             C:\Users\user\AppData\Local\Mobogenie
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
PUP.Optional.Legacy             C:\Users\user\Documents\Mobogenie
PUP.Optional.Legacy             C:\Program Files (x86)\globalUpdate
PUP.Optional.Legacy             C:\Users\user\AppData\Local\globalUpdate
PUP.Optional.NextLive           C:\Users\user\AppData\Roaming\newnext.me
PUP.Optional.OpenSoftware.Updater C:\Program Files (x86)\SoftwareUpdater
PUP.Optional.RegCleanerPro      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
PUP.Optional.RegCleanerPro      C:\Program Files (x86)\RegClean Pro
PUP.Optional.SofTonicAssistant  C:\Users\user\AppData\Local\Softonic
PUP.Optional.SofTonicAssistant  C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Softonic
PUP.Optional.SupTab             C:\Program Files (x86)\SupTab
PUP.Optional.SupTab             C:\Users\user\AppData\Roaming\SupTab
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\sweet-page
PUP.Optional.SysTweak           C:\Users\user\AppData\Roaming\Systweak
PUP.Optional.WPM                C:\ProgramData\WindowsMangerProtect

***** [ Files ] *****

PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mobogenie.lnk
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\lollipop.lnk
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\lollipop.lnk
PUP.Optional.Legacy             C:\Users\user\daemonprocess.txt
PUP.Optional.Legacy             C:\Users\user\Downloads\ReimageRepair.exe
PUP.Optional.SysTweak           C:\Windows\System32\roboot64.exe

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

PUP.Optional.Legacy             C:\Users\user\Desktop\Firefox .lnk
PUP.Optional.Legacy             C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox .lnk
PUP.Optional.SweetPage.ShrtCln  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\Public\Desktop\Google Chrome.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\Desktop\Iexplore .lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Iexplore .lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome .lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
PUP.Optional.SweetPage.ShrtCln  C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk

***** [ Tasks ] *****

PUP.Optional.DealPly            C:\Windows\System32\Tasks\DealPly
PUP.Optional.Legacy             C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
PUP.Optional.Legacy             C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
PUP.Optional.Legacy             C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
PUP.Optional.Legacy             C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
PUP.Optional.Legacy             C:\Windows\System32\Tasks\DealPlyUpdate
PUP.Optional.RegCleanPro        C:\Windows\Tasks\RegClean Pro_DEFAULT.job
PUP.Optional.RegCleanPro        C:\Windows\System32\Tasks\RegClean Pro_DEFAULT
PUP.Optional.RegCleanerPro      C:\Windows\Tasks\RegClean Pro_UPDATES.job
PUP.Optional.RegCleanerPro      C:\Windows\System32\Tasks\RegClean Pro_UPDATES

***** [ Registry ] *****

Adware.Iminent                  HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\DCBDCDC5A9111EA4C9558B61BDEB2454
Adware.Iminent                  HKLM\Software\Classes\Installer\Products\DCBDCDC5A9111EA4C9558B61BDEB2454
Adware.Iminent                  HKLM\Software\Classes\Installer\Features\DCBDCDC5A9111EA4C9558B61BDEB2454
Adware.Iminent                  HKLM\Software\Wow6432Node\Loader|Iminent
Adware.Montera                  HKLM\Software\Classes\escort.escortIEPane
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\CrossriderApp0059570.Sandbox
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\CrossriderApp0059570.BHO
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620
PUP.Adware.Heuristic            HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DC3A392A-53DA-410E-90FC-77A459725E5D}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C73D0E6D-5A0-4208-8E16-3638D9ECB4A}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{934CA5D-4C84-4443-A63B-C0EBF74A4E66}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F96C4F2-C594-42CE-B5C1-9D471764F6FC}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{308524CC-FBE6-4A70-8F18-47F981A91DAD}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2a8a8e10-6484-4a77-b39f-10c0827ced0b}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28C226FF-F455-4BA1-9ECD-7898933651A}
PUP.CrossRider.Heuristic        HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{202DF0DA-C812-4CCD-9B2-79DBAE60A936}
PUP.CrossRider.Heuristic        HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2a8a8e10-6484-4a77-b39f-10c0827ced0b}
PUP.CrossRider.Heuristic        HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2a8a8e10-6484-4a77-b39f-10c0827ced0b}
PUP.Optional.Conduit            HKCU\Software\Conduit
PUP.Optional.Conduit            HKLM\Software\Wow6432Node\Conduit
PUP.Optional.CouponMarvel       HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\lollipop
PUP.Optional.CouponMarvel       HKCU\Software\lollipop
PUP.Optional.CrossRider         HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Crossrider
PUP.Optional.CrossRider         HKCU\Software\AppDataLow\Software\Crossrider
PUP.Optional.DealPly            HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
PUP.Optional.DealPly            HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
PUP.Optional.DealPly            HKCU\Software\DealPly
PUP.Optional.DealPly            HKLM\Software\Wow6432Node\DealPly
PUP.Optional.DealPly            HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9751AA55-5B34-4C29-9679-B0BAE796E0C3}
PUP.Optional.DealPly            HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9751AA55-5B34-4C29-9679-B0BAE796E0C3}
PUP.Optional.DealPly            HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly
PUP.Optional.Delta              HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-100808472-460583808-846705244-1001\Software\delta
PUP.Optional.Delta              HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\delta
PUP.Optional.Delta              HKCU\Software\delta
PUP.Optional.Delta              HKLM\Software\Wow6432Node\delta
PUP.Optional.Iminent            HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
PUP.Optional.Iminent            HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-100808472-460583808-846705244-1001\Software\Iminent
PUP.Optional.Iminent            HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Iminent
PUP.Optional.Iminent            HKCU\Software\Iminent
PUP.Optional.Iminent            HKLM\Software\Wow6432Node\Iminent
PUP.Optional.Iminent            HKLM\Software\Iminent
PUP.Optional.Iminent            HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar|{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
PUP.Optional.Iminent            HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
PUP.Optional.Iminent            HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
PUP.Optional.Iminent            HKLM\Software\Wow6432Node\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
PUP.Optional.Iminent            HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{AF13DD90-542C-4D54-BEFE-8A52C3766411}
PUP.Optional.Iminent            HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{92C8CFDF-009E-46A0-95C0-16CED8B741B2}
PUP.Optional.Iminent            HKLM\Software\Classes\Iminent
PUP.Optional.Iminent            HKLM\System\CurrentControlSet\Services\EventLog\Application\Iminent
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|IminentMessenger
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run|IminentMessenger
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|Iminent
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run|Iminent
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Wpm
PUP.Optional.Legacy             HKLM\Software\Tarma Installer
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
PUP.Optional.Legacy             HKCU\Software\InstalledBrowserExtensions
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\InstalledBrowserExtensions
PUP.Optional.Legacy             HKLM\Software\InstalledBrowserExtensions
PUP.Optional.Legacy             HKCU\Software\GlobalUpdate
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\GlobalUpdate
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
PUP.Optional.Legacy             HKCU\Software\BABSOLUTION
PUP.Optional.Legacy             HKCU\Software\AVG Security Toolbar
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\AVG Security Toolbar
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5CDCDBCD-119A-4AE1-9C55-B816DBBE4245}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\SUPDP
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C3F6D7A0BA2FDE84EB329997B1FF786D
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Products\C3F6D7A0BA2FDE84EB329997B1FF786D
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Features\C3F6D7A0BA2FDE84EB329997B1FF786D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3038A20B9089EC34D8F74220191FAB30
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18C9E3869A16248439FE3FF9EB02207A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60ECC80C54085B141A40437A96CA2618
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB3204F747B20694B8D49EF92D8DC94B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA531D0F3A71504DA7AC6A11CE33739
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4223BBC9438CAD49BBE10B4E344B1DD
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\206AF45B775E3A445B3B2273827DA85F
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\225C3CBCEB850204D860A6C7CC7724AF
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87EC9ACEAFE8ECD52A529663CD35213F
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29C79786B109AC443B0DC7BFD61B1896
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E05B987540A9E2849AAF9E5B06C27DA8
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14C66209FCA938858B9729645C666684
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4D1BA8B482D9734E943EE260A7ADEF2
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F6704141BAAF6884785EC6843143D6A7
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A
PUP.Optional.Legacy             HKLM\Software\Classes\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75FF6D97AF9FC004A9521D4B83FA6321
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB13D869D7D092348847B7481BB59E27
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDA2534BD056D1F44B6EC96AAA7F1F6E
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|mobilegeni daemon
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Google\Chrome\NativeMessagingHosts\avgsh
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\protocols\handler\viprotocol
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\ViProtocol.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\TbHelper.EXE
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\TbCommonUtils.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\esrv.EXE
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\esrv.EXE
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\escorTlbr.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\escortEng.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\escortApp.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL
PUP.Optional.Legacy             HKLM\SOFTWARE\Classes\AppID\escort.DLL
PUP.Optional.Legacy             HKCU\Software\Classes\Applications\lollipop.exe
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{BB975E58-E769-4E5A-BA12-B765BC559FF3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{AF6B0594-6008-4327-93E5-608AD710A6FA}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
PUP.Optional.Legacy             HKLM\Software\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
PUP.Optional.Legacy             HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
PUP.Optional.Legacy             HKLM\Software\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
PUP.Optional.Legacy             HKLM\Software\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
PUP.Optional.Legacy             HKLM\Software\Classes\Prod.cap
PUP.Optional.Legacy             HKLM\Software\Classes\ComObject.DeskbarEnabler
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B79C06D2-4B2D-4099-8A90-A2185264D6E9}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B79C06D2-4B2D-4099-8A90-A2185264D6E9}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9EA5F25-B92F-49C7-9B69-91950E9EE868}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{12CD7FAC-1CC5-44E4-93FC-A1DC28486AF7}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12CD7FAC-1CC5-44E4-93FC-A1DC28486AF7}
PUP.Optional.Legacy             HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyUpdate
PUP.Optional.Legacy             HKLM\System\CurrentControlSet\Services\EventLog\Application\WebCakeUpdaterService
PUP.Optional.Legacy             HKLM\System\CurrentControlSet\Services\EventLog\Application\SrvUpdater
PUP.Optional.Legacy             HKLM\System\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
PUP.Optional.Legacy             HKLM\System\CurrentControlSet\Services\EventLog\Application\IePluginServices
PUP.Optional.Legacy             HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{60795ED8-15E1-4233-B759-4B25AA0C5CFB}
PUP.Optional.Legacy             HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
PUP.Optional.Legacy             HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
PUP.Optional.OpenSoftware.Updater HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
PUP.Optional.OpenSoftware.Updater HKLM\Software\Wow6432Node\SoftwareUpdater
PUP.Optional.RegCleanPro        HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
PUP.Optional.RegCleanPro        HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{86BEAE15-F782-4711-AD58-D13BDA9CBE65}
PUP.Optional.RegCleanPro        HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86BEAE15-F782-4711-AD58-D13BDA9CBE65}
PUP.Optional.RegCleanPro        HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro_DEFAULT
PUP.Optional.RegCleanerPro      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B619D127-53E3-435D-BF5C-8E1DC2CB7BC8}
PUP.Optional.RegCleanerPro      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B619D127-53E3-435D-BF5C-8E1DC2CB7BC8}
PUP.Optional.RegCleanerPro      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro_UPDATES
PUP.Optional.SofTonicAssistant  HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Softonic For Windows
PUP.Optional.SofTonicAssistant  HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Softonic For Windows
PUP.Optional.SofTonicAssistant  HKCU\Software\Softonic
PUP.Optional.SofTonicAssistant  HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Softonic for Windows
PUP.Optional.SofTonicAssistant  HKCU\Software\Classes\Softonic
PUP.Optional.SupTab             HKLM\Software\Wow6432Node\SupTab
PUP.Optional.SupTab             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
PUP.Optional.SupTab             HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
PUP.Optional.SupTab             HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
PUP.Optional.SweetIM            HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\sweet-pageSoftware
PUP.Optional.SweetPage.ShrtCln  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
PUP.Optional.SweetPage.ShrtCln  HKCU\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main|Search Page
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main|Default_Page_URL
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main|Default_Search_URL
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\Main|Search Page
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
PUP.Optional.SweetPage.ShrtCln  HKLM\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
PUP.Optional.SysTweak           HKCU\Software\systweak
PUP.Optional.SysTweak           HKLM\Software\Wow6432Node\systweak
PUP.Optional.WPM                HKLM\Software\Wow6432Node\supWindowsMangerProtect
PUP.Optional.WPM                HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
PUP.Optional.WebCake            HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}

***** [ Chromium (and derivatives) ] *****

PUP.Optional.DealPly            DealPly Beta channel
PUP.Optional.Delta.ShrtCln      Delta Toolbar

***** [ Chromium URLs ] *****

PUP.Optional.Legacy             Search
PUP.Optional.Legacy             Search
PUP.Optional.Legacy             SearchTheWeb
PUP.Optional.Legacy             claro.com.ar
PUP.Optional.Legacy             AVG Secure Search
PUP.Optional.Legacy             AVG Secure Search
PUP.Optional.Legacy             golsearch.com
PUP.Optional.SweetPage.ShrtCln  sweet-page

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
 

mariela

Miembro
Miembro
acabo de poner el log de awcleaner, y te digo que puedo desplazarme por la note solo en modo seguro,con funciones de red, al pasarlo a normal se congela y no puedo hacer nada,no puedo en ningun modo entrar a la pagina de Eset para el analisis online ni siquiera a esta pagina,asi que no sabiendo que hacer ya pido ayuda por favor, ahh y con respecto a restarurar sistema no me permite pues me pone que tengo que estar en linea o algo asi y aparte no hay ningun punto de restauracion, gracias desde ya
 

jbex

El que peca y reza empata
Administrador
Hola mariela, desde el modo seguro con funciones de red.
Descarga ComboFix sigue las instrucciones del manual para su uso.
Nos pones en tu proxima respuesta su log.
Un saludo
 

mariela

Miembro
Miembro
lo hare pero descargando desde otra pc.pues no me permite entrar a descargar.como tampoco antivirus online,muchas gracias
 

mariela

Miembro
Miembro
me pone un cartel como que 31 7 18 expired y ponga aceptar o no no funciona,desde donde lo tengo que descargar
 

mariela

Miembro
Miembro
current data is 2018-07-31 combofix has expired yes reduced functuanality mode, no exit .
 

mariela

Miembro
Miembro
Click yes to run in REDUCED FUNCIONALITY MODE or no to Exit". Le puse Yes y se cerró y me lo eliminó del escritorio.
 

jbex

El que peca y reza empata
Administrador
Esta desactualizado, fallo mio, ademas en 8.1 creo ya no funcionaba.
Desde el modo seguro elimina todos los temporales y desmarca en el inicio Windows cualquier cosa que no sea el antivirus.
Desde el CCleaner podras hacer ambas cosas comadamente. En Herramientas boton Inicio, veras todos los programas inician con Windows, clic derecho sobre ellos y desactivar.
Luego de un inicio normal pasale nuevamente el AdwCleaner y algun antivirus online.
Un saludo
 

mariela

Miembro
Miembro
no puedo hacer nada en modo normal. pude lo de sacar lo de inicio,solo deje antivirus,pero me pone no se puede mostrar la pagina cuando quiero acceder al Eset online,porfi ayuda y gracias
 

jbex

El que peca y reza empata
Administrador
Desde el modo seguro con funciones de red pasale algún antivirus online y el AdwCleaner .
Revisa el archivo hosts copia y nos pones aqui su contenido.
Un saludo
 

Kbite

Aprender y compartir
Administrador
El archivo hosts es el texto que verás en el Bloc de notas, una vez lo tengas en pantalla lo Copias y lo Pegas en tu respuesta.

De paso utiliza el AdwCleaner pero después de escanear debes decirle que "elimine" lo encontrado, en tu primer examen solo escaneó pero no eliminó.

Hazlo con calma porque si no será imposible ayudarte, no podemos hacerlo por tí y tenemos que intentar desinfectar tu equipo.

Saludos, Kbite
 

mariela

Miembro
Miembro
Te cuento que en mode a prueba de errores puedo hacer varias cosas pero no conectarme con antivirus online, tampoco en modo normal, y una vez que la paso a modo normal se congela y no me impide moverme ni con mouse ni con teclado,algunas cosas puedo como por ejemplo ejecutar,gracias desde ya por lo que hacen por mi y por su tiempo, les dejo el archivo host:
Insertar CODE, HTML o PHP:
# Copyright (c) 1993-2009 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
#      102.54.94.97     rhino.acme.com          # source server
#       38.25.63.10     x.acme.com              # x client host

# localhost name resolution is handled within DNS itself.
#    127.0.0.1       localhost
#    ::1             localhost
El Adware (solo tuve que vaciar la cuarentena)
Insertar CODE, HTML o PHP:
# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build:    07-17-2018
# Database: 2018-07-25.1
# Support:  Customer Support & Help Center
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    08-02-2018
# Duration: 00:00:09
# OS:       Windows 8 Single Language
# Scanned:  41737
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [82516 octets] - [29/07/2018 15:06:42]
AdwCleaner[C00].txt - [69775 octets] - [29/07/2018 15:08:19]
AdwCleaner[S01].txt - [1376 octets] - [02/08/2018 21:21:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########
y un nuevo log de hijackthis

Insertar CODE, HTML o PHP:
Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 09:33:52 p.m., on 02/08/2018

Platform: Unknown Windows (WinNT 6.02.1008)

MSIE: Internet Explorer v10.0 (10.00.9200.16537)



Boot mode: Safe mode with network support


Running processes:

C:\WINDOWS\SysWOW64\NOTEPAD.EXE

F:\AMANDA\HijackThis.exe


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart

O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE

O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"

O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s

O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"

O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"

O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4

O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\user\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

O4 - Global Startup: Bluetooth.lnk = ?

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O17 - HKLM\System\CCS\Services\Tcpip\..\{15158812-364A-4DD7-BFD3-F70D3144D8CF}: NameServer = 186.12.238.1 186.12.238.7

O17 - HKLM\System\CCS\Services\Tcpip\..\{9589902B-DDC8-439D-ABEC-5CE6BEC8BB63}: NameServer = 186.12.238.1 186.12.238.7

O17 - HKLM\System\CCS\Services\Tcpip\..\{A04D8C87-C683-4FBA-9203-63D154678965}: NameServer = 186.12.238.1 186.12.238.7

O17 - HKLM\System\CCS\Services\Tcpip\..\{BF755761-D5B5-4C67-9808-9CEF8470951F}: NameServer = 186.12.238.7 186.12.238.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{CDE99840-55C4-454B-93E1-6312E97548B9}: NameServer = 186.12.238.7 186.12.238.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{15158812-364A-4DD7-BFD3-F70D3144D8CF}: NameServer = 186.12.238.1 186.12.238.7

O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)

O23 - Service: @%SystemRoot%\System32\AUInstallAgent.dll,-101 (AllUserInstallAgent) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe

O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe

O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe

O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @oem17.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)

O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Claro Internet. OUC (Claro Internet. RunOuc) - Unknown owner - C:\Program Files (x86)\Claro Internet\UpdateDog\ouc.exe

O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe

O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)

O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (Eaphost) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)

O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe

O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe

O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\WINDOWS\system32\msiexec.exe

O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe

O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\WINDOWS\SysWOW64\NLSSRV32.EXE

O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\WINDOWS\SysWow64\perfhost.exe

O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)

O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\WINDOWS\servicing\TrustedInstaller.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vmicres.dll,-101 (vmicheartbeat) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-201 (vmickvpexchange) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-601 (vmicrdv) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-301 (vmicshutdown) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-401 (vmictimesync) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vmicres.dll,-501 (vmicvss) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)

O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\WINDOWS\system32\SearchIndexer.exe

O23 - Service: @%SystemRoot%\system32\WSService.dll,-103 (WSService) - Unknown owner - C:\WINDOWS\System32\svchost.exe

O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe


--

End of file - 23797 bytes
 

Kbite

Aprender y compartir
Administrador
Hola mariela.

El archivo hosts es correcto, sin problemas. El AdwCleanre también está limpio por completo.

Y en el log de HijackThis no veo entradas que se deban eliminar, a diferencia del primer log que sí las había, pero con las limpiezas que has hecho ahora se ve todo correcto.

Llegados aquí ya deberíamos pensar en que, o bien algún virus que no vemos corre por tu sistema, o bien ese Windows esté muy corrupto y no podamos arreglarlo con las herramientas de limpieza. Te propongo que utilices un antivirus en Live-CD para utilizarlo fuera del sistema operativo, sin iniciar Windows:

Descargar la imagen ISO de Kaspersky Rescue Disk

El archivo ISO lo grabas en CD o DVD y sigues las instrucciones, si tienes problemas para la descarga pídeselo a algún amigo o familiar que lo haga por tí.

Saludos, Kbite
 

mariela

Miembro
Miembro
Lo descargue de otra pc sin problemas,tambien esta grabado pero al querer botear desde el cd,no me da la opcion, o sea no aparece la grabadora, en la BIOS, si lo hago a traves de una grabadora externa seria usb la opcion, si alguien puede indicarme como hacerlo,gracias desde ya
 
Estado
Cerrado para nuevas respuestas

Arriba Pie