Mi portatil va muy lento


#1

Hola hace algun tiempo que pasaba por aqui de vez en cuando y veo que todo esta muy cambiado . Si es para mejorar mi enhorabuena-. Pues bien el tema que me ocupa es mi portatil el cual esta muy lento, se lo deje a un amigo y me lo ha trraido asi. He pasado el hijackthis y aqui os pego el reporte del mismo. Muchas gracias por vuestra ayuda.

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 15:55:54, on 27.10.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.19036)

FIREFOX: 63.0 (x86 es-ES)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Rohos\agent.exe
C:\Users\Francis\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Users\Francis\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Reader_sl.exe
C:\Users\Francis\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Users\Francis\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ÿþ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [Rohos] C:\Program Files (x86)\Rohos\agent.exe
O4 - HKCU\..\Run: [Google Update] C:\Users\Francis\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [BingSvc] C:\Users\Francis\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Cliquer pour appeler Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Cliquer pour appeler Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\AppReadiness.dll,-1000 (AppReadiness) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\appxdeploymentserver.dll,-1 (AppXSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\BthHFSrv.dll,-103 (BthHFSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\UtcResources.dll,-3001 (DiagTrack) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (Eaphost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\GeofenceMonitorService.dll,-1 (lfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ncbservice.dll,-500 (NcbService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Rohos Disk service (Rohos Disk) - Tesline-Service SRL - C:\Program Files (x86)\Rohos\agent.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: RunSwUSB - Unknown owner - C:\Windows\runSW.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ScDeviceEnum.dll,-100 (ScDeviceEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\smphost.dll,-102 (smphost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBroker) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vmicres.dll,-801 (vmicguestinterface) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\vmicres.dll,-101 (vmicheartbeat) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\vmicres.dll,-201 (vmickvpexchange) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\vmicres.dll,-601 (vmicrdv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\vmicres.dll,-301 (vmicshutdown) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\vmicres.dll,-401 (vmictimesync) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\vmicres.dll,-501 (vmicvss) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wephostsvc.dll,-100 (WEPHOSTSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\workfolderssvc.dll,-102 (workfolderssvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%SystemRoot%\system32\WSService.dll,-103 (WSService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 26227 bytes

#2

Realiza los siguientes pasos, , sin cambiar el orden

1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware,

Manual Malwarebytes, para que sepas usarlo y configurarlo.

  • Realiza un Análisis Personalizado,marcando Todas las casillas de la derecha y de la Izquierda actualizando si te lo pide.
  • Pulsar en “Eliminar Seleccionados” para enviarlo a la cuarentena y Reinicias el sistema.
  • Para acceder posteriormente al informe del análisis : Informes >> Registro de análisis >> Pulsar en >> Exportar >> Copiar al Portapapeles, y lo pegas en tu respuesta

2) Descarga Adwcleaner en el escritorio.

  • Desactiva tu antivirus :arrow_forward:Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad.

  • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Pulsar en el botón Analizar Ahora, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Iniciar Reparacion.

  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.

  • Si no encuentra nada, pulsamos “Omitir Reparación

  • El log lo encontramos en la pestaña “Informes”, volviendo a abrir el programa, si es necesario o en"C:\AdwCleaner\Logs\AdwCleaner[C0].txt"

Puedes mirar su manual >> Manual de Adwcleaner

3) Descarga Ccleaner

Instalalo y ejecútalo. En la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador. Clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad.

Pega los reportes de Malwarebytes, AdwCleaner y comentas como va el problema.



#3

Hola Miguelgrado muchas gracias por su rapida respuesta, he realizado lo que me aconsejo y despues de casi 24 horas de scaneo del malwarebytes el portatil me atreveria a decir que esta peor ya que me ha costado dios y ayuda abrir el navegador pero bueno aqui le envio los informes de malwarebytes y adwcleaner ya me contara como podemos solucionarlo, Muchas gracias,


Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 27/10/18
Hora del análisis: 18:47
Archivo de registro: 0122d581-da08-11e8-9884-001e68052966.json

-Información del software-
Versión: 3.6.1.2711
Versión de los componentes: 1.0.482
Versión del paquete de actualización: 1.0.7567
Licencia: Prueba

-Información del sistema-
SO: Windows 8.1
CPU: x64
Sistema de archivos: NTFS
Usuario: PERSONAL\Francis

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 470100
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 23 hr, 16 min, 28 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build:    09-25-2018
# Database: 2018-10-23.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    10-28-2018
# Duration: 00:00:13
# OS:       Windows 8.1 Pro
# Cleaned:  1
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\extensions

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1268 octets] - [28/10/2018 17:12:23]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Un saludo desde Malaga España


#4

Tanto Malwarebytes como Adwcleaner, no encontraron nada, por lo que no son el motivo de la lentitud

  • Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.

  • Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits?

  • Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.

  • En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.

  • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.


#5

Lo siento Miguelgrado pero cuando intento responder me dice esto:Lo sentimos, pero los usuarios nuevos solo pueden mencionar a 2 usuarios en un post. que puedo hacer para enviar los informes?

Gracias


#6

Hola, con permiso :handshake:

@saijem tienes que poner los reportes dentro de las etiquetas, escribe “[code]” antes de la primera línea del reporte y “[ /code]” en la siguiente línea del final del reporte (sin espacios ni comillas).

Un saludo


#7

a ver si ahora es posible, gracias Daniela

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24.10.2018
Ran by Francis (administrator) on PERSONAL (29-10-2018 00:10:35)
Running from C:\Users\Francis\Desktop
Loaded Profiles: Francis (Available Profiles: Francis)
Platform: Windows 8.1 Pro (Update) (X64) Language: Espagnol (International)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Tesline-Service SRL) C:\Program Files (x86)\Rohos\agent.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\runSW.exe
(Realtek) C:\Windows\SwUSB.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Tesline-Service SRL) C:\Program Files (x86)\Rohos\agent.exe
(© 2015 Microsoft Corporation) C:\Users\Francis\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(Microsoft Corporation) C:\Windows\System32\MpSigStub.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2350880 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [Rohos] => C:\Program Files (x86)\Rohos\agent.exe [5159064 2017-06-28] (Tesline-Service SRL)
HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [Google Update] => C:\Users\Francis\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe [601680 2018-05-20] (Google Inc.)
HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [BingSvc] => C:\Users\Francis\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-04-04] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18594760 2018-09-19] (Piriform Ltd)
HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Policies\Explorer: [] 
HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Policies\Explorer: [TaskbarNoNotification] 0
HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\MountPoints2: {19dbe3ed-a97c-11e6-8657-001e68052966} - "E:\autorun.exe" 
BootExecute: autocheck autochk /m /P \Device\R:003AB70Dautocheck autochk /m /P \Device\R:0002BDC1autocheck autochk /m /P \Device\R:0007FEA2autocheck autochk /m /P \Device\R:0006C030autocheck autochk /m /P \Device\R:00024E0Fautocheck autochk /m /P \Device\R:000101CCautocheck autochk /m /P \Device\R:0002DCCCautocheck autochk /m /P \Device\R:0002C5F0autocheck autochk /m /P \Device\R:0000E9D2autocheck autochk /m /P \Device\R:0007429Aautocheck autochk /m /P \Device\R:0000BF41autocheck autochk /m /P \Device\R:0000624Bautocheck autochk /m /P \Device\R:0001AE95autocheck autochk /m /P \Device\R:0001B19Bautocheck autochk /m /P \Device\R:00058DEDautocheck autochk /m /P \Device\R:00005358autocheck autochk /m /P \Device\R:00049A0Eautocheck autochk /m /P \Device\R:000141D2autocheck autochk /m /P \Device\R:00005286autocheck autochk /m /P \Device\R:0002E636autocheck autochk /m /P \Device\R:00017271autocheck autochk * 

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F417343D-F2C7-4B68-BDD9-DB4F81143568}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2018-02-15] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-12-25] (Google Inc.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-08-24] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-12-25] (Google Inc.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-12-25] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-12-25] (Google Inc.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 6rr1ud92.default-1439313933067-1540767137761
FF ProfilePath: C:\Users\Francis\AppData\Roaming\Mozilla\Firefox\Profiles\6rr1ud92.default-1439313933067-1540767137761 [2018-10-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-16] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-16] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3991337843-804343502-1807504109-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Francis\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3991337843-804343502-1807504109-1001: @talk.google.com/O1DPlugin -> C:\Users\Francis\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3991337843-804343502-1807504109-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Francis\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-20] (Google Inc.)
FF Plugin HKU\S-1-5-21-3991337843-804343502-1807504109-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Francis\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-20] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Francis\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Francis\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

Chrome: 
=======
CHR Profile: C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default [2018-10-28]
CHR Extension: (Slides) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-25]
CHR Extension: (Docs) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-25]
CHR Extension: (Google Drive) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-25]
CHR Extension: (YouTube) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-25]
CHR Extension: (Sheets) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-04]
CHR Extension: (Skype) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-04]
CHR Extension: (Gmail) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-25]
CHR Extension: (Chrome Media Router) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-04]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Rohos Disk; C:\Program Files (x86)\Rohos\agent.exe [5159064 2017-06-28] (Tesline-Service SRL)
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2017-12-28] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
R3 HpqRemHid; C:\Windows\system32\DRIVERS\HpqRemHid.sys [9088 2007-07-11] (Hewlett-Packard Development Company, L.P.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R2 RHDISK_AMD64; C:\Program Files (x86)\Rohos\RHDISK_AMD64.SYS [45120 2016-08-05] (Tesline-Service SRL)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
U3 aswbdisk; no ImagePath
U3 DfSdkS; no ImagePath
S1 MpKsl6031b9ba; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{61BBEDA5-A22A-401A-B4CF-6DAB5B61607A}\MpKsl6031b9ba.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 00:10 - 2018-10-29 00:13 - 000015706 _____ C:\Users\Francis\Desktop\FRST.txt
2018-10-28 23:57 - 2018-10-28 23:50 - 002414592 _____ (Farbar) C:\Users\Francis\Desktop\FRST64.exe
2018-10-28 23:55 - 2018-10-29 00:10 - 000000000 ____D C:\FRST
2018-10-28 23:52 - 2018-10-28 23:52 - 000000000 ____D C:\Users\Francis\Desktop\Datos antiguos de Firefox
2018-10-28 23:49 - 2018-10-28 23:50 - 002414592 _____ (Farbar) C:\Users\Francis\Downloads\FRST64.exe
2018-10-28 17:39 - 2018-10-28 17:39 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-10-28 17:35 - 2018-10-28 17:35 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2018-10-28 17:31 - 2018-10-28 23:35 - 000000000 ____D C:\ProgramData\AVAST Software
2018-10-28 17:31 - 2018-10-28 17:31 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-10-28 17:31 - 2018-10-28 17:31 - 000002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-10-28 17:31 - 2018-10-28 17:31 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-10-28 17:31 - 2018-10-28 17:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-10-28 17:11 - 2018-10-28 17:13 - 000000000 ____D C:\AdwCleaner
2018-10-28 17:08 - 2018-10-28 17:08 - 000001534 _____ C:\Users\Francis\Desktop\malwarebites.txt
2018-10-27 17:53 - 2018-10-27 17:53 - 007592144 _____ (Malwarebytes) C:\Users\Francis\Desktop\adwcleaner_7.2.4.0.exe
2018-10-27 14:45 - 2018-10-27 14:45 - 000388608 _____ (Trend Micro Inc.) C:\Users\Francis\Downloads\HijackThis.exe
2018-10-27 14:06 - 2018-10-27 14:06 - 000000000 ____D C:\Users\Francis\AppData\Local\mbamtray
2018-10-27 14:06 - 2018-10-27 14:06 - 000000000 ____D C:\Users\Francis\AppData\Local\mbam
2018-10-27 13:13 - 2018-10-27 13:24 - 000000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2018-10-27 13:10 - 2018-10-27 13:10 - 001996816 _____ (Malwarebytes ) C:\Users\Francis\Downloads\mbae-setup-1.12.1.129.exe
2018-10-27 13:07 - 2018-10-27 13:12 - 078451520 _____ (Malwarebytes ) C:\Users\Francis\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.482-1.0.7539.exe
2018-10-17 15:21 - 2018-10-17 15:21 - 000000000 ___HD C:\ProgramData\CanonIJEGV
2018-10-01 15:18 - 2018-10-01 15:18 - 000000000 ____D C:\Users\Francis\Documents\Youcam

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-28 23:55 - 2014-10-05 14:49 - 000000838 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2018-10-28 23:44 - 2017-12-25 13:27 - 000000000 ____D C:\Users\Francis\AppData\LocalLow\Mozilla
2018-10-28 23:42 - 2014-10-05 14:01 - 000003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3991337843-804343502-1807504109-1001
2018-10-28 23:40 - 2016-06-27 12:24 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-10-28 23:38 - 2014-10-10 14:51 - 000000000 __RDO C:\Users\Francis\SkyDrive
2018-10-28 23:36 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-10-28 18:04 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2018-10-28 17:51 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2018-10-28 17:42 - 2014-12-06 13:24 - 000000000 ____D C:\Users\Francis\AppData\Local\PDFCreator
2018-10-28 17:31 - 2016-06-26 11:47 - 000000000 ____D C:\Program Files\CCleaner
2018-10-28 16:29 - 2014-10-05 17:23 - 001253740 _____ C:\Windows\system32\perfh00C.dat
2018-10-28 16:29 - 2014-10-05 17:23 - 001143596 _____ C:\Windows\system32\perfc00C.dat
2018-10-28 16:29 - 2013-09-30 05:07 - 000004416 _____ C:\Windows\system32\PerfStringBackup.INI
2018-10-28 16:29 - 2013-09-30 04:49 - 004133082 _____ C:\Windows\system32\perfh00A.dat
2018-10-28 16:29 - 2013-09-30 04:49 - 001323386 _____ C:\Windows\system32\perfc00A.dat
2018-10-28 15:27 - 2014-10-05 14:27 - 000003986 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{248E5E0E-10DB-45F1-91AA-6FB92B16DEC3}
2018-10-27 16:02 - 2016-11-28 18:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-10-27 16:02 - 2014-10-05 20:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-10-27 14:36 - 2017-12-25 13:27 - 000001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-10-27 13:33 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2018-10-27 13:07 - 2018-07-18 14:13 - 000001322 _____ C:\Users\Public\Desktop\Skype.lnk
2018-10-27 13:07 - 2018-07-18 14:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-10-23 09:16 - 2017-04-15 10:46 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-10-18 18:20 - 2014-10-08 17:07 - 000000000 ____D C:\Windows\system32\MRT
2018-10-18 16:21 - 2014-10-08 17:07 - 136745976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-10-17 15:21 - 2016-02-28 20:52 - 000000000 ____D C:\ProgramData\CanonIJPLM
2018-10-16 15:59 - 2016-06-28 11:08 - 000000000 ____D C:\Users\Francis\AppData\Local\ElevatedDiagnostics
2018-10-15 22:48 - 2014-10-08 16:17 - 000559880 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-10-04 22:17 - 2014-10-08 21:35 - 000000000 ____D C:\Users\Francis\AppData\LocalLow\Adobe
2018-10-01 10:47 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache

==================== Files in the root of some directories =======

2018-01-13 13:11 - 2018-01-13 13:11 - 000000000 _____ () C:\Users\Francis\AppData\Local\{2179DA10-99FC-40EF-A3EA-A455BD7B73B7}
2018-01-13 13:11 - 2018-01-13 13:11 - 000000000 _____ () C:\Users\Francis\AppData\Local\{A7D31936-FF16-43BB-A8AA-F708615428ED}

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-10-17 12:18

==================== End of FRST.txt ============================

#8

Y el segundo reporte de Farbar recovery

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24.10.2018
Ran by Francis (29-10-2018 00:14:48)
Running from C:\Users\Francis\Desktop
Windows 8.1 Pro (Update) (X64) (2014-10-05 12:56:06)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-3991337843-804343502-1807504109-500 - Administrator - Disabled)
Francis (S-1-5-21-3991337843-804343502-1807504109-1001 - Administrator - Enabled) => C:\Users\Francis
Invitado (S-1-5-21-3991337843-804343502-1807504109-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
ACDSee 9 Administrador fotografico (HKLM-x32\...\{4AA377FF-9D88-485F-B86E-AE631A1AA069}) (Version: 9.0.108 - ACD Systems Ltd.)
Actualización de NVIDIA 14.6.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 14.6.22 - NVIDIA Corporation) Hidden
Ad-Aware Web Companion (HKLM-x32\...\{89C9F6E5-50D4-400C-AB96-5A947584D4D6}) (Version: 1.0.813.1538 - Lavasoft) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon MG7500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG7500_series) (Version: 1.00 - Canon Inc.)
Canon MG7500 series On-screen Manual (HKLM-x32\...\Canon MG7500 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.0.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.47 - Piriform)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.2328 - CyberLink Corp.)
Enregistrement utilisateur de Canon MG7500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG7500 series) (Version:  - ‭Canon Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
LavasoftTcpService (HKLM-x32\...\{655F6B43-070A-403C-9DAF-3FCC813C2E59}) (Version: 2.2.9.5 - Lavasoft) Hidden
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 63.0 (x86 es-ES) (HKLM-x32\...\Mozilla Firefox 63.0 (x86 es-ES)) (Version: 63.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.2 - Mozilla)
NVIDIA Audio virtual de Miracast 340.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 340.43 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - )
NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Panel de control de NVIDIA 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 340.52 - NVIDIA Corporation) Hidden
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.51.17865 - pdfforge GmbH)
PDF Architect 2 Create Module (HKLM-x32\...\{3D0D9604-0173-488D-9694-2638C44D7579}) (Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDF Architect 2 Edit Module (HKLM-x32\...\{8B0A956F-9BE6-495B-AF80-7B5B42061D79}) (Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDF Architect 2 View Module (HKLM-x32\...\{D691E998-CF53-4F6C-AC20-E4284660E0E7}) (Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.0.0 - pdfforge)
RICOH Media Driver (HKLM-x32\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.10.00.04 - RICOH)
Rohos Mini Drive 2.3 (HKLM-x32\...\Rohos_Rohos22_is1) (Version:  - Tesline-Service srl)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 2.1.214 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype version 8.33 (HKLM-x32\...\Skype_is1) (Version: 8.33 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
Update for Skype for Business 2015 (KB4092457) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E37AFD2E-770B-4C2B-B82F-CE405CB26945}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4092457) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E37AFD2E-770B-4C2B-B82F-CE405CB26945}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4092457) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{E37AFD2E-770B-4C2B-B82F-CE405CB26945}) (Version:  - Microsoft)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3991337843-804343502-1807504109-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Francis\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3991337843-804343502-1807504109-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\Francis\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1-x32: [PDFManagerExt] -> {59E4A616-E484-44B5-95FB-7F430B35E8FE} => C:\Program Files (x86)\PDF Architect 2\creator-context-menu.dll [2014-10-10] (pdfforge GmbH)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-08-27] (Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2014-07-02] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-08-27] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {17228678-346B-48FE-84AF-AD168AF0976A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {36934F2E-65D0-4361-9C31-158B84315D84} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3991337843-804343502-1807504109-1001Core => C:\Users\Francis\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {36A91633-2812-497E-984B-2360E4F8894F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3991337843-804343502-1807504109-1001UA => C:\Users\Francis\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {3AEBC13E-A94F-45BB-9744-2F5023C5C7AF} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3991337843-804343502-1807504109-1001
Task: {431E5593-8119-4988-A987-DF71FA24BF16} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-19] (Piriform Ltd)
Task: {4738637D-6029-499D-B523-10AB85F13E79} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-16] (Adobe Systems Incorporated)
Task: {4AFADE6D-B89A-4CEB-B08C-FCF525584B62} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {71B4AFB4-A82E-4262-B08C-37EEE43E7FB5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {8298A98F-0522-4285-86B4-AF9F865F7691} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {968D2317-34A9-4E95-9BAE-322A582F8D3D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-19] (Piriform Ltd)
Task: {B6C173A6-B006-4BAF-BAB0-85BE64A2942D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {C33BA3AE-FA31-4B91-A976-F8D51C5632A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {C8BE5EE0-DC46-477E-8241-01F4372D200F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-10-28] (AVAST Software)
Task: {C8EE5440-F441-4796-A734-BB596B5A310E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-25] (Google Inc.)
Task: {DBAB3F3A-599C-4089-8940-1ECD1FAA8567} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-25] (Google Inc.)
Task: {DEB29871-9EE9-46B1-BB44-AD165EBC1B12} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {E12DDE9A-CD28-4830-AB7A-C269AE9538DC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=14295&utm_medium=desktop&x-pos=Metro

==================== Loaded Modules (Whitelisted) ==============

2014-10-05 14:06 - 2014-07-02 19:55 - 000116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-02-28 21:09 - 2013-06-28 16:28 - 000084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2017-12-28 12:29 - 2017-12-28 12:54 - 000044760 _____ () C:\Windows\runSW.exe
2018-09-19 09:13 - 2018-09-19 09:13 - 000095168 _____ () C:\Program Files\CCleaner\lang\lang-1034.dll
2018-07-18 14:13 - 2018-10-26 16:10 - 001790592 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2018-10-27 13:07 - 2018-10-26 16:10 - 002363960 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\slimcore\bin\skypert.dll
2018-10-27 13:07 - 2018-10-26 16:10 - 000097224 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2018-10-27 13:07 - 2018-10-26 16:10 - 000219080 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\electron-ssid\build\Release\electron-ssid.node
2018-10-27 13:07 - 2018-10-26 16:10 - 000081864 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\desktop-idle\build\Release\desktopIdle.node
2018-07-18 14:13 - 2018-10-26 16:10 - 002723872 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2018-07-18 14:13 - 2018-10-26 16:10 - 000031776 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2018-10-27 13:07 - 2018-10-26 16:10 - 000409544 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\@paulcbetts\spellchecker\build\Release\spellchecker.node
2018-10-27 13:07 - 2018-10-26 16:10 - 000138696 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2016-06-29 11:01 - 000000098 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3991337843-804343502-1807504109-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Francis\AppData\Roaming\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{776AD2C6-BB42-41D1-A846-D236B1CE6FF0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1A4C7170-BEB2-4D2D-AE01-89AA6B30A421}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E6278F6A-86D0-41A4-AD23-540BDB819E4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{72294E05-B2F7-4C85-9DC9-A9E4156E16F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{BAAD76AC-644F-4219-A4E0-A2F2E09F6F38}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D871D385-A45A-4D3D-B402-DAF2F92CBC90}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7106E558-10DB-4010-93DE-B4F7A52A7CD6}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{DF5444F8-EDB7-43C9-8D84-0470A0B04BC4}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{9300E3E3-EB93-429A-86BE-167261A2C7F3}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{7695148D-F183-45EB-8BD4-4AE34DC21DE0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{EE13B1E5-FB0E-47C8-B4FD-EE6DE6AA6FE7}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{FD160794-DAFD-49D0-87D8-56F4DE389A0B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{1DDD7837-EAC0-486C-89CF-65337BE7BF32}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{D7B6ADF8-C932-4B35-97B0-FF380645D9DA}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{5F313565-5EF7-42FD-8A34-A546EF1C8AB0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{0FE2080A-3529-4C06-9013-CB75FD1363AC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BCF1358C-7A67-499E-A8A2-04BEFF78E21D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4A8C413A-5F47-48AF-8F8A-5E54910F4635}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{96A356BB-C849-42CB-9AF8-4CF35A6BEDBE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{25B6DCCB-EAA7-4DE1-B4F0-6A2843B3A98B}] => (Allow) LPort=53
FirewallRules: [{957CEA77-05F8-48A3-9572-72DFB0DAF1A4}] => (Allow) LPort=1542
FirewallRules: [{E0165971-8177-4763-BB32-EA12B8FAE1CA}] => (Allow) LPort=1542
FirewallRules: [{BCF07BFC-CF26-4523-9B6F-CED69C04AAEB}] => (Allow) LPort=53
FirewallRules: [{19CA7F62-FB57-4D37-99D7-280B30669E25}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{89A905D1-C49F-484D-8A9B-68E93AC5C722}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{5BFADE33-0505-45CC-B5A3-BC5911F2DFD9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{F9338E89-E649-42EC-A80B-EE6DFC8BCDDC}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{F9AFE6E1-70DE-42B5-AA39-BA7DC9A28539}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{AFD7578D-F20B-495B-8215-A5AC66648347}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{18B307A5-65E5-4E69-B28A-3191786D2C1B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{F3EF7975-F9C6-465A-96FC-AE8EC063BA72}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{897F7D49-D745-43BB-A253-1E5A35A99DBF}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe

==================== Restore Points =========================

01-10-2018 10:35:17 Punto de control programado
18-10-2018 16:00:29 Windows Update

==================== Faulty Device Manager Devices =============

Name: Coprocesseur
Description: Coprocesseur
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/28/2018 11:43:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkQuarantineRetry

Error: (10/28/2018 11:42:00 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/28/2018 11:41:13 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (10/28/2018 11:34:23 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (10/28/2018 11:19:05 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/28/2018 11:18:10 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (10/28/2018 06:57:44 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (10/28/2018 06:56:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable


System errors:
=============
Error: (10/28/2018 06:57:21 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Windows Update ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.

Error: (10/28/2018 06:57:09 PM) (Source: DCOM) (EventID: 10010) (User: PERSONAL)
Description: Le serveur {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/28/2018 06:56:38 PM) (Source: DCOM) (EventID: 10010) (User: PERSONAL)
Description: Le serveur {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/28/2018 06:56:38 PM) (Source: DCOM) (EventID: 10010) (User: PERSONAL)
Description: Le serveur {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/28/2018 06:03:30 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Malwarebytes Service ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.

Error: (10/28/2018 06:02:52 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Windows Update ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.

Error: (10/28/2018 05:13:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Instalador de módulos de Windows s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Reiniciar el servicio.

Error: (10/28/2018 05:13:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service NVIDIA Display Driver Service s’est terminé de façon inattendue pour la 1ème fois.


Windows Defender:
===================================
Date: 2018-10-15 17:11:24.976
Description: 
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {B4E2D3FC-1421-4B85-A31B-57B39D6111CB}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : personal\Francis

Date: 2018-10-15 16:39:39.063
Description: 
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {63544C70-1496-4795-BE74-0250DFBA6083}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : personal\Francis

Date: 2018-10-01 11:53:48.581
Description: 
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {56725A60-37BC-4AD0-BD58-1CD4B34815C7}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : NT AUTHORITY\SYSTEM

Date: 2018-10-01 11:08:58.559
Description: 
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {D3B3B2F5-7022-4525-890B-35E38C1E250E}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : NT AUTHORITY\SYSTEM

Date: 2018-09-23 19:10:46.991
Description: 
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {50166251-553F-4B7C-976C-F7D8795D5269}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : NT AUTHORITY\SYSTEM

Date: 2018-10-24 15:22:57.694
Description: 
Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature : 
Version précédente de la signature : 119.0.0.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Système d’inspection réseau
Type de mise à jour : Complet
Utilisateur : NT AUTHORITY\Servicio de red
Version actuelle du moteur : 
Version précédente du moteur : 2.1.14600.4
Code d’erreur : 0x80072ee7
Description de l’erreur : No se pudo resolver el nombre de servidor o su dirección 

Date: 2018-10-24 15:22:57.663
Description: 
Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature : 
Version précédente de la signature : 1.279.289.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Logiciel anti-espion
Type de mise à jour : Complet
Utilisateur : NT AUTHORITY\Servicio de red
Version actuelle du moteur : 
Version précédente du moteur : 1.1.15400.4
Code d’erreur : 0x80072ee7
Description de l’erreur : No se pudo resolver el nombre de servidor o su dirección 

Date: 2018-10-24 15:22:57.663
Description: 
Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature : 
Version précédente de la signature : 1.279.289.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : NT AUTHORITY\Servicio de red
Version actuelle du moteur : 
Version précédente du moteur : 1.1.15400.4
Code d’erreur : 0x80072ee7
Description de l’erreur : No se pudo resolver el nombre de servidor o su dirección 

Date: 2018-10-24 15:22:57.257
Description: 
Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature : 
Version précédente de la signature : 1.279.289.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : NT AUTHORITY\SYSTEM
Version actuelle du moteur : 
Version précédente du moteur : 1.1.15400.4
Code d’erreur : 0x8024001e
Description de l’erreur : Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2018-10-23 17:39:08.943
Description: 
Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature : 
Version précédente de la signature : 119.0.0.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Système d’inspection réseau
Type de mise à jour : Complet
Utilisateur : NT AUTHORITY\Servicio de red
Version actuelle du moteur : 
Version précédente du moteur : 2.1.14600.4
Code d’erreur : 0x80072ee7
Description de l’erreur : No se pudo resolver el nombre de servidor o su dirección 

CodeIntegrity:
===================================

Date: 2018-10-01 11:08:25.601
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-23 19:19:24.883
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-07 18:32:44.395
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-08-28 15:47:24.365
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-08-14 09:58:21.664
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-08-02 14:27:37.344
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-07-15 14:18:31.673
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-07-12 16:37:47.879
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info =========================== 

Processor: AMD Turion(tm) 64 X2 Mobile Technology TL-60
Percentage of memory in use: 79%
Total physical RAM: 2046.98 MB
Available physical RAM: 412.56 MB
Total Virtual: 3390.98 MB
Available Virtual: 1146.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:139.35 GB) (Free:37.92 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:9.35 GB) (Free:9.3 GB) NTFS

\\?\Volume{a0f3659d-4c8d-11e4-8250-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.34 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 70B24966)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=139.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=9.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

#9

Ejecuta la herramienta de desinstalacion de Avast, pues tienes restos de este >> Herramientas de desinstalación de Antivirus, AntiSpyware y Firewall

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

  • Para hacerlo descarga Delfix en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.


En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:


Start
CreateRestorePoint:
CloseProcesses:

HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\MountPoints2: {19dbe3ed-a97c-11e6-8657-001e68052966} - "E:\autorun.exe" 
BootExecute: autocheck autochk /m /P \Device\R:003AB70Dautocheck autochk /m /P \Device\R:0002BDC1autocheck autochk /m /P \Device\R:0007FEA2autocheck autochk /m /P \Device\R:0006C030autocheck autochk /m /P \Device\R:00024E0Fautocheck autochk /m /P \Device\R:000101CCautocheck autochk /m /P \Device\R:0002DCCCautocheck autochk /m /P \Device\R:0002C5F0autocheck autochk /m /P \Device\R:0000E9D2autocheck autochk /m /P \Device\R:0007429Aautocheck autochk /m /P \Device\R:0000BF41autocheck autochk /m /P \Device\R:0000624Bautocheck autochk /m /P \Device\R:0001AE95autocheck autochk /m /P \Device\R:0001B19Bautocheck autochk /m /P \Device\R:00058DEDautocheck autochk /m /P \Device\R:00005358autocheck autochk /m /P \Device\R:00049A0Eautocheck autochk /m /P \Device\R:000141D2autocheck autochk /m /P \Device\R:00005286autocheck autochk /m /P \Device\R:0002E636autocheck autochk /m /P \Device\R:00017271autocheck autochk *
U3 aswbdisk; no ImagePath
U3 DfSdkS; no ImagePath
S1 MpKsl6031b9ba; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{61BBEDA5-A22A-401A-B4CF-6DAB5B61607A}\MpKsl6031b9ba.sys [X]
2018-01-13 13:11 - 2018-01-13 13:11 - 000000000 _____ () C:\Users\Francis\AppData\Local\{2179DA10-99FC-40EF-A3EA-A455BD7B73B7}
2018-01-13 13:11 - 2018-01-13 13:11 - 000000000 _____ () C:\Users\Francis\AppData\Local\{A7D31936-FF16-43BB-A8AA-F708615428ED}
LavasoftTcpService (HKLM-x32\...\{655F6B43-070A-403C-9DAF-3FCC813C2E59}) (Version: 2.2.9.5 - Lavasoft) Hidden
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=14295&utm_medium=desktop&x-pos=Metro


HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

  • Y ahora usa esta Faq de Windows ¿Cómo iniciar Windows en Modo Seguro?, para trabajar desde ese modo de windows.

  • Ejecutas Frst.exe.

  • Presionas el botón Fix y aguardas a que termine.

  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta, comentado como va el problema


#10

Hola de nuevo Miguelgrado y gracias por tu respuesta, he realizado los pasos que me indicas pero no veo mejoras, por ejemplo los navegadores tardan muchisimo en abrir, desinstale Mozilla firefox, que es el que me gusta mas, y lo volvi a instalar pero sigue mas o menos igual Te envio el reporte de frst a ver si hay algo mas que podamos hacer. Muchas gracias por tu ayuda. Un saludo

Fix result of Farbar Recovery Scan Tool (x64) Version: 24.10.2018
Ran by Francis (01-11-2018 21:00:00) Run:1
Running from C:\Users\Francis\Desktop
Loaded Profiles: Francis (Available Profiles: Francis)
Boot Mode: Safe Mode (minimal)
==============================================

fixlist content:
*****************

Start
CreateRestorePoint:
CloseProcesses:

HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\MountPoints2: {19dbe3ed-a97c-11e6-8657-001e68052966} - "E:\autorun.exe" 
BootExecute: autocheck autochk /m /P \Device\R:003AB70Dautocheck autochk /m /P \Device\R:0002BDC1autocheck autochk /m /P \Device\R:0007FEA2autocheck autochk /m /P \Device\R:0006C030autocheck autochk /m /P \Device\R:00024E0Fautocheck autochk /m /P \Device\R:000101CCautocheck autochk /m /P \Device\R:0002DCCCautocheck autochk /m /P \Device\R:0002C5F0autocheck autochk /m /P \Device\R:0000E9D2autocheck autochk /m /P \Device\R:0007429Aautocheck autochk /m /P \Device\R:0000BF41autocheck autochk /m /P \Device\R:0000624Bautocheck autochk /m /P \Device\R:0001AE95autocheck autochk /m /P \Device\R:0001B19Bautocheck autochk /m /P \Device\R:00058DEDautocheck autochk /m /P \Device\R:00005358autocheck autochk /m /P \Device\R:00049A0Eautocheck autochk /m /P \Device\R:000141D2autocheck autochk /m /P \Device\R:00005286autocheck autochk /m /P \Device\R:0002E636autocheck autochk /m /P \Device\R:00017271autocheck autochk *
U3 aswbdisk; no ImagePath
U3 DfSdkS; no ImagePath
S1 MpKsl6031b9ba; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{61BBEDA5-A22A-401A-B4CF-6DAB5B61607A}\MpKsl6031b9ba.sys [X]
2018-01-13 13:11 - 2018-01-13 13:11 - 000000000 _____ () C:\Users\Francis\AppData\Local\{2179DA10-99FC-40EF-A3EA-A455BD7B73B7}
2018-01-13 13:11 - 2018-01-13 13:11 - 000000000 _____ () C:\Users\Francis\AppData\Local\{A7D31936-FF16-43BB-A8AA-F708615428ED}
LavasoftTcpService (HKLM-x32\...\{655F6B43-070A-403C-9DAF-3FCC813C2E59}) (Version: 2.2.9.5 - Lavasoft) Hidden
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=14295&utm_medium=desktop&x-pos=Metro


HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END
*****************

Error: Restore point can only be created in normal mode.
Processes closed successfully.
HKU\S-1-5-21-3991337843-804343502-1807504109-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19dbe3ed-a97c-11e6-8657-001e68052966} => removed successfully
HKLM\Software\Classes\CLSID\{19dbe3ed-a97c-11e6-8657-001e68052966} => not found
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
HKLM\System\CurrentControlSet\Services\DfSdkS => removed successfully
DfSdkS => service removed successfully
HKLM\System\CurrentControlSet\Services\MpKsl6031b9ba => removed successfully
MpKsl6031b9ba => service removed successfully
C:\Users\Francis\AppData\Local\{2179DA10-99FC-40EF-A3EA-A455BD7B73B7} => moved successfully
C:\Users\Francis\AppData\Local\{A7D31936-FF16-43BB-A8AA-F708615428ED} => moved successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{655F6B43-070A-403C-9DAF-3FCC813C2E59}\\SystemComponent" => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk => Shortcut argument removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3991337843-804343502-1807504109-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3991337843-804343502-1807504109-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========


========= netsh winsock reset =========


Le catalogue Winsock a ‚t‚ r‚initialis‚ correctement.
Vous devez red‚marrer l'ordinateur afin de finaliser la r‚initialisation.


========= End of CMD: =========


========= ipconfig /renew =========


Configuration IP de Windows


========= End of CMD: =========


========= ipconfig /flushdns =========


Configuration IP de Windows

Impossible de vider le cache de r‚solution DNS : La fonction a ‚chou‚ lors de l'ex‚cution.


========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.7.9600 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c

========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35222407 B
Java, Flash, Steam htmlcache => 1508 B
Windows/system/drivers => 96714736 B
Edge => 0 B
Chrome => 5953289 B
Firefox => 29526589 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 94514 B
systemprofile32 => 128 B
LocalService => 4757026 B
NetworkService => 738210483 B
Francis => 78535111 B
UpdatusUser => 0 B

RecycleBin => 16926415 B
EmptyTemp: => 959.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:01:22 ====

#11

Por infecciones no es…

Descarga Hard Disk Sentinel (te recomiendo la version portable), lo ejecutas y vas a Report>SaveTXTReport y guardas el reporte. Nos lo traerias


#12

Hola de nuevo ya he hecho lo que me indicas y segun veo no hay problemas pero aqui le pongo el log del programa. Muchas gracias por la ayuda. Un saludo

[code]

General Information –

Application Information

Installed Version  . . . . . . . . . . . . . . . : Hard Disk Sentinel 5.30 PRO
Registered To  . . . . . . . . . . . . . . . . . : Unregistered version, please register.
Current Date And Time  . . . . . . . . . . . . . : 02.11.2018 17:40:38
Health Calculation Method  . . . . . . . . . . . : Analyse data field (default)

Computer Information

Computer Name  . . . . . . . . . . . . . . . . . : PERSONAL
User Name  . . . . . . . . . . . . . . . . . . . : Francis
Computer Type  . . . . . . . . . . . . . . . . . : Mobile
IP Address . . . . . . . . . . . . . . . . . . . : 192.168.1.78
MAC Address  . . . . . . . . . . . . . . . . . . : 00-1F-3A-13-A4-9A
System Uptime  . . . . . . . . . . . . . . . . . : 0 days, 6 hours, 59 minutes, 22 seconds
System Idle Time . . . . . . . . . . . . . . . . : 0 days, 0 hours, 0 minutes, 0 seconds
System Up Since  . . . . . . . . . . . . . . . . : 02.11.2018 10:41:18
CPU Usage  . . . . . . . . . . . . . . . . . . . : CPU #1: 14 %, CPU #2: 15 %
Virtual Memory . . . . . . . . . . . . . . . . . : 3390 MB, Used: 1650 MB (49 %)

System Information

Windows Version  . . . . . . . . . . . . . . . . : Windows 8.1 Pro 
CPU Type & Speed #1  . . . . . . . . . . . . . . : AMD Turion(tm) 64 X2 Mobile Technology TL-60, 2009 MHz
CPU Type & Speed #2  . . . . . . . . . . . . . . : AMD Turion(tm) 64 X2 Mobile Technology TL-60, 2009 MHz
BIOS Manufacturer  . . . . . . . . . . . . . . . : Phoenix
Physical Memory Size . . . . . . . . . . . . . . : 2047 MB, Used: 1332 MB (65 %)
Display Adapter  . . . . . . . . . . . . . . . . : NVIDIA GeForce 8400M GS  
Display Resolution . . . . . . . . . . . . . . . : 1280 x 800 (32 bit)
Printer #1 . . . . . . . . . . . . . . . . . . . : Canon MG7500 series Printer
Printer #2 . . . . . . . . . . . . . . . . . . . : Envoyer à OneNote 2013
Printer #3 . . . . . . . . . . . . . . . . . . . : Fax
Printer #4 . . . . . . . . . . . . . . . . . . . : Microsoft XPS Document Writer
Printer #5 . . . . . . . . . . . . . . . . . . . : PDF Architect 2
Printer #6 . . . . . . . . . . . . . . . . . . . : PDFCreator
Network Controller #1  . . . . . . . . . . . . . : Controladora de red NVIDIA nForce
Network Controller #2  . . . . . . . . . . . . . : Adaptador WiFi Qualcomm Atheros AR5007 802.11b|g
Optical Drive

PCI Device Information

PCI Bus 0; Device 2; Function 0  . . . . . . . . : Standard OpenHCD USB Host Controller
PCI Bus 0; Device 2; Function 1  . . . . . . . . : Standard Enhanced PCI to USB Host Controller
PCI Bus 0; Device 6; Function 0  . . . . . . . . : Controladora de red NVIDIA nForce
PCI Bus 0; Device 7; Function 0  . . . . . . . . : High Definition Audio Controller
PCI Bus 0; Device 8; Function 0  . . . . . . . . : PCI standard PCI-to-PCI bridge
PCI Bus 0; Device 9; Function 0  . . . . . . . . : Standard Dual Channel PCI IDE Controller
PCI Bus 0; Device 10; Function 0 . . . . . . . . : Standard Dual Channel PCI IDE Controller
PCI Bus 0; Device 11; Function 0 . . . . . . . . : PCI standard PCI-to-PCI bridge
PCI Bus 0; Device 12; Function 0 . . . . . . . . : PCI standard PCI-to-PCI bridge
PCI Bus 0; Device 13; Function 0 . . . . . . . . : PCI standard PCI-to-PCI bridge
PCI Bus 0; Device 14; Function 0 . . . . . . . . : PCI standard PCI-to-PCI bridge
PCI Bus 3; Device 0; Function 0  . . . . . . . . : Adaptador WiFi Qualcomm Atheros AR5007 802.11b|g
PCI Bus 5; Device 0; Function 0  . . . . . . . . : NVIDIA GeForce 8400M GS  
PCI Bus 7; Device 5; Function 0  . . . . . . . . : Ricoh 1394 OHCI Compliant Host Controller
PCI Bus 7; Device 5; Function 1  . . . . . . . . : SDA Standard Compliant SD Host Controller
PCI Bus 7; Device 5; Function 2  . . . . . . . . : Ricoh SD/MMC Host Controller
PCI Bus 7; Device 5; Function 3  . . . . . . . . : Ricoh Memory Stick Controller
PCI Bus 7; Device 5; Function 4  . . . . . . . . : Ricoh xD-Picture Card Controller

– Physical Disk Information - Disk: #0: FUJITSU MHY2160BH –

Hard Disk Summary

Hard Disk Number . . . . . . . . . . . . . . . . : 0
Interface  . . . . . . . . . . . . . . . . . . . : S-ATA
Disk Controller  . . . . . . . . . . . . . . . . : Contrôleur IDE standard double canal PCI (ATA) [VEN: 10DE, DEV: 045D] Version: 6.3.9600.16384, 6-21-2006
Disk Location  . . . . . . . . . . . . . . . . . : Channel 0, Target 0, Lun 0, Device: 0
Hard Disk Model ID . . . . . . . . . . . . . . . : FUJITSU MHY2160BH
Firmware Revision  . . . . . . . . . . . . . . . : 890B
Hard Disk Serial Number  . . . . . . . . . . . . : K411T7C2FH2L
Total Size . . . . . . . . . . . . . . . . . . . : 152625 MB
Power State  . . . . . . . . . . . . . . . . . . : Active
Logical Drive(s) . . . . . . . . . . . . . . . . : C: [] D: [HP_RECOVERY] 
Current Temperature  . . . . . . . . . . . . . . : 49 °C
Power On Time  . . . . . . . . . . . . . . . . . : 323 days, 18 hours
Estimated Remaining Lifetime . . . . . . . . . . : more than 1000 days
Health . . . . . . . . . . . . . . . . . . . . . : #################### 100 % (Excellent)
Performance  . . . . . . . . . . . . . . . . . . : #################### 100 % (Excellent)

The hard disk status is PERFECT. Problematic or weak sectors were not found and there are no spin up or data transfer errors. 
  No actions needed.

ATA Information

Hard Disk Cylinders  . . . . . . . . . . . . . . : 310101
Hard Disk Heads  . . . . . . . . . . . . . . . . : 16
Hard Disk Sectors  . . . . . . . . . . . . . . . : 63
ATA Revision . . . . . . . . . . . . . . . . . . : ATA8-ACS version 3f
Transport Version  . . . . . . . . . . . . . . . : SATA Rev 2.5
Total Sectors  . . . . . . . . . . . . . . . . . : 312581808
Bytes Per Sector . . . . . . . . . . . . . . . . : 512
Buffer Size  . . . . . . . . . . . . . . . . . . : 8192 KB
Multiple Sectors . . . . . . . . . . . . . . . . : 16
Error Correction Bytes . . . . . . . . . . . . . : 4
Unformatted Capacity . . . . . . . . . . . . . . : 152628 MB
Maximum PIO Mode . . . . . . . . . . . . . . . . : 4
Maximum Multiword DMA Mode . . . . . . . . . . . : 2
Maximum UDMA Mode  . . . . . . . . . . . . . . . : 150 MB/s (5)
Active UDMA Mode . . . . . . . . . . . . . . . . : 150 MB/s (5)
Minimum Multiword DMA Transfer Time  . . . . . . : 120 ns
Recommended Multiword DMA Transfer Time  . . . . : 120 ns
Minimum PIO Transfer Time Without IORDY  . . . . : 120 ns
Minimum PIO Transfer Time With IORDY . . . . . . : 120 ns
ATA Control Byte . . . . . . . . . . . . . . . . : Valid
ATA Checksum Value . . . . . . . . . . . . . . . : Valid

Acoustic Management Configuration

Acoustic Management  . . . . . . . . . . . . . . : Not supported
Acoustic Management  . . . . . . . . . . . . . . : Disabled
Current Acoustic Level . . . . . . . . . . . . . : Default (00h)
Recommended Acoustic Level . . . . . . . . . . . : Default (00h)

ATA Features

Read Ahead Buffer  . . . . . . . . . . . . . . . : Supported, Enabled
DMA  . . . . . . . . . . . . . . . . . . . . . . : Supported
Ultra DMA  . . . . . . . . . . . . . . . . . . . : Supported
S.M.A.R.T. . . . . . . . . . . . . . . . . . . . : Supported
Power Management . . . . . . . . . . . . . . . . : Supported
Write Cache  . . . . . . . . . . . . . . . . . . : Supported
Host Protected Area  . . . . . . . . . . . . . . : Not supported
HPA Security Extensions  . . . . . . . . . . . . : Not supported
Advanced Power Management  . . . . . . . . . . . : Supported, Enabled
Advanced Power Management Level  . . . . . . . . : Minimum power consumption without standby (128)
Extended Power Management  . . . . . . . . . . . : Not supported
Power Up In Standby  . . . . . . . . . . . . . . : Not supported
48-Bit LBA Addressing  . . . . . . . . . . . . . : Supported
Device Configuration Overlay . . . . . . . . . . : Supported
IORDY Support  . . . . . . . . . . . . . . . . . : Supported
Read/Write DMA Queue . . . . . . . . . . . . . . : Not supported
NOP Command  . . . . . . . . . . . . . . . . . . : Supported
Trusted Computing  . . . . . . . . . . . . . . . : Not supported
64-Bit World Wide ID . . . . . . . . . . . . . . : 500000E0415E02F7
Streaming  . . . . . . . . . . . . . . . . . . . : Not supported
Media Card Pass Through  . . . . . . . . . . . . : Not supported
General Purpose Logging  . . . . . . . . . . . . : Supported
Error Logging  . . . . . . . . . . . . . . . . . : Supported
CFA Feature Set  . . . . . . . . . . . . . . . . : Not supported
CFast Device . . . . . . . . . . . . . . . . . . : Not supported
Long Physical Sectors (1)  . . . . . . . . . . . : Not supported
Long Logical Sectors . . . . . . . . . . . . . . : Not supported
Write-Read-Verify  . . . . . . . . . . . . . . . : Not supported
NV Cache Feature . . . . . . . . . . . . . . . . : Not supported
NV Cache Power Mode  . . . . . . . . . . . . . . : Not supported
NV Cache Size  . . . . . . . . . . . . . . . . . : Not supported
Free-fall Control  . . . . . . . . . . . . . . . : Not supported
Free-fall Control Sensitivity  . . . . . . . . . : Not supported
Service Interrupt  . . . . . . . . . . . . . . . : Not supported
IDLE IMMEDIATE Command With UNLOAD Feature . . . : Supported

SSD Features

Data Set Management  . . . . . . . . . . . . . . : Not supported
TRIM Command . . . . . . . . . . . . . . . . . . : Not supported
Deterministic Read After TRIM  . . . . . . . . . : Not supported
Read Zeroes After TRIM . . . . . . . . . . . . . : Not supported

S.M.A.R.T. Details

Off-line Data Collection Status  . . . . . . . . : Never Started
Self Test Execution Status . . . . . . . . . . . : Successfully Completed
Total Time To Complete Off-line Data Collection  : 649 seconds
Execute Off-line Immediate . . . . . . . . . . . : Supported
Abort/restart Off-line By Host . . . . . . . . . : Not supported
Off-line Read Scanning . . . . . . . . . . . . . : Not supported
Short Self-test  . . . . . . . . . . . . . . . . : Supported
Extended Self-test . . . . . . . . . . . . . . . : Supported
Conveyance Self-test . . . . . . . . . . . . . . : Not supported
Selective Self-Test  . . . . . . . . . . . . . . : Supported
Save Data Before/After Power Saving Mode . . . . : Supported
Enable/Disable Attribute Autosave  . . . . . . . : Supported
Error Logging Capability . . . . . . . . . . . . : Supported
Short Self-test Estimated Time . . . . . . . . . : 2 minutes
Extended Self-test Estimated Time  . . . . . . . : 92 minutes
Last Short Self-test Result  . . . . . . . . . . : Never Started
Last Short Self-test Date  . . . . . . . . . . . : Never Started
Last Extended Self-test Result . . . . . . . . . : Never Started
Last Extended Self-test Date . . . . . . . . . . : Never Started

Security Mode

Security Mode  . . . . . . . . . . . . . . . . . : Supported
Security Erase . . . . . . . . . . . . . . . . . : Supported
Security Erase Time  . . . . . . . . . . . . . . : 104 minutes
Security Enhanced Erase Feature  . . . . . . . . : Supported
Security Enhanced Erase Time . . . . . . . . . . : 104 minutes
Security Enabled . . . . . . . . . . . . . . . . : No
Security Locked  . . . . . . . . . . . . . . . . : No
Security Frozen  . . . . . . . . . . . . . . . . : Yes
Security Counter Expired . . . . . . . . . . . . : No
Security Level . . . . . . . . . . . . . . . . . : High
Device Encrypts All User Data  . . . . . . . . . : No
Sanitize . . . . . . . . . . . . . . . . . . . . : Not supported
Overwrite  . . . . . . . . . . . . . . . . . . . : Not supported
Crypto Scramble  . . . . . . . . . . . . . . . . : Not supported
Block Erase  . . . . . . . . . . . . . . . . . . : Not supported
Sanitize Antifreeze Lock . . . . . . . . . . . . : Not supported
ACS-3 Commands Allowed By Sanitize . . . . . . . : No

Serial ATA Features

S-ATA Compliance . . . . . . . . . . . . . . . . : Yes
S-ATA I Signaling Speed (1.5 Gps)  . . . . . . . : Supported
S-ATA II Signaling Speed (3 Gps) . . . . . . . . : Not supported
S-ATA Gen3 Signaling Speed (6 Gps) . . . . . . . : Not supported
Receipt Of Power Management Requests From Host . : Not supported
PHY Event Counters . . . . . . . . . . . . . . . : Supported
Non-Zero Buffer Offsets In DMA Setup FIS . . . . : Not supported
DMA Setup Auto-Activate Optimization . . . . . . : Not supported
Device Initiating Interface Power Management . . : Supported, Disabled
In-Order Data Delivery . . . . . . . . . . . . . : Not supported
Asynchronous Notification  . . . . . . . . . . . : Not supported
Software Settings Preservation . . . . . . . . . : Supported, Enabled
Native Command Queuing (NCQ) . . . . . . . . . . : Not supported
Queue Length . . . . . . . . . . . . . . . . . . : Not supported
NCQ Streaming  . . . . . . . . . . . . . . . . . : Not supported
NCQ Autosense  . . . . . . . . . . . . . . . . . : Not supported
Automatic Partial To Slumber Translations  . . . : Not supported
Rebuild Assist . . . . . . . . . . . . . . . . . : Not supported
Hybrid Information . . . . . . . . . . . . . . . : Not supported
Device Sleep (DevSleep)  . . . . . . . . . . . . : Not supported
DevSleep To ReducedPwrState  . . . . . . . . . . : Not supported

Disk Information

Form Factor  . . . . . . . . . . . . . . . . . . : 2.5" 
Capacity . . . . . . . . . . . . . . . . . . . . : 160 GB (160 x 1 000 000 000 bytes)
Number Of Disks  . . . . . . . . . . . . . . . . : 2
Number Of Heads  . . . . . . . . . . . . . . . . : 3
Rotational Speed . . . . . . . . . . . . . . . . : 5400 RPM
Rotation Time  . . . . . . . . . . . . . . . . . : 11,11 ms
Average Rotational Latency . . . . . . . . . . . : 5,56 ms
Disk Interface . . . . . . . . . . . . . . . . . : Serial-ATA/150
Buffer-Host Max. Rate  . . . . . . . . . . . . . : 150 MB/seconds
Buffer Size  . . . . . . . . . . . . . . . . . . : 8192 KB
Drive Ready Time (Typical) . . . . . . . . . . . : ? seconds
Average Seek Time  . . . . . . . . . . . . . . . : 12,0 ms
Track To Track Seek Time . . . . . . . . . . . . : 1,5 ms
Full Stroke Seek Time  . . . . . . . . . . . . . : 22,0 ms
Width  . . . . . . . . . . . . . . . . . . . . . : 70,0 mm (2,8 inch)
Depth  . . . . . . . . . . . . . . . . . . . . . : 100,0 mm (3,9 inch)
Height . . . . . . . . . . . . . . . . . . . . . : 9,5 mm (0,4 inch)
Weight . . . . . . . . . . . . . . . . . . . . . : 101 grams (0,2 pounds)
Acoustic (Idle)  . . . . . . . . . . . . . . . . : 2,4 Bel
Required Power For Spinup  . . . . . . . . . . . : 1 000 mA
Power Required (Seek)  . . . . . . . . . . . . . : 1,9 W
Power Required (Idle)  . . . . . . . . . . . . . : 0,6 W
Power Required (Standby) . . . . . . . . . . . . : 0,1 W
Manufacturer . . . . . . . . . . . . . . . . . . : Fujitsu Computer Products of America, Inc.
Manufacturer Website . . . . . . . . . . . . . . : http://www.fcpa.fujitsu.com/products/hard-drives

S.M.A.R.T.

 
Attribute                Thre.. Value  Worst  Data                Status                   Flags                                                  
1    Raw Read Error Rate      46     100    100    00000003ABAA        OK                       Error-Rate, Performance, Statistical, Critical         
2    Throughput Performance   30     100    100    0000023C0000        OK                       Performance, Critical                                  
3    Spin Up Time             25     100    100    000000000001        OK                       Statistical, Critical                                  
4    Start/Stop Count         0      97     97     000000002864        OK (Always passing)      Self Preserving, Event Count, Statistical              
5    Reallocated Sectors Co.. 24     100    100    07D000000000        OK                       Self Preserving, Event Count, Statistical, Critical    
7    Seek Error Rate          47     100    100    000000000A8A        OK                       Error-Rate, Performance, Statistical, Critical         
8    Seek Time Performance    19     100    100    000000000000        OK                       Performance, Critical                                  
9    Power On Time Count      0      85     85     000000001E5A        OK (Always passing)      Self Preserving, Event Count, Statistical              
10   Spin Retry Count         20     100    100    000000000000        OK                       Event Count, Statistical, Critical                     
11   Drive Calibration Retr.. 0      253    253    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
12   Drive Power Cycle Count  0      98     98     0000000027CC        OK (Always passing)      Self Preserving, Event Count, Statistical              
182  Vendor-specific          0      100    100    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
184  End-to-End Error Count   97     253    253    000000000000        OK                       Self Preserving, Event Count, Statistical, Critical    
185  Vendor-specific          0      253    253    000000000000        OK (Always passing)      Event Count                                            
186  Vendor-specific          0      253    253    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
187  Reported Uncorrectable.. 0      100    100    00AB00000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
188  Command Timeout          0      100    100    000000000000        OK (Always passing)      Self Preserving, Event Count, Statistical              
189  High Fly Writes          0      100    100    000000000000        OK (Always passing)      Self Preserving, Event Count, Error-Rate, Statistical  
190  Airflow Temperature      0      51     37     016D34310031        OK (Always passing)      Self Preserving, Statistical                           
191  G-Sense Error Rate       0      253    99     000000FD0003        OK (Always passing)      Self Preserving, Event Count, Statistical              
192  Power off Retract Cycl.. 0      99     99     000001070107        OK (Always passing)      Self Preserving, Event Count, Statistical              
193  Load/Unload Cycle Count  0      97     97     00000000FAA7        OK (Always passing)      Self Preserving, Event Count, Statistical              
195  Hardware ECC Recovered   0      100    100    0000000000C7        OK (Always passing)      Event Count, Error-Rate, Statistical                   
196  Reallocation Event Count 0      100    100    00001AEE0000        OK (Always passing)      Self Preserving, Event Count, Statistical              
197  Current Pending Sector.. 0      100    100    000000000000        OK (Always passing)      Event Count, Statistical                               
198  Off-Line Uncorrectable.. 0      100    100    000000000000        OK (Always passing)      Event Count                                            
199  Ultra ATA CRC Error Co.. 0      200    253    000000000000        OK (Always passing)      Self Preserving, Event Count, Error-Rate, Performanc.. 
200  Write Error Rate         60     100    100    000000000BCD        OK                       Error-Rate, Performance, Statistical, Critical         
203  Run Out Cancel           0      100    100    026402EAFD37        OK (Always passing)      Statistical                                            
240  Head Flying Hours        0      200    200    000000000000        OK (Always passing)      Self Preserving, Event Count, Error-Rate, Performanc.. 
   
  -- Partition Information --

Logical Drive                           Total Space         Free Space          Free Space               Used Space
C: (Disk: #0)                           139,4 GB            40,3 GB              29 %                    ##############------
D: HP_RECOVERY (Disk: #0)               9,4 GB              9,3 GB               99 %                    

#13

Inicia el pc en >> Modo seguro con red, y dime como funciona en ese modo


#14

Hola Miguelgrado despues de contestarle esta tarde apague el ordenador y me marche , tenia otras ocupaciones pero al apagarlo note que ya no iba como antes tan lento y que no decia preparando windows como hacia antes, asi que cuando he vuelto lo he encendido y ya va mucho mas fluido , lo he apagado y encendido de nuevo como me indicabas en modo seguro con funciones de red y va muy fluido taambien asi que yo creo que se puede cerrar el hilo porque por mi parte me doy por satisfecho. Muchas gracias, como decia al principio hace un tiempo pasaba mucho por aqui pero llevaba un tiempo sin pasar y veo que aun continua la efectividad que siempre tuvisteis e incluso mejor. Muchas gracias de nuevo y como digo por mi, hilo cerrado.


#15

Para eliminar las herramientas usadas en la desinfección, realizas:

  • Descargas y Ejecutas >> Delfix, en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >>;Ejecutar como Administrador.)

  • Marca solamente la casilla Remove disinfection tools

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Si queda alguna herramienta, la desinstalas desde panel de Windows y aquellas que no estén listadas, se eliminan directamente.


Me alegro de haberte podido ayudar! :+1:


TEMA SOLUCIONADO


#16

Este tema se cerró automáticamente 2 días después del último post. No se permiten nuevas respuestas.