Portatil lento

elmulos

Miembro
Miembro
Un saludo a tod@s, os paso mi log, ya que el portatil me va muy lento, haber si podeis ayudarme.....

Gracias.
Insertar CODE, HTML o PHP:
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.11

Platform:  x64 Windows 10 (Home), 10.0.17134.472 (ReleaseId: 1803), Service Pack: 0
Time:      02.01.2019 - 20:07 (UTC+01:00)
Language:  OS: Spanish (0xC0A). Display: Spanish (0xC0A). Non-Unicode: Spanish (0xC0A)
Elevated:  Yes
Ran by:    Tino    (group: Administrator) on DESKTOP-MFNJLFU, FirstRun: yes

Chrome:  71.0.3578.98
Firefox: 64.0.0.6914
Edge:    11.0.17134.471
Internet Explorer: 11.0.17134.1
Default: "C:\WINDOWS\system32\LaunchWinApp.exe" "%1" (Microsoft Edge)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
   1  C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
   1  C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
   4  C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
   1  C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
   1  C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
   1  C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSPanel.exe
   1  C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSService.exe
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
   3  C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
   1  C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
   1  C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
   1  C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
   1  C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
   1  C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
   7  C:\Program Files (x86)\Mozilla Firefox\firefox.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
   1  C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
   1  C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
   1  C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
   1  C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
   1  C:\Program Files (x86)\Realtek\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
   1  C:\Program Files (x86)\Skype\Phone\Skype.exe
   1  C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
   1  C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
   1  C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
   1  C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
   1  C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\Soda PDF Desktop\creator-ws.exe
   1  C:\Program Files\Soda PDF Desktop\ws.exe
   1  C:\Program Files\Windows Defender\MSASCuiL.exe
   1  C:\Program Files\Windows Media Player\wmpnetwk.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
   1  C:\Program Files\rempl\sedlauncher.exe
   1  C:\Program Files\rempl\sedsvc.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe
   1  C:\Users\Tino\AppData\Local\Microsoft\BingSvc\BingSvc.exe
   1  C:\Users\Tino\AppData\Roaming\BitTorrent\BitTorrent.exe
   2  C:\Users\Tino\AppData\Roaming\BitTorrent\updates\7.10.4_44847\bittorrentie.exe
   1  C:\Users\Tino\Desktop\HiJackThis.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\RtkBtManServ.exe
   1  C:\Windows\SysWOW64\esif_uf.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\DbxSvc.exe
   1  C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe
   8  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\browser_broker.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  76  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
   2  C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\Temp\DPTF\esif_assist_64.exe
   1  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: [URL,TopResultURL] = Bing{searchTerms} - Bing
O2-32 - HKLM\..\BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll
O2-32 - HKLM\..\BHO: Soda PDF Desktop Helper - {A2792EEC-6618-4C4C-8ECF-B51ECB5DC2A1} - C:\Program Files (x86)\Soda PDF Desktop\creator-ie-helper.dll
O3-32 - HKLM\..\Toolbar: Soda PDF Desktop Toolbar - {D53D09FE-B1AC-4EE8-AE26-FD43D8B4B62F} - C:\Program Files (x86)\Soda PDF Desktop\creator-ie-plugin.dll
O4 - HKCU\..\Run: [BingSvc] = C:\Users\Tino\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [BitTorrent] = C:\Users\Tino\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED
O4 - HKCU\..\Run: [OfficeSyncProcess] = C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKCU\..\Run: [Skype] = C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun
O4 - HKCU\..\Run: [Web Companion] = C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
O4 - HKCU\..\Run: [utweb] = C:\Users\Tino\AppData\Roaming\uTorrent Web\utweb.exe /MINIMIZED (file missing)
O4 - HKCU\..\RunOnce: [Application Restart #0] = C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe --no-displaying-insecure-content --disable-devtools --disable-raf-throttling --user-data-dir="C:\Users\Tino\AppData\Local\ASUS GIFTBOX\User Data" --no-sandbox --flag-switches-begin --flag-switches-end --nwapp="C:\Program Files (x86)\ASUS\Giftbox" --restore-last-session
O4 - HKLM\..\Run: [NvBackend] = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - User Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk    ->    C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4-32 - HKLM\..\Run: [BCSSync] = C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices
O4-32 - HKLM\..\Run: [Dropbox] = C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup
O4-32 - HKLM\..\Run: [PSUAMain] = C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe /LaunchSysTray
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [WebStorage] = C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\ASUSWSLoader.exe
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Clip Image: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Clip URL: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Clip selection: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Clip this page: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\New Note: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll (file missing)
O9 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9 - Button: HKLM\..\{A95fe080-8f5d-11d2-a20b-00aa003c157a}: Añadir a Evernote 5 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html
O9 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9 - Tools menu item: HKLM\..\{A95fe080-8f5d-11d2-a20b-00aa003c157a}: Añadir a Evernote 5 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html
O9-32 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9-32 - Button: HKLM\..\{A95fe080-8f5d-11d2-a20b-00aa003c157a}: Añadir a Evernote 5 - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9-32 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9-32 - Tools menu item: HKLM\..\{A95fe080-8f5d-11d2-a20b-00aa003c157a}: Añadir a Evernote 5 - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: Adaware Web Companion - Prevent malware infections and privacy breaches at its source.
O15 - Trusted Zone: https://fnmt.es
O15 - Trusted Zone: https://fnmt.gob.es
O17 - DHCP DNS 1: 80.58.61.254
O17 - DHCP DNS 2: 80.58.61.250
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt01: DropboxExt1 Class - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt02: DropboxExt7 Class - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt03: DropboxExt9 Class - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt04: DropboxExt3 Class - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt05: DropboxExt2 Class - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt06: DropboxExt4 Class - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt07: DropboxExt5 Class - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt08: DropboxExt8 Class - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt09: DropboxExt10 Class - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt10: DropboxExt6 Class - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\!AsusWSShellExt_B: AsusWSShellExt_BN64 Class - {6D4133E5-0742-4ADC-8A8C-9303440F7191} - C:\Program Files (x86)\Common Files\AWS\2.2.6.547\ASUSWSShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\!AsusWSShellExt_O: AsusWSShellExt_ON64 Class - {64174815-8D98-4CE6-8646-4C039977D809} - C:\Program Files (x86)\Common Files\AWS\2.2.6.547\ASUSWSShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\!AsusWSShellExt_U: AsusWSShellExt_UN64 Class - {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} - C:\Program Files (x86)\Common Files\AWS\2.2.6.547\ASUSWSShellExt64.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt01: DropboxExt1 Class - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt02: DropboxExt7 Class - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt03: DropboxExt9 Class - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt04: DropboxExt3 Class - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt05: DropboxExt2 Class - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt06: DropboxExt4 Class - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt07: DropboxExt5 Class - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt08: DropboxExt8 Class - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt09: DropboxExt10 Class - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt10: DropboxExt6 Class - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O22 - Task (.job): (Not scheduled) DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
O22 - Task (.job): (Not scheduled) DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
O23 - Service R2: "Realtek Bluetooth Device Manager Service"    ;RtkServ - (RtkBtManServ) - C:\WINDOWS\RtkBtManServ.exe
O23 - Service R2: ASLDR Service - (ASLDRService) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service R2: ATKGFNEX Service - (ATKGFNEXSrv) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service R2: BTDevManager - C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
O23 - Service R2: DbxSvc - C:\WINDOWS\system32\DbxSvc.exe
O23 - Service R2: ESIF Upper Framework Service - (esifsvc) - C:\WINDOWS\SysWOW64\esif_uf.exe
O23 - Service R2: GamesAppIntegrationService - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service R2: Intel Security PEF Service - (PEFService) - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: Panda Devices Agent - (PandaAgent) - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service R2: Panda Product Service - (PSUAService) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service R2: Panda Protection Service - (NanoServiceMain) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service R2: Servicio Bonjour - (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: Soda PDF Desktop Creator - C:\Program Files\Soda PDF Desktop\creator-ws.exe
O23 - Service R2: TeamViewer 10 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R2: WC Assistant - (WCAssistantService) - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
O23 - Service R2: Windows Remediation Service - (sedsvc) - C:\Program Files\rempl\sedsvc.exe
O23 - Service R2: Wondershare Application Framework Service - (WsAppService) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
O23 - Service R2: Wondershare Driver Install Service - (WsDrvInst) - C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
O23 - Service R3: Intel(R) Security Assist - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service R3: Soda PDF Desktop - C:\Program Files\Soda PDF Desktop\ws.exe
O23 - Service S2: Asus WebStorage Windows Service - C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
O23 - Service S2: Dropbox Update Service (dbupdate) - (dbupdate) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /svc
O23 - Service S2: Intel(R) Security Assist Helper - (isaHelperSvc) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service S2: Servicio de Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: WPS Office Update Service - (Kingsoft_WPS_UpdateService) - C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdatesvr.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: Dropbox Update Service (dbupdatem) - (dbupdatem) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /medsvc
O23 - Service S3: GamesAppService - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service S3: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHDCPSvc.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe
O23 - Service S3: Microsoft SharePoint Workspace Audit Service - C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE /auditservice
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Panda VPN Service - C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe
O23 - Service S3: Servicio de Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Soda PDF Desktop CrashHandler - C:\Program Files\Soda PDF Desktop\crash-handler-ws.exe
--
End of file - Time spent: 41,7 sec. - 44846 bytes, CRC32: FFFFFFFF. Sign: 捶ꇤ
 

jbex

El que peca y reza empata
Administrador
Elimina la entrada : O4 - HKCU\..\Run: [BingSvc] = C:\Users\Tino\AppData\Local\Microsoft\BingSvc\BingSvc.exe
Desplázate a C:\Users\Tino\AppData\Local\Microsoft y elimina la carpeta \BingSvc\ junto a todo su contenido.
Sigue los pasos que damos en Guía eliminación Malwares
Un saludo
 

elmulos

Miembro
Miembro
Hola, muchas gracias por la solucion, he realizado todo lo que me has comentado, ha mejorado mucho la respuesta, añado los logs para haber si hay mas incidencias.....

Un saludo:
Insertar CODE, HTML o PHP:
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.11

Platform:  x64 Windows 10 (Home), 10.0.17134.472 (ReleaseId: 1803), Service Pack: 0
Time:      09.01.2019 - 16:14 (UTC+01:00)
Language:  OS: Spanish (0xC0A). Display: Spanish (0xC0A). Non-Unicode: Spanish (0xC0A)
Elevated:  Yes
Ran by:    Tino    (group: Administrator) on DESKTOP-MFNJLFU, FirstRun: yes

Chrome:  71.0.3578.98
Firefox: 64.0.0.6914
Edge:    11.0.17134.471
Internet Explorer: 11.0.17134.1
Default: "C:\WINDOWS\system32\LaunchWinApp.exe" "%1" (Microsoft Edge)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
   1  C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
   1  C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
   1  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
   4  C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
   1  C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
   1  C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
   1  C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSPanel.exe
   1  C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
   3  C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
   1  C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
   1  C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
   1  C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
   1  C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
   6  C:\Program Files (x86)\Mozilla Firefox\firefox.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
   1  C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
   1  C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
   1  C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
   1  C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
   1  C:\Program Files (x86)\Realtek\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
   1  C:\Program Files (x86)\Skype\Phone\Skype.exe
   1  C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
   1  C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
   1  C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
   1  C:\Program Files\Bonjour\mDNSResponder.exe
   1  C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
   1  C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\Soda PDF Desktop\creator-ws.exe
   1  C:\Program Files\Windows Defender\MSASCuiL.exe
   1  C:\Program Files\Windows Media Player\wmpnetwk.exe
   1  C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
   1  C:\Program Files\internet explorer\ielowutil.exe
   1  C:\Program Files\rempl\sedlauncher.exe
   1  C:\Program Files\rempl\sedsvc.exe
   1  C:\Users\Tino\AppData\Roaming\BitTorrent\BitTorrent.exe
   2  C:\Users\Tino\AppData\Roaming\BitTorrent\updates\7.10.4_44847\bittorrentie.exe
   1  C:\Users\Tino\Desktop\HiJackThis.exe
   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
   1  C:\Windows\RtkBtManServ.exe
   1  C:\Windows\SysWOW64\esif_uf.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\BackgroundTransferHost.exe
   3  C:\Windows\System32\CompatTelRunner.exe
   1  C:\Windows\System32\DbxSvc.exe
   1  C:\Windows\System32\DeviceCensus.exe
   1  C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe
  10  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SgrmBroker.exe
   1  C:\Windows\System32\VSSVC.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\backgroundTaskHost.exe
   1  C:\Windows\System32\browser_broker.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\dasHost.exe
   2  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\msfeedssync.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  81  C:\Windows\System32\svchost.exe
   2  C:\Windows\System32\taskhostw.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
   2  C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\Temp\DPTF\esif_assist_64.exe
   1  C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = Hotmail, Outlook, noticias, famosos y horóscopo de hoy en MSN España
O2-32 - HKLM\..\BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll
O2-32 - HKLM\..\BHO: Soda PDF Desktop Helper - {A2792EEC-6618-4C4C-8ECF-B51ECB5DC2A1} - C:\Program Files (x86)\Soda PDF Desktop\creator-ie-helper.dll
O3-32 - HKLM\..\Toolbar: Soda PDF Desktop Toolbar - {D53D09FE-B1AC-4EE8-AE26-FD43D8B4B62F} - C:\Program Files (x86)\Soda PDF Desktop\creator-ie-plugin.dll
O4 - HKCU\..\Run: [BitTorrent] = C:\Users\Tino\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED
O4 - HKCU\..\Run: [OfficeSyncProcess] = C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKCU\..\Run: [Skype] = C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun
O4 - HKCU\..\Run: [utweb] = C:\Users\Tino\AppData\Roaming\uTorrent Web\utweb.exe /MINIMIZED (file missing)
O4 - HKCU\..\RunOnce: [Application Restart #2] = C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe --no-displaying-insecure-content --disable-devtools --disable-raf-throttling --user-data-dir="C:\Users\Tino\AppData\Local\ASUS GIFTBOX\User Data" --no-sandbox --flag-switches-begin --flag-switches-end --nwapp="C:\Program Files (x86)\ASUS\Giftbox" --restore-last-session
O4 - HKLM\..\Run: [NvBackend] = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\Run: [BitTorrent] = C:\Users\Tino\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\Run: [OfficeSyncProcess] = C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\Run: [Skype] = C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\Run: [utweb] = C:\Users\Tino\AppData\Roaming\uTorrent Web\utweb.exe /MINIMIZED (file missing) (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\RunOnce: [Application Restart #2] = C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe --no-displaying-insecure-content --disable-devtools --disable-raf-throttling --user-data-dir="C:\Users\Tino\AppData\Local\ASUS GIFTBOX\User Data" --no-sandbox --flag-switches-begin --flag-switches-end --nwapp="C:\Program Files (x86)\ASUS\Giftbox" --restore-last-session (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - User Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk    ->    C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4-32 - HKLM\..\Run: [BCSSync] = C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices
O4-32 - HKLM\..\Run: [Dropbox] = C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup
O4-32 - HKLM\..\Run: [PSUAMain] = C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe /LaunchSysTray
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [WebStorage] = C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\ASUSWSLoader.exe
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Clip Image: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Clip URL: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Clip selection: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Clip this page: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\New Note: (default) = C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll (file missing)
O9 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9 - Button: HKLM\..\{A95fe080-8f5d-11d2-a20b-00aa003c157a}: Añadir a Evernote 5 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html
O9 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9 - Tools menu item: HKLM\..\{A95fe080-8f5d-11d2-a20b-00aa003c157a}: Añadir a Evernote 5 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html
O9-32 - Button: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9-32 - Button: HKLM\..\{A95fe080-8f5d-11d2-a20b-00aa003c157a}: Añadir a Evernote 5 - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9-32 - Tools menu item: HKLM\..\{48A61126-9A19-4C50-A214-FF08CB94995C}: McAfee WebAdvisor - (no file)
O9-32 - Tools menu item: HKLM\..\{A95fe080-8f5d-11d2-a20b-00aa003c157a}: Añadir a Evernote 5 - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: https://fnmt.es
O15 - Trusted Zone: https://fnmt.gob.es
O17 - DHCP DNS 1: 80.58.61.254
O17 - DHCP DNS 2: 80.58.61.250
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt01: DropboxExt1 Class - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt02: DropboxExt7 Class - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt03: DropboxExt9 Class - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt04: DropboxExt3 Class - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt05: DropboxExt2 Class - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt06: DropboxExt4 Class - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt07: DropboxExt5 Class - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt08: DropboxExt8 Class - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt09: DropboxExt10 Class - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt10: DropboxExt6 Class - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\!AsusWSShellExt_B: AsusWSShellExt_BN64 Class - {6D4133E5-0742-4ADC-8A8C-9303440F7191} - C:\Program Files (x86)\Common Files\AWS\2.2.6.547\ASUSWSShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\!AsusWSShellExt_O: AsusWSShellExt_ON64 Class - {64174815-8D98-4CE6-8646-4C039977D809} - C:\Program Files (x86)\Common Files\AWS\2.2.6.547\ASUSWSShellExt64.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\!AsusWSShellExt_U: AsusWSShellExt_UN64 Class - {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} - C:\Program Files (x86)\Common Files\AWS\2.2.6.547\ASUSWSShellExt64.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt01: DropboxExt1 Class - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt02: DropboxExt7 Class - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt03: DropboxExt9 Class - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt04: DropboxExt3 Class - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt05: DropboxExt2 Class - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt06: DropboxExt4 Class - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt07: DropboxExt5 Class - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt08: DropboxExt8 Class - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt09: DropboxExt10 Class - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\   DropboxExt10: DropboxExt6 Class - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.0.dll
O22 - Task (.job): (Not scheduled) DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
O22 - Task (.job): (Not scheduled) DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
O23 - Service R2: "Realtek Bluetooth Device Manager Service"    ;RtkServ - (RtkBtManServ) - C:\WINDOWS\RtkBtManServ.exe
O23 - Service R2: ASLDR Service - (ASLDRService) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service R2: ATKGFNEX Service - (ATKGFNEXSrv) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service R2: Asus WebStorage Windows Service - C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe
O23 - Service R2: BTDevManager - C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
O23 - Service R2: DbxSvc - C:\WINDOWS\system32\DbxSvc.exe
O23 - Service R2: ESIF Upper Framework Service - (esifsvc) - C:\WINDOWS\SysWOW64\esif_uf.exe
O23 - Service R2: GamesAppIntegrationService - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service R2: Intel Security PEF Service - (PEFService) - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: Panda Devices Agent - (PandaAgent) - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service R2: Panda Product Service - (PSUAService) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service R2: Panda Protection Service - (NanoServiceMain) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service R2: Servicio Bonjour - (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: Soda PDF Desktop Creator - C:\Program Files\Soda PDF Desktop\creator-ws.exe
O23 - Service R2: TeamViewer 10 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R2: Windows Remediation Service - (sedsvc) - C:\Program Files\rempl\sedsvc.exe
O23 - Service R2: Wondershare Driver Install Service - (WsDrvInst) - C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
O23 - Service R3: Intel(R) Security Assist - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service S2: Dropbox Update Service (dbupdate) - (dbupdate) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /svc
O23 - Service S2: Intel(R) Security Assist Helper - (isaHelperSvc) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service S2: Servicio de Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: WPS Office Update Service - (Kingsoft_WPS_UpdateService) - C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdatesvr.exe
O23 - Service S2: Wondershare Application Framework Service - (WsAppService) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: Dropbox Update Service (dbupdatem) - (dbupdatem) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /medsvc
O23 - Service S3: GamesAppService - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service S3: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHDCPSvc.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe
O23 - Service S3: Microsoft SharePoint Workspace Audit Service - C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE /auditservice
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Panda VPN Service - C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe
O23 - Service S3: Servicio de Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Soda PDF Desktop - C:\Program Files\Soda PDF Desktop\ws.exe
O23 - Service S3: Soda PDF Desktop CrashHandler - C:\Program Files\Soda PDF Desktop\crash-handler-ws.exe
--
End of file - Time spent: 100,1 sec. - 47160 bytes, CRC32: FFFFFFFF. Sign: 佹࿃
 

elmulos

Miembro
Miembro
03/01/2019 19:33:38
Archivos explorados: 293140
Archivos infectados: 16
Amenazas eliminadas: 16
Tiempo total de exploración 02:57:13
Estado de la exploración: Finalizado
 

elmulos

Miembro
Miembro
Rkill 2.9.1 by Lawrence Abrams (Grinler)
Insertar CODE, HTML o PHP:
BleepingComputer
Copyright 2008-2019 BleepingComputer.com
More Information about Rkill can be found at this link:
RKill - What it does and What it Doesn't - A brief introduction to the program - Anti-Virus, Anti-Malware, and Privacy Software

Program started at: 01/03/2019 04:05:09 PM in x64 mode.
Windows Version: Windows 10 Home

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Users\Tino\Desktop\HiJackThis.exe (PID: 11880) [UP-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 01/03/2019 04:05:39 PM
Execution time: 0 hours(s), 0 minute(s), and 30 seconds(s)
 

elmulos

Miembro
Miembro
Log Malwarebytes AdwCleaner
Insertar CODE, HTML o PHP:
# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2019-01-02.1 (Cloud)
# Support:  Customer Support & Help Center
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-03-2019
# Duration: 00:00:10
# OS:       Windows 10 Home
# Cleaned:  9
# Failed:   0

***** [ Services ] *****

Deleted       WCAssistantService

***** [ Folders ] *****

Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted       HKCU\Software\Lavasoft\Web Companion
Deleted       HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted       HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted       HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4025 octets] - [24/06/2018 20:14:32]
AdwCleaner[C00].txt - [3821 octets] - [24/06/2018 20:15:58]
AdwCleaner[S01].txt - [2217 octets] - [03/01/2019 16:21:06]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
 

jbex

El que peca y reza empata
Administrador
Veo tienes activo mDNSResponder.exe que está asociado al programa Bonjour de Windows, desarrollado por la empresa Apple. También se puede instalar junto con aplicaciones de Adobe. Es instalado también por la aplicación VOIP app Gizmo, Predixis Magic MusicMixer, Ahead Nero, Apple QuickTime, Abobe Creative Suite C3, Photoshop CS3, Kodak Easyshare, GameTalk, Dreamweaver CS3.
Es usado por iTunes para compartir música y también por el sistema de red Apple Redezvous (anuncia servicios locales en una red).
No es un proceso esencial y deshabilitarlo corre por tu cuenta el ver si te es necesario o no.
Hay usuarios que dicen que mDNSResponder.exe les consume muchos recursos y se cree que el programa, a pesar de ser de una empresa reconocida, es un programa espía.
Para desactivarlo o ponerlo en modo manual, es muy simple.
Panel de ControlSistema y SeguridadHerramientas AdministrativasServicios
Busca el texto: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## con doble clic se abrirán las propiedades del servicio y en el apartado Tipo de inicio elegimos de la lista Deshabilitado o Manual. Te recomiendo Manual por si lo necesitara algún programa instalado en tu equipo.
Ten en cuenta que todas las entradas siguientes, inician junto a Windows y que todos estos programas aparte de ralentizar el inicio, son programas iniciados y consumiendo recursos en segundo plano, te recomiendo dejes los que de verdad necesites:
Insertar CODE, HTML o PHP:
O4 - HKCU\..\Run: [BitTorrent] = C:\Users\Tino\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED
O4 - HKCU\..\Run: [OfficeSyncProcess] = C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKCU\..\Run: [Skype] = C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun
O4 - HKCU\..\Run: [utweb] = C:\Users\Tino\AppData\Roaming\uTorrent Web\utweb.exe /MINIMIZED (file missing)
O4 - HKCU\..\RunOnce: [Application Restart #2] = C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe --no-displaying-insecure-content --disable-devtools --disable-raf-throttling --user-data-dir="C:\Users\Tino\AppData\Local\ASUS GIFTBOX\User Data" --no-sandbox --flag-switches-begin --flag-switches-end --nwapp="C:\Program Files (x86)\ASUS\Giftbox" --restore-last-session
O4 - HKLM\..\Run: [NvBackend] = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\Run: [BitTorrent] = C:\Users\Tino\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\Run: [OfficeSyncProcess] = C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\Run: [Skype] = C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\Run: [utweb] = C:\Users\Tino\AppData\Roaming\uTorrent Web\utweb.exe /MINIMIZED (file missing) (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - HKU\S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740\..\RunOnce: [Application Restart #2] = C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe --no-displaying-insecure-content --disable-devtools --disable-raf-throttling --user-data-dir="C:\Users\Tino\AppData\Local\ASUS GIFTBOX\User Data" --no-sandbox --flag-switches-begin --flag-switches-end --nwapp="C:\Program Files (x86)\ASUS\Giftbox" --restore-last-session (User 'unknown: S-1-5-21-2093083284-266307334-540379747-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019180401740')
O4 - User Startup: C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk    ->    C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4-32 - HKLM\..\Run: [BCSSync] = C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices
O4-32 - HKLM\..\Run: [Dropbox] = C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup
O4-32 - HKLM\..\Run: [PSUAMain] = C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe /LaunchSysTray
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [WebStorage] = C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\ASUSWSLoader.exe
Echa un vistazo a este hilo: Evitar instalar CCleaner
Un saludo
 
Arriba Pie